$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/34332e3232352e3138342e302f32322d3234203d3e2039343232.roa File: 34332e3232352e3138342e302f32322d3234203d3e2039343232.roa (raw, json) Hash identifier: 6l4eA4hgKKdV7HePb7GT4qkO7B2rOBXkYrSr+9u6X7c= Subject key identifier: 1D:32:53:6E:C6:13:64:0A:4B:25:97:87:4C:EA:65:43:FE:4B:0A:B0 Certificate issuer: /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Certificate serial: 36C9DC0120557CE117569890D820845DEE082F14 Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/34332e3232352e3138342e302f32322d3234203d3e2039343232.roa Signing time: Mon 02 Jun 2025 02:04:20 +0000 ROA not before: Mon 02 Jun 2025 01:59:20 +0000 ROA not after: Mon 01 Jun 2026 02:04:20 +0000 asID: 9422 IP address blocks: 43.225.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 09:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c9:dc:01:20:55:7c:e1:17:56:98:90:d8:20:84:5d:ee:08:2f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33 Validity Not Before: Jun 2 01:59:20 2025 GMT Not After : Jun 1 02:04:20 2026 GMT Subject: CN=1D32536EC613640A4B2597874CEA6543FE4B0AB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:90:8d:be:aa:57:4c:1b:fa:96:df:83:4a:75: 25:b7:49:17:4b:c6:2c:6d:0d:ee:cf:9e:17:eb:2e: dc:41:0d:32:da:c6:50:a8:71:5e:06:f7:94:51:0b: 32:87:b1:ac:83:6d:71:f5:e4:91:72:5e:1f:2c:75: d0:29:dd:0b:f4:17:51:bd:70:ea:5f:3f:a2:c6:8f: 64:cf:48:09:a2:9d:f6:b6:1f:87:89:80:21:e5:8f: 0a:31:e6:df:e6:24:98:fd:7e:2c:b1:97:fb:52:8b: 7b:e1:3d:62:bd:87:4e:1b:73:b1:67:76:59:b2:78: f5:57:bd:af:a6:16:72:93:18:34:38:f8:53:bb:df: 8b:8b:a3:40:c9:e8:e5:e6:33:35:47:59:4c:db:46: cb:21:37:c9:2d:a8:e4:89:7b:09:95:6e:64:d6:53: d3:f0:9d:27:71:11:b1:45:19:c9:bb:3d:d8:42:f7: 75:e8:cb:45:40:a8:3b:3d:77:6b:15:65:ae:e5:cc: 38:17:fc:c1:01:19:b7:c0:43:64:b1:b6:b9:d2:f0: 93:a5:41:9e:b2:60:ea:f7:d4:97:df:d3:6d:31:a8: 81:f4:3c:77:fa:5b:29:47:3c:8f:46:3b:7a:dc:48: 21:22:73:63:24:26:e4:c7:f5:f1:c1:02:1c:3e:41: 0f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:32:53:6E:C6:13:64:0A:4B:25:97:87:4C:EA:65:43:FE:4B:0A:B0 X509v3 Authority Key Identifier: keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/34332e3232352e3138342e302f32322d3234203d3e2039343232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.184.0/22 Signature Algorithm: sha256WithRSAEncryption 67:84:00:e8:39:ac:a0:ae:0c:db:cf:7d:a8:9b:fa:26:f1:2f: fc:9b:02:cc:35:80:08:40:7e:61:46:ea:e0:06:e6:04:7b:ba: df:91:57:b7:ea:a7:00:cf:27:c3:e9:d3:cb:a4:4a:16:42:1d: 8a:91:ba:7f:8c:14:cc:01:45:9a:81:17:d8:b5:c2:3a:66:5b: cb:17:dc:13:0c:a4:4b:04:50:85:8c:1a:21:19:a2:b6:a0:65: cf:50:75:0b:3b:cf:99:51:eb:7c:f7:77:5c:f0:84:aa:b9:f3: 7f:86:0b:07:24:cb:83:8a:47:7c:2c:0d:13:e9:96:4f:f7:07: a4:dd:73:c1:56:1d:d3:f8:ba:89:d0:c1:23:cd:53:bd:28:68: dc:2c:d7:af:6d:38:40:df:0a:a7:c0:d1:56:86:ff:72:97:9e: f5:9a:92:d5:4a:5c:cd:cc:70:a6:ea:88:3a:2b:5a:5b:bb:00: 11:58:32:60:b7:75:75:2f:3f:99:e4:b2:41:9f:0d:40:b1:4e: 47:ce:c0:13:fb:a2:60:14:96:99:d5:d1:e4:08:54:6e:6c:f3: ab:17:71:cf:b5:3e:2b:24:60:29:11:46:f4:b9:25:50:cf:a7: a1:31:ce:3e:5f:5e:bb:4f:c9:c6:89:64:b8:0d:bc:f9:dd:7c: ea:5b:8e:40 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUNsncASBVfOEXVpiQ2CCEXe4ILxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1Njgy NzJEMkYzMzAeFw0yNTA2MDIwMTU5MjBaFw0yNjA2MDEwMjA0MjBaMDMxMTAvBgNV BAMTKDFEMzI1MzZFQzYxMzY0MEE0QjI1OTc4NzRDRUE2NTQzRkU0QjBBQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEkI2+qldMG/qW34NKdSW3SRdL xixtDe7PnhfrLtxBDTLaxlCocV4G95RRCzKHsayDbXH15JFyXh8sddAp3Qv0F1G9 cOpfP6LGj2TPSAminfa2H4eJgCHljwox5t/mJJj9fiyxl/tSi3vhPWK9h04bc7Fn dlmyePVXva+mFnKTGDQ4+FO734uLo0DJ6OXmMzVHWUzbRsshN8ktqOSJewmVbmTW U9PwnSdxEbFFGcm7PdhC93Xoy0VAqDs9d2sVZa7lzDgX/MEBGbfAQ2SxtrnS8JOl QZ6yYOr31Jff020xqIH0PHf6WylHPI9GO3rcSCEic2MkJuTH9fHBAhw+QQ+FAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUHTJTbsYTZApLJZeHTOplQ/5LCrAwHwYDVR0j BBgwFoAUKVzvh823SxpDKH5jDD/laCctLzMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ODdkNzliYS1mYjU1LTQ5YTUtOTY3Yi0xZWRjNzQ5ZDAxMjgvMC8yOTVDRUY4N0NE Qjc0QjFBNDMyODdFNjMwQzNGRTU2ODI3MkQyRjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk1Q0VGODdDREI3NEIxQTQzMjg3RTYzMEMzRkU1NjgyNzJE MkYzMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE4N2Q3OWJhLWZiNTUtNDlhNS05 NjdiLTFlZGM3NDlkMDEyOC8wLzM0MzMyZTMyMzIzNTJlMzEzODM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzNDMyMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr4bgwDQYJKoZIhvcN AQELBQADggEBAGeEAOg5rKCuDNvPfaib+ibxL/ybAsw1gAhAfmFG6uAG5gR7ut+R V7fqpwDPJ8Pp08ukShZCHYqRun+MFMwBRZqBF9i1wjpmW8sX3BMMpEsEUIWMGiEZ oragZc9QdQs7z5lR63z3d1zwhKq583+GCwcky4OKR3wsDRPplk/3B6Tdc8FWHdP4 uonQwSPNU70oaNws169tOEDfCqfA0VaG/3KXnvWaktVKXM3McKbqiDorWlu7ABFY MmC3dXUvP5nkskGfDUCxTkfOwBP7omAUlpnV0eQIVG5s86sXcc+1PiskYCkRRvS5 JVDPp6Exzj5fXrtPycaJZLgNvPndfOpbjkA= -----END CERTIFICATE-----Generated at Fri Jun 6 16:50:30 2025 by rpki-client