$ rpki-client -vvf repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/34332e3232392e32302e302f32322d3234203d3e203233393439.roa File: 34332e3232392e32302e302f32322d3234203d3e203233393439.roa (raw, json) Hash identifier: eFCW4mBhrgv32rd+aPVfExuT3QEaHahKTCkeKrhzQUs= Subject key identifier: D1:A6:E8:AD:D6:33:31:48:33:64:88:AB:44:30:88:ED:C7:8D:2D:EB Certificate issuer: /CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Certificate serial: 0ED3DC59DA3CAFA2786CA25DFA95EE2804228BE8 Authority key identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/34332e3232392e32302e302f32322d3234203d3e203233393439.roa Signing time: Mon 02 Jun 2025 01:02:59 +0000 ROA not before: Mon 02 Jun 2025 00:57:59 +0000 ROA not after: Mon 01 Jun 2026 01:02:59 +0000 asID: 23949 IP address blocks: 43.229.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 10:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d3:dc:59:da:3c:af:a2:78:6c:a2:5d:fa:95:ee:28:04:22:8b:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Validity Not Before: Jun 2 00:57:59 2025 GMT Not After : Jun 1 01:02:59 2026 GMT Subject: CN=D1A6E8ADD6333148336488AB443088EDC78D2DEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2f:ad:62:2d:61:b0:30:a5:54:d5:d3:94:e9: 6e:33:41:e3:78:dc:5a:b9:ec:95:3a:b8:52:08:40: 7d:58:10:d9:67:42:ed:30:5d:63:72:02:0c:92:11: 0c:d4:e2:d4:b4:ff:02:a6:b2:47:dc:8a:2e:43:6f: ae:44:0d:c0:af:ca:f6:8a:41:48:fc:bc:6c:2d:94: 95:ad:94:6b:28:03:7c:ff:96:48:fa:b2:5f:3b:31: f1:55:b6:81:e3:98:5b:4f:46:80:65:88:cc:85:95: 5b:07:c4:18:30:cf:a3:bf:83:2c:27:9c:11:da:45: 87:fb:72:44:75:a7:6e:65:9d:36:53:e7:e4:e2:33: 13:03:d4:f6:ef:5e:e7:ef:53:e4:1b:bb:b1:46:f2: 0e:9d:d6:43:5c:05:ae:2d:40:39:ad:39:ca:8f:63: f6:9e:45:af:4f:33:c3:53:c2:7c:55:43:3e:88:90: eb:91:8c:0b:17:f4:16:4c:f9:b3:05:23:7a:92:f3: 26:41:8c:b3:3e:06:5b:f8:31:ce:3b:2f:a2:7b:70: aa:45:17:2b:0a:fc:b6:be:46:b8:e3:73:97:64:90: 94:bf:34:38:1d:8c:90:2f:b1:c6:f5:c9:6c:fc:ba: 95:70:23:ef:3a:e7:8a:ad:32:d3:12:55:fc:dc:5e: 29:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A6:E8:AD:D6:33:31:48:33:64:88:AB:44:30:88:ED:C7:8D:2D:EB X509v3 Authority Key Identifier: keyid:8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/34332e3232392e32302e302f32322d3234203d3e203233393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.20.0/22 Signature Algorithm: sha256WithRSAEncryption aa:f3:97:34:1e:21:ec:be:ae:4a:f6:df:8c:46:ee:e3:b7:87: c6:fd:09:70:0d:e8:e7:30:dc:c1:89:76:49:7e:ab:b0:dc:8a: e4:03:0a:5e:48:5e:96:47:71:7d:ed:3f:e0:8f:86:2c:08:09: 8f:06:49:30:12:d1:89:24:6d:b4:f0:80:47:b6:9f:f3:4a:c5: d3:ee:78:f8:3d:85:07:01:34:47:e4:ce:8b:99:a4:c7:8d:dd: 22:d3:77:ca:50:98:59:50:7b:51:9f:c3:b5:63:39:a1:ab:7c: 09:04:49:00:2c:71:06:57:93:ad:54:99:4a:02:4f:56:26:9d: dd:2c:fe:f0:cb:f1:62:2b:7c:28:8f:ad:da:20:f0:8f:ba:d9: 63:df:b8:92:ef:fc:19:4e:e3:b7:63:65:5a:fc:5b:b5:21:d9: 53:1e:37:36:7c:bb:3f:9a:c1:40:16:ec:fb:c9:34:1f:0c:9f: 94:65:9f:12:e1:af:5f:bc:fc:71:d0:1f:ce:c6:3f:2b:28:5e: 5a:a1:2c:9d:c0:e4:c9:09:03:83:8a:9e:eb:69:b3:21:84:91: 17:d0:57:59:aa:56:e2:4a:7c:be:0c:f2:bc:a2:ab:23:7b:35: cb:1d:37:b9:52:d7:b2:19:1a:36:f2:4c:21:3b:f8:22:f6:44: 10:20:6f:bd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUDtPcWdo8r6J4bKJd+pXuKAQii+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0 NEY3RjRFNTAeFw0yNTA2MDIwMDU3NTlaFw0yNjA2MDEwMTAyNTlaMDMxMTAvBgNV BAMTKEQxQTZFOEFERDYzMzMxNDgzMzY0ODhBQjQ0MzA4OEVEQzc4RDJERUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1L61iLWGwMKVU1dOU6W4zQeN4 3Fq57JU6uFIIQH1YENlnQu0wXWNyAgySEQzU4tS0/wKmskfcii5Db65EDcCvyvaK QUj8vGwtlJWtlGsoA3z/lkj6sl87MfFVtoHjmFtPRoBliMyFlVsHxBgwz6O/gywn nBHaRYf7ckR1p25lnTZT5+TiMxMD1PbvXufvU+Qbu7FG8g6d1kNcBa4tQDmtOcqP Y/aeRa9PM8NTwnxVQz6IkOuRjAsX9BZM+bMFI3qS8yZBjLM+Blv4Mc47L6J7cKpF FysK/La+Rrjjc5dkkJS/NDgdjJAvscb1yWz8upVwI+8654qtMtMSVfzcXikDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0abordYzMUgzZIirRDCI7ceNLeswHwYDVR0j BBgwFoAUj7F3roNSbXE8EkDVzvr3OET39OUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YjY5ODIyYy0yZTIyLTQ4YmUtOGJhMi02MzRmNTgyYzJlY2IvMC84RkIxNzdBRTgz NTI2RDcxM0MxMjQwRDVDRUZBRjczODQ0RjdGNEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0NEY3 RjRFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiNjk4MjJjLTJlMjItNDhiZS04 YmEyLTYzNGY1ODJjMmVjYi8wLzM0MzMyZTMyMzIzOTJlMzIzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMyMzMzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr5RQwDQYJKoZIhvcN AQELBQADggEBAKrzlzQeIey+rkr234xG7uO3h8b9CXAN6Ocw3MGJdkl+q7DciuQD Cl5IXpZHcX3tP+CPhiwICY8GSTAS0YkkbbTwgEe2n/NKxdPuePg9hQcBNEfkzouZ pMeN3SLTd8pQmFlQe1Gfw7VjOaGrfAkESQAscQZXk61UmUoCT1Ymnd0s/vDL8WIr fCiPrdog8I+62WPfuJLv/BlO47djZVr8W7Uh2VMeNzZ8uz+awUAW7PvJNB8Mn5Rl nxLhr1+8/HHQH87GPysoXlqhLJ3A5MkJA4OKnutpsyGEkRfQV1mqVuJKfL4M8ryi qyN7NcsdN7lS17IZGjbyTCE7+CL2RBAgb70= -----END CERTIFICATE-----Generated at Wed Jul 2 06:07:08 2025 by rpki-client