$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa File: 34332e3233312e3132382e302f32332d3233203d3e203338373838.roa (raw, json) Hash identifier: HFx27am61y/dC1xdTadXPgOw5A9a+PEjL0futSZShAU= Subject key identifier: CF:1A:24:83:E4:07:8A:45:35:71:6D:DE:37:B1:21:31:81:AA:E0:2C Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 156347F6AC1CB273B39B0A9050DB8F3870DC94F1 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa Signing time: Mon 02 Jun 2025 02:05:03 +0000 ROA not before: Mon 02 Jun 2025 02:00:03 +0000 ROA not after: Mon 01 Jun 2026 02:05:03 +0000 asID: 38788 IP address blocks: 43.231.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:63:47:f6:ac:1c:b2:73:b3:9b:0a:90:50:db:8f:38:70:dc:94:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jun 2 02:00:03 2025 GMT Not After : Jun 1 02:05:03 2026 GMT Subject: CN=CF1A2483E4078A4535716DDE37B1213181AAE02C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c7:e8:17:e5:ba:a3:d1:f9:cd:eb:86:53:bb: 6e:e9:41:3a:c0:78:58:23:fd:5d:9e:f7:d4:3f:f5: 10:db:86:c1:e1:da:ea:69:1d:7f:3e:99:c6:fe:02: 69:d8:f9:60:04:19:bd:e6:87:f4:7c:3d:1d:df:2e: f7:09:2d:5d:82:f7:60:23:a4:61:3d:89:1a:31:5b: 59:da:bd:fd:12:d6:28:94:88:74:ba:6f:d3:91:f9: 06:82:00:60:f5:20:89:a4:37:0d:7a:b7:08:03:65: f5:c9:cf:9d:b1:dc:52:23:cf:24:14:13:9d:1c:a8: 87:e6:a1:d3:a5:fb:da:93:40:b7:79:e0:d6:0c:d2: c7:df:40:71:bf:71:66:71:ea:45:4f:5b:5b:65:92: 5d:35:f8:0e:a5:98:b2:ce:2f:b6:03:98:5c:dd:46: 05:87:8d:43:51:ba:b8:d8:97:43:28:d9:22:97:c2: c0:f0:cb:d6:6f:e5:3a:8a:fa:86:57:dc:79:6f:c9: 30:a0:80:ad:1f:cf:d4:43:37:a6:65:2b:cb:53:52: 96:ab:34:61:64:bd:fa:3e:dd:1a:a9:69:aa:9a:c1: 0f:e6:96:66:ff:6b:33:d2:ca:61:09:6a:76:64:f6: 4a:2a:87:d7:1a:97:69:27:22:bd:d1:55:85:81:3b: c9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:1A:24:83:E4:07:8A:45:35:71:6D:DE:37:B1:21:31:81:AA:E0:2C X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233312e3132382e302f32332d3233203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.128.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:d0:18:2e:3c:53:6e:b5:6e:79:98:74:f0:8e:8a:9a:8d:57: 5d:1b:0f:ed:e3:bf:58:f5:44:29:72:63:f2:38:aa:5e:8b:4a: 86:a2:b1:f6:d1:cc:2d:e2:da:01:8c:c0:f8:5a:2d:8c:bb:f2: db:e7:8e:a4:b2:51:cc:f2:ad:2f:aa:40:fd:02:9e:41:5b:d4: c9:bd:4b:17:10:e7:78:e1:3b:13:97:6a:38:73:c1:df:83:46: 61:15:80:98:1d:f5:2a:f8:e4:a9:9e:b8:c6:07:46:ac:94:d8: 3e:b5:82:af:61:db:6d:f1:b5:d1:09:eb:cc:c0:ca:b6:b1:17: 43:cd:fb:98:e2:e6:b0:7b:9e:d6:5c:ee:75:70:50:ad:92:16: 66:01:b6:58:f9:38:2e:7c:88:af:9e:62:35:c0:1f:49:9a:c8: de:f8:07:2e:57:8a:e1:de:b2:fe:23:0c:31:f3:9a:a2:d4:9f: 62:89:96:65:66:51:bc:2b:e4:15:9c:80:de:de:82:01:d4:da: 09:4f:d9:c8:8f:96:37:8f:29:dc:2b:7b:b0:fa:15:47:8d:2e: 04:69:41:6a:ca:3e:2c:6e:7b:65:05:c7:8c:bb:b5:66:be:24: 31:08:94:cb:f4:96:cb:13:c8:32:a3:55:1c:3f:78:20:f7:25: fa:48:ca:19 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFWNH9qwcsnOzmwqQUNuPOHDclPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNTA2MDIwMjAwMDNaFw0yNjA2MDEwMjA1MDNaMDMxMTAvBgNV BAMTKENGMUEyNDgzRTQwNzhBNDUzNTcxNkRERTM3QjEyMTMxODFBQUUwMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkx+gX5bqj0fnN64ZTu27pQTrA eFgj/V2e99Q/9RDbhsHh2uppHX8+mcb+AmnY+WAEGb3mh/R8PR3fLvcJLV2C92Aj pGE9iRoxW1navf0S1iiUiHS6b9OR+QaCAGD1IImkNw16twgDZfXJz52x3FIjzyQU E50cqIfmodOl+9qTQLd54NYM0sffQHG/cWZx6kVPW1tlkl01+A6lmLLOL7YDmFzd RgWHjUNRurjYl0Mo2SKXwsDwy9Zv5TqK+oZX3HlvyTCggK0fz9RDN6ZlK8tTUpar NGFkvfo+3RqpaaqawQ/mlmb/azPSymEJanZk9koqh9cal2knIr3RVYWBO8mDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzxokg+QHikU1cW3eN7EhMYGq4CwwHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0ZTJiZjA5LTVmNDItNGI2NS1h NDJkLTYzZDA3OTZkMjA2Yy8wLzM0MzMyZTMyMzMzMTJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvngDANBgkqhkiG 9w0BAQsFAAOCAQEAjNAYLjxTbrVueZh08I6Kmo1XXRsP7eO/WPVEKXJj8jiqXotK hqKx9tHMLeLaAYzA+FotjLvy2+eOpLJRzPKtL6pA/QKeQVvUyb1LFxDneOE7E5dq OHPB34NGYRWAmB31KvjkqZ64xgdGrJTYPrWCr2HbbfG10QnrzMDKtrEXQ837mOLm sHue1lzudXBQrZIWZgG2WPk4LnyIr55iNcAfSZrI3vgHLleK4d6y/iMMMfOaotSf YomWZWZRvCvkFZyA3t6CAdTaCU/ZyI+WN48p3Ct7sPoVR40uBGlBaso+LG57ZQXH jLu1Zr4kMQiUy/SWyxPIMqNVHD94IPcl+kjKGQ== -----END CERTIFICATE-----Generated at Sat Jun 7 14:05:36 2025 by rpki-client