$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa File: 34332e3234302e3232392e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: yvaOfg6Fr/GxFO8TOScTqDTuJgLz6Cnypo5ypIUPdJ4= Subject key identifier: F5:82:10:14:67:5A:E1:4A:56:F5:6B:79:3F:79:3E:FB:D1:6C:5D:BA Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 5065175AEAD95D8AF9DF96FE834F90CF9E25F5C3 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa Signing time: Mon 02 Jun 2025 01:03:10 +0000 ROA not before: Mon 02 Jun 2025 00:58:10 +0000 ROA not after: Mon 01 Jun 2026 01:03:10 +0000 asID: 58552 IP address blocks: 43.240.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:65:17:5a:ea:d9:5d:8a:f9:df:96:fe:83:4f:90:cf:9e:25:f5:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jun 2 00:58:10 2025 GMT Not After : Jun 1 01:03:10 2026 GMT Subject: CN=F5821014675AE14A56F56B793F793EFBD16C5DBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b5:d4:b3:07:6e:9e:cd:6e:fd:94:f9:95:aa: cd:44:ad:81:64:ba:e6:56:76:19:82:87:1f:68:6c: d5:e8:6a:32:91:a1:46:07:8d:0a:7b:4a:f9:5a:c1: 73:0c:16:b2:b5:19:c8:2b:66:18:76:c8:f2:52:6d: 3b:75:d4:1c:21:28:b0:71:22:21:dc:e2:b4:76:33: f2:c9:45:1a:27:ef:41:fa:af:24:38:14:00:63:bb: fc:62:dc:a9:1f:fd:47:9b:b9:6e:88:6b:03:f9:5c: ce:29:6a:a9:36:de:6a:92:04:19:7e:4a:8c:4e:81: 82:f2:4e:18:51:63:b2:be:09:82:5a:8e:43:a7:d6: b2:9d:7c:26:4e:6b:f7:8f:dc:95:d7:68:a1:35:86: f0:20:a9:72:5b:c1:54:35:43:65:cf:53:ba:b2:27: 97:1a:4b:46:7d:17:95:f6:5b:5f:d2:e4:b5:bb:ce: d8:5f:96:74:d8:a6:39:dd:cd:ea:0e:54:42:fd:14: c0:09:c6:b8:eb:a3:7d:79:1f:48:8a:7e:9a:a6:d6: c6:cc:70:62:84:63:9d:f8:8d:07:d8:f6:fb:01:8e: 70:16:04:0e:76:bd:7b:4a:f9:46:7f:5a:a3:f9:ce: 4a:85:15:88:c5:cc:24:9b:9d:96:95:a2:18:8a:b2: 54:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:82:10:14:67:5A:E1:4A:56:F5:6B:79:3F:79:3E:FB:D1:6C:5D:BA X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3232392e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.229.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:58:53:e9:25:e4:4a:95:5c:aa:54:25:ab:96:51:e5:f1:76: 6a:b8:28:4c:07:53:02:2d:2e:a3:65:dc:33:27:17:45:ed:62: 95:12:5f:da:62:fa:48:e5:2f:d0:b0:99:ea:b2:e6:39:6d:f6: dc:e8:18:4d:46:02:9e:4c:c9:1c:d2:ef:9d:0e:6e:26:70:b9: 98:07:fa:26:46:72:61:05:9e:01:7e:9a:a6:3e:dc:7e:52:57: a8:58:bd:4b:8e:0e:3b:a9:79:e6:c7:61:34:59:e6:01:6c:52: 2d:bc:63:2a:4d:0f:60:08:61:0f:ec:d2:d7:58:3a:b5:25:f6: 5e:2b:da:4c:1a:6c:54:b3:e9:a9:e8:3e:ea:33:01:97:64:5b: b3:c4:bd:66:3e:cb:d1:d4:21:8f:a3:1b:9b:3c:8b:e1:34:4e: 76:61:21:3d:e7:c7:d4:62:10:2d:f9:76:8c:88:a8:a9:3c:38: 2c:fc:2f:38:90:0b:2b:ef:9d:3d:0c:36:2f:45:cc:f5:1f:49: 3e:fb:e5:f1:c7:79:6c:47:49:15:9a:d9:24:5a:f9:ba:a2:33: fe:ae:a8:fb:f1:ac:b5:c2:3a:c0:27:b0:43:d9:23:54:04:4f: 98:44:09:22:01:cc:79:0f:cd:49:33:bb:d2:de:13:b4:fb:97: bf:69:05:d5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUGUXWurZXYr535b+g0+Qz54l9cMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA2MDIwMDU4MTBaFw0yNjA2MDEwMTAzMTBaMDMxMTAvBgNV BAMTKEY1ODIxMDE0Njc1QUUxNEE1NkY1NkI3OTNGNzkzRUZCRDE2QzVEQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAtdSzB26ezW79lPmVqs1ErYFk uuZWdhmChx9obNXoajKRoUYHjQp7SvlawXMMFrK1GcgrZhh2yPJSbTt11BwhKLBx IiHc4rR2M/LJRRon70H6ryQ4FABju/xi3Kkf/UebuW6IawP5XM4paqk23mqSBBl+ SoxOgYLyThhRY7K+CYJajkOn1rKdfCZOa/eP3JXXaKE1hvAgqXJbwVQ1Q2XPU7qy J5caS0Z9F5X2W1/S5LW7zthflnTYpjndzeoOVEL9FMAJxrjro315H0iKfpqm1sbM cGKEY534jQfY9vsBjnAWBA52vXtK+UZ/WqP5zkqFFYjFzCSbnZaVohiKslQlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9YIQFGda4UpW9Wt5P3k++9FsXbowHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5TANBgkqhkiG 9w0BAQsFAAOCAQEAO1hT6SXkSpVcqlQlq5ZR5fF2argoTAdTAi0uo2XcMycXRe1i lRJf2mL6SOUv0LCZ6rLmOW323OgYTUYCnkzJHNLvnQ5uJnC5mAf6JkZyYQWeAX6a pj7cflJXqFi9S44OO6l55sdhNFnmAWxSLbxjKk0PYAhhD+zS11g6tSX2XivaTBps VLPpqeg+6jMBl2Rbs8S9Zj7L0dQhj6MbmzyL4TROdmEhPefH1GIQLfl2jIioqTw4 LPwvOJALK++dPQw2L0XM9R9JPvvl8cd5bEdJFZrZJFr5uqIz/q6o+/GstcI6wCew Q9kjVARPmEQJIgHMeQ/NSTO70t4TtPuXv2kF1Q== -----END CERTIFICATE-----Generated at Sun Jun 8 06:35:04 2025 by rpki-client