$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa File: 34332e3233302e3135322e302f32322d3232203d3e203435373235.roa (raw, json) Hash identifier: pO9hy5n7UjW4vxC4PIPIijgfvw5lRU378EbEfDIE6ec= Subject key identifier: 6A:88:58:3A:87:DB:E4:A6:4E:10:52:6A:C9:58:A5:98:89:B2:EB:52 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 099564054E30FFFC2412352642F9857541C23120 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa Signing time: Sun 06 Apr 2025 14:21:57 +0000 ROA not before: Sun 06 Apr 2025 14:16:57 +0000 ROA not after: Sun 05 Apr 2026 14:21:57 +0000 asID: 45725 IP address blocks: 43.230.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 21:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:95:64:05:4e:30:ff:fc:24:12:35:26:42:f9:85:75:41:c2:31:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 14:16:57 2025 GMT Not After : Apr 5 14:21:57 2026 GMT Subject: CN=6A88583A87DBE4A64E10526AC958A59889B2EB52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9d:3d:ae:76:8e:f0:1b:0d:f9:f4:0d:5c:97: de:83:f8:cf:5c:90:45:21:5d:55:c0:94:15:be:6e: 57:b7:18:cb:78:16:5b:74:5e:89:39:98:81:6b:b1: 56:1a:ef:f8:7f:da:6a:6d:e7:25:79:6b:6b:31:e2: c4:43:39:d1:ce:e0:11:2c:49:5d:3b:e4:32:94:f3: 48:7d:78:4a:90:10:78:9b:08:f1:25:f6:f1:84:ed: 1d:09:d2:73:96:b3:f0:ba:e6:2d:8c:e9:48:6f:95: 84:ae:1d:3b:48:e7:6f:d1:4c:d5:2e:e7:32:fe:8d: 40:a2:c5:76:d3:d6:2b:27:d1:46:69:bd:eb:4e:b9: aa:a1:fb:5d:94:98:88:52:21:de:0f:5d:d3:1f:f4: f0:13:ae:f4:13:48:41:b8:07:be:fe:7e:dd:0b:5d: b9:7b:cc:99:f7:46:3a:8b:c1:cb:2a:9c:fc:0f:ed: 05:ce:ff:e9:26:4f:9b:25:dd:bf:d9:1f:fa:e5:14: c0:a4:6e:78:3c:98:18:aa:7b:ac:cc:30:98:00:40: cd:3e:0a:ea:67:60:4c:f1:ba:d7:60:28:26:9a:df: 91:cc:68:1b:cf:28:4a:d7:77:34:2e:29:40:ea:21: 07:ae:e4:32:6a:26:72:f7:11:ea:00:58:ef:0c:eb: 45:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:88:58:3A:87:DB:E4:A6:4E:10:52:6A:C9:58:A5:98:89:B2:EB:52 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3232203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.152.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:fe:cc:75:b2:75:8e:5e:64:0b:51:2e:0b:34:7f:cb:5b:e2: e7:40:8f:ed:03:55:ba:a9:10:15:8e:43:52:5b:97:0f:e0:cf: 37:eb:80:0f:08:d1:05:9f:c8:60:21:29:62:e2:e6:13:18:ba: 75:36:30:39:f1:bd:a1:c3:8a:5a:06:28:0f:59:08:6a:b8:3a: 47:99:4d:a8:06:35:5b:01:c5:01:a9:6d:f4:cc:26:cc:bb:04: 7e:a2:92:78:45:42:f6:9e:97:05:f8:94:57:89:0a:dc:96:d7: 39:bb:b9:e6:ac:39:2a:94:2c:ba:2f:3a:8c:41:fc:41:3b:33: 35:9d:12:c3:86:d1:ff:46:3c:8f:d6:6d:63:d9:7f:a4:dd:90: de:c1:21:1a:af:8a:28:de:3d:4b:d0:31:d3:3f:e8:46:da:c9: e5:2e:3e:19:dc:c8:2b:5b:dc:35:22:56:5e:41:8d:e3:f3:59: d0:2b:b1:95:5e:a4:89:d2:eb:e8:12:0c:86:ca:14:43:2e:bb: 4b:f7:52:4f:bd:49:25:42:22:e6:ed:f5:2b:a2:17:61:6e:6f: 7d:13:a4:4e:a9:60:f5:26:ab:f5:10:06:28:cf:fc:dc:0c:bc: 11:82:56:30:da:30:e4:1e:a6:6c:35:cd:00:13:62:8d:b9:51: c4:34:87:b0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCZVkBU4w//wkEjUmQvmFdUHCMSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNDE2NTdaFw0yNjA0MDUxNDIxNTdaMDMxMTAvBgNV BAMTKDZBODg1ODNBODdEQkU0QTY0RTEwNTI2QUM5NThBNTk4ODlCMkVCNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMnT2udo7wGw359A1cl96D+M9c kEUhXVXAlBW+ble3GMt4Flt0Xok5mIFrsVYa7/h/2mpt5yV5a2sx4sRDOdHO4BEs SV075DKU80h9eEqQEHibCPEl9vGE7R0J0nOWs/C65i2M6UhvlYSuHTtI52/RTNUu 5zL+jUCixXbT1isn0UZpvetOuaqh+12UmIhSId4PXdMf9PATrvQTSEG4B77+ft0L Xbl7zJn3RjqLwcsqnPwP7QXO/+kmT5sl3b/ZH/rlFMCkbng8mBiqe6zMMJgAQM0+ CupnYEzxutdgKCaa35HMaBvPKErXdzQuKUDqIQeu5DJqJnL3EeoAWO8M60XFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaohYOofb5KZOEFJqyVilmImy61IwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzM0MzMyZTMyMzMzMDJlMzEzNTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAivmmDANBgkqhkiG 9w0BAQsFAAOCAQEAnP7MdbJ1jl5kC1EuCzR/y1vi50CP7QNVuqkQFY5DUluXD+DP N+uADwjRBZ/IYCEpYuLmExi6dTYwOfG9ocOKWgYoD1kIarg6R5lNqAY1WwHFAalt 9MwmzLsEfqKSeEVC9p6XBfiUV4kK3JbXObu55qw5KpQsui86jEH8QTszNZ0Sw4bR /0Y8j9ZtY9l/pN2Q3sEhGq+KKN49S9Ax0z/oRtrJ5S4+GdzIK1vcNSJWXkGN4/NZ 0CuxlV6kidLr6BIMhsoUQy67S/dST71JJUIi5u31K6IXYW5vfROkTqlg9Sar9RAG KM/83Ay8EYJWMNow5B6mbDXNABNijblRxDSHsA== -----END CERTIFICATE-----Generated at Thu Apr 17 22:43:14 2025 by rpki-client