$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3234203d3e203435373235.roa File: 34332e3233302e3135322e302f32322d3234203d3e203435373235.roa (raw, json) Hash identifier: +4n6/TF4aeSEpR29DkcOnbNK9Y34aOX1PIvKhjQ5Hno= Subject key identifier: FB:6A:42:57:49:88:CA:BD:61:41:47:DE:D2:6C:97:0D:11:56:27:2D Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 689860A7BD8BB7C106AEB6CBE0B9811124B32695 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3234203d3e203435373235.roa Signing time: Tue 27 May 2025 10:00:00 +0000 ROA not before: Tue 27 May 2025 09:55:00 +0000 ROA not after: Tue 26 May 2026 10:00:00 +0000 asID: 45725 IP address blocks: 43.230.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 08:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:98:60:a7:bd:8b:b7:c1:06:ae:b6:cb:e0:b9:81:11:24:b3:26:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: May 27 09:55:00 2025 GMT Not After : May 26 10:00:00 2026 GMT Subject: CN=FB6A42574988CABD614147DED26C970D1156272D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9d:55:54:e4:31:36:c0:d5:61:3d:f8:01:bb: 15:30:d8:36:31:da:1d:c2:5c:40:9f:5f:41:bf:09: 98:6e:d1:a8:a9:b3:a0:f4:89:01:7a:2d:04:f8:85: 69:e0:6f:e1:c7:90:f8:b7:6f:53:66:7f:8e:a7:98: f7:fb:ed:fb:e5:5a:3f:45:c1:c7:f6:c0:7c:98:c9: 02:c8:62:1f:9d:d6:4e:1a:fe:7f:ee:95:ab:c2:41: 6d:b2:45:49:14:c3:59:cc:37:26:aa:54:6b:32:c2: 13:6d:e0:5c:b3:5e:e3:a5:3a:bf:23:7f:c4:00:e7: 5f:c4:99:14:9a:f9:ef:5f:1e:f8:38:46:65:be:f9: 33:d9:d4:d4:52:72:45:5f:de:2e:95:ee:a8:a5:bf: 1d:db:f8:c8:19:4f:aa:cd:99:fd:8c:b6:da:e7:3a: d6:a3:37:90:81:49:4a:26:95:09:c3:0a:c7:99:4a: ab:dd:6a:74:4e:26:3c:05:5a:8b:4a:0e:f5:02:f3: 47:cf:78:3f:93:70:3e:67:d5:9e:03:1d:dd:30:1c: 0d:7d:e0:bf:6f:c1:57:f4:70:a8:95:72:0a:54:c2: a2:96:6a:9f:32:e9:8e:b0:06:77:c4:d0:aa:b5:db: 1f:9a:2e:b7:05:d3:4f:bd:72:02:6b:ee:91:aa:51: c1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:6A:42:57:49:88:CA:BD:61:41:47:DE:D2:6C:97:0D:11:56:27:2D X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32322d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.152.0/22 Signature Algorithm: sha256WithRSAEncryption d0:6b:09:bc:7f:dc:8f:12:c3:3c:4f:8c:88:c9:2e:d5:91:a5: d3:3d:9b:a3:3e:53:64:9e:bb:e9:a6:bd:7e:cb:2e:38:08:04: 3b:4a:fd:d2:43:ae:4a:2c:c3:fa:dd:44:6f:9a:b0:96:87:b9: 68:2b:0d:1d:33:fa:72:62:28:d6:92:86:87:9c:15:28:e1:0c: c6:5b:9f:fa:70:2c:df:62:de:66:1d:25:dd:88:6a:06:9c:86: b1:be:12:3f:5f:0d:7f:f8:f2:6a:f0:26:cc:09:3a:8b:b9:90: ff:88:f2:21:fa:76:ab:38:d6:c7:73:fc:af:f4:e4:f2:45:dd: f7:cd:15:b7:f1:c2:1c:11:ea:4e:07:fb:d6:e3:cf:cc:83:6d: 64:35:80:c5:fa:b6:83:11:94:9f:b6:53:e3:9c:97:0a:78:a2: 6d:ec:12:42:cd:e4:66:47:f3:e8:4c:af:04:7e:19:c2:ee:86: 1a:88:70:28:31:1c:18:47:a8:d7:85:ae:dd:9c:8d:92:76:71: 33:f2:27:6f:d5:bb:2f:5b:b7:29:7e:00:7b:4a:ae:11:4d:4f: ed:1c:95:cd:fb:7a:2d:9e:a7:ca:f4:de:ad:90:65:1c:17:5b: 7e:d3:12:13:05:41:17:01:9d:cc:02:1f:37:09:57:6f:d3:be: 5f:40:8f:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaJhgp72Lt8EGrrbL4LmBESSzJpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA1MjcwOTU1MDBaFw0yNjA1MjYxMDAwMDBaMDMxMTAvBgNV BAMTKEZCNkE0MjU3NDk4OENBQkQ2MTQxNDdERUQyNkM5NzBEMTE1NjI3MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGnVVU5DE2wNVhPfgBuxUw2DYx 2h3CXECfX0G/CZhu0aips6D0iQF6LQT4hWngb+HHkPi3b1Nmf46nmPf77fvlWj9F wcf2wHyYyQLIYh+d1k4a/n/ulavCQW2yRUkUw1nMNyaqVGsywhNt4FyzXuOlOr8j f8QA51/EmRSa+e9fHvg4RmW++TPZ1NRSckVf3i6V7qilvx3b+MgZT6rNmf2Mttrn OtajN5CBSUomlQnDCseZSqvdanROJjwFWotKDvUC80fPeD+TcD5n1Z4DHd0wHA19 4L9vwVf0cKiVcgpUwqKWap8y6Y6wBnfE0Kq12x+aLrcF00+9cgJr7pGqUcEDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+2pCV0mIyr1hQUfe0myXDRFWJy0wHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzM0MzMyZTMyMzMzMDJlMzEzNTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAivmmDANBgkqhkiG 9w0BAQsFAAOCAQEA0GsJvH/cjxLDPE+MiMku1ZGl0z2boz5TZJ676aa9fssuOAgE O0r90kOuSizD+t1Eb5qwloe5aCsNHTP6cmIo1pKGh5wVKOEMxluf+nAs32LeZh0l 3YhqBpyGsb4SP18Nf/jyavAmzAk6i7mQ/4jyIfp2qzjWx3P8r/Tk8kXd980Vt/HC HBHqTgf71uPPzINtZDWAxfq2gxGUn7ZT45yXCniibewSQs3kZkfz6EyvBH4Zwu6G GohwKDEcGEeo14Wu3ZyNknZxM/Inb9W7L1u3KX4Ae0quEU1P7RyVzft6LZ6nyvTe rZBlHBdbftMSEwVBFwGdzAIfNwlXb9O+X0CPfg== -----END CERTIFICATE-----Generated at Fri Jun 6 16:51:53 2025 by rpki-client