$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32332d3233203d3e203435373235.roa File: 34332e3233302e3135322e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: xHPJ7HI+304D7YAd37d8j6skpjceFwNnjTWGzXVwcKM= Subject key identifier: 03:A4:66:7F:50:C6:1A:71:70:60:EF:7F:D5:43:C6:BA:47:1F:BE:D5 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 1195F1A37489F0619CEFFE8FE87A294298FBE542 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32332d3233203d3e203435373235.roa Signing time: Sun 06 Apr 2025 14:22:08 +0000 ROA not before: Sun 06 Apr 2025 14:17:08 +0000 ROA not after: Sun 05 Apr 2026 14:22:08 +0000 asID: 45725 IP address blocks: 43.230.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 16:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:95:f1:a3:74:89:f0:61:9c:ef:fe:8f:e8:7a:29:42:98:fb:e5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 14:17:08 2025 GMT Not After : Apr 5 14:22:08 2026 GMT Subject: CN=03A4667F50C61A717060EF7FD543C6BA471FBED5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6b:06:21:ed:c9:35:a3:11:6f:19:32:5b:2d: 63:0a:ee:ff:9f:43:cf:f9:b7:0a:a3:71:08:c5:0e: 1b:36:42:02:39:ca:bc:4f:a5:5d:59:51:e3:e0:3e: 18:6e:11:e1:ba:1a:42:e8:59:26:76:e0:4c:70:c2: 40:61:f6:25:c0:7b:be:fd:0d:2f:34:83:eb:0b:02: 4b:83:b5:c2:c9:c6:89:44:d5:35:27:63:86:f4:f0: 7a:bd:68:99:bb:6f:1c:15:9f:a0:3f:97:76:73:a0: 04:36:e6:f3:6c:09:2b:b5:ed:52:8a:4c:a1:7a:cd: cb:f0:28:2b:d8:9a:e0:9a:30:34:fd:29:f2:61:68: 9e:41:c8:d3:d1:37:c6:4f:bd:d2:8a:91:53:25:56: ab:90:a1:bf:d0:45:fd:87:50:16:ff:a7:67:05:f7: e9:0a:2d:ed:68:72:9e:f1:ec:4a:0d:09:1f:ce:72: 58:66:a9:ef:72:a0:cb:0e:2a:eb:3b:ba:7a:ad:87: 00:b4:9c:9d:74:da:15:c7:5d:33:39:44:a5:47:62: 77:56:df:28:d1:30:71:1f:11:e1:29:3f:55:12:45: 3b:0b:c5:d2:b5:84:b4:c0:04:f2:6d:54:57:01:04: 74:5b:b3:34:bc:2c:2c:a0:69:59:83:b6:eb:10:e8: e0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A4:66:7F:50:C6:1A:71:70:60:EF:7F:D5:43:C6:BA:47:1F:BE:D5 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135322e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.152.0/23 Signature Algorithm: sha256WithRSAEncryption 32:fd:45:ec:36:56:5c:fb:e0:22:32:04:96:72:f8:1e:1b:c7: 53:bb:28:79:fb:5d:eb:2c:81:4a:15:8c:ae:2b:86:9c:f3:cc: 85:b7:ce:6b:e7:cd:31:63:f7:4f:1b:50:0e:2b:4d:27:7d:86: 61:08:90:25:91:fd:89:d1:f1:20:08:fa:0d:03:93:1d:06:31: d4:f2:eb:25:25:4e:f5:bf:d3:6d:c6:f0:ac:b4:4e:aa:d7:4b: f1:ae:1a:a6:ee:0b:07:b6:62:e6:55:89:43:54:e2:4b:16:c8: 22:3a:ae:29:c4:3c:80:30:60:c2:f8:68:d6:8f:f5:57:23:bd: d1:34:88:de:10:34:cc:6f:e5:ba:22:e4:a2:db:59:4e:67:2d: 6f:c0:0a:fe:1d:43:20:07:72:ea:a5:3f:3d:52:19:11:c7:e2: f9:b5:67:6b:d4:d0:c1:d2:21:1c:16:0e:c8:ac:68:8c:23:41: 96:33:e8:3c:e2:d8:cd:f9:cf:8a:85:1b:e9:ff:67:e9:4d:3e: cb:98:9c:d8:ce:e2:05:2a:7b:a6:a1:c3:0f:90:5c:44:b9:56: c1:d4:43:c0:cb:71:f1:9d:1a:f1:55:86:cc:f7:00:9d:46:8f: e8:d9:42:66:c7:e9:a1:62:e8:2e:36:f3:29:36:a1:d2:f6:ba: b7:6e:f7:7d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEZXxo3SJ8GGc7/6P6HopQpj75UIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNDE3MDhaFw0yNjA0MDUxNDIyMDhaMDMxMTAvBgNV BAMTKDAzQTQ2NjdGNTBDNjFBNzE3MDYwRUY3RkQ1NDNDNkJBNDcxRkJFRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbawYh7ck1oxFvGTJbLWMK7v+f Q8/5twqjcQjFDhs2QgI5yrxPpV1ZUePgPhhuEeG6GkLoWSZ24ExwwkBh9iXAe779 DS80g+sLAkuDtcLJxolE1TUnY4b08Hq9aJm7bxwVn6A/l3ZzoAQ25vNsCSu17VKK TKF6zcvwKCvYmuCaMDT9KfJhaJ5ByNPRN8ZPvdKKkVMlVquQob/QRf2HUBb/p2cF 9+kKLe1ocp7x7EoNCR/Oclhmqe9yoMsOKus7unqthwC0nJ102hXHXTM5RKVHYndW 3yjRMHEfEeEpP1USRTsLxdK1hLTABPJtVFcBBHRbszS8LCygaVmDtusQ6OCjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUA6Rmf1DGGnFwYO9/1UPGukcfvtUwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzM0MzMyZTMyMzMzMDJlMzEzNTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvmmDANBgkqhkiG 9w0BAQsFAAOCAQEAMv1F7DZWXPvgIjIElnL4HhvHU7soeftd6yyBShWMriuGnPPM hbfOa+fNMWP3TxtQDitNJ32GYQiQJZH9idHxIAj6DQOTHQYx1PLrJSVO9b/Tbcbw rLROqtdL8a4apu4LB7Zi5lWJQ1TiSxbIIjquKcQ8gDBgwvho1o/1VyO90TSI3hA0 zG/luiLkottZTmctb8AK/h1DIAdy6qU/PVIZEcfi+bVna9TQwdIhHBYOyKxojCNB ljPoPOLYzfnPioUb6f9n6U0+y5ic2M7iBSp7pqHDD5BcRLlWwdRDwMtx8Z0a8VWG zPcAnUaP6NlCZsfpoWLoLjbzKTah0va6t273fQ== -----END CERTIFICATE-----Generated at Sun Apr 6 23:55:16 2025 by rpki-client