$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3232203d3e203538343832.roa File: 34332e3235342e3132342e302f32322d3232203d3e203538343832.roa (raw, json) Hash identifier: hBuj8wbQYmHqntGj0o/eUNV+3o0v8DMJLG22gmNYBVk= Subject key identifier: 1B:E8:A7:E1:9B:9F:48:FF:AA:78:B4:AA:BE:17:AB:56:65:8A:95:75 Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 2588D07997A91638CB2D71CBE5D070A8CE8D2590 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3232203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:09:17 +0000 ROA not before: Wed 03 Sep 2025 12:04:17 +0000 ROA not after: Wed 02 Sep 2026 12:09:17 +0000 asID: 58482 IP address blocks: 43.254.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:88:d0:79:97:a9:16:38:cb:2d:71:cb:e5:d0:70:a8:ce:8d:25:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 12:04:17 2025 GMT Not After : Sep 2 12:09:17 2026 GMT Subject: CN=1BE8A7E19B9F48FFAA78B4AABE17AB56658A9575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a1:00:95:ea:60:ed:b7:f8:71:f6:d2:22:f1: 8a:e3:30:71:b0:15:f7:8c:ab:35:48:d0:c8:35:bc: 9d:96:6d:29:ed:e0:9c:3a:ae:23:e4:a2:ed:d7:a2: e1:0b:d8:9b:b4:95:cd:79:28:4f:58:76:15:be:71: d1:a1:22:f9:42:16:fb:ec:19:fc:2e:bc:4b:3d:c5: 31:be:aa:54:89:61:95:5f:0d:d2:73:11:13:f5:eb: f0:88:b8:c1:8a:85:48:07:66:6f:45:3e:9f:13:56: 04:be:e7:0b:29:7b:46:65:6b:72:ac:52:73:6d:24: 1c:44:b7:b3:c0:f0:84:27:0d:bc:32:d1:87:73:4a: 63:2c:55:97:dd:72:80:8c:b2:b0:53:28:1d:aa:f4: 1a:7e:a6:46:0d:08:b8:fb:63:86:15:fc:a7:f1:02: 13:65:57:c0:7c:65:66:ac:68:57:9e:86:1e:f2:79: b2:79:3b:5b:45:56:70:07:60:38:6c:8c:14:b1:98: c3:60:b0:d3:47:4f:1f:49:c0:10:bf:d2:d6:ef:aa: cf:d7:15:18:0e:70:d9:f9:93:ba:26:80:32:15:3d: f2:0c:da:26:e3:e8:6d:33:2a:0e:7d:bb:04:25:85: 60:93:ca:bc:26:d6:e1:25:9f:29:51:0e:a8:43:29: 8f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E8:A7:E1:9B:9F:48:FF:AA:78:B4:AA:BE:17:AB:56:65:8A:95:75 X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3232203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.124.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:16:e9:b9:73:36:23:34:59:63:bd:95:d3:29:1e:01:85:55: df:86:d6:53:8e:50:8f:25:37:2d:46:5b:a8:ad:b5:18:28:d2: 03:00:bd:bc:b5:05:80:5b:4b:c5:63:1f:8b:7c:72:9b:bb:d2: 72:aa:93:6c:20:0f:1f:3e:6e:ab:72:de:24:5e:39:98:c8:c9: 2a:46:a5:e8:10:fe:fe:56:81:35:1e:d0:58:8a:90:54:1d:fb: d8:ed:da:4e:f0:f6:55:10:7e:09:f0:6c:f2:81:4b:0c:38:3d: 3f:28:d0:79:c7:47:35:e5:eb:22:3a:8b:c9:17:1a:ab:14:21: fc:94:d8:c9:b1:b8:b6:48:1d:0a:71:1e:f5:9e:c1:38:da:ba: a1:ab:25:19:20:71:5a:23:39:9c:b5:36:06:13:b3:83:bc:f9: bf:96:cf:ba:de:7d:df:44:c8:e5:64:93:39:ee:a1:e0:8d:46: 7f:94:4e:18:1a:ba:26:1b:e5:9f:3f:f2:29:57:35:37:94:54: 4a:d3:32:c5:7b:37:db:4d:ef:c5:1a:83:1e:fd:f2:2c:96:78: cf:e8:48:4e:dd:1c:17:6f:2d:24:86:ec:ce:51:e4:f9:20:64: 42:2f:4f:02:44:86:cb:a3:60:c2:8b:f9:f6:9d:b8:24:4f:bc: 63:e3:77:d9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJYjQeZepFjjLLXHL5dBwqM6NJZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMjA0MTdaFw0yNjA5MDIxMjA5MTdaMDMxMTAvBgNV BAMTKDFCRThBN0UxOUI5RjQ4RkZBQTc4QjRBQUJFMTdBQjU2NjU4QTk1NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJoQCV6mDtt/hx9tIi8YrjMHGw FfeMqzVI0Mg1vJ2WbSnt4Jw6riPkou3XouEL2Ju0lc15KE9YdhW+cdGhIvlCFvvs GfwuvEs9xTG+qlSJYZVfDdJzERP16/CIuMGKhUgHZm9FPp8TVgS+5wspe0Zla3Ks UnNtJBxEt7PA8IQnDbwy0YdzSmMsVZfdcoCMsrBTKB2q9Bp+pkYNCLj7Y4YV/Kfx AhNlV8B8ZWasaFeehh7yebJ5O1tFVnAHYDhsjBSxmMNgsNNHTx9JwBC/0tbvqs/X FRgOcNn5k7omgDIVPfIM2ibj6G0zKg59uwQlhWCTyrwm1uElnylRDqhDKY8lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUG+in4ZufSP+qeLSqvherVmWKlXUwHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv+fDANBgkqhkiG 9w0BAQsFAAOCAQEAjRbpuXM2IzRZY72V0ykeAYVV34bWU45QjyU3LUZbqK21GCjS AwC9vLUFgFtLxWMfi3xym7vScqqTbCAPHz5uq3LeJF45mMjJKkal6BD+/laBNR7Q WIqQVB372O3aTvD2VRB+CfBs8oFLDDg9PyjQecdHNeXrIjqLyRcaqxQh/JTYybG4 tkgdCnEe9Z7BONq6oaslGSBxWiM5nLU2BhOzg7z5v5bPut5930TI5WSTOe6h4I1G f5ROGBq6Jhvlnz/yKVc1N5RUStMyxXs3203vxRqDHv3yLJZ4z+hITt0cF28tJIbs zlHk+SBkQi9PAkSGy6Ngwov59p24JE+8Y+N32Q== -----END CERTIFICATE-----Generated at Tue Sep 9 11:29:03 2025 by rpki-client