$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3234203d3e203538343832.roa File: 34332e3235342e3132342e302f32322d3234203d3e203538343832.roa (raw, json) Hash identifier: e3muRzfy0SlZi4zTuzBYhrkL1KwTSlGH+1rlG4IrFUw= Subject key identifier: 7A:AB:20:5F:A3:4C:0E:B8:02:D5:A1:53:8B:B6:21:DD:C8:90:37:5E Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 3D6FD5AF060AB72450605FCACFDC20CA5D486A44 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3234203d3e203538343832.roa Signing time: Mon 02 Jun 2025 01:02:57 +0000 ROA not before: Mon 02 Jun 2025 00:57:57 +0000 ROA not after: Mon 01 Jun 2026 01:02:57 +0000 asID: 58482 IP address blocks: 43.254.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:44:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:6f:d5:af:06:0a:b7:24:50:60:5f:ca:cf:dc:20:ca:5d:48:6a:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Jun 2 00:57:57 2025 GMT Not After : Jun 1 01:02:57 2026 GMT Subject: CN=7AAB205FA34C0EB802D5A1538BB621DDC890375E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e0:ce:5c:75:b4:0c:ab:87:d5:34:12:04:60: 6e:00:c9:b2:f5:8e:9a:92:1a:a5:14:a5:1f:0f:9e: 23:c2:6b:e9:b8:64:51:3b:b8:5e:be:d9:e6:8b:e6: 3f:62:b0:93:e3:7a:77:2c:ad:00:b6:6e:0e:81:ff: 47:0d:91:73:77:b1:f3:c7:5a:df:78:df:60:bb:3f: 96:82:f9:7f:49:72:a4:4e:62:b0:24:38:06:1f:fa: 9a:cf:0b:5c:2d:1d:3b:b7:d0:d9:99:da:69:36:5b: e7:f1:3e:fb:1d:bc:54:d1:03:55:ca:bd:b5:0a:ca: e2:5d:da:8d:2d:e6:cf:26:8b:50:bd:89:ce:e3:b5: f8:d2:95:76:0d:f3:f0:35:b8:a8:c2:32:d2:63:ed: d1:de:07:1c:62:bf:e6:93:13:ca:d4:85:9b:81:d3: ed:03:a5:9b:fa:e1:a6:73:34:52:ae:2a:6c:e2:77: 01:58:06:e4:31:ad:96:fa:01:b3:76:03:e9:f1:78: 68:45:fe:75:ea:bb:b5:30:21:1d:3a:83:fc:b9:17: a4:1e:c9:10:6b:6d:d4:70:7e:08:b9:25:a9:be:ab: 04:1d:bc:e2:3e:61:f4:2e:51:1f:66:f4:e4:fa:06: 8b:53:64:2c:1b:d5:7c:25:30:d3:44:8e:33:fb:54: 48:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:AB:20:5F:A3:4C:0E:B8:02:D5:A1:53:8B:B6:21:DD:C8:90:37:5E X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32322d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.124.0/22 Signature Algorithm: sha256WithRSAEncryption 52:f8:8b:81:b1:df:41:26:e6:d4:63:06:8f:47:0d:06:cc:9e: 2a:c4:ed:2b:58:da:7e:c4:6c:31:bd:9a:a1:0b:51:9d:b9:c2: 45:7c:7f:12:15:7b:01:dc:de:93:6d:4f:64:1d:3a:0c:2e:62: 12:9b:8c:e8:b7:f0:e4:e6:0f:59:9f:30:34:69:cb:a0:95:35: a7:41:48:f6:a6:04:21:f2:19:80:2e:67:98:1e:1a:b2:72:a2: 40:a5:32:40:30:25:cd:de:0e:f0:4a:25:42:ff:71:15:59:1d: 10:f1:ae:08:23:4f:da:01:b5:f6:89:db:bd:d0:ae:44:dc:e1: 88:58:2d:14:ff:b5:66:0d:3f:25:03:16:5a:13:3b:82:be:4d: a0:81:8c:6f:df:81:15:9f:f4:62:9a:fe:78:72:ac:af:7e:88: 28:5f:17:12:87:56:f8:7b:a9:03:d1:64:e2:0f:39:07:05:c9: 22:15:75:37:24:ff:1a:a7:09:48:6d:fa:d7:0b:5e:76:f4:ce: 8c:c8:ef:5e:47:77:ac:02:65:f6:a3:55:eb:e1:5c:80:2b:41: aa:76:0e:fd:64:5e:94:b3:14:6d:ee:b9:b8:99:9d:01:67:ee: 99:d0:50:99:49:cc:66:3a:9f:90:f5:56:cc:91:03:62:69:f0: b2:6e:3c:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPW/VrwYKtyRQYF/Kz9wgyl1IakQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA2MDIwMDU3NTdaFw0yNjA2MDEwMTAyNTdaMDMxMTAvBgNV BAMTKDdBQUIyMDVGQTM0QzBFQjgwMkQ1QTE1MzhCQjYyMUREQzg5MDM3NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp4M5cdbQMq4fVNBIEYG4AybL1 jpqSGqUUpR8PniPCa+m4ZFE7uF6+2eaL5j9isJPjencsrQC2bg6B/0cNkXN3sfPH Wt9432C7P5aC+X9JcqROYrAkOAYf+prPC1wtHTu30NmZ2mk2W+fxPvsdvFTRA1XK vbUKyuJd2o0t5s8mi1C9ic7jtfjSlXYN8/A1uKjCMtJj7dHeBxxiv+aTE8rUhZuB 0+0DpZv64aZzNFKuKmzidwFYBuQxrZb6AbN2A+nxeGhF/nXqu7UwIR06g/y5F6Qe yRBrbdRwfgi5Jam+qwQdvOI+YfQuUR9m9OT6BotTZCwb1XwlMNNEjjP7VEgFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeqsgX6NMDrgC1aFTi7Yh3ciQN14wHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv+fDANBgkqhkiG 9w0BAQsFAAOCAQEAUviLgbHfQSbm1GMGj0cNBsyeKsTtK1jafsRsMb2aoQtRnbnC RXx/EhV7Adzek21PZB06DC5iEpuM6Lfw5OYPWZ8wNGnLoJU1p0FI9qYEIfIZgC5n mB4asnKiQKUyQDAlzd4O8EolQv9xFVkdEPGuCCNP2gG19onbvdCuRNzhiFgtFP+1 Zg0/JQMWWhM7gr5NoIGMb9+BFZ/0Ypr+eHKsr36IKF8XEodW+HupA9Fk4g85BwXJ IhV1NyT/GqcJSG361wtedvTOjMjvXkd3rAJl9qNV6+FcgCtBqnYO/WRelLMUbe65 uJmdAWfumdBQmUnMZjqfkPVWzJEDYmnwsm48nA== -----END CERTIFICATE-----Generated at Sat Jun 7 09:28:51 2025 by rpki-client