$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32332d3233203d3e203538343832.roa File: 34332e3235342e3132342e302f32332d3233203d3e203538343832.roa (raw, json) Hash identifier: iXtClCML1N9IxFKEnUu67jBHGm8QPJyw41HrxTVVN1g= Subject key identifier: CE:68:C8:D1:BE:20:3E:34:4A:36:2C:0F:A1:33:79:25:CB:2D:C7:FF Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 3203F8B7F1C71179A8A9BA257F5D85E3B0F9FCE5 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32332d3233203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:08:41 +0000 ROA not before: Wed 03 Sep 2025 12:03:41 +0000 ROA not after: Wed 02 Sep 2026 12:08:41 +0000 asID: 58482 IP address blocks: 43.254.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:03:f8:b7:f1:c7:11:79:a8:a9:ba:25:7f:5d:85:e3:b0:f9:fc:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 12:03:41 2025 GMT Not After : Sep 2 12:08:41 2026 GMT Subject: CN=CE68C8D1BE203E344A362C0FA1337925CB2DC7FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a4:2f:99:f5:3f:dc:89:f8:a6:46:29:79:df: 0a:18:8d:c2:c8:5b:69:12:83:94:ee:e8:79:12:12: c4:5c:3f:c4:d3:75:55:0f:be:9c:db:ae:61:72:e0: dd:7d:e4:85:ff:1d:99:3c:2b:f6:ab:c5:52:ad:19: 52:fe:d8:50:d4:47:c1:38:35:50:c3:6a:09:d4:28: ca:69:c6:6f:fb:a9:d2:9e:01:2a:39:64:b2:86:71: dd:d7:31:5f:bc:f7:ba:c8:d3:e0:fb:05:a3:59:09: b1:7c:94:4f:51:28:f3:34:24:2f:b6:00:eb:45:9e: 67:33:0d:2e:cf:ab:af:c3:b9:2f:ec:00:a2:fb:8a: 29:fa:97:bd:02:a4:aa:45:83:e9:ba:39:37:fd:9b: e5:ab:97:85:e0:82:09:e0:0c:53:ce:fd:7b:cd:4b: a6:eb:8f:b1:40:6e:48:75:f5:84:cb:ad:4d:ce:5f: f4:b9:6a:e4:89:4d:fa:ca:99:84:1f:31:a6:dc:ce: 0d:af:79:f4:03:2a:95:4d:f5:6f:ef:5c:80:90:42: 7f:60:65:1a:b9:04:f7:a2:cb:b3:34:67:53:73:17: 07:9f:66:09:6b:ae:82:02:92:09:f8:c5:af:51:1d: c9:37:ff:e4:29:eb:e8:b7:57:04:46:b0:f6:14:70: 3e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:68:C8:D1:BE:20:3E:34:4A:36:2C:0F:A1:33:79:25:CB:2D:C7:FF X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32332d3233203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.124.0/23 Signature Algorithm: sha256WithRSAEncryption 64:7b:ec:48:04:c6:5a:8b:e2:7f:d3:5e:06:8a:73:a7:75:89: 3c:5f:fd:7c:e0:3c:dc:ad:af:62:f0:6e:4e:c7:ef:13:21:9a: 83:52:d9:fe:a9:ae:5d:91:80:f7:b2:0e:6d:a4:b1:7d:9e:ef: 78:b2:df:0d:64:c3:32:8b:93:b1:76:f6:2c:86:bf:ad:d7:a8: 43:23:67:a3:82:91:48:f8:f1:e9:8b:16:f9:d1:57:00:ca:59: ed:9d:35:32:5e:81:50:07:5c:cd:9b:6d:5f:bd:0f:5f:75:bd: 76:a8:7f:27:88:83:c8:15:88:d9:e5:39:1b:8c:db:cb:4a:99: ff:fe:3a:f1:45:e2:27:63:65:42:c2:92:dc:92:5f:ec:51:41: 02:f7:51:28:e8:20:7d:e9:62:98:1b:59:2a:c2:31:64:57:52: 4b:85:d0:ae:62:52:45:15:0e:81:7e:9b:22:64:8b:92:cf:95: 3d:7e:2f:9c:dc:a2:32:3d:f1:da:bf:0a:52:71:5c:d7:f5:36: 66:52:d1:30:3f:5f:79:81:cf:78:b1:f9:df:68:30:1c:52:a1: de:68:0f:0f:b6:66:56:4c:fc:c8:30:4d:cc:9e:31:9c:80:9c: 25:b9:9c:91:37:c7:ad:77:34:d1:81:01:e0:a0:bc:4f:88:ad: 5c:00:ce:34 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMgP4t/HHEXmoqbolf12F47D5/OUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMjAzNDFaFw0yNjA5MDIxMjA4NDFaMDMxMTAvBgNV BAMTKENFNjhDOEQxQkUyMDNFMzQ0QTM2MkMwRkExMzM3OTI1Q0IyREM3RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYpC+Z9T/cifimRil53woYjcLI W2kSg5Tu6HkSEsRcP8TTdVUPvpzbrmFy4N195IX/HZk8K/arxVKtGVL+2FDUR8E4 NVDDagnUKMppxm/7qdKeASo5ZLKGcd3XMV+897rI0+D7BaNZCbF8lE9RKPM0JC+2 AOtFnmczDS7Pq6/DuS/sAKL7iin6l70CpKpFg+m6OTf9m+Wrl4XgggngDFPO/XvN S6brj7FAbkh19YTLrU3OX/S5auSJTfrKmYQfMabczg2vefQDKpVN9W/vXICQQn9g ZRq5BPeiy7M0Z1NzFwefZglrroICkgn4xa9RHck3/+Qp6+i3VwRGsPYUcD5tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzmjI0b4gPjRKNiwPoTN5Jcstx/8wHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv+fDANBgkqhkiG 9w0BAQsFAAOCAQEAZHvsSATGWovif9NeBopzp3WJPF/9fOA83K2vYvBuTsfvEyGa g1LZ/qmuXZGA97IObaSxfZ7veLLfDWTDMouTsXb2LIa/rdeoQyNno4KRSPjx6YsW +dFXAMpZ7Z01Ml6BUAdczZttX70PX3W9dqh/J4iDyBWI2eU5G4zby0qZ//468UXi J2NlQsKS3JJf7FFBAvdRKOggfelimBtZKsIxZFdSS4XQrmJSRRUOgX6bImSLks+V PX4vnNyiMj3x2r8KUnFc1/U2ZlLRMD9feYHPeLH532gwHFKh3mgPD7ZmVkz8yDBN zJ4xnICcJbmckTfHrXc00YEB4KC8T4itXADONA== -----END CERTIFICATE-----Generated at Tue Sep 9 11:29:02 2025 by rpki-client