$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32342d3234203d3e203538343832.roa File: 34332e3235342e3132342e302f32342d3234203d3e203538343832.roa (raw, json) Hash identifier: q6ov1LjBJ1C3MscONi3jd31fdQpeg7xo73ISZgsB13M= Subject key identifier: A0:4D:14:A8:F9:D2:E7:65:89:11:96:25:DF:93:61:B9:AC:08:57:FC Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 1043A0FED79A6BAAFF6C3549A613746C46C402C6 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32342d3234203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:09:05 +0000 ROA not before: Wed 03 Sep 2025 12:04:05 +0000 ROA not after: Wed 02 Sep 2026 12:09:05 +0000 asID: 58482 IP address blocks: 43.254.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:43:a0:fe:d7:9a:6b:aa:ff:6c:35:49:a6:13:74:6c:46:c4:02:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 12:04:05 2025 GMT Not After : Sep 2 12:09:05 2026 GMT Subject: CN=A04D14A8F9D2E76589119625DF9361B9AC0857FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:74:b6:0d:2d:a5:5f:74:91:14:69:09:02:cf: fe:7b:cf:35:a1:64:ba:4a:9f:79:c7:80:47:ad:26: cb:70:f0:36:aa:fa:26:de:f9:69:b8:84:1e:26:0a: e0:6c:80:6e:1f:32:6b:b6:0c:3a:f1:d6:c8:a9:6b: af:e7:16:a6:41:f7:d7:e9:92:f7:d0:4d:4f:ed:b9: b0:7f:df:fe:d3:4b:cd:f3:3d:c7:22:a2:ab:71:52: 6e:d8:37:bd:6b:b1:35:9c:ba:4c:4b:e0:2c:06:11: 5f:b6:93:24:86:f6:97:2b:e8:a2:7c:aa:0c:17:5c: 8a:fd:d4:70:99:cd:2e:b7:b6:d4:83:79:25:02:ab: d2:8c:07:c6:93:5a:9e:73:4d:5e:7e:0a:71:ec:61: 2a:c9:ae:ad:ea:c0:15:28:24:cc:14:cc:3b:34:a5: 76:06:8b:89:2c:ef:94:e7:90:2a:e4:d9:0d:18:29: 93:6d:64:89:50:ec:32:f1:8e:34:83:13:fc:1e:1a: 51:80:0f:cd:f8:44:31:d9:70:4c:d2:04:3f:6a:d7: 2e:34:ef:f3:cb:54:f9:3a:bd:1b:c5:01:80:c3:a8: 24:40:b3:f6:15:af:2a:42:92:87:c7:fc:21:60:68: 03:41:75:95:45:d0:5d:a9:59:47:cd:4b:6e:d5:46: e3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:4D:14:A8:F9:D2:E7:65:89:11:96:25:DF:93:61:B9:AC:08:57:FC X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132342e302f32342d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.124.0/24 Signature Algorithm: sha256WithRSAEncryption 73:e0:6e:24:b5:6a:f9:d7:37:35:c9:2f:7b:22:96:8f:c2:10: 17:b5:d6:1d:31:30:28:25:c9:dc:ba:31:73:3f:0a:77:e9:17: 1c:7f:75:de:2d:ac:cb:b8:75:53:ee:9c:f3:b7:68:5f:6b:65: 55:25:54:e9:12:89:b4:2b:c9:ec:39:33:bd:ee:cd:cf:91:ea: 9d:c8:c2:af:22:60:0a:56:1e:91:55:a6:08:5a:3d:a2:87:2c: 24:05:1d:d6:d8:9d:db:54:e7:f0:9f:78:b0:76:87:09:5a:89: 1e:72:c7:fe:39:15:ab:97:07:5f:cb:b4:fc:22:5d:7b:de:6d: 54:67:c2:db:cb:47:a8:f5:63:fb:07:c5:39:0d:0c:39:21:4b: da:b0:28:1c:2a:ba:b4:5d:49:b1:7a:1f:9e:07:58:4f:d8:b5: 3f:72:6c:70:1a:4e:00:72:87:90:12:66:7e:7f:66:7e:51:cf: f7:60:ff:79:6f:cd:d1:3e:c0:72:54:1e:05:47:2d:cf:be:78: af:3e:b2:ce:bc:6f:42:bf:c2:73:ca:46:0d:cb:54:c8:15:5d: 30:8c:b4:09:99:f3:5f:24:02:72:45:1b:a7:21:82:12:73:dc: d1:2e:94:3b:c6:4f:65:1e:ec:4c:80:13:55:b2:5d:7c:14:65: ff:ab:c7:9f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEEOg/teaa6r/bDVJphN0bEbEAsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMjA0MDVaFw0yNjA5MDIxMjA5MDVaMDMxMTAvBgNV BAMTKEEwNEQxNEE4RjlEMkU3NjU4OTExOTYyNURGOTM2MUI5QUMwODU3RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCdLYNLaVfdJEUaQkCz/57zzWh ZLpKn3nHgEetJstw8Daq+ibe+Wm4hB4mCuBsgG4fMmu2DDrx1sipa6/nFqZB99fp kvfQTU/tubB/3/7TS83zPccioqtxUm7YN71rsTWcukxL4CwGEV+2kySG9pcr6KJ8 qgwXXIr91HCZzS63ttSDeSUCq9KMB8aTWp5zTV5+CnHsYSrJrq3qwBUoJMwUzDs0 pXYGi4ks75TnkCrk2Q0YKZNtZIlQ7DLxjjSDE/weGlGAD834RDHZcEzSBD9q1y40 7/PLVPk6vRvFAYDDqCRAs/YVrypCkofH/CFgaANBdZVF0F2pWUfNS27VRuP/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoE0UqPnS52WJEZYl35NhuawIV/wwHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv+fDANBgkqhkiG 9w0BAQsFAAOCAQEAc+BuJLVq+dc3NckveyKWj8IQF7XWHTEwKCXJ3Loxcz8Kd+kX HH913i2sy7h1U+6c87doX2tlVSVU6RKJtCvJ7Dkzve7Nz5HqncjCryJgClYekVWm CFo9oocsJAUd1tid21Tn8J94sHaHCVqJHnLH/jkVq5cHX8u0/CJde95tVGfC28tH qPVj+wfFOQ0MOSFL2rAoHCq6tF1JsXofngdYT9i1P3JscBpOAHKHkBJmfn9mflHP 92D/eW/N0T7AclQeBUctz754rz6yzrxvQr/Cc8pGDctUyBVdMIy0CZnzXyQCckUb pyGCEnPc0S6UO8ZPZR7sTIATVbJdfBRl/6vHnw== -----END CERTIFICATE-----Generated at Tue Sep 9 11:28:59 2025 by rpki-client