$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132352e302f32342d3234203d3e203538343832.roa File: 34332e3235342e3132352e302f32342d3234203d3e203538343832.roa (raw, json) Hash identifier: 9k0Dch7Ak/Z6QMfcr+CZARJzHwZAuvWS8RON6gwZ8+8= Subject key identifier: 93:77:1E:2C:82:EC:F4:32:E7:B8:5B:CB:1E:88:15:F0:5F:6E:B9:D5 Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 643B985FF896C64A585EC4D20B1417A6FBDBF638 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132352e302f32342d3234203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:09:33 +0000 ROA not before: Wed 03 Sep 2025 12:04:33 +0000 ROA not after: Wed 02 Sep 2026 12:09:33 +0000 asID: 58482 IP address blocks: 43.254.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:3b:98:5f:f8:96:c6:4a:58:5e:c4:d2:0b:14:17:a6:fb:db:f6:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 12:04:33 2025 GMT Not After : Sep 2 12:09:33 2026 GMT Subject: CN=93771E2C82ECF432E7B85BCB1E8815F05F6EB9D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cc:f3:22:5c:2e:94:ef:35:bb:31:99:db:c8: 0f:38:7b:8c:c5:37:95:c0:8f:c8:43:ef:b1:26:0a: e1:01:31:67:8a:52:dc:89:14:2b:5e:8a:e6:07:ef: 03:8b:01:fd:6e:2e:b7:64:fd:27:a3:b2:75:d8:54: cc:04:b0:09:b5:49:97:5d:fc:af:b8:0c:bf:11:36: 33:b0:2e:9a:90:78:66:99:a1:39:9d:0d:fd:ea:5e: ed:b2:cc:65:8d:a0:54:2a:cc:dc:56:36:76:49:2b: b6:b1:62:46:25:c1:ca:ee:16:72:81:99:f1:8f:8f: d6:bc:5a:3d:f3:8b:3b:ce:95:94:5e:6a:20:92:d1: 26:7f:5b:00:85:32:fd:58:37:6a:18:0d:67:84:5b: 84:19:f2:ab:ed:95:1c:bb:1c:c0:34:23:74:87:fe: 34:d2:3a:2f:22:dc:75:4f:01:d6:86:ad:c5:0f:57: 6e:5f:18:eb:2a:7b:73:8c:bf:4a:cf:99:b0:6f:99: f3:49:e7:72:53:60:99:57:75:19:9b:5d:77:d8:49: 40:a0:d9:df:d1:1f:23:09:ba:d4:c5:ae:14:04:67: 54:62:52:7d:25:9c:f6:d5:89:14:68:21:35:c6:44: a1:6d:02:70:c2:3d:c8:a5:39:c0:1e:9f:aa:ee:02: 36:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:77:1E:2C:82:EC:F4:32:E7:B8:5B:CB:1E:88:15:F0:5F:6E:B9:D5 X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132352e302f32342d3234203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.125.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:fd:f9:25:8a:80:6c:09:cb:3c:19:5b:6e:a3:6f:c1:d3:38: 13:05:85:de:d0:58:5f:63:fe:c5:7b:c6:e4:49:70:13:b5:07: ef:69:8a:5f:e8:ec:e3:29:b8:cd:08:c4:57:0a:8d:0d:b4:db: fb:06:a0:bd:77:92:13:c5:18:72:01:12:6e:0e:93:b3:af:85: 2c:f0:64:70:a1:ab:52:4e:0b:22:86:5c:d2:1c:b3:dd:cf:58: 65:c9:41:33:86:d7:3a:c9:d4:67:90:1c:cb:e7:14:db:6c:a0: 97:57:79:c6:2d:81:5e:00:fd:fe:0e:d0:5d:7c:cd:37:a4:9e: 73:78:fd:cf:7f:2a:b5:1e:59:5e:ae:37:73:64:e7:09:0a:e4: fe:27:c2:b0:70:f4:8a:a6:e5:68:5f:84:0b:65:0b:13:1d:37: 4b:ba:2e:e3:41:4b:de:82:60:d4:f0:46:17:ec:19:2d:0b:18: 7d:23:f8:3c:b6:2e:cc:c6:d3:97:aa:24:c4:96:c3:70:e1:7d: 4c:fb:44:48:8b:00:d7:6f:ea:48:e0:51:c5:7d:39:6b:b2:1a: 3c:66:cf:4e:5d:d0:8d:5f:2b:b2:14:7e:dc:e3:a6:0a:cc:9b: f9:50:23:8e:7c:6c:40:64:11:f6:02:31:a2:58:01:9f:e7:7c: 0b:34:fe:4b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZDuYX/iWxkpYXsTSCxQXpvvb9jgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMjA0MzNaFw0yNjA5MDIxMjA5MzNaMDMxMTAvBgNV BAMTKDkzNzcxRTJDODJFQ0Y0MzJFN0I4NUJDQjFFODgxNUYwNUY2RUI5RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwzPMiXC6U7zW7MZnbyA84e4zF N5XAj8hD77EmCuEBMWeKUtyJFCteiuYH7wOLAf1uLrdk/SejsnXYVMwEsAm1SZdd /K+4DL8RNjOwLpqQeGaZoTmdDf3qXu2yzGWNoFQqzNxWNnZJK7axYkYlwcruFnKB mfGPj9a8Wj3zizvOlZReaiCS0SZ/WwCFMv1YN2oYDWeEW4QZ8qvtlRy7HMA0I3SH /jTSOi8i3HVPAdaGrcUPV25fGOsqe3OMv0rPmbBvmfNJ53JTYJlXdRmbXXfYSUCg 2d/RHyMJutTFrhQEZ1RiUn0lnPbViRRoITXGRKFtAnDCPcilOcAen6ruAjavAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUk3ceLILs9DLnuFvLHogV8F9uudUwHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv+fTANBgkqhkiG 9w0BAQsFAAOCAQEAOv35JYqAbAnLPBlbbqNvwdM4EwWF3tBYX2P+xXvG5ElwE7UH 72mKX+js4ym4zQjEVwqNDbTb+wagvXeSE8UYcgESbg6Ts6+FLPBkcKGrUk4LIoZc 0hyz3c9YZclBM4bXOsnUZ5Acy+cU22ygl1d5xi2BXgD9/g7QXXzNN6Sec3j9z38q tR5ZXq43c2TnCQrk/ifCsHD0iqblaF+EC2ULEx03S7ou40FL3oJg1PBGF+wZLQsY fSP4PLYuzMbTl6okxJbDcOF9TPtESIsA12/qSOBRxX05a7IaPGbPTl3QjV8rshR+ 3OOmCsyb+VAjjnxsQGQR9gIxolgBn+d8CzT+Sw== -----END CERTIFICATE-----Generated at Tue Sep 9 11:30:09 2025 by rpki-client