$ rpki-client -vvf repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32332d3233203d3e203538343832.roa File: 34332e3235342e3132362e302f32332d3233203d3e203538343832.roa (raw, json) Hash identifier: eZci8ugTs0KdDJxBSy4Gimtbte6tWVKKsSs87Z+r/R0= Subject key identifier: AB:E6:DD:58:F5:F9:9A:DC:34:6F:F4:97:B3:65:06:3A:6F:6E:6C:DE Certificate issuer: /CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Certificate serial: 23D68C6849C95E00DDCD0485749775C38D3F3590 Authority key identifier: CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32332d3233203d3e203538343832.roa Signing time: Wed 03 Sep 2025 12:08:53 +0000 ROA not before: Wed 03 Sep 2025 12:03:53 +0000 ROA not after: Wed 02 Sep 2026 12:08:53 +0000 asID: 58482 IP address blocks: 43.254.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d6:8c:68:49:c9:5e:00:dd:cd:04:85:74:97:75:c3:8d:3f:35:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC8674326238BE355329012E1CFDDB99EC5B6BA Validity Not Before: Sep 3 12:03:53 2025 GMT Not After : Sep 2 12:08:53 2026 GMT Subject: CN=ABE6DD58F5F99ADC346FF497B365063A6F6E6CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:68:3a:00:29:e1:c4:f2:e2:ff:2a:35:fa:a5: 58:e8:e8:5e:41:0a:b1:77:f7:58:14:2c:c9:de:65: 90:97:56:dd:c6:8c:b0:a4:e1:23:eb:2f:e9:32:d7: 6e:1b:8e:33:32:56:30:43:d6:a9:99:8f:62:51:aa: 51:0d:f9:1f:45:65:ef:79:01:30:96:55:0a:9a:45: a6:4b:72:b8:5f:2c:bc:31:e3:d5:ab:8f:2b:dd:9b: d6:85:f4:f1:3b:24:6f:c7:ab:7d:92:ce:3d:e1:31: 1b:6b:35:34:37:39:66:02:f1:09:82:c1:02:68:33: 95:fc:f1:e4:d6:e0:94:e5:fb:9d:0c:6f:61:25:5a: b5:7a:88:a0:d3:bf:aa:ee:14:6c:df:76:48:4d:42: d6:ed:e0:ab:7f:74:3c:33:b7:0c:fb:fb:8c:ea:45: 6c:5e:d4:18:2b:22:9a:28:ce:9a:5a:b5:de:11:9f: c7:fa:42:c1:a2:2c:0b:5a:1b:9f:a0:19:d9:72:cb: 67:5f:14:57:0f:70:ab:90:2f:f0:3f:c6:93:22:8b: 14:ff:9e:00:42:fa:94:28:16:f8:7a:c9:41:24:e9: 66:d0:38:78:48:90:a7:fb:29:10:3e:f7:68:fd:f5: 19:44:f4:a4:6a:7d:b6:49:7e:d7:d4:45:25:41:fe: d0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E6:DD:58:F5:F9:9A:DC:34:6F:F4:97:B3:65:06:3A:6F:6E:6C:DE X509v3 Authority Key Identifier: keyid:CD:C8:67:43:26:23:8B:E3:55:32:90:12:E1:CF:DD:B9:9E:C5:B6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/CDC8674326238BE355329012E1CFDDB99EC5B6BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CDC8674326238BE355329012E1CFDDB99EC5B6BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69e2f3bd-d4ec-42cb-aacf-adc2825c184b/0/34332e3235342e3132362e302f32332d3233203d3e203538343832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.126.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:e7:75:60:e3:46:12:f4:b2:82:f5:4d:7c:3e:83:f5:89:27: 97:38:24:8b:7b:6e:8d:11:83:4b:ee:d4:44:f1:02:3d:d8:3d: f1:23:56:72:dc:74:f3:94:60:50:24:e9:74:67:ae:92:6c:ae: 2a:24:01:a3:b0:48:a0:1d:da:e1:07:17:7b:ce:9c:08:c7:dd: d0:08:d0:02:59:38:75:41:c2:4c:0f:fa:ef:a0:23:78:94:78: 73:56:21:9b:a6:20:e3:fd:fd:94:1a:a5:e0:0f:33:06:8e:e0: bf:d7:90:dd:7f:3c:71:39:51:49:0d:9c:17:7d:de:23:d5:25: 6f:dd:7f:8f:66:70:33:f6:e6:ac:5c:ef:67:be:35:ad:1e:63: 16:0d:6d:3f:25:1c:19:52:6d:85:7c:e5:0d:aa:b9:90:e8:0a: ad:a3:7d:3b:27:15:93:70:57:67:0b:94:3f:ee:57:80:58:1b: 87:a7:ab:b9:66:48:fb:49:7f:d2:67:a3:ed:61:fb:7e:f8:a4: d3:ca:f1:f7:1a:25:37:ba:86:7d:27:c7:fd:66:ff:20:8a:e3: 35:a8:01:37:c8:9a:e5:fd:35:3e:d1:1f:d1:99:d0:32:ee:fa: 86:1c:c5:eb:58:af:d8:7f:42:29:f8:39:9b:69:9a:ad:4a:ed: fd:91:94:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI9aMaEnJXgDdzQSFdJd1w40/NZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5 RUM1QjZCQTAeFw0yNTA5MDMxMjAzNTNaFw0yNjA5MDIxMjA4NTNaMDMxMTAvBgNV BAMTKEFCRTZERDU4RjVGOTlBREMzNDZGRjQ5N0IzNjUwNjNBNkY2RTZDREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyaDoAKeHE8uL/KjX6pVjo6F5B CrF391gULMneZZCXVt3GjLCk4SPrL+ky124bjjMyVjBD1qmZj2JRqlEN+R9FZe95 ATCWVQqaRaZLcrhfLLwx49Wrjyvdm9aF9PE7JG/Hq32Szj3hMRtrNTQ3OWYC8QmC wQJoM5X88eTW4JTl+50Mb2ElWrV6iKDTv6ruFGzfdkhNQtbt4Kt/dDwztwz7+4zq RWxe1BgrIpoozppatd4Rn8f6QsGiLAtaG5+gGdlyy2dfFFcPcKuQL/A/xpMiixT/ ngBC+pQoFvh6yUEk6WbQOHhIkKf7KRA+92j99RlE9KRqfbZJftfURSVB/tDjAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUq+bdWPX5mtw0b/SXs2UGOm9ubN4wHwYDVR0j BBgwFoAUzchnQyYji+NVMpAS4c/duZ7FtrowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 OWUyZjNiZC1kNGVjLTQyY2ItYWFjZi1hZGMyODI1YzE4NGIvMC9DREM4Njc0MzI2 MjM4QkUzNTUzMjkwMTJFMUNGRERCOTlFQzVCNkJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0RDODY3NDMyNjIzOEJFMzU1MzI5MDEyRTFDRkREQjk5RUM1 QjZCQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZTJmM2JkLWQ0ZWMtNDJjYi1h YWNmLWFkYzI4MjVjMTg0Yi8wLzM0MzMyZTMyMzUzNDJlMzEzMjM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM0MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASv+fjANBgkqhkiG 9w0BAQsFAAOCAQEACud1YONGEvSygvVNfD6D9Yknlzgki3tujRGDS+7URPECPdg9 8SNWctx085RgUCTpdGeukmyuKiQBo7BIoB3a4QcXe86cCMfd0AjQAlk4dUHCTA/6 76AjeJR4c1Yhm6Yg4/39lBql4A8zBo7gv9eQ3X88cTlRSQ2cF33eI9Ulb91/j2Zw M/bmrFzvZ741rR5jFg1tPyUcGVJthXzlDaq5kOgKraN9OycVk3BXZwuUP+5XgFgb h6eruWZI+0l/0mej7WH7fvik08rx9xolN7qGfSfH/Wb/IIrjNagBN8ia5f01PtEf 0ZnQMu76hhzF61iv2H9CKfg5m2marUrt/ZGUnA== -----END CERTIFICATE-----Generated at Tue Sep 9 11:26:59 2025 by rpki-client