$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa File: 34332e3235322e3138342e302f32322d3232203d3e203538383136.roa (raw, json) Hash identifier: 1qIDwmf6H3mEaUgvN2oFExXVVv8QpKj00JvdsYifsuk= Subject key identifier: 68:7D:38:66:C4:A0:06:9F:2E:B5:F0:8C:FE:D3:0B:D5:59:DC:A4:A9 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 14406CA41F1F56EF97150D3C723B1FDA77BDCBEC Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa Signing time: Wed 01 Jan 2025 11:00:00 +0000 ROA not before: Wed 01 Jan 2025 10:55:00 +0000 ROA not after: Wed 31 Dec 2025 11:00:00 +0000 asID: 58816 IP address blocks: 43.252.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:40:6c:a4:1f:1f:56:ef:97:15:0d:3c:72:3b:1f:da:77:bd:cb:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Jan 1 10:55:00 2025 GMT Not After : Dec 31 11:00:00 2025 GMT Subject: CN=687D3866C4A0069F2EB5F08CFED30BD559DCA4A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d4:10:c7:b0:d9:ba:ea:5f:a3:9e:ae:c3:87: f0:75:5f:25:ba:58:16:6e:f6:6a:6a:00:41:3c:98: eb:1a:08:0c:94:9f:c9:f0:e0:d6:eb:68:fc:bb:65: dd:a6:5e:1e:36:f9:2f:92:ed:08:74:96:58:10:a4: 37:81:31:92:ba:7a:82:79:18:be:b1:a1:5a:57:73: 01:37:95:22:22:a8:3b:92:57:1d:5b:11:f3:bc:28: c6:12:94:16:a3:f9:0a:e1:c3:14:73:e9:a6:2b:b6: 33:51:4f:de:6f:2b:3b:b8:dd:af:e0:76:9b:8f:4f: 7a:a3:32:83:1c:6a:68:11:25:a2:c3:d4:54:2c:9b: 09:18:5e:59:b6:6f:5f:c6:53:1f:7f:82:9c:a9:04: e6:4d:1e:5f:0d:14:f9:a5:a5:09:fc:ec:29:cc:4c: f0:1d:ab:93:f3:60:9c:50:98:7b:03:57:a7:c9:ac: 1c:69:17:e0:f6:ca:1b:da:23:e0:85:0c:9f:33:3f: c2:ad:61:d7:08:9f:33:b5:22:dd:4a:88:21:74:cc: 5a:4e:f2:b9:3b:13:50:17:ed:3a:39:01:be:aa:0a: e6:1c:38:d9:ff:ab:a3:2d:4c:48:7c:4d:b2:d8:52: ff:30:d3:39:2c:03:97:c1:cf:94:61:a9:14:78:20: a8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7D:38:66:C4:A0:06:9F:2E:B5:F0:8C:FE:D3:0B:D5:59:DC:A4:A9 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.184.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:47:18:a2:ab:f7:b8:13:26:d4:31:3a:8d:59:9f:ed:35:9f: 1c:1b:4f:f0:77:6d:dc:fd:8e:7c:4e:e6:50:85:31:5d:7d:e7: 8b:c7:00:ed:e3:81:62:f7:b3:48:b0:db:a8:26:0d:d7:25:1c: 2a:9c:2e:fe:51:c5:80:35:6a:ff:70:bf:69:31:97:48:83:74: 1e:58:75:bf:cb:f4:79:6a:d3:90:a0:90:07:bb:42:62:8f:54: ac:de:1b:76:17:9c:47:2b:c0:38:32:1c:51:0b:6c:aa:f2:4d: 85:ce:e2:60:7b:38:cc:ab:56:7e:97:ff:a6:31:14:1a:2f:68: 81:e2:45:61:f0:ea:13:7e:e7:7c:95:bb:c4:d5:6a:ed:78:88: 40:37:74:87:a6:0c:a2:f3:c6:30:24:a0:69:40:56:65:c1:02: e6:ed:09:e8:70:74:ac:d8:9d:03:f9:e5:fd:68:1a:25:9e:e6: 12:0f:57:19:b3:12:b1:3e:2b:ac:84:92:53:c5:03:e0:7e:7e: d0:cb:3f:eb:20:0c:ed:57:27:b2:34:f6:f6:55:17:af:97:27: 20:51:b5:a9:1c:51:f9:21:f9:a5:b5:4d:54:4c:51:11:81:d8: cf:e2:bf:0e:3a:ae:d3:dc:2e:1f:2b:71:13:3a:53:8a:bd:60: 5f:5c:b0:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFEBspB8fVu+XFQ08cjsf2ne9y+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAxMDExMDU1MDBaFw0yNTEyMzExMTAwMDBaMDMxMTAvBgNV BAMTKDY4N0QzODY2QzRBMDA2OUYyRUI1RjA4Q0ZFRDMwQkQ1NTlEQ0E0QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC11BDHsNm66l+jnq7Dh/B1XyW6 WBZu9mpqAEE8mOsaCAyUn8nw4NbraPy7Zd2mXh42+S+S7Qh0llgQpDeBMZK6eoJ5 GL6xoVpXcwE3lSIiqDuSVx1bEfO8KMYSlBaj+QrhwxRz6aYrtjNRT95vKzu43a/g dpuPT3qjMoMcamgRJaLD1FQsmwkYXlm2b1/GUx9/gpypBOZNHl8NFPmlpQn87CnM TPAdq5PzYJxQmHsDV6fJrBxpF+D2yhvaI+CFDJ8zP8KtYdcInzO1It1KiCF0zFpO 8rk7E1AX7To5Ab6qCuYcONn/q6MtTEh8TbLYUv8w0zksA5fBz5RhqRR4IKjNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaH04ZsSgBp8utfCM/tML1VncpKkwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv8uDANBgkqhkiG 9w0BAQsFAAOCAQEAe0cYoqv3uBMm1DE6jVmf7TWfHBtP8Hdt3P2OfE7mUIUxXX3n i8cA7eOBYvezSLDbqCYN1yUcKpwu/lHFgDVq/3C/aTGXSIN0Hlh1v8v0eWrTkKCQ B7tCYo9UrN4bdhecRyvAODIcUQtsqvJNhc7iYHs4zKtWfpf/pjEUGi9ogeJFYfDq E37nfJW7xNVq7XiIQDd0h6YMovPGMCSgaUBWZcEC5u0J6HB0rNidA/nl/WgaJZ7m Eg9XGbMSsT4rrISSU8UD4H5+0Ms/6yAM7VcnsjT29lUXr5cnIFG1qRxR+SH5pbVN VExREYHYz+K/Djqu09wuHytxEzpTir1gX1ywEw== -----END CERTIFICATE-----Generated at Sun Apr 6 14:39:14 2025 by rpki-client