$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa File: 34332e3235322e3138372e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: Q14M8/H1GKD5N/6iQpjuxENjm1t2nAKNH5gzPjfdhGE= Subject key identifier: BC:44:8D:85:61:51:29:FC:C3:C7:A4:8B:A8:E7:97:36:A8:55:3B:5F Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 546979BB02DDB147C87DED280605D5E2973FAF36 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa Signing time: Thu 13 Mar 2025 11:01:37 +0000 ROA not before: Thu 13 Mar 2025 10:56:37 +0000 ROA not after: Thu 12 Mar 2026 11:01:37 +0000 asID: 58816 IP address blocks: 43.252.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:69:79:bb:02:dd:b1:47:c8:7d:ed:28:06:05:d5:e2:97:3f:af:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Mar 13 10:56:37 2025 GMT Not After : Mar 12 11:01:37 2026 GMT Subject: CN=BC448D85615129FCC3C7A48BA8E79736A8553B5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9a:96:47:45:a0:fb:df:0c:0e:1d:0e:71:25: fc:c0:53:54:c8:b2:2c:ca:10:0c:2a:13:3c:15:12: 5b:ea:ab:86:f3:97:a0:d6:09:46:db:2d:bd:b6:ab: ef:8d:a0:5a:e7:a4:a5:6e:a7:35:39:42:cc:ca:45: 2a:56:a3:5a:a2:f7:d3:a7:8a:8c:c3:4b:55:ff:69: 4f:2e:5c:8f:e4:61:f7:81:64:a2:1a:e2:ee:1a:84: b9:ae:a9:93:30:48:cd:00:62:5a:57:ab:90:53:2b: 8d:a8:b0:8c:1e:fc:77:19:6c:f4:b0:0c:e1:37:0b: 84:78:90:a8:31:02:6c:6b:fc:fc:a8:d3:59:00:49: 0d:53:87:e1:d7:97:a6:3a:09:52:ca:f9:da:16:7b: 33:48:1a:b5:e9:9d:65:12:6f:19:b0:57:95:0d:a1: 50:c3:25:ce:99:7c:8c:a0:2c:50:72:f4:23:4b:06: 04:35:25:32:fc:92:20:38:c9:ef:5d:b6:f5:4d:74: a1:79:12:42:75:f3:d9:d7:80:49:41:0a:eb:a1:6e: c9:62:7e:40:0d:1b:a3:42:65:a0:8f:09:60:e1:06: 52:6e:f5:0d:1e:21:2c:8b:e9:4f:7c:39:71:a9:93: a0:77:dc:bf:d5:f9:88:0c:89:5a:88:81:11:36:4f: 6e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:44:8D:85:61:51:29:FC:C3:C7:A4:8B:A8:E7:97:36:A8:55:3B:5F X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138372e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.187.0/24 Signature Algorithm: sha256WithRSAEncryption 65:91:3f:60:c2:df:82:cf:2f:7e:77:6d:ed:13:be:e1:fe:d3: d3:c8:8d:de:ba:34:62:7a:82:7e:a0:dd:53:50:c5:47:e3:e5: 0f:54:3b:c6:89:e0:96:4e:76:1e:f9:87:30:e9:e4:33:85:32: 45:0f:06:e4:46:c3:1d:76:ad:09:25:5f:e3:9e:b1:83:4a:3f: 7e:a2:fb:41:ae:ba:11:5f:ae:40:af:89:e1:36:20:35:c5:51: de:80:30:e5:5a:fc:07:a5:87:26:2a:f0:1c:be:62:fc:64:69: a6:39:31:2c:95:d1:23:ea:0e:27:b4:6e:67:2b:49:bc:d7:36: c4:a7:dc:e9:6a:79:ea:e8:6f:73:af:e9:8f:af:be:26:f1:ec: 26:f9:36:ea:26:87:ef:9e:34:9a:61:10:15:e0:88:2c:e3:8f: f0:e1:69:44:e8:1c:99:5a:25:71:a6:3c:ac:2c:ab:38:af:b9: 72:57:d1:76:d3:9e:e0:bc:60:b2:bd:42:6d:5e:b4:26:4f:fa: d5:b4:78:4d:21:0c:d2:8a:14:70:e3:e5:92:27:d4:55:dd:36: be:f9:a9:0c:66:52:13:f1:95:7f:c6:3d:98:4f:9b:a7:11:70: 64:c3:71:05:23:28:ee:b6:21:62:db:25:75:60:0f:f8:82:7f: 1a:09:73:6f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVGl5uwLdsUfIfe0oBgXV4pc/rzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAzMTMxMDU2MzdaFw0yNjAzMTIxMTAxMzdaMDMxMTAvBgNV BAMTKEJDNDQ4RDg1NjE1MTI5RkNDM0M3QTQ4QkE4RTc5NzM2QTg1NTNCNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5mpZHRaD73wwOHQ5xJfzAU1TI sizKEAwqEzwVElvqq4bzl6DWCUbbLb22q++NoFrnpKVupzU5QszKRSpWo1qi99On iozDS1X/aU8uXI/kYfeBZKIa4u4ahLmuqZMwSM0AYlpXq5BTK42osIwe/HcZbPSw DOE3C4R4kKgxAmxr/Pyo01kASQ1Th+HXl6Y6CVLK+doWezNIGrXpnWUSbxmwV5UN oVDDJc6ZfIygLFBy9CNLBgQ1JTL8kiA4ye9dtvVNdKF5EkJ189nXgElBCuuhbsli fkANG6NCZaCPCWDhBlJu9Q0eISyL6U98OXGpk6B33L/V+YgMiVqIgRE2T26DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvESNhWFRKfzDx6SLqOeXNqhVO18wHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8uzANBgkqhkiG 9w0BAQsFAAOCAQEAZZE/YMLfgs8vfndt7RO+4f7T08iN3ro0YnqCfqDdU1DFR+Pl D1Q7xonglk52HvmHMOnkM4UyRQ8G5EbDHXatCSVf456xg0o/fqL7Qa66EV+uQK+J 4TYgNcVR3oAw5Vr8B6WHJirwHL5i/GRppjkxLJXRI+oOJ7RuZytJvNc2xKfc6Wp5 6uhvc6/pj6++JvHsJvk26iaH7540mmEQFeCILOOP8OFpROgcmVolcaY8rCyrOK+5 clfRdtOe4Lxgsr1CbV60Jk/61bR4TSEM0ooUcOPlkifUVd02vvmpDGZSE/GVf8Y9 mE+bpxFwZMNxBSMo7rYhYtsldWAP+IJ/Gglzbw== -----END CERTIFICATE-----Generated at Sun Apr 6 10:45:59 2025 by rpki-client