$ rpki-client -vvf repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa File: 34332e3234332e3138342e302f32332d3233203d3e203633383237.roa (raw, json) Hash identifier: A/k45s19FefdLANTjaU2DJdWu18m3PvvvLFNqzKTYEk= Subject key identifier: 2A:FB:69:B7:63:90:D2:D2:BF:B4:87:6A:23:24:B7:65:6E:A8:91:A7 Certificate issuer: /CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Certificate serial: 27D19B7A1E032CAC8EAAEC0B42421E14F1D2E730 Authority key identifier: F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa Signing time: Sat 30 Aug 2025 05:00:01 +0000 ROA not before: Sat 30 Aug 2025 04:55:01 +0000 ROA not after: Sat 29 Aug 2026 05:00:01 +0000 asID: 63827 IP address blocks: 43.243.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:d1:9b:7a:1e:03:2c:ac:8e:aa:ec:0b:42:42:1e:14:f1:d2:e7:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69B637EA94DE4CC9150BDFD5327BE03A033784B Validity Not Before: Aug 30 04:55:01 2025 GMT Not After : Aug 29 05:00:01 2026 GMT Subject: CN=2AFB69B76390D2D2BFB4876A2324B7656EA891A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c2:dd:eb:83:59:d9:84:b7:4d:c7:32:8a:6a: fd:a8:df:66:83:7d:e0:36:58:f6:03:73:be:21:2f: 40:0d:63:96:b3:d2:83:f7:8d:df:8f:18:40:57:68: 36:18:c3:c8:49:64:db:8f:a7:03:a6:8d:45:ca:43: 18:f9:e6:4a:cd:46:f3:36:3c:4b:c4:73:8c:f5:25: 8a:1f:ab:4b:2e:fb:96:85:36:28:1c:e3:38:28:a3: 86:fa:68:18:59:cb:9f:53:57:1b:bf:c4:87:31:34: 26:99:17:df:9d:9d:7f:aa:69:1a:b2:4d:06:e7:dd: 95:3d:22:10:6e:68:78:0a:ee:01:ea:73:5c:b6:09: c4:b4:db:f7:81:df:a4:1b:be:85:33:c8:fe:c0:32: 75:39:38:a5:40:5b:c6:6c:30:af:06:aa:dc:07:3d: 1f:15:bb:d1:61:ed:72:0e:48:81:8f:51:79:83:58: 6b:a5:24:51:4c:a4:95:02:c6:c7:45:b1:2b:bc:b0: f4:a5:97:d2:60:bc:8e:ca:47:9e:bb:7b:a2:8e:01: e1:41:52:d3:c9:96:48:17:df:4f:01:0d:03:fc:d4: 56:f4:7c:5f:05:1e:c4:0f:52:5b:fe:c4:10:bb:28: d2:60:dc:4a:e9:d7:86:aa:d8:e8:75:85:1b:13:9a: fc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:FB:69:B7:63:90:D2:D2:BF:B4:87:6A:23:24:B7:65:6E:A8:91:A7 X509v3 Authority Key Identifier: keyid:F6:9B:63:7E:A9:4D:E4:CC:91:50:BD:FD:53:27:BE:03:A0:33:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/F69B637EA94DE4CC9150BDFD5327BE03A033784B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F69B637EA94DE4CC9150BDFD5327BE03A033784B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a68712-1d9a-4143-82f1-1c82c33165ea/0/34332e3234332e3138342e302f32332d3233203d3e203633383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.184.0/23 Signature Algorithm: sha256WithRSAEncryption 18:8b:52:03:6b:52:7d:81:f0:27:b3:a5:e5:29:fc:d8:6e:da: 66:37:1f:ba:db:4a:e4:85:ec:44:8a:55:0e:e1:0b:1b:ab:b0: de:89:07:80:55:36:87:28:2b:31:cc:8a:1d:64:0a:62:72:fe: 4c:04:83:00:4b:dd:32:f5:ea:f2:bb:90:b7:c6:66:12:bf:a2: b6:ae:f3:05:80:a6:fc:38:34:76:52:4d:a7:9c:5f:4a:0b:1f: eb:69:86:c9:8a:f7:5c:d2:79:01:12:d7:2c:fa:33:94:d7:91: f0:c1:ec:39:bd:76:6a:ac:76:0b:38:ca:24:6f:94:b3:ba:1b: 7d:80:7f:81:0d:10:90:6d:aa:de:80:3c:62:10:e6:4f:7e:ea: 96:db:ec:94:a7:f6:66:6d:99:6f:55:17:5f:af:2a:77:e3:26: 36:36:23:7c:3b:f2:36:b8:86:ac:b6:a2:f8:36:e3:61:76:fa: e9:af:3b:75:c4:57:6d:e4:7c:a1:61:7b:27:f9:3a:46:0a:aa: fe:87:4d:b0:08:c1:1f:0f:38:bd:9e:75:ea:77:e9:93:8d:c0: 57:2e:08:69:c1:e1:b8:45:6a:4c:7a:22:81:df:a0:37:24:e5: 02:d1:bd:55:ab:c0:28:ce:63:66:4d:df:98:ef:51:69:bb:ba: 87:41:08:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ9Gbeh4DLKyOquwLQkIeFPHS5zAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNB MDMzNzg0QjAeFw0yNTA4MzAwNDU1MDFaFw0yNjA4MjkwNTAwMDFaMDMxMTAvBgNV BAMTKDJBRkI2OUI3NjM5MEQyRDJCRkI0ODc2QTIzMjRCNzY1NkVBODkxQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQwt3rg1nZhLdNxzKKav2o32aD feA2WPYDc74hL0ANY5az0oP3jd+PGEBXaDYYw8hJZNuPpwOmjUXKQxj55krNRvM2 PEvEc4z1JYofq0su+5aFNigc4zgoo4b6aBhZy59TVxu/xIcxNCaZF9+dnX+qaRqy TQbn3ZU9IhBuaHgK7gHqc1y2CcS02/eB36QbvoUzyP7AMnU5OKVAW8ZsMK8GqtwH PR8Vu9Fh7XIOSIGPUXmDWGulJFFMpJUCxsdFsSu8sPSll9JgvI7KR567e6KOAeFB UtPJlkgX308BDQP81Fb0fF8FHsQPUlv+xBC7KNJg3Erp14aq2Oh1hRsTmvxpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKvtpt2OQ0tK/tIdqIyS3ZW6okacwHwYDVR0j BBgwFoAU9ptjfqlN5MyRUL39Uye+A6AzeEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MWE2ODcxMi0xZDlhLTQxNDMtODJmMS0xYzgyYzMzMTY1ZWEvMC9GNjlCNjM3RUE5 NERFNENDOTE1MEJERkQ1MzI3QkUwM0EwMzM3ODRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjY5QjYzN0VBOTRERTRDQzkxNTBCREZENTMyN0JFMDNBMDMz Nzg0Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTY4NzEyLTFkOWEtNDE0My04 MmYxLTFjODJjMzMxNjVlYS8wLzM0MzMyZTMyMzQzMzJlMzEzODM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzYzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvzuDANBgkqhkiG 9w0BAQsFAAOCAQEAGItSA2tSfYHwJ7Ol5Sn82G7aZjcfuttK5IXsRIpVDuELG6uw 3okHgFU2hygrMcyKHWQKYnL+TASDAEvdMvXq8ruQt8ZmEr+itq7zBYCm/Dg0dlJN p5xfSgsf62mGyYr3XNJ5ARLXLPozlNeR8MHsOb12aqx2CzjKJG+Us7obfYB/gQ0Q kG2q3oA8YhDmT37qltvslKf2Zm2Zb1UXX68qd+MmNjYjfDvyNriGrLai+DbjYXb6 6a87dcRXbeR8oWF7J/k6Rgqq/odNsAjBHw84vZ516nfpk43AVy4IacHhuEVqTHoi gd+gNyTlAtG9VavAKM5jZk3fmO9Rabu6h0EI9g== -----END CERTIFICATE-----Generated at Tue Sep 9 02:45:13 2025 by rpki-client