$ rpki-client -vvf repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/34332e3234372e31322e302f32322d3234203d3e203338333230.roa File: 34332e3234372e31322e302f32322d3234203d3e203338333230.roa (raw, json) Hash identifier: 2g+NXNHiM0B7rPdW5gGiKA7VbkoVsAcew6mjSoTkRN4= Subject key identifier: 2A:71:CC:1E:DA:41:58:C8:D8:9B:47:B2:2C:C2:A8:B0:60:63:1A:B5 Certificate issuer: /CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Certificate serial: 52732A63F4EA63713193B0A7A6069FA1D488605D Authority key identifier: C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/34332e3234372e31322e302f32322d3234203d3e203338333230.roa Signing time: Mon 02 Jun 2025 01:02:33 +0000 ROA not before: Mon 02 Jun 2025 00:57:33 +0000 ROA not after: Mon 01 Jun 2026 01:02:33 +0000 asID: 38320 IP address blocks: 43.247.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:51:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:73:2a:63:f4:ea:63:71:31:93:b0:a7:a6:06:9f:a1:d4:88:60:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1 Validity Not Before: Jun 2 00:57:33 2025 GMT Not After : Jun 1 01:02:33 2026 GMT Subject: CN=2A71CC1EDA4158C8D89B47B22CC2A8B060631AB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ce:4e:04:70:ec:4d:13:18:9a:b8:18:76:d0: 78:44:9b:8d:36:2b:9c:24:d9:45:7b:9f:f4:01:7e: b9:49:78:54:78:61:ac:e8:1d:c3:a4:53:2c:89:10: a2:16:ad:cc:24:ac:58:1e:6e:ce:b8:eb:1e:4d:0a: 67:a0:5f:a6:fc:d0:54:1b:13:b3:21:6c:cd:b8:2e: a6:7f:47:6c:3c:30:c3:fc:59:f0:64:1c:17:53:78: dc:8d:34:3f:4c:43:df:de:1e:a3:02:96:e1:75:42: 83:d3:9c:04:e9:e5:76:ac:88:7a:df:16:76:73:da: 33:7a:58:0b:cf:27:68:44:34:95:c7:ca:1e:48:ad: e5:ca:e2:45:cb:a2:21:bb:03:a1:b5:db:a6:8e:a3: b4:7c:58:13:79:69:dd:a4:c0:3c:8a:e8:c8:fa:94: 68:db:f1:b1:5b:45:7a:b7:8b:9c:d1:09:55:00:88: e7:0b:80:f3:70:c1:5a:ff:cb:3b:b0:5e:8c:6b:28: 9a:35:f7:a0:d2:21:c7:49:0d:e3:d2:70:a4:be:53: 14:04:ae:d3:5a:98:ca:e6:ca:c7:ba:a6:76:3a:02: 3a:fe:5b:3d:2f:c2:c4:18:b0:77:38:d0:32:23:86: a2:23:b5:bb:d0:d9:21:65:a6:6c:d6:64:fc:e3:92: 26:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:71:CC:1E:DA:41:58:C8:D8:9B:47:B2:2C:C2:A8:B0:60:63:1A:B5 X509v3 Authority Key Identifier: keyid:C8:DD:5D:84:FA:FA:BF:7E:AF:62:B3:B0:F4:E4:5A:23:31:F8:02:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8DD5D84FAFABF7EAF62B3B0F4E45A2331F802E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a945b86e-0895-4759-a77c-a06ce14e243c/0/34332e3234372e31322e302f32322d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.12.0/22 Signature Algorithm: sha256WithRSAEncryption bc:42:56:d0:90:7d:1f:b6:59:f1:6e:fc:62:e5:3a:f8:a5:84: c2:a2:14:09:df:78:5e:f2:82:40:68:e8:cd:03:50:9a:1a:57: 70:fc:b4:04:5a:47:8a:17:41:3c:24:9b:03:10:58:fe:7d:fe: 35:9f:32:2f:b3:8d:b6:aa:4f:91:18:b0:de:b6:c0:9f:c2:e1: e6:73:3d:b6:0d:a4:fa:be:b2:f6:4d:02:fb:b3:bd:a5:d0:7f: 17:09:82:dc:93:7e:54:cf:19:e7:85:1c:e2:ff:82:50:e4:83: 4b:0e:cc:80:40:94:48:01:13:67:68:a7:93:43:d2:0f:48:89: 28:6d:3f:6b:3f:46:06:c8:3d:e2:18:5d:9c:69:d8:26:6f:42: e2:1e:42:7b:70:ef:d8:b2:0f:02:51:a6:88:ad:ad:8c:9d:28: fb:eb:dd:52:7d:c5:2e:1b:0c:cb:d3:7d:ad:84:2a:79:63:1f: 19:91:e9:1a:38:2c:49:90:18:e0:20:07:63:f9:68:04:bd:32: 09:e6:77:77:ba:1d:49:e9:b1:5c:9d:f6:be:54:d4:0c:a4:62: 85:8a:98:6c:fa:f6:78:67:f0:e0:20:4c:95:ad:f3:67:64:87: 1f:15:1b:28:b3:c4:c0:23:74:32:ca:41:ec:77:41:93:f6:2a: 66:bd:95:61 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUnMqY/TqY3Exk7CnpgafodSIYF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMz MUY4MDJFMTAeFw0yNTA2MDIwMDU3MzNaFw0yNjA2MDEwMTAyMzNaMDMxMTAvBgNV BAMTKDJBNzFDQzFFREE0MTU4QzhEODlCNDdCMjJDQzJBOEIwNjA2MzFBQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyzk4EcOxNExiauBh20HhEm402 K5wk2UV7n/QBfrlJeFR4YazoHcOkUyyJEKIWrcwkrFgebs646x5NCmegX6b80FQb E7MhbM24LqZ/R2w8MMP8WfBkHBdTeNyNND9MQ9/eHqMCluF1QoPTnATp5XasiHrf FnZz2jN6WAvPJ2hENJXHyh5IreXK4kXLoiG7A6G126aOo7R8WBN5ad2kwDyK6Mj6 lGjb8bFbRXq3i5zRCVUAiOcLgPNwwVr/yzuwXoxrKJo196DSIcdJDePScKS+UxQE rtNamMrmyse6pnY6Ajr+Wz0vwsQYsHc40DIjhqIjtbvQ2SFlpmzWZPzjkiYpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKnHMHtpBWMjYm0eyLMKosGBjGrUwHwYDVR0j BBgwFoAUyN1dhPr6v36vYrOw9ORaIzH4AuEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTQ1Yjg2ZS0wODk1LTQ3NTktYTc3Yy1hMDZjZTE0ZTI0M2MvMC9DOERENUQ4NEZB RkFCRjdFQUY2MkIzQjBGNEU0NUEyMzMxRjgwMkUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhERDVEODRGQUZBQkY3RUFGNjJCM0IwRjRFNDVBMjMzMUY4 MDJFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NDViODZlLTA4OTUtNDc1OS1h NzdjLWEwNmNlMTRlMjQzYy8wLzM0MzMyZTMyMzQzNzJlMzEzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMzMzgzMzMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr9wwwDQYJKoZIhvcN AQELBQADggEBALxCVtCQfR+2WfFu/GLlOvilhMKiFAnfeF7ygkBo6M0DUJoaV3D8 tARaR4oXQTwkmwMQWP59/jWfMi+zjbaqT5EYsN62wJ/C4eZzPbYNpPq+svZNAvuz vaXQfxcJgtyTflTPGeeFHOL/glDkg0sOzIBAlEgBE2dop5ND0g9IiShtP2s/RgbI PeIYXZxp2CZvQuIeQntw79iyDwJRpoitrYydKPvr3VJ9xS4bDMvTfa2EKnljHxmR 6Ro4LEmQGOAgB2P5aAS9Mgnmd3e6HUnpsVyd9r5U1AykYoWKmGz69nhn8OAgTJWt 82dkhx8VGyizxMAjdDLKQex3QZP2Kma9lWE= -----END CERTIFICATE-----Generated at Thu Jun 5 18:25:14 2025 by rpki-client