$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32322d3234203d3e203435333132.roa File: 34332e3234372e33322e302f32322d3234203d3e203435333132.roa (raw, json) Hash identifier: MUTaQ30dWDRTGv9wdgV387WQA0QyYeD1jmgJx6CAATE= Subject key identifier: D5:1B:59:64:14:46:56:77:CB:83:71:C8:8E:D2:4F:BF:09:5A:B3:3C Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 1BD6F292626D3C495F53371D207D93482EAC893E Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32322d3234203d3e203435333132.roa Signing time: Mon 10 Mar 2025 05:16:58 +0000 ROA not before: Mon 10 Mar 2025 05:11:58 +0000 ROA not after: Mon 09 Mar 2026 05:16:58 +0000 asID: 45312 IP address blocks: 43.247.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d6:f2:92:62:6d:3c:49:5f:53:37:1d:20:7d:93:48:2e:ac:89:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Mar 10 05:11:58 2025 GMT Not After : Mar 9 05:16:58 2026 GMT Subject: CN=D51B596414465677CB8371C88ED24FBF095AB33C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f0:d0:3d:a8:ac:73:0e:8f:69:3a:e3:7f:41: 0e:7f:e7:fa:72:fe:74:72:69:93:19:02:55:bf:fc: 77:0e:5e:95:28:d8:22:43:ea:a1:a2:9d:4d:dc:3b: 51:43:30:dc:c1:81:27:73:86:73:88:b7:30:d1:75: b7:6d:a1:c3:9a:77:ad:1d:ce:17:9d:90:af:31:a4: 20:86:dd:5b:d4:54:37:78:22:e3:e8:51:3a:12:4d: 32:c0:72:cb:f9:fb:05:87:92:95:00:a6:e1:61:db: 10:2d:25:28:fe:c3:cc:35:98:48:3a:dc:e9:41:46: 4f:9f:38:ec:b2:f4:c3:b5:ab:ff:63:25:63:7d:62: 2e:d4:8e:7d:33:ca:be:9d:e9:ac:4f:f9:93:c4:0c: 17:18:a6:df:e7:b6:64:c3:a4:f5:ec:5c:22:68:dc: c6:c0:57:59:e5:91:8f:f5:4d:f7:a8:bf:6b:d3:a8: a4:30:c6:c8:97:da:77:b3:70:fb:5f:bf:b8:0a:e1: d1:43:8b:5e:8a:8b:9c:06:c8:00:44:14:57:76:07: a2:27:66:11:0b:88:8c:1d:30:80:bf:8d:75:74:db: 8e:e4:8e:d5:6f:b9:73:42:2b:56:cc:dd:fc:e0:fe: 28:60:70:76:3c:89:55:69:c9:fb:c2:32:fd:62:52: d2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:1B:59:64:14:46:56:77:CB:83:71:C8:8E:D2:4F:BF:09:5A:B3:3C X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32322d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.32.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:4b:ac:61:2e:7c:0a:45:3d:fd:2e:dd:38:71:51:9c:f7:59: d0:07:b8:42:9b:38:04:6b:f7:34:34:de:c8:40:fe:3c:90:1f: 26:1b:dc:ba:6e:0e:ea:55:c3:e0:e3:4f:00:bd:13:65:d6:17: 84:47:2b:3b:3f:5e:6a:ad:81:88:dd:0b:a5:e3:8b:23:23:11: 7a:9d:57:68:f2:81:a5:3a:73:aa:2f:55:bb:18:a7:e0:97:69: 74:5d:9c:69:16:92:f1:88:24:44:9a:8e:eb:87:89:45:cf:67: 89:51:71:3e:8a:b5:5d:88:df:fe:8c:0d:97:4c:f1:5f:2d:ef: 9f:42:99:fd:71:fc:2b:9c:3b:8c:39:a0:b7:9e:56:9d:b8:80: 64:20:fa:28:d7:56:ad:ab:38:f3:4e:80:64:0a:68:89:c5:84: 25:56:87:f9:e0:f8:d8:ed:9d:3a:54:86:c1:62:29:db:13:27: 20:c2:55:85:7b:f7:9e:0a:31:51:69:c5:d3:9c:fc:6a:7f:1f: 5f:27:a5:28:71:cd:05:21:7b:1d:51:f9:23:ac:35:0b:8b:68: 0f:77:72:96:79:5d:2a:8c:68:a2:25:62:97:5b:b6:98:05:8b: c2:e1:b4:24:64:ee:ca:b6:a8:84:3d:d7:b9:a5:ae:09:24:8e: 07:a7:0b:58 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUG9bykmJtPElfUzcdIH2TSC6siT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTAzMTAwNTExNThaFw0yNjAzMDkwNTE2NThaMDMxMTAvBgNV BAMTKEQ1MUI1OTY0MTQ0NjU2NzdDQjgzNzFDODhFRDI0RkJGMDk1QUIzM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW8NA9qKxzDo9pOuN/QQ5/5/py /nRyaZMZAlW//HcOXpUo2CJD6qGinU3cO1FDMNzBgSdzhnOItzDRdbdtocOad60d zhedkK8xpCCG3VvUVDd4IuPoUToSTTLAcsv5+wWHkpUApuFh2xAtJSj+w8w1mEg6 3OlBRk+fOOyy9MO1q/9jJWN9Yi7Ujn0zyr6d6axP+ZPEDBcYpt/ntmTDpPXsXCJo 3MbAV1nlkY/1Tfeov2vTqKQwxsiX2nezcPtfv7gK4dFDi16Ki5wGyABEFFd2B6In ZhELiIwdMIC/jXV0247kjtVvuXNCK1bM3fzg/ihgcHY8iVVpyfvCMv1iUtIBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1RtZZBRGVnfLg3HIjtJPvwlaszwwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzM0MzMyZTMyMzQzNzJlMzMzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr9yAwDQYJKoZIhvcN AQELBQADggEBAEtLrGEufApFPf0u3ThxUZz3WdAHuEKbOARr9zQ03shA/jyQHyYb 3LpuDupVw+DjTwC9E2XWF4RHKzs/XmqtgYjdC6XjiyMjEXqdV2jygaU6c6ovVbsY p+CXaXRdnGkWkvGIJESajuuHiUXPZ4lRcT6KtV2I3/6MDZdM8V8t759Cmf1x/Cuc O4w5oLeeVp24gGQg+ijXVq2rOPNOgGQKaInFhCVWh/ng+NjtnTpUhsFiKdsTJyDC VYV7954KMVFpxdOc/Gp/H18npShxzQUhex1R+SOsNQuLaA93cpZ5XSqMaKIlYpdb tpgFi8LhtCRk7sq2qIQ917mlrgkkjgenC1g= -----END CERTIFICATE-----Generated at Mon Apr 7 01:05:53 2025 by rpki-client