$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa File: 34332e3234372e33322e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: Aag1OSl+wpovAhRSAcxHhZgm0UTn2CNdoF6RtoV/XoE= Subject key identifier: BA:4D:C8:FB:7E:F4:26:65:B1:0F:20:83:7F:B1:B4:DF:87:DB:86:72 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 0180A40B9D6DA9D8323A55593D2285ACE33B25FC Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa Signing time: Mon 02 Jun 2025 02:03:13 +0000 ROA not before: Mon 02 Jun 2025 01:58:13 +0000 ROA not after: Mon 01 Jun 2026 02:03:13 +0000 asID: 45312 IP address blocks: 43.247.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 12:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:80:a4:0b:9d:6d:a9:d8:32:3a:55:59:3d:22:85:ac:e3:3b:25:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Jun 2 01:58:13 2025 GMT Not After : Jun 1 02:03:13 2026 GMT Subject: CN=BA4DC8FB7EF42665B10F20837FB1B4DF87DB8672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:3d:f8:c0:1f:7f:e0:6f:dd:b2:fc:e4:ba:17: 65:25:b1:58:87:df:3e:d5:b6:42:bc:04:a8:e8:05: c2:fe:5a:b4:7c:5c:8d:9d:ec:f2:35:04:ba:37:b0: 37:04:3e:de:1a:ec:52:c0:67:dd:0f:8e:ee:91:84: bb:5b:b1:62:6a:58:04:3c:fd:6c:9e:f3:1b:19:44: 51:d0:c3:40:1c:fe:6a:be:32:3a:76:24:7a:a6:11: e3:56:d6:86:19:98:6f:a4:41:e0:89:bb:3e:8d:69: 3c:50:6c:c5:fa:22:db:94:24:b9:72:63:2d:e5:84: 4d:0b:b7:83:e7:f2:50:ca:ec:a6:41:e5:4e:4d:3b: 5d:e8:5f:6d:0f:43:2a:62:24:b1:23:9f:b7:f5:35: 75:55:8f:ba:85:d2:9a:e7:18:6d:4d:ef:3b:57:09: 00:9b:b9:1e:5f:9a:ae:36:a1:05:31:86:36:3f:88: b7:8b:22:2a:0e:c1:a7:ff:06:09:89:3f:45:13:de: 3c:9c:41:1e:ff:cd:99:0e:3d:36:bd:4d:f6:ea:11: 86:b6:96:3f:6e:7f:d3:57:b5:d4:1f:80:03:ec:ae: f6:86:3c:69:af:dc:6a:bd:9a:2a:a1:9b:1d:9b:85: 7b:f0:3b:fb:16:ac:fb:63:af:c5:85:00:7d:07:53: b1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4D:C8:FB:7E:F4:26:65:B1:0F:20:83:7F:B1:B4:DF:87:DB:86:72 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/34332e3234372e33322e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.32.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:16:a4:2f:85:ef:55:b5:41:e7:1a:dc:77:b7:e2:1a:09:d8: 03:27:10:1d:ef:ef:9f:a5:db:c5:3e:c4:f5:eb:84:14:8d:82: 3f:ae:cf:a1:90:47:07:ad:f4:05:00:72:76:e4:2c:dd:82:44: 6d:b3:1e:21:6f:08:2e:2b:a9:2c:1b:a9:7f:15:63:79:ad:47: 5c:24:91:da:0e:0a:2e:39:58:50:fb:ec:4e:10:c6:1c:30:58: c3:69:51:f4:46:5f:47:e8:2e:c1:51:a8:0b:ef:ee:7c:da:1e: 3d:b3:9b:01:6e:a0:3e:a7:7a:11:6e:52:27:f1:99:3a:c5:66: 04:bf:92:ea:4d:20:26:c1:d6:87:ca:6e:d2:6c:bd:a7:57:ab: 14:cb:c5:8f:f5:66:11:75:16:49:ac:ca:fd:77:f1:a3:93:9c: 23:3b:3a:1e:a7:60:1a:ca:8d:7a:b1:fe:82:49:c8:28:3d:06: 44:bd:c5:95:c9:28:f2:5c:48:d1:e8:bc:95:18:ec:aa:4d:82: 70:f5:8e:31:8a:47:de:32:d4:e1:ca:d1:5d:1a:29:3e:44:29: 84:5a:a5:5a:a2:0a:5d:6b:9a:3e:66:17:54:4a:a0:5a:85:e4: 2e:fa:d6:b8:f6:89:23:08:4d:8f:ee:2c:68:10:37:f4:c6:c5: 14:25:d6:1d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAYCkC51tqdgyOlVZPSKFrOM7JfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNTA2MDIwMTU4MTNaFw0yNjA2MDEwMjAzMTNaMDMxMTAvBgNV BAMTKEJBNERDOEZCN0VGNDI2NjVCMTBGMjA4MzdGQjFCNERGODdEQjg2NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUPfjAH3/gb92y/OS6F2UlsViH 3z7VtkK8BKjoBcL+WrR8XI2d7PI1BLo3sDcEPt4a7FLAZ90Pju6RhLtbsWJqWAQ8 /Wye8xsZRFHQw0Ac/mq+Mjp2JHqmEeNW1oYZmG+kQeCJuz6NaTxQbMX6ItuUJLly Yy3lhE0Lt4Pn8lDK7KZB5U5NO13oX20PQypiJLEjn7f1NXVVj7qF0prnGG1N7ztX CQCbuR5fmq42oQUxhjY/iLeLIioOwaf/BgmJP0UT3jycQR7/zZkOPTa9TfbqEYa2 lj9uf9NXtdQfgAPsrvaGPGmv3Gq9miqhmx2bhXvwO/sWrPtjr8WFAH0HU7HzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuk3I+370JmWxDyCDf7G034fbhnIwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzM0MzMyZTMyMzQzNzJlMzMzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr9yAwDQYJKoZIhvcN AQELBQADggEBACsWpC+F71W1Qeca3He34hoJ2AMnEB3v75+l28U+xPXrhBSNgj+u z6GQRwet9AUAcnbkLN2CRG2zHiFvCC4rqSwbqX8VY3mtR1wkkdoOCi45WFD77E4Q xhwwWMNpUfRGX0foLsFRqAvv7nzaHj2zmwFuoD6nehFuUifxmTrFZgS/kupNICbB 1ofKbtJsvadXqxTLxY/1ZhF1Fkmsyv138aOTnCM7Oh6nYBrKjXqx/oJJyCg9BkS9 xZXJKPJcSNHovJUY7KpNgnD1jjGKR94y1OHK0V0aKT5EKYRapVqiCl1rmj5mF1RK oFqF5C761rj2iSMITY/uLGgQN/TGxRQl1h0= -----END CERTIFICATE-----Generated at Thu Jun 5 18:12:49 2025 by rpki-client