$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32322d3234203d3e203535363533.roa File: 34332e3234392e3134302e302f32322d3234203d3e203535363533.roa (raw, json) Hash identifier: VXuEsrUjBUraWB5GeM4W6dfuMEU9X+IXajG+jXJX29c= Subject key identifier: 00:E4:33:BD:30:72:E4:DD:42:D5:C8:1F:C2:89:27:12:AE:AE:79:FF Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 657D75B05EF559E91C2D53883A29F453D37AB0B6 Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32322d3234203d3e203535363533.roa Signing time: Mon 02 Jun 2025 02:04:06 +0000 ROA not before: Mon 02 Jun 2025 01:59:06 +0000 ROA not after: Mon 01 Jun 2026 02:04:06 +0000 asID: 55653 IP address blocks: 43.249.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:7d:75:b0:5e:f5:59:e9:1c:2d:53:88:3a:29:f4:53:d3:7a:b0:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jun 2 01:59:06 2025 GMT Not After : Jun 1 02:04:06 2026 GMT Subject: CN=00E433BD3072E4DD42D5C81FC2892712AEAE79FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d3:ed:a3:8e:a3:a3:26:b2:9e:23:12:b3:dc: 13:47:13:b4:dd:d4:e2:8d:ac:d5:1b:b3:fc:c6:52: 3c:36:3b:04:ab:a1:e8:9f:cb:cc:21:d9:6d:bb:6d: 37:19:14:2c:14:7b:27:e6:db:fb:10:04:61:3d:35: 3e:b2:f3:86:8c:d0:f9:26:84:13:4c:27:e7:7e:b3: 69:0a:02:37:d5:f4:e6:f9:7e:34:fe:b1:6c:98:94: d9:4f:e4:2a:d7:45:77:f3:12:c3:1d:5b:96:fc:a4: 05:69:e0:f3:e4:02:68:5b:a0:7d:3b:7c:28:68:bf: 94:76:37:1c:00:57:7e:a3:69:a5:fe:21:8e:cb:0f: 98:ef:fe:f7:66:ba:af:6a:ef:c7:3a:07:4f:83:f1: f4:73:28:0d:f2:af:10:42:1c:8b:82:81:c3:2a:7c: c8:c4:f2:24:50:bf:e9:2a:ca:b6:4b:1c:29:de:5e: 8d:6e:03:cb:0c:4d:d0:db:87:58:e6:78:a1:2d:3f: 9c:36:6f:1e:c5:16:90:cf:82:1b:cc:ab:6d:fe:28: 59:79:2b:e9:3c:2e:e2:7a:54:fa:d5:27:b4:e9:84: 50:11:b2:38:5e:84:32:63:9d:04:2c:67:40:f6:90: fd:3e:8f:a6:df:6e:72:8a:1b:0e:0e:90:c7:ef:52: bb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E4:33:BD:30:72:E4:DD:42:D5:C8:1F:C2:89:27:12:AE:AE:79:FF X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/34332e3234392e3134302e302f32322d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.140.0/22 Signature Algorithm: sha256WithRSAEncryption a8:3a:50:96:a8:c7:39:69:4e:95:40:64:81:81:93:19:1c:ac: 53:de:7d:aa:00:f2:a0:57:1f:8a:81:79:42:7f:cc:6b:a6:d4: 02:56:3a:af:c5:33:dd:8b:07:fc:29:5a:8f:92:2a:4f:84:aa: 88:b0:d8:55:00:f0:ad:2c:85:c8:53:1c:b1:1b:5d:24:63:ae: bd:33:17:8f:8c:9f:c0:62:b9:e7:4f:c2:d5:cf:c2:d0:51:ac: 2b:19:65:03:61:cc:ef:23:6a:00:4b:6e:dc:c2:55:64:8e:ed: f2:7e:1e:fd:6f:ac:50:5b:6a:8b:1e:a9:41:c4:21:6d:bb:d8: 4d:d5:ca:58:ea:a5:2b:e5:74:7f:8b:ea:2b:c6:29:01:d6:ed: a2:b0:f8:25:6e:f1:0a:f7:b2:67:7f:ee:1d:1d:b5:77:7e:77: 4b:cd:6d:55:5c:70:3e:ce:0c:36:02:bd:ce:3b:e7:c1:c5:1d: d9:ab:74:5f:47:f3:22:72:3c:3c:25:b1:0f:55:94:3d:61:9f: 32:6f:2b:41:8a:19:9f:c8:5d:55:ef:0b:2c:ea:6b:99:37:a5: ec:a2:80:ee:52:b8:57:5e:01:58:24:2e:57:da:ee:88:16:e5: d3:45:05:63:83:73:3d:f8:ce:3f:fb:6c:a9:73:a3:af:f0:0e: c3:01:40:50 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZX11sF71WekcLVOIOin0U9N6sLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNTA2MDIwMTU5MDZaFw0yNjA2MDEwMjA0MDZaMDMxMTAvBgNV BAMTKDAwRTQzM0JEMzA3MkU0REQ0MkQ1QzgxRkMyODkyNzEyQUVBRTc5RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd0+2jjqOjJrKeIxKz3BNHE7Td 1OKNrNUbs/zGUjw2OwSroeify8wh2W27bTcZFCwUeyfm2/sQBGE9NT6y84aM0Pkm hBNMJ+d+s2kKAjfV9Ob5fjT+sWyYlNlP5CrXRXfzEsMdW5b8pAVp4PPkAmhboH07 fChov5R2NxwAV36jaaX+IY7LD5jv/vdmuq9q78c6B0+D8fRzKA3yrxBCHIuCgcMq fMjE8iRQv+kqyrZLHCneXo1uA8sMTdDbh1jmeKEtP5w2bx7FFpDPghvMq23+KFl5 K+k8LuJ6VPrVJ7TphFARsjhehDJjnQQsZ0D2kP0+j6bfbnKKGw4OkMfvUruJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAOQzvTBy5N1C1cgfwoknEq6uef8wHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzM0MzMyZTMyMzQzOTJlMzEzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzUzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv5jDANBgkqhkiG 9w0BAQsFAAOCAQEAqDpQlqjHOWlOlUBkgYGTGRysU959qgDyoFcfioF5Qn/Ma6bU AlY6r8Uz3YsH/Claj5IqT4SqiLDYVQDwrSyFyFMcsRtdJGOuvTMXj4yfwGK550/C 1c/C0FGsKxllA2HM7yNqAEtu3MJVZI7t8n4e/W+sUFtqix6pQcQhbbvYTdXKWOql K+V0f4vqK8YpAdbtorD4JW7xCveyZ3/uHR21d353S81tVVxwPs4MNgK9zjvnwcUd 2at0X0fzInI8PCWxD1WUPWGfMm8rQYoZn8hdVe8LLOprmTel7KKA7lK4V14BWCQu V9ruiBbl00UFY4NzPfjOP/tsqXOjr/AOwwFAUA== -----END CERTIFICATE-----Generated at Sun Jun 8 08:14:57 2025 by rpki-client