$ rpki-client -vvf repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/34332e3232352e36342e302f32322d3234203d3e203538343935.roa File: 34332e3232352e36342e302f32322d3234203d3e203538343935.roa (raw, json) Hash identifier: nG5OqSEJiUSM53PY/eu6ZUUZVwxMF+jfL/QWVNc9tAM= Subject key identifier: CA:3B:3F:DD:54:6B:5F:61:79:BD:95:2C:A0:57:62:A5:94:C3:5D:26 Certificate issuer: /CN=6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6 Certificate serial: 4A8A1E8F5E91712700320A6BB4F474D1BD51B9F1 Authority key identifier: 6E:55:34:AB:A6:EF:3C:98:C8:D0:CF:43:77:95:D2:5A:3A:9C:25:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/34332e3232352e36342e302f32322d3234203d3e203538343935.roa Signing time: Mon 02 Jun 2025 02:03:00 +0000 ROA not before: Mon 02 Jun 2025 01:58:00 +0000 ROA not after: Mon 01 Jun 2026 02:03:00 +0000 asID: 58495 IP address blocks: 43.225.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.crl rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:8a:1e:8f:5e:91:71:27:00:32:0a:6b:b4:f4:74:d1:bd:51:b9:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6 Validity Not Before: Jun 2 01:58:00 2025 GMT Not After : Jun 1 02:03:00 2026 GMT Subject: CN=CA3B3FDD546B5F6179BD952CA05762A594C35D26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ba:dc:05:e0:e0:1d:3a:a9:67:50:db:7b:60: 39:40:85:cf:c9:80:6f:03:b6:0f:42:e6:2f:89:5a: 51:01:b4:c1:4d:30:71:28:39:81:85:61:09:2b:f3: fd:a8:40:52:11:f7:9d:db:41:e5:3d:b2:e5:dd:3d: 59:0a:21:31:9d:e9:d1:f7:ed:61:fe:02:c5:ba:1e: 5d:a1:08:3b:d9:64:6e:04:01:1b:fe:bb:84:a0:2a: bc:df:09:b6:66:be:67:3a:ff:b8:c3:40:f0:94:7c: cf:58:d0:b5:81:d7:15:ce:e6:3d:8e:a1:79:f3:dd: c0:35:e2:41:45:a4:58:75:69:22:78:78:57:1b:df: 89:8a:0d:a3:2a:fd:da:21:70:81:69:6a:9b:7b:86: 9a:2d:e0:16:7c:44:0a:01:ed:c9:d0:af:20:26:10: 20:cf:db:2b:ed:75:ce:ac:1f:33:72:fb:62:3e:38: 94:2a:b7:02:d1:3b:52:82:83:0f:cd:8f:d8:8d:66: b3:71:ec:3d:4c:39:3c:2b:8d:4c:8b:7f:c7:04:62: 64:48:52:2f:05:b3:15:9b:f3:84:cf:98:31:81:19: 45:d3:32:78:54:85:95:49:68:97:75:9a:6a:05:36: 6c:be:44:f7:2d:71:61:a4:b9:f5:09:f1:ae:43:11: ee:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3B:3F:DD:54:6B:5F:61:79:BD:95:2C:A0:57:62:A5:94:C3:5D:26 X509v3 Authority Key Identifier: keyid:6E:55:34:AB:A6:EF:3C:98:C8:D0:CF:43:77:95:D2:5A:3A:9C:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/34332e3232352e36342e302f32322d3234203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.64.0/22 Signature Algorithm: sha256WithRSAEncryption 28:a5:63:ef:ff:28:b2:9c:b8:c0:25:27:f9:0e:11:e3:70:6f: e9:e2:2a:15:9f:ed:e7:19:0b:d9:04:e4:7b:7b:2b:2f:5c:0a: 93:49:58:27:fb:30:0b:ea:1e:74:34:e7:d2:57:6e:7d:e7:33: 42:6c:ae:87:d9:68:4d:c4:32:3b:7f:a4:e7:c1:d1:05:4e:3a: b8:cb:ff:8e:57:46:e9:db:48:09:0c:83:5e:cc:6a:55:b6:13: 90:c4:83:97:fe:e3:98:b8:b1:2d:d7:b0:56:4a:b1:c6:ca:94: 08:26:fc:3b:f7:ed:3f:77:61:c3:69:50:d7:a7:e5:22:be:f0: bc:ee:80:77:b5:56:30:ed:65:e9:b9:a7:12:88:28:a4:17:e1: 5b:5c:66:1a:a5:0a:25:0d:45:ce:0d:c4:85:03:45:92:71:b5: 24:fd:16:a3:33:7c:af:c9:86:ab:88:60:ad:a7:6d:5a:e1:3a: 3c:03:89:35:f2:03:9e:5c:a9:d3:05:7b:78:13:f0:95:af:02: 50:a9:9d:11:76:b7:0a:00:5f:79:66:95:af:84:33:88:de:94: 99:1c:32:d7:f1:ec:63:ea:80:37:92:62:8d:4c:2c:39:e5:1a: 02:80:62:5e:3d:c6:f2:c1:ef:32:e4:ef:d2:fd:5a:fe:5b:73: f4:29:ac:a3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUSooej16RcScAMgprtPR00b1RufEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU1NTM0QUJBNkVGM0M5OEM4RDBDRjQzNzc5NUQyNUEz QTlDMjVDNjAeFw0yNTA2MDIwMTU4MDBaFw0yNjA2MDEwMjAzMDBaMDMxMTAvBgNV BAMTKENBM0IzRkRENTQ2QjVGNjE3OUJEOTUyQ0EwNTc2MkE1OTRDMzVEMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhutwF4OAdOqlnUNt7YDlAhc/J gG8Dtg9C5i+JWlEBtMFNMHEoOYGFYQkr8/2oQFIR953bQeU9suXdPVkKITGd6dH3 7WH+AsW6Hl2hCDvZZG4EARv+u4SgKrzfCbZmvmc6/7jDQPCUfM9Y0LWB1xXO5j2O oXnz3cA14kFFpFh1aSJ4eFcb34mKDaMq/dohcIFpapt7hpot4BZ8RAoB7cnQryAm ECDP2yvtdc6sHzNy+2I+OJQqtwLRO1KCgw/Nj9iNZrNx7D1MOTwrjUyLf8cEYmRI Ui8FsxWb84TPmDGBGUXTMnhUhZVJaJd1mmoFNmy+RPctcWGkufUJ8a5DEe6jAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUyjs/3VRrX2F5vZUsoFdipZTDXSYwHwYDVR0j BBgwFoAUblU0q6bvPJjI0M9Dd5XSWjqcJcYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjkxNzc3ZS1jZGI0LTQ4OTctYjI4Ny1lNThlNDI0YzE5OWQvMC82RTU1MzRBQkE2 RUYzQzk4QzhEMENGNDM3Nzk1RDI1QTNBOUMyNUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkU1NTM0QUJBNkVGM0M5OEM4RDBDRjQzNzc5NUQyNUEzQTlD MjVDNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2OTE3NzdlLWNkYjQtNDg5Ny1i Mjg3LWU1OGU0MjRjMTk5ZC8wLzM0MzMyZTMyMzIzNTJlMzYzNDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzgzNDM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr4UAwDQYJKoZIhvcN AQELBQADggEBACilY+//KLKcuMAlJ/kOEeNwb+niKhWf7ecZC9kE5Ht7Ky9cCpNJ WCf7MAvqHnQ059JXbn3nM0JsrofZaE3EMjt/pOfB0QVOOrjL/45XRunbSAkMg17M alW2E5DEg5f+45i4sS3XsFZKscbKlAgm/Dv37T93YcNpUNen5SK+8LzugHe1VjDt Zem5pxKIKKQX4VtcZhqlCiUNRc4NxIUDRZJxtST9FqMzfK/JhquIYK2nbVrhOjwD iTXyA55cqdMFe3gT8JWvAlCpnRF2twoAX3lmla+EM4jelJkcMtfx7GPqgDeSYo1M LDnlGgKAYl49xvLB7zLk79L9Wv5bc/QprKM= -----END CERTIFICATE-----Generated at Fri Jun 6 16:55:02 2025 by rpki-client