$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa File: 34332e3234322e3133322e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: ut8mKe181e+GL8gZVd8D9lpxfAhurYa657vG8sPaVZU= Subject key identifier: 02:95:DB:E9:D0:F6:50:60:3A:F3:B2:87:4C:3D:97:AB:E5:BF:A4:79 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 455BB0AB85DA47C3C5B2CA16F2C4A2EF342976E7 Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa Signing time: Mon 02 Jun 2025 02:04:23 +0000 ROA not before: Mon 02 Jun 2025 01:59:23 +0000 ROA not after: Mon 01 Jun 2026 02:04:23 +0000 asID: 58476 IP address blocks: 43.242.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:5b:b0:ab:85:da:47:c3:c5:b2:ca:16:f2:c4:a2:ef:34:29:76:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jun 2 01:59:23 2025 GMT Not After : Jun 1 02:04:23 2026 GMT Subject: CN=0295DBE9D0F650603AF3B2874C3D97ABE5BFA479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:45:35:a4:6a:e3:ef:77:25:b2:4c:09:4d:48: e9:22:8d:c8:b8:d1:5e:53:fe:2f:92:5d:48:e9:36: 2b:54:f5:ae:92:8d:c5:26:84:49:80:af:e7:1a:c5: 7d:0a:4a:aa:6b:94:ea:e6:46:f1:20:5b:29:57:c5: 08:19:eb:aa:d5:59:3f:89:e1:59:32:3f:fe:cd:03: e9:6a:16:c5:07:fe:ac:33:c3:bf:1d:c7:fd:a0:98: ef:9a:74:77:58:54:c7:b7:03:f2:39:db:86:3c:4f: c8:a8:20:d4:01:4f:d8:d0:6d:23:1c:d4:e3:2d:53: f7:75:b4:55:ee:c3:8f:99:b3:e8:4b:bc:ef:9f:04: ec:a6:6c:b2:27:64:31:45:d8:a5:3e:c7:2c:89:79: df:cf:c2:af:59:19:56:a2:fa:3f:ab:8a:3a:fa:51: 1d:9f:b9:b9:78:de:49:04:eb:36:9e:ad:36:38:d1: 79:b1:2e:5c:22:64:f2:c1:cf:06:b9:31:cc:ed:bd: c6:b7:ce:6d:49:46:58:a1:61:6c:bc:6d:c6:72:c2: 82:aa:d7:eb:a2:3c:d5:7e:8f:d7:45:51:85:c7:34: dc:e6:f4:ef:6b:97:5c:80:1d:42:8b:6a:da:d0:92: 1f:60:83:f0:98:4a:20:b8:e7:62:ab:c1:8f:2a:4a: e4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:95:DB:E9:D0:F6:50:60:3A:F3:B2:87:4C:3D:97:AB:E5:BF:A4:79 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133322e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.132.0/24 Signature Algorithm: sha256WithRSAEncryption 83:fd:87:a4:b0:7c:88:ec:09:dc:fd:71:9a:e5:ca:ed:25:82: 88:1e:d9:d7:a0:58:6b:1b:c7:c0:cc:54:b0:46:a8:29:e6:f7: 6b:fd:5e:b2:44:ce:e7:4d:00:b4:21:8c:e6:7d:be:cd:e0:0e: c5:0e:70:41:d8:a6:e7:3a:23:31:34:48:11:6f:1e:e7:ea:ef: 52:b3:ea:6c:e3:ce:10:87:ad:03:00:5c:0a:fe:31:30:ab:4c: 13:1e:7f:27:0f:94:96:42:1d:56:d5:57:2f:60:bc:3e:bb:eb: fb:6f:00:bf:93:2e:c6:88:bf:e1:8b:5b:75:14:04:cc:41:4a: 35:1b:bb:b5:a2:e2:1d:20:1c:b7:b8:90:21:0a:65:9f:d1:5a: d6:01:98:dd:f5:83:0c:35:96:5c:0c:55:20:c0:01:9a:cb:9d: 15:fe:83:4e:4e:d2:a3:ad:86:d1:11:79:5c:e4:c2:75:cd:11: d5:fa:e0:6b:fe:4e:3c:ba:56:e0:f2:15:94:c4:47:bf:cd:ac: 4c:67:d8:96:76:2c:80:0e:94:14:aa:34:34:96:8e:7c:47:9b: 1a:a9:9d:61:d1:6e:0a:e4:38:fe:ff:4d:44:38:67:1d:55:ca: 58:78:1c:0d:d7:36:15:f4:ff:75:49:8b:e0:26:04:7c:18:c4: 3e:31:b2:e4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURVuwq4XaR8PFssoW8sSi7zQpducwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNTA2MDIwMTU5MjNaFw0yNjA2MDEwMjA0MjNaMDMxMTAvBgNV BAMTKDAyOTVEQkU5RDBGNjUwNjAzQUYzQjI4NzRDM0Q5N0FCRTVCRkE0NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKRTWkauPvdyWyTAlNSOkijci4 0V5T/i+SXUjpNitU9a6SjcUmhEmAr+caxX0KSqprlOrmRvEgWylXxQgZ66rVWT+J 4VkyP/7NA+lqFsUH/qwzw78dx/2gmO+adHdYVMe3A/I524Y8T8ioINQBT9jQbSMc 1OMtU/d1tFXuw4+Zs+hLvO+fBOymbLInZDFF2KU+xyyJed/Pwq9ZGVai+j+rijr6 UR2fubl43kkE6zaerTY40XmxLlwiZPLBzwa5Mcztvca3zm1JRlihYWy8bcZywoKq 1+uiPNV+j9dFUYXHNNzm9O9rl1yAHUKLatrQkh9gg/CYSiC452KrwY8qSuQnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUApXb6dD2UGA687KHTD2Xq+W/pHkwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzM0MzMyZTMyMzQzMjJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvyhDANBgkqhkiG 9w0BAQsFAAOCAQEAg/2HpLB8iOwJ3P1xmuXK7SWCiB7Z16BYaxvHwMxUsEaoKeb3 a/1eskTO500AtCGM5n2+zeAOxQ5wQdim5zojMTRIEW8e5+rvUrPqbOPOEIetAwBc Cv4xMKtMEx5/Jw+UlkIdVtVXL2C8Prvr+28Av5Muxoi/4YtbdRQEzEFKNRu7taLi HSAct7iQIQpln9Fa1gGY3fWDDDWWXAxVIMABmsudFf6DTk7So62G0RF5XOTCdc0R 1frga/5OPLpW4PIVlMRHv82sTGfYlnYsgA6UFKo0NJaOfEebGqmdYdFuCuQ4/v9N RDhnHVXKWHgcDdc2FfT/dUmL4CYEfBjEPjGy5A== -----END CERTIFICATE-----Generated at Sat Jun 7 06:01:05 2025 by rpki-client