$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa File: 34332e3234322e3133332e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: 2NAEElgvlB7IhQMwd1Atvpj3R7riVOfOU9AzMjYnGF0= Subject key identifier: A0:68:C5:4A:77:64:21:48:4E:19:2A:92:DA:75:54:D4:41:D7:04:82 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 3389C34450E430A0E1291EB38B91F73726CDE0BC Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa Signing time: Mon 02 Jun 2025 02:04:23 +0000 ROA not before: Mon 02 Jun 2025 01:59:23 +0000 ROA not after: Mon 01 Jun 2026 02:04:23 +0000 asID: 58476 IP address blocks: 43.242.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:89:c3:44:50:e4:30:a0:e1:29:1e:b3:8b:91:f7:37:26:cd:e0:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jun 2 01:59:23 2025 GMT Not After : Jun 1 02:04:23 2026 GMT Subject: CN=A068C54A776421484E192A92DA7554D441D70482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:93:84:a3:1b:d8:1e:35:45:1f:3c:0f:e6:64: d7:93:6a:04:25:65:41:72:90:cb:15:db:d9:24:3b: 4a:ff:fd:80:7c:f2:9f:fc:29:6d:4a:61:66:c0:6f: 72:84:f0:64:c4:39:98:19:5d:90:c7:15:b0:18:6a: 18:ae:03:8e:5d:98:b1:01:f3:bf:28:a4:bd:07:c4: 2b:be:83:11:a7:75:81:9f:88:f9:7b:82:12:40:13: 87:c1:cd:7a:18:10:2b:dd:28:a1:41:35:f1:3c:88: 40:fa:5f:17:3a:bc:c0:13:8d:ad:13:32:03:f2:98: 5d:ff:7a:40:90:ce:c5:bc:28:c7:d0:f1:85:be:18: 35:c2:4e:57:1c:7d:cc:4b:ed:7c:7e:f9:4d:e6:cd: 84:0c:b4:a3:1c:f4:45:fb:cc:58:4f:d9:f2:9c:ab: 97:08:c8:1c:0e:3b:db:2d:3e:b5:09:77:e3:fa:ee: 1c:b3:ea:35:cf:a1:ad:72:a7:45:4f:c4:ce:15:08: b2:43:0d:9d:9f:9a:be:b9:86:07:35:88:0e:dc:7f: 5c:b7:44:80:90:7d:a6:5f:39:4b:ad:81:a7:59:5b: 5c:07:30:9b:b7:d8:2e:78:4d:56:fe:8d:25:9a:b2: a0:e3:84:c4:39:31:ba:50:5a:c7:55:5a:57:68:2c: b3:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:68:C5:4A:77:64:21:48:4E:19:2A:92:DA:75:54:D4:41:D7:04:82 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.133.0/24 Signature Algorithm: sha256WithRSAEncryption 78:1b:2f:34:82:a5:6d:52:60:35:d0:70:c7:3c:64:0e:86:eb: 56:50:5c:0c:3c:84:14:d5:1c:97:33:ad:d5:81:3e:91:f6:82: 74:d3:c6:9b:37:99:4d:05:41:12:06:1b:af:16:d5:d9:9e:cb: 8c:03:f0:eb:35:a9:50:a9:db:1f:e2:13:88:51:41:a9:bf:5f: 5a:1c:6e:36:90:ae:ea:ec:e2:a3:d7:3a:00:17:41:70:1e:59: 09:3f:92:88:3d:ff:7a:87:1e:db:94:cf:80:73:8b:b2:57:e7: 8d:60:9f:08:93:20:6b:7d:be:50:e7:b3:d8:4e:cc:84:0f:7a: 33:be:d5:ef:0e:c2:ac:48:e3:4e:5c:99:05:ea:6b:5f:ea:27: 37:3e:53:b2:65:8c:39:93:45:9f:c7:5e:db:92:a4:37:b0:db: de:9c:d1:f8:a9:c1:f3:84:da:2b:4a:75:a5:8c:6b:20:19:41: b9:52:80:aa:b4:51:c6:56:be:e3:6c:97:9d:51:c3:4e:ac:4e: 6a:cd:57:1f:5a:56:b5:3b:46:3c:87:9e:e7:f3:39:8e:9b:70: d7:63:62:00:7c:e0:2f:7e:dc:29:90:19:29:e0:a7:62:4b:ce: ba:62:a6:9e:2a:88:37:10:6a:62:2b:d7:2d:fa:5b:2e:ef:de: 87:bc:1f:3b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM4nDRFDkMKDhKR6zi5H3NybN4LwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNTA2MDIwMTU5MjNaFw0yNjA2MDEwMjA0MjNaMDMxMTAvBgNV BAMTKEEwNjhDNTRBNzc2NDIxNDg0RTE5MkE5MkRBNzU1NEQ0NDFENzA0ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSk4SjG9geNUUfPA/mZNeTagQl ZUFykMsV29kkO0r//YB88p/8KW1KYWbAb3KE8GTEOZgZXZDHFbAYahiuA45dmLEB 878opL0HxCu+gxGndYGfiPl7ghJAE4fBzXoYECvdKKFBNfE8iED6Xxc6vMATja0T MgPymF3/ekCQzsW8KMfQ8YW+GDXCTlccfcxL7Xx++U3mzYQMtKMc9EX7zFhP2fKc q5cIyBwOO9stPrUJd+P67hyz6jXPoa1yp0VPxM4VCLJDDZ2fmr65hgc1iA7cf1y3 RICQfaZfOUutgadZW1wHMJu32C54TVb+jSWasqDjhMQ5MbpQWsdVWldoLLNhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoGjFSndkIUhOGSqS2nVU1EHXBIIwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzM0MzMyZTMyMzQzMjJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvyhTANBgkqhkiG 9w0BAQsFAAOCAQEAeBsvNIKlbVJgNdBwxzxkDobrVlBcDDyEFNUclzOt1YE+kfaC dNPGmzeZTQVBEgYbrxbV2Z7LjAPw6zWpUKnbH+ITiFFBqb9fWhxuNpCu6uzio9c6 ABdBcB5ZCT+SiD3/eoce25TPgHOLslfnjWCfCJMga32+UOez2E7MhA96M77V7w7C rEjjTlyZBeprX+onNz5TsmWMOZNFn8de25KkN7Db3pzR+KnB84TaK0p1pYxrIBlB uVKAqrRRxla+42yXnVHDTqxOas1XH1pWtTtGPIee5/M5jptw12NiAHzgL37cKZAZ KeCnYkvOumKmniqINxBqYivXLfpbLu/eh7wfOw== -----END CERTIFICATE-----Generated at Sun Jun 8 07:47:07 2025 by rpki-client