$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32332d3234203d3e203436303233.roa File: 34332e3235322e382e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: ilwqP0a2EROqnWMrI6tFyM0XI6D9J9qieJDIsCCXazc= Subject key identifier: 4E:84:7D:A1:2C:B1:37:06:C8:65:53:33:13:FC:BC:EC:A5:74:AD:47 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 35AD5E9BFB7B35D28E95150C00A52A0D098D36BB Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32332d3234203d3e203436303233.roa Signing time: Tue 14 Oct 2025 16:00:02 +0000 ROA not before: Tue 14 Oct 2025 15:55:02 +0000 ROA not after: Tue 13 Oct 2026 16:00:02 +0000 asID: 46023 IP address blocks: 43.252.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 18:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ad:5e:9b:fb:7b:35:d2:8e:95:15:0c:00:a5:2a:0d:09:8d:36:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Oct 14 15:55:02 2025 GMT Not After : Oct 13 16:00:02 2026 GMT Subject: CN=4E847DA12CB13706C865533313FCBCECA574AD47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:33:41:74:ed:f9:96:2c:a5:57:1a:8b:e7:6c: 3c:3b:47:06:8c:79:33:3c:77:4d:77:3e:52:72:aa: 6e:cc:51:f1:47:db:30:9f:92:78:7c:f7:02:fa:eb: 62:0e:44:73:79:8e:49:61:da:62:85:67:c1:51:7e: d6:8b:cb:78:ba:ee:ff:3a:5e:28:11:a1:91:69:dc: ea:04:1c:5e:d6:4e:6b:d3:f0:54:d8:a1:78:c5:43: 1d:5e:2f:84:2f:9a:7f:1f:f6:7e:87:9d:16:2d:c9: e7:21:bb:5e:6a:b1:16:ae:8b:bd:50:3c:31:b9:6c: e9:42:9d:7a:c0:c0:ad:e9:e0:58:91:88:00:0b:8c: 31:46:24:ad:8d:44:23:a0:bf:d5:4f:b0:09:9d:5a: 20:cf:8b:a4:5c:69:cd:e4:f1:2b:d8:93:de:59:5a: cb:92:b7:80:9f:32:36:9e:24:e1:ee:b0:a3:96:e0: 74:b1:f4:4b:17:88:9c:6f:0d:d4:23:79:f9:ad:d4: a9:7e:ec:d2:ef:6b:be:9a:8a:9e:fe:47:7d:e8:11: 1b:2a:45:75:65:b5:45:04:27:14:da:02:ac:6c:60: db:89:f7:54:89:b3:15:4d:65:43:ca:cf:32:36:85: 2b:10:af:b8:db:ae:d6:73:4d:7d:96:9e:1c:d2:27: 9d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:84:7D:A1:2C:B1:37:06:C8:65:53:33:13:FC:BC:EC:A5:74:AD:47 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.8.0/23 Signature Algorithm: sha256WithRSAEncryption 57:2b:b6:25:45:78:12:90:a9:64:db:b0:da:38:e6:fc:6d:16: 72:56:ba:36:62:29:75:f4:e2:19:3e:0b:93:9e:66:ed:c9:19: da:91:3a:d1:ab:91:e6:69:b5:38:73:69:b5:27:cb:82:49:77: 0a:e6:3f:95:20:c3:11:39:c8:d9:3a:b9:d9:cd:60:b0:9b:bc: 63:6d:f7:00:8d:20:97:9a:6e:27:f6:bc:3b:48:0a:54:d5:3a: 75:00:c6:05:df:b9:9c:43:51:0a:8a:f4:a3:7d:d1:31:ff:8f: 4e:ba:bb:52:e9:21:b9:08:e6:91:71:02:dc:5c:58:2c:b9:e3: ab:c9:1b:68:37:7c:6b:f2:44:ad:6f:be:b7:4d:45:c3:cd:a2: c0:a3:f9:79:17:b4:be:80:56:e8:23:df:33:7b:19:31:d1:2c: ae:df:8b:43:8e:ff:82:3e:f6:07:ba:d7:99:5d:91:17:da:f8: 1f:d0:a0:ad:94:49:84:0d:4f:16:76:35:01:2f:8e:c8:f8:a5: 7e:f2:8e:37:43:b6:3b:ce:97:8b:24:8f:53:0e:cb:6f:1d:b5: 8c:ec:18:6a:7d:1d:f6:43:45:86:e6:fb:46:77:bd:35:b3:29: c1:79:79:0e:b7:c6:27:7c:32:05:b3:e2:f2:c9:ed:ff:e2:02: 0e:2d:bb:fa -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUNa1em/t7NdKOlRUMAKUqDQmNNrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNTEwMTQxNTU1MDJaFw0yNjEwMTMxNjAwMDJaMDMxMTAvBgNV BAMTKDRFODQ3REExMkNCMTM3MDZDODY1NTMzMzEzRkNCQ0VDQTU3NEFENDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKM0F07fmWLKVXGovnbDw7RwaM eTM8d013PlJyqm7MUfFH2zCfknh89wL662IORHN5jklh2mKFZ8FRftaLy3i67v86 XigRoZFp3OoEHF7WTmvT8FTYoXjFQx1eL4Qvmn8f9n6HnRYtyechu15qsRaui71Q PDG5bOlCnXrAwK3p4FiRiAALjDFGJK2NRCOgv9VPsAmdWiDPi6Rcac3k8SvYk95Z WsuSt4CfMjaeJOHusKOW4HSx9EsXiJxvDdQjefmt1Kl+7NLva76aip7+R33oERsq RXVltUUEJxTaAqxsYNuJ91SJsxVNZUPKzzI2hSsQr7jbrtZzTX2WnhzSJ537AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUToR9oSyxNwbIZVMzE/y87KV0rUcwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDBhOTg1YjAtZTE3YS00MjFiLTk2 NTUtMDMyNDVhMDFhZWY4LzAvMzQzMzJlMzIzNTMyMmUzODJlMzAyZjMyMzMyZDMy MzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEr/AgwDQYJKoZIhvcNAQEL BQADggEBAFcrtiVFeBKQqWTbsNo45vxtFnJWujZiKXX04hk+C5OeZu3JGdqROtGr keZptThzabUny4JJdwrmP5UgwxE5yNk6udnNYLCbvGNt9wCNIJeabif2vDtIClTV OnUAxgXfuZxDUQqK9KN90TH/j066u1LpIbkI5pFxAtxcWCy546vJG2g3fGvyRK1v vrdNRcPNosCj+XkXtL6AVugj3zN7GTHRLK7fi0OO/4I+9ge615ldkRfa+B/QoK2U SYQNTxZ2NQEvjsj4pX7yjjdDtjvOl4skj1MOy28dtYzsGGp9HfZDRYbm+0Z3vTWz KcF5eQ63xid8MgWz4vLJ7f/iAg4tu/o= -----END CERTIFICATE-----Generated at Mon Oct 20 19:08:43 2025 by rpki-client