$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa File: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (raw, json) Hash identifier: lR3gX6Bwr4ANHz1p/BofTqPyE1vSZC884k0IFEXkQqw= Subject key identifier: 03:C6:7F:85:3A:F3:38:78:66:87:15:4E:91:D5:D8:DB:2B:07:E1:E9 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 6C443542E5585F4858F120AB9452C5098EE81A1B Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa Signing time: Mon 06 Oct 2025 07:00:01 +0000 ROA not before: Mon 06 Oct 2025 06:55:01 +0000 ROA not after: Mon 05 Oct 2026 07:00:01 +0000 asID: 142327 IP address blocks: 43.252.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 09:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:44:35:42:e5:58:5f:48:58:f1:20:ab:94:52:c5:09:8e:e8:1a:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Oct 6 06:55:01 2025 GMT Not After : Oct 5 07:00:01 2026 GMT Subject: CN=03C67F853AF338786687154E91D5D8DB2B07E1E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3e:bf:b9:fc:7d:75:ad:64:bd:f1:c8:74:04: d2:a9:8c:75:6c:ae:2b:13:ad:95:ad:87:0d:33:70: 63:e3:0d:86:a7:f6:24:28:b3:0a:bb:13:07:50:53: e8:10:7d:e9:60:c1:ca:ea:e0:89:0c:a8:e5:46:0c: 81:19:4a:73:93:f5:52:a3:7b:45:9d:3d:3a:28:ef: ed:9c:04:c4:ea:1c:c1:71:f4:dd:1f:99:71:e6:b2: 27:e4:47:8e:2f:3a:ee:33:6b:d9:2a:c5:12:a9:4d: 13:b1:93:09:c3:f9:01:02:b2:a8:00:0e:12:ee:22: 60:08:ab:30:6b:d6:73:66:31:a8:4d:b8:c5:12:e6: b4:06:2e:3b:97:b0:5f:8a:cf:eb:14:57:d9:b0:bc: e0:17:3b:b8:7e:57:ea:e3:90:a6:70:58:a6:92:fb: a1:c7:5b:2d:52:5c:44:f1:85:24:33:39:af:cc:ec: ef:3c:41:25:4e:b8:8e:30:83:07:df:de:56:8c:fa: ad:dc:11:fb:56:be:0e:78:4f:b8:f4:16:d1:08:6b: 11:55:f4:f1:42:91:50:a2:52:1c:6e:b7:02:5b:d3: 27:83:af:19:3b:7c:79:9e:96:ea:bd:8c:8a:e3:70: f3:c4:e8:98:3a:f9:78:6e:aa:a3:2b:cb:5d:c6:58: e1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C6:7F:85:3A:F3:38:78:66:87:15:4E:91:D5:D8:DB:2B:07:E1:E9 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.104.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:82:7e:0a:8c:27:8e:f7:e3:8f:b2:cf:eb:6a:12:94:5b:c5: 6b:a3:4b:4e:60:53:f9:03:8f:9b:35:2a:74:58:c8:b8:b8:8a: 35:14:7d:a5:54:09:92:26:c2:ef:2a:73:1b:a3:e7:6a:7c:85: d4:1a:fc:34:17:65:a3:4d:ac:b3:9f:89:39:72:f5:a7:12:5b: 7a:d1:0f:ef:a5:a7:63:31:86:4a:74:21:f0:5e:d2:71:47:f0: 88:29:4a:9d:52:9d:38:b9:bb:a7:20:19:25:1c:13:7c:0a:34: a7:43:fe:ff:29:29:88:c9:b0:c9:72:c7:5a:79:1a:17:51:da: b4:65:6a:1f:13:17:83:86:f2:c8:39:9e:4f:5e:35:cd:51:14: 41:99:62:72:e0:52:fa:93:2d:79:5b:8b:68:0f:7c:9a:bb:db: e4:b9:fd:b4:39:59:c2:e3:c7:d4:3f:12:e1:91:b3:d7:ee:65: 7f:b5:97:51:a5:fa:b7:05:83:cd:88:bd:64:d6:6b:c1:ca:4a: 68:17:17:8a:f8:ef:59:c3:a4:67:e8:63:82:6a:67:7e:bf:9d: 07:90:05:cd:b7:4f:ac:ad:a8:69:fd:de:81:30:57:f2:bb:6e: dc:8e:a1:27:7a:5f:dc:0d:60:b8:3a:1e:b6:23:b0:24:4c:75: dd:90:f0:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbEQ1QuVYX0hY8SCrlFLFCY7oGhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTEwMDYwNjU1MDFaFw0yNjEwMDUwNzAwMDFaMDMxMTAvBgNV BAMTKDAzQzY3Rjg1M0FGMzM4Nzg2Njg3MTU0RTkxRDVEOERCMkIwN0UxRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAPr+5/H11rWS98ch0BNKpjHVs risTrZWthw0zcGPjDYan9iQoswq7EwdQU+gQfelgwcrq4IkMqOVGDIEZSnOT9VKj e0WdPToo7+2cBMTqHMFx9N0fmXHmsifkR44vOu4za9kqxRKpTROxkwnD+QECsqgA DhLuImAIqzBr1nNmMahNuMUS5rQGLjuXsF+Kz+sUV9mwvOAXO7h+V+rjkKZwWKaS +6HHWy1SXETxhSQzOa/M7O88QSVOuI4wgwff3laM+q3cEftWvg54T7j0FtEIaxFV 9PFCkVCiUhxutwJb0yeDrxk7fHmeluq9jIrjcPPE6Jg6+XhuqqMry13GWOGTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA8Z/hTrzOHhmhxVOkdXY2ysH4ekwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzM0MzMyZTMyMzUzMjJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK/xoMA0GCSqG SIb3DQEBCwUAA4IBAQA/gn4KjCeO9+OPss/rahKUW8Vro0tOYFP5A4+bNSp0WMi4 uIo1FH2lVAmSJsLvKnMbo+dqfIXUGvw0F2WjTayzn4k5cvWnElt60Q/vpadjMYZK dCHwXtJxR/CIKUqdUp04ubunIBklHBN8CjSnQ/7/KSmIybDJcsdaeRoXUdq0ZWof ExeDhvLIOZ5PXjXNURRBmWJy4FL6ky15W4toD3yau9vkuf20OVnC48fUPxLhkbPX 7mV/tZdRpfq3BYPNiL1k1mvBykpoFxeK+O9Zw6Rn6GOCamd+v50HkAXNt0+srahp /d6BMFfyu27cjqEnel/cDWC4Oh62I7AkTHXdkPAG -----END CERTIFICATE-----Generated at Mon Oct 20 23:49:42 2025 by rpki-client