$ rpki-client -vvf repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa File: 34332e3233302e342e302f32342d3234203d3e203338373838.roa (raw, json) Hash identifier: Myo0yUY2zYBlmDu7ifkTtwfEDTywRzZJiBzIgMz4kyk= Subject key identifier: 8F:26:24:5F:8F:25:FB:32:FF:D9:3C:E5:C0:C9:1F:28:1E:5E:F9:BD Certificate issuer: /CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Certificate serial: 41440D1C94CC894B289476333D435C7D7D46CE57 Authority key identifier: 8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa Signing time: Mon 02 Jun 2025 02:05:02 +0000 ROA not before: Mon 02 Jun 2025 02:00:02 +0000 ROA not after: Mon 01 Jun 2026 02:05:02 +0000 asID: 38788 IP address blocks: 43.230.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 03:58:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:44:0d:1c:94:cc:89:4b:28:94:76:33:3d:43:5c:7d:7d:46:ce:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C3E44A2E2B475D5CF4A48E52D17290001FEFECA Validity Not Before: Jun 2 02:00:02 2025 GMT Not After : Jun 1 02:05:02 2026 GMT Subject: CN=8F26245F8F25FB32FFD93CE5C0C91F281E5EF9BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:62:62:ef:43:d7:74:99:6a:e9:9f:f0:fb:94: 7d:49:36:3b:be:61:e1:fd:88:3b:8f:ae:fd:dd:50: 63:8e:c1:ac:02:cf:40:13:4f:e9:c1:f9:7d:06:f3: 5d:f5:35:b2:c6:01:ea:49:6e:a0:2a:b7:f7:1a:ab: f8:06:d3:90:44:09:60:54:d0:9c:3b:ff:a8:4c:8f: cb:a3:4e:35:fe:e0:f1:84:f4:f9:3f:26:01:9e:79: 85:22:b2:9b:a9:30:87:9e:2f:93:03:13:89:0a:a1: ec:1d:f4:9d:b4:97:d2:4a:ec:a5:a1:72:ad:df:5e: 33:d8:de:a6:38:64:7d:37:f6:0d:e5:7f:3b:7c:ec: ad:dc:9a:e3:eb:c8:f5:32:fd:f2:30:8a:ef:55:67: 58:c9:5a:97:e0:ab:05:55:6f:22:33:22:96:78:61: 4e:16:5d:99:80:8b:2d:96:ac:20:f3:6c:98:31:2b: f9:23:4a:8b:89:d4:99:cc:58:e6:39:50:28:bf:d4: d3:18:d5:2c:d2:2c:34:63:81:69:15:f7:9c:c0:39: f7:b1:06:ad:22:ee:7c:47:40:e1:a2:60:5a:ed:34: b2:a2:17:74:db:cb:aa:0d:7f:b3:60:e2:a4:7c:8a: 37:a7:5f:f1:4f:13:fd:0b:2c:5c:b3:6c:ed:f0:fb: 9e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:26:24:5F:8F:25:FB:32:FF:D9:3C:E5:C0:C9:1F:28:1E:5E:F9:BD X509v3 Authority Key Identifier: keyid:8C:3E:44:A2:E2:B4:75:D5:CF:4A:48:E5:2D:17:29:00:01:FE:FE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C3E44A2E2B475D5CF4A48E52D17290001FEFECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34e2bf09-5f42-4b65-a42d-63d0796d206c/0/34332e3233302e342e302f32342d3234203d3e203338373838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.4.0/24 Signature Algorithm: sha256WithRSAEncryption 78:ef:fa:1e:5b:10:3a:c9:98:d6:aa:38:4a:2d:a6:b7:91:ae: 63:fa:f4:2a:ae:85:3e:fe:fa:bd:09:d8:da:ad:29:4c:6c:2e: 8b:5e:d3:f1:47:29:a2:7a:9a:81:cd:5b:50:97:9d:8c:7b:4e: 25:48:5c:00:9f:ce:d8:0b:01:80:b8:96:3e:38:a1:67:ad:92: 76:e8:a9:ed:c7:62:ed:b1:0b:3e:6c:62:6a:6f:48:27:75:a0: 49:11:f0:99:54:7a:4a:ab:01:70:f0:7b:b7:d0:16:02:1a:d8: 7f:4c:54:95:47:cc:6f:70:60:ff:e8:6f:2a:3b:eb:c0:dd:2f: bd:32:f2:f1:5f:2b:e1:21:cc:22:d5:78:ca:85:f3:a0:cb:39: 23:77:4b:2a:7a:63:f3:91:e4:e9:cc:ad:2a:15:00:05:2f:05: 36:ca:41:4e:10:f1:a6:fa:4a:93:ac:e5:c1:7d:66:05:aa:10: e5:e5:9a:15:d9:b3:bf:06:b3:63:99:e0:0c:96:26:90:64:31: c0:d2:e4:ae:f4:d0:c0:a3:eb:c9:23:8a:82:1f:62:33:ae:e3: cf:0e:d8:39:03:3a:55:5b:b7:c8:1e:06:d1:a3:7a:c2:c1:b5: 61:7c:eb:c7:f5:16:36:1f:b3:50:46:67:8f:42:48:ea:af:50: d3:fc:b7:65 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUQUQNHJTMiUsolHYzPUNcfX1GzlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAw MUZFRkVDQTAeFw0yNTA2MDIwMjAwMDJaFw0yNjA2MDEwMjA1MDJaMDMxMTAvBgNV BAMTKDhGMjYyNDVGOEYyNUZCMzJGRkQ5M0NFNUMwQzkxRjI4MUU1RUY5QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmYmLvQ9d0mWrpn/D7lH1JNju+ YeH9iDuPrv3dUGOOwawCz0ATT+nB+X0G8131NbLGAepJbqAqt/caq/gG05BECWBU 0Jw7/6hMj8ujTjX+4PGE9Pk/JgGeeYUispupMIeeL5MDE4kKoewd9J20l9JK7KWh cq3fXjPY3qY4ZH039g3lfzt87K3cmuPryPUy/fIwiu9VZ1jJWpfgqwVVbyIzIpZ4 YU4WXZmAiy2WrCDzbJgxK/kjSouJ1JnMWOY5UCi/1NMY1SzSLDRjgWkV95zAOfex Bq0i7nxHQOGiYFrtNLKiF3Tby6oNf7Ng4qR8ijenX/FPE/0LLFyzbO3w+55xAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUjyYkX48l+zL/2TzlwMkfKB5e+b0wHwYDVR0j BBgwFoAUjD5EouK0ddXPSkjlLRcpAAH+/sowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGUyYmYwOS01ZjQyLTRiNjUtYTQyZC02M2QwNzk2ZDIwNmMvMC84QzNFNDRBMkUy QjQ3NUQ1Q0Y0QTQ4RTUyRDE3MjkwMDAxRkVGRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEMzRTQ0QTJFMkI0NzVENUNGNEE0OEU1MkQxNzI5MDAwMUZF RkVDQS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRlMmJmMDktNWY0Mi00YjY1LWE0 MmQtNjNkMDc5NmQyMDZjLzAvMzQzMzJlMzIzMzMwMmUzNDJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNzM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAr5gQwDQYJKoZIhvcNAQEL BQADggEBAHjv+h5bEDrJmNaqOEotpreRrmP69CquhT7++r0J2NqtKUxsLote0/FH KaJ6moHNW1CXnYx7TiVIXACfztgLAYC4lj44oWetknboqe3HYu2xCz5sYmpvSCd1 oEkR8JlUekqrAXDwe7fQFgIa2H9MVJVHzG9wYP/obyo768DdL70y8vFfK+EhzCLV eMqF86DLOSN3Syp6Y/OR5OnMrSoVAAUvBTbKQU4Q8ab6SpOs5cF9ZgWqEOXlmhXZ s78Gs2OZ4AyWJpBkMcDS5K700MCj68kjioIfYjOu488O2DkDOlVbt8geBtGjesLB tWF868f1FjYfs1BGZ49CSOqvUNP8t2U= -----END CERTIFICATE-----Generated at Mon Jun 30 02:34:20 2025 by rpki-client