$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135342e302f32332d3233203d3e203435373235.roa File: 34332e3233302e3135342e302f32332d3233203d3e203435373235.roa (raw, json) Hash identifier: z/k7bxc++/5O49ybkACdC/Y755XN4WAvFL9ktOZUkgA= Subject key identifier: D4:EC:99:09:8A:B1:67:2D:A7:DE:5C:06:52:29:49:D8:0A:66:80:EA Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 5CF97D9745CEF21A6D00B3802284B2B7382AA4B5 Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135342e302f32332d3233203d3e203435373235.roa Signing time: Sun 08 Mar 2026 16:00:02 +0000 ROA not before: Sun 08 Mar 2026 15:55:02 +0000 ROA not after: Sun 07 Mar 2027 16:00:02 +0000 asID: 45725 IP address blocks: 43.230.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 21:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f9:7d:97:45:ce:f2:1a:6d:00:b3:80:22:84:b2:b7:38:2a:a4:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Mar 8 15:55:02 2026 GMT Not After : Mar 7 16:00:02 2027 GMT Subject: CN=D4EC99098AB1672DA7DE5C06522949D80A6680EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:67:86:7e:9b:f6:90:4c:74:f1:18:1d:2e:10: d5:08:c0:d1:90:09:bc:31:d0:7f:72:de:08:8a:2a: 55:93:16:a6:41:f3:77:89:9f:da:1d:7d:11:01:2f: 06:4b:14:d1:b1:34:1c:6d:a2:78:27:54:de:58:e1: c7:84:3a:c7:95:19:e1:ac:4a:f7:01:db:53:8b:1e: 5e:78:28:7b:61:3d:15:2f:35:f9:ca:0c:bb:4b:b3: eb:e5:6b:31:bb:6e:3c:fa:4a:7c:77:e4:7c:c8:73: 48:89:91:01:09:1c:6e:5a:93:e5:14:8c:7e:f3:ef: 09:0a:98:7f:9e:4c:3e:8d:d2:2c:56:89:d5:a5:00: 15:4c:f9:00:3d:89:df:d4:3a:56:55:e1:f1:b6:df: a9:6f:d8:f7:74:c4:8f:83:c0:57:83:7b:26:53:ed: a0:28:f8:ba:35:b3:65:b7:8e:f0:0d:17:37:af:af: d9:18:63:b3:58:e2:4d:67:01:aa:bd:d9:41:5c:ab: c0:ae:ca:71:8b:6e:9e:a4:83:16:05:b7:0a:f1:ce: 7c:29:53:5b:a9:0a:9e:fb:92:1e:f1:db:d1:61:a8: c8:16:78:86:b9:85:8e:6c:e8:6a:aa:1a:c6:1b:ec: 6d:72:9e:05:95:9a:e7:19:b8:d3:08:52:08:93:12: e6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:EC:99:09:8A:B1:67:2D:A7:DE:5C:06:52:29:49:D8:0A:66:80:EA X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/34332e3233302e3135342e302f32332d3233203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.154.0/23 Signature Algorithm: sha256WithRSAEncryption cd:27:3b:2e:18:51:71:f6:0e:cf:01:b6:f0:da:a0:e9:27:bb: 5a:45:97:9c:c8:9c:5c:9c:ae:be:52:f4:97:62:e8:ad:b1:a0: 86:e4:a3:90:6e:fb:44:ec:2c:1b:28:36:9a:e2:16:9e:43:11: 4f:20:b1:86:74:9a:f8:55:53:fc:b9:13:dd:14:a7:8b:a7:17: 54:bc:3d:6c:d8:c9:d5:82:65:0a:46:91:fc:bf:5c:9b:c6:2a: 71:e8:7a:31:c7:0b:24:90:9c:c5:62:77:03:b8:e7:d4:34:fc: c4:31:84:c9:c6:a1:a2:50:70:8e:c5:26:1c:3e:bd:bb:13:be: ab:57:fb:97:b3:6c:5a:32:70:52:fc:59:df:6d:7c:d6:2f:e3: 8c:59:6b:5f:26:5b:1e:af:2d:f0:6e:31:09:a2:9f:57:38:8e: ec:84:04:b2:27:96:69:3b:ed:20:b3:82:8f:00:79:b6:77:38: fa:83:09:4b:a5:52:43:72:6d:ed:e6:c2:c7:ab:17:d6:5b:97: 99:d6:a9:56:23:7f:8c:80:94:ee:59:40:26:9c:5d:06:80:44: dd:b9:8b:4e:5f:72:d8:02:09:43:ab:d3:87:73:60:46:13:aa: 0d:0e:6b:d9:93:96:a4:36:3d:ef:6e:25:7b:68:44:71:d5:73: 9a:2b:1a:80 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXPl9l0XO8hptALOAIoSytzgqpLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNjAzMDgxNTU1MDJaFw0yNzAzMDcxNjAwMDJaMDMxMTAvBgNV BAMTKEQ0RUM5OTA5OEFCMTY3MkRBN0RFNUMwNjUyMjk0OUQ4MEE2NjgwRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Z4Z+m/aQTHTxGB0uENUIwNGQ Cbwx0H9y3giKKlWTFqZB83eJn9odfREBLwZLFNGxNBxtongnVN5Y4ceEOseVGeGs SvcB21OLHl54KHthPRUvNfnKDLtLs+vlazG7bjz6Snx35HzIc0iJkQEJHG5ak+UU jH7z7wkKmH+eTD6N0ixWidWlABVM+QA9id/UOlZV4fG236lv2Pd0xI+DwFeDeyZT 7aAo+Lo1s2W3jvANFzevr9kYY7NY4k1nAaq92UFcq8CuynGLbp6kgxYFtwrxznwp U1upCp77kh7x29FhqMgWeIa5hY5s6GqqGsYb7G1yngWVmucZuNMIUgiTEubrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1OyZCYqxZy2n3lwGUilJ2ApmgOowHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzM0MzMyZTMyMzMzMDJlMzEzNTM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEASvmmjANBgkqhkiG 9w0BAQsFAAOCAQEAzSc7LhhRcfYOzwG28Nqg6Se7WkWXnMicXJyuvlL0l2LorbGg huSjkG77ROwsGyg2muIWnkMRTyCxhnSa+FVT/LkT3RSni6cXVLw9bNjJ1YJlCkaR /L9cm8Yqceh6MccLJJCcxWJ3A7jn1DT8xDGEycaholBwjsUmHD69uxO+q1f7l7Ns WjJwUvxZ32181i/jjFlrXyZbHq8t8G4xCaKfVziO7IQEsieWaTvtILOCjwB5tnc4 +oMJS6VSQ3Jt7ebCx6sX1luXmdapViN/jICU7llAJpxdBoBE3bmLTl9y2AIJQ6vT h3NgRhOqDQ5r2ZOWpDY9724le2hEcdVzmisagA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:44:48 2026 by rpki-client