$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa File: 34332e3234392e3231302e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: k7dWhdkZK9UJDfOHlX9DtKI4ltVhma3w/Rs97O9liQA= Subject key identifier: E9:48:C3:65:8E:A4:09:1B:56:86:58:B9:B8:0E:07:18:33:7D:A0:E1 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 7626628AA5088E8F160EEC154547B7013F9CB3B8 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa Signing time: Wed 26 Feb 2025 01:00:03 +0000 ROA not before: Wed 26 Feb 2025 00:55:03 +0000 ROA not after: Wed 25 Feb 2026 01:00:03 +0000 asID: 45298 IP address blocks: 43.249.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 07:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:26:62:8a:a5:08:8e:8f:16:0e:ec:15:45:47:b7:01:3f:9c:b3:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Feb 26 00:55:03 2025 GMT Not After : Feb 25 01:00:03 2026 GMT Subject: CN=E948C3658EA4091B568658B9B80E0718337DA0E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:5a:d7:f5:35:e1:f5:b0:9f:1a:4e:5a:37:0b: 86:9e:ee:57:28:63:42:7f:80:5d:a1:d1:58:e0:0c: d9:25:e7:0e:50:00:a9:4c:a0:ec:4b:83:98:64:20: 88:5c:ac:8e:38:a4:33:c1:a1:5e:3c:29:b3:d1:db: 80:77:1a:99:42:91:fd:7e:f5:db:79:df:15:90:2a: 93:e0:64:64:47:f5:2f:d1:e1:4b:80:b2:67:76:46: fe:e5:58:47:1d:75:c5:d7:a6:56:dc:fc:8b:72:e2: 02:ed:20:c3:47:57:93:9c:fc:63:e9:b6:c1:dd:3e: 08:9a:2a:69:b4:3c:8a:8a:86:57:2f:98:24:d3:c5: 99:ce:f6:a2:36:76:87:46:71:4e:cf:2c:26:8a:51: f1:21:76:3d:49:29:3d:87:a4:69:88:9d:07:03:08: 75:f8:e6:f2:38:90:c5:19:a4:24:d4:5a:4c:af:b0: 99:b8:dc:f1:42:63:dd:9a:18:d0:f8:18:67:91:80: 31:99:c8:dc:ea:9d:a8:a5:49:af:a8:8e:38:18:ef: 17:a1:bc:e8:0a:a4:9b:2e:a0:ed:be:b6:fa:48:05: 04:8c:cc:32:8e:8f:01:65:b9:03:ba:78:e5:8b:23: c7:b5:c3:17:77:b4:ea:12:3a:ee:3d:dd:8b:10:de: fd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:48:C3:65:8E:A4:09:1B:56:86:58:B9:B8:0E:07:18:33:7D:A0:E1 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.210.0/24 Signature Algorithm: sha256WithRSAEncryption a0:cd:ea:ef:0d:0a:40:f9:a9:49:2a:97:f2:a3:80:c5:fd:9c: 5c:c8:fe:70:dd:95:53:ea:1d:57:8f:64:0f:d7:1a:56:46:a1: d6:b7:46:87:ee:51:8f:d6:7a:62:db:80:79:b0:19:13:51:5f: d5:32:9f:79:a4:07:08:a9:91:b4:93:a1:58:90:b1:01:f8:d8: 02:e4:38:1f:50:48:13:47:a1:18:f1:0c:b2:0b:2f:f2:6e:6f: f9:61:b9:b6:08:41:8f:27:56:b6:2b:d0:d9:2a:c5:01:f8:c9: a5:1e:d4:64:b8:34:4e:00:56:81:1b:11:f8:64:5d:93:0c:21: 85:45:c2:49:d4:b6:8b:57:15:a7:90:07:56:bf:81:4d:72:0d: b1:ff:c1:11:68:1a:c2:c2:a1:98:ac:92:32:92:54:a1:1b:d6: 8d:ab:ac:cb:d8:89:0c:1d:4f:b2:e8:37:61:02:fe:45:78:c6: fb:43:29:cb:0f:28:9d:7c:c7:56:06:6f:e7:f2:c2:44:1c:36: 37:a4:32:01:1f:7d:e9:00:96:08:1e:51:5c:69:83:a5:ce:9a: a4:00:2d:6b:cb:a7:87:6f:6d:9a:e5:ab:ab:cf:85:e3:38:a4: 0a:a0:38:20:1b:50:25:5f:a4:2c:a0:5f:c3:3d:39:34:f3:48: 28:99:48:df -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdiZiiqUIjo8WDuwVRUe3AT+cs7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNTAyMjYwMDU1MDNaFw0yNjAyMjUwMTAwMDNaMDMxMTAvBgNV BAMTKEU5NDhDMzY1OEVBNDA5MUI1Njg2NThCOUI4MEUwNzE4MzM3REEwRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoWtf1NeH1sJ8aTlo3C4ae7lco Y0J/gF2h0VjgDNkl5w5QAKlMoOxLg5hkIIhcrI44pDPBoV48KbPR24B3GplCkf1+ 9dt53xWQKpPgZGRH9S/R4UuAsmd2Rv7lWEcddcXXplbc/Ity4gLtIMNHV5Oc/GPp tsHdPgiaKmm0PIqKhlcvmCTTxZnO9qI2dodGcU7PLCaKUfEhdj1JKT2HpGmInQcD CHX45vI4kMUZpCTUWkyvsJm43PFCY92aGND4GGeRgDGZyNzqnailSa+ojjgY7xeh vOgKpJsuoO2+tvpIBQSMzDKOjwFluQO6eOWLI8e1wxd3tOoSOu493YsQ3v0XAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6UjDZY6kCRtWhli5uA4HGDN9oOEwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzM0MzMyZTMyMzQzOTJlMzIzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv50jANBgkqhkiG 9w0BAQsFAAOCAQEAoM3q7w0KQPmpSSqX8qOAxf2cXMj+cN2VU+odV49kD9caVkah 1rdGh+5Rj9Z6YtuAebAZE1Ff1TKfeaQHCKmRtJOhWJCxAfjYAuQ4H1BIE0ehGPEM sgsv8m5v+WG5tghBjydWtivQ2SrFAfjJpR7UZLg0TgBWgRsR+GRdkwwhhUXCSdS2 i1cVp5AHVr+BTXINsf/BEWgawsKhmKySMpJUoRvWjausy9iJDB1Psug3YQL+RXjG +0Mpyw8onXzHVgZv5/LCRBw2N6QyAR996QCWCB5RXGmDpc6apAAta8unh29tmuWr q8+F4zikCqA4IBtQJV+kLKBfwz05NPNIKJlI3w== -----END CERTIFICATE-----Generated at Mon Oct 20 21:21:12 2025 by rpki-client