$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa File: 34332e3235322e3133362e302f32342d3234203d3e203538343034.roa (raw, json) Hash identifier: VElKMVk3iPulNjS9HeHc93PPFZl5g9fy4/nN9cMU7rI= Subject key identifier: 7B:77:19:AA:9F:CA:15:22:13:E7:DE:2B:37:39:98:4B:ED:17:83:41 Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 5AA04B852568467E5FF98756A9FB000CD9644611 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa Signing time: Fri 22 Aug 2025 12:00:40 +0000 ROA not before: Fri 22 Aug 2025 11:55:40 +0000 ROA not after: Fri 21 Aug 2026 12:00:40 +0000 asID: 58404 IP address blocks: 43.252.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 21:30:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:a0:4b:85:25:68:46:7e:5f:f9:87:56:a9:fb:00:0c:d9:64:46:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Aug 22 11:55:40 2025 GMT Not After : Aug 21 12:00:40 2026 GMT Subject: CN=7B7719AA9FCA152213E7DE2B3739984BED178341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5b:d4:90:ab:93:b2:0d:aa:0b:bd:e4:28:90: 23:c5:23:54:1a:4f:fa:71:d9:21:a5:ab:89:9f:ec: 7d:4b:19:a9:46:27:b5:e0:e2:08:f9:0d:56:f9:6a: 3d:a5:72:33:02:10:2f:c0:ab:50:62:0f:db:ee:db: 4f:70:ee:82:09:26:52:cc:0b:14:a3:67:79:3a:29: a7:2a:52:9f:0c:b1:d2:b0:d1:7c:c3:7c:b8:30:17: a7:2a:83:f5:1a:03:45:4b:8e:ac:2a:10:b8:8b:2f: 06:56:42:95:29:2b:ba:c4:ad:3d:16:e3:c1:e0:e9: 76:a2:48:e3:55:c0:24:55:af:50:db:54:d3:95:05: db:62:91:55:c3:b5:97:f4:e0:5a:57:45:79:f9:c8: a1:72:a7:f1:59:fc:cf:56:8c:1c:69:60:40:a1:a0: 78:23:80:51:7b:a4:ff:02:8e:d1:ba:39:9f:44:64: 3e:c5:64:db:a9:2e:5d:dd:8d:63:10:bb:fc:f6:53: 4e:a1:c6:e1:5d:d0:4a:03:bd:aa:5b:31:96:91:c5: 36:12:e6:8d:6d:d9:f1:30:dc:98:8e:09:10:67:44: 20:c9:a3:9f:39:c4:69:65:b2:66:23:5c:c7:87:f7: cb:a2:6e:cc:25:a6:59:af:1b:f0:dd:b9:d9:d7:a1: bc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:77:19:AA:9F:CA:15:22:13:E7:DE:2B:37:39:98:4B:ED:17:83:41 X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133362e302f32342d3234203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.136.0/24 Signature Algorithm: sha256WithRSAEncryption 15:3e:59:86:d1:47:1a:bf:9c:dc:2d:f2:b1:15:c3:7f:30:64: cb:19:62:f3:a3:6a:7b:b6:7d:4b:69:ab:2a:09:c7:87:3f:bc: 61:f0:f8:0b:99:33:6a:a5:e1:fe:cd:20:68:4d:88:81:e6:f5: 41:0e:bd:1b:dc:4e:09:eb:e6:28:b4:1d:64:a8:47:44:2b:40: 0f:b7:13:1a:da:c4:f2:31:ba:dd:8e:38:04:b8:a2:be:20:60: c3:0d:d8:c5:d8:6a:34:13:17:3e:58:52:8b:03:35:66:5a:2f: 8b:58:75:d4:85:bd:fa:7b:c6:2a:22:2c:df:dc:b7:12:b3:08: 18:05:02:b3:93:73:3f:8d:16:32:a8:ac:05:1a:e7:9c:01:28: ea:0c:50:c3:f6:1e:8b:aa:41:7e:c9:3f:df:7f:94:3a:c8:4f: 5b:0b:c6:d7:47:0b:51:f4:4d:10:05:60:37:8e:e6:b5:73:c3: 00:0f:0e:f9:94:0c:40:ba:da:aa:c6:9c:b1:27:30:7a:d3:7f: 57:1d:d4:56:cc:31:93:dc:57:e1:be:c9:21:f3:3a:c3:0a:3a: f1:5f:04:9d:65:28:1f:82:45:6e:c6:75:c1:be:ec:23:2f:54: fc:9f:6b:81:70:ac:77:21:bf:69:cb:b7:14:f2:18:0b:55:f0: 96:13:e4:98 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWqBLhSVoRn5f+YdWqfsADNlkRhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNTA4MjIxMTU1NDBaFw0yNjA4MjExMjAwNDBaMDMxMTAvBgNV BAMTKDdCNzcxOUFBOUZDQTE1MjIxM0U3REUyQjM3Mzk5ODRCRUQxNzgzNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjW9SQq5OyDaoLveQokCPFI1Qa T/px2SGlq4mf7H1LGalGJ7Xg4gj5DVb5aj2lcjMCEC/Aq1BiD9vu209w7oIJJlLM CxSjZ3k6KacqUp8MsdKw0XzDfLgwF6cqg/UaA0VLjqwqELiLLwZWQpUpK7rErT0W 48Hg6XaiSONVwCRVr1DbVNOVBdtikVXDtZf04FpXRXn5yKFyp/FZ/M9WjBxpYECh oHgjgFF7pP8CjtG6OZ9EZD7FZNupLl3djWMQu/z2U06hxuFd0EoDvapbMZaRxTYS 5o1t2fEw3JiOCRBnRCDJo585xGllsmYjXMeH98uibswlplmvG/DdudnXobzTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUe3cZqp/KFSIT594rNzmYS+0Xg0EwHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8iDANBgkqhkiG 9w0BAQsFAAOCAQEAFT5ZhtFHGr+c3C3ysRXDfzBkyxli86Nqe7Z9S2mrKgnHhz+8 YfD4C5kzaqXh/s0gaE2Igeb1QQ69G9xOCevmKLQdZKhHRCtAD7cTGtrE8jG63Y44 BLiiviBgww3YxdhqNBMXPlhSiwM1Zlovi1h11IW9+nvGKiIs39y3ErMIGAUCs5Nz P40WMqisBRrnnAEo6gxQw/Yei6pBfsk/33+UOshPWwvG10cLUfRNEAVgN47mtXPD AA8O+ZQMQLraqsacsScwetN/Vx3UVswxk9xX4b7JIfM6wwo68V8EnWUoH4JFbsZ1 wb7sIy9U/J9rgXCsdyG/acu3FPIYC1XwlhPkmA== -----END CERTIFICATE-----Generated at Sat Aug 23 13:46:03 2025 by rpki-client