$ rpki-client -vvf repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/34332e3232392e3234382e302f32322d3234203d3e203435373331.roa File: 34332e3232392e3234382e302f32322d3234203d3e203435373331.roa (raw, json) Hash identifier: 6QYiowaUHr77b6SHtMm/wFHLHsnE4/CHR6s2UKLu4J0= Subject key identifier: 5E:A3:D4:D7:4A:3E:22:17:C5:2D:12:9D:39:F6:EA:A3:35:96:8B:7F Certificate issuer: /CN=8115D30091F8948B76AE0AAC8B4F68550DA321CD Certificate serial: 02FEFCED60818144D5234DD091862967E818B562 Authority key identifier: 81:15:D3:00:91:F8:94:8B:76:AE:0A:AC:8B:4F:68:55:0D:A3:21:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/34332e3232392e3234382e302f32322d3234203d3e203435373331.roa Signing time: Mon 14 Jul 2025 10:00:02 +0000 ROA not before: Mon 14 Jul 2025 09:55:02 +0000 ROA not after: Mon 13 Jul 2026 10:00:02 +0000 asID: 45731 IP address blocks: 43.229.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.crl rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 09:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fe:fc:ed:60:81:81:44:d5:23:4d:d0:91:86:29:67:e8:18:b5:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8115D30091F8948B76AE0AAC8B4F68550DA321CD Validity Not Before: Jul 14 09:55:02 2025 GMT Not After : Jul 13 10:00:02 2026 GMT Subject: CN=5EA3D4D74A3E2217C52D129D39F6EAA335968B7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:13:85:ad:62:39:66:30:c8:99:b0:0c:ed: 64:3f:5c:04:18:30:4a:bb:bb:a3:64:64:f5:51:6a: 17:ef:49:7e:b9:02:47:86:53:ee:3a:4f:f4:bb:7a: 47:12:fe:72:91:c8:42:da:d6:f2:89:bf:86:bd:48: 0b:84:08:1f:84:d3:70:7a:2c:c6:9a:28:c4:13:b8: 4c:ba:c2:01:47:6a:ec:01:6c:c0:1b:76:bb:c6:39: 23:05:0f:79:3d:86:64:9b:8c:eb:cc:56:ba:29:00: f3:26:42:72:c0:6f:ed:9b:82:ef:53:c5:d0:c1:b8: b4:eb:3e:b1:7c:6e:9d:1e:3f:ca:28:1d:95:94:80: cd:bb:ba:42:8b:c5:72:79:d8:d6:42:85:11:59:d0: 54:74:04:82:d0:9a:ea:f8:36:c9:ac:d8:06:63:42: 2e:83:df:1b:31:61:92:63:8e:45:09:d3:21:42:73: 30:26:59:ce:f5:40:e4:87:ce:0a:4a:9b:a5:30:48: 0f:91:f7:e2:d8:42:36:f9:1b:cb:e3:fc:d9:45:67: 7a:06:64:73:99:78:9f:ed:a8:a2:09:f2:11:92:a4: f1:d2:a9:62:8b:62:80:63:63:02:41:8d:ce:20:44: ca:f7:fe:e2:ce:66:96:26:67:7d:8a:85:84:b9:e7: e7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A3:D4:D7:4A:3E:22:17:C5:2D:12:9D:39:F6:EA:A3:35:96:8B:7F X509v3 Authority Key Identifier: keyid:81:15:D3:00:91:F8:94:8B:76:AE:0A:AC:8B:4F:68:55:0D:A3:21:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/34332e3232392e3234382e302f32322d3234203d3e203435373331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.248.0/22 Signature Algorithm: sha256WithRSAEncryption 59:70:34:99:98:9d:bc:1c:7c:05:92:74:86:8c:f1:7f:8f:f6: db:f9:cf:38:7e:2b:bf:cd:2a:41:53:46:4e:b6:f9:6d:b1:d3: 0f:2b:1d:10:92:42:eb:1f:d4:e8:9e:c8:39:ca:68:bc:7c:46: cb:eb:37:1a:59:e9:1e:cf:07:58:8a:f4:e9:4c:87:66:c5:99: a4:9b:15:6e:5e:8c:69:7b:3f:5e:e6:41:ed:68:b9:33:dc:ad: 57:0d:93:1b:b1:5e:46:11:dd:94:85:5c:b0:5f:8a:a0:2d:c9: 4e:f6:a6:a4:e6:78:ce:79:66:43:b4:6e:5f:76:8e:12:bc:a5: df:b9:76:de:c2:bb:c2:05:99:b3:10:fc:07:23:ff:7b:1b:91: 15:94:2f:27:e4:7f:54:c9:78:d9:21:88:3f:bc:bd:f5:81:b4: 83:fc:58:b8:10:db:90:f0:46:46:ca:75:cd:e3:d9:c8:77:f0: 7d:6a:bd:f8:fd:82:27:d1:62:d7:55:da:44:1e:b9:8d:4e:a9: a7:3a:0c:fb:28:73:32:08:9b:f8:8f:04:38:bb:79:e9:77:d3: 61:30:80:8b:b5:7a:62:71:4e:c5:45:7a:e0:58:ee:43:66:bb: bb:59:84:dd:bd:71:a2:76:f0:9d:17:ec:78:94:15:d7:99:c8: 67:70:c5:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAv787WCBgUTVI03QkYYpZ+gYtWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODExNUQzMDA5MUY4OTQ4Qjc2QUUwQUFDOEI0RjY4NTUw REEzMjFDRDAeFw0yNTA3MTQwOTU1MDJaFw0yNjA3MTMxMDAwMDJaMDMxMTAvBgNV BAMTKDVFQTNENEQ3NEEzRTIyMTdDNTJEMTI5RDM5RjZFQUEzMzU5NjhCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/HhOFrWI5ZjDImbAM7WQ/XAQY MEq7u6NkZPVRahfvSX65AkeGU+46T/S7ekcS/nKRyELa1vKJv4a9SAuECB+E03B6 LMaaKMQTuEy6wgFHauwBbMAbdrvGOSMFD3k9hmSbjOvMVropAPMmQnLAb+2bgu9T xdDBuLTrPrF8bp0eP8ooHZWUgM27ukKLxXJ52NZChRFZ0FR0BILQmur4Nsms2AZj Qi6D3xsxYZJjjkUJ0yFCczAmWc71QOSHzgpKm6UwSA+R9+LYQjb5G8vj/NlFZ3oG ZHOZeJ/tqKIJ8hGSpPHSqWKLYoBjYwJBjc4gRMr3/uLOZpYmZ32KhYS55+d5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXqPU10o+IhfFLRKdOfbqozWWi38wHwYDVR0j BBgwFoAUgRXTAJH4lIt2rgqsi09oVQ2jIc0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YmRiYmMwOC00ZThlLTQ0YmEtYTRjZi0wNWUyMzNkZGEzYTUvMC84MTE1RDMwMDkx Rjg5NDhCNzZBRTBBQUM4QjRGNjg1NTBEQTMyMUNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODExNUQzMDA5MUY4OTQ4Qjc2QUUwQUFDOEI0RjY4NTUwREEz MjFDRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiZGJiYzA4LTRlOGUtNDRiYS1h NGNmLTA1ZTIzM2RkYTNhNS8wLzM0MzMyZTMyMzIzOTJlMzIzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzQzNTM3MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAivl+DANBgkqhkiG 9w0BAQsFAAOCAQEAWXA0mZidvBx8BZJ0hozxf4/22/nPOH4rv80qQVNGTrb5bbHT DysdEJJC6x/U6J7IOcpovHxGy+s3GlnpHs8HWIr06UyHZsWZpJsVbl6MaXs/XuZB 7Wi5M9ytVw2TG7FeRhHdlIVcsF+KoC3JTvampOZ4znlmQ7RuX3aOEryl37l23sK7 wgWZsxD8ByP/exuRFZQvJ+R/VMl42SGIP7y99YG0g/xYuBDbkPBGRsp1zePZyHfw fWq9+P2CJ9Fi11XaRB65jU6ppzoM+yhzMgib+I8EOLt56XfTYTCAi7V6YnFOxUV6 4FjuQ2a7u1mE3b1xonbwnRfseJQV15nIZ3DFRQ== -----END CERTIFICATE-----Generated at Sat Aug 23 15:31:18 2025 by rpki-client