$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa File: 34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa (raw, json) Hash identifier: g6G0tGc+VbiXH94zgiJaavS68ToTcFl7b92TkAIdvw4= Subject key identifier: EA:BE:5B:B0:F9:96:49:72:22:D5:10:F5:1E:3A:24:AC:D7:5A:03:5E Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 68BB563EA78DAB663978B7734C9FD28D84F0575F Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa Signing time: Wed 07 May 2025 08:44:15 +0000 ROA not before: Wed 07 May 2025 08:39:15 +0000 ROA not after: Wed 06 May 2026 08:44:15 +0000 asID: 149746 IP address blocks: 43.252.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 04:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:bb:56:3e:a7:8d:ab:66:39:78:b7:73:4c:9f:d2:8d:84:f0:57:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: May 7 08:39:15 2025 GMT Not After : May 6 08:44:15 2026 GMT Subject: CN=EABE5BB0F996497222D510F51E3A24ACD75A035E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a7:e7:b3:d0:05:35:37:9b:2e:d2:06:57:a4: c7:2a:8d:61:ca:f4:86:a1:d0:17:2b:78:33:c1:42: 08:1a:ca:3a:d0:44:d9:f2:40:b0:b8:f1:b2:23:ef: 9d:ea:39:1a:86:d0:f5:39:af:bf:43:bb:45:14:12: 5c:59:02:51:7f:f6:f4:65:85:94:5f:bb:94:0e:1b: 72:a2:93:db:ad:80:ac:b2:88:29:45:e7:a1:e3:85: 82:aa:4a:08:07:95:f7:2a:39:9e:bb:6d:f5:b5:e2: 0e:c7:6b:30:db:0b:66:be:b8:ef:8c:45:63:10:81: a3:1e:f4:e9:5e:ce:b7:b0:aa:38:47:7b:9b:e6:8f: 97:4b:43:32:61:f6:69:72:b4:19:e3:72:c9:20:50: 44:cd:de:13:69:d2:68:c0:56:7b:d4:bd:62:b3:c9: a1:f5:d4:25:0d:3c:32:2f:68:85:fd:61:61:0e:0f: c6:46:ac:5f:4d:aa:88:6a:c7:30:fd:1a:68:87:4b: 9d:a9:68:b9:4f:98:d5:2b:fc:77:06:2d:03:00:79: 02:2a:dc:9c:26:3e:80:f9:f4:9f:56:c5:8f:3b:ca: c1:89:f7:ee:08:ee:42:d6:e8:ce:1f:57:4c:74:5f: 0f:7f:48:e1:b5:ad:59:8a:46:79:c3:6e:0a:42:c8: d9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:BE:5B:B0:F9:96:49:72:22:D5:10:F5:1E:3A:24:AC:D7:5A:03:5E X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.156.0/22 Signature Algorithm: sha256WithRSAEncryption b1:e6:f0:49:26:34:51:91:86:b1:61:6c:a8:a0:f0:03:3e:b1: 75:73:af:0e:dc:72:6c:9b:d2:7e:58:f1:72:ca:49:ae:13:dd: ff:0f:60:7c:45:9a:f2:9f:3c:a0:15:49:56:42:94:1e:0d:9b: 7a:cd:e6:7c:a0:c0:89:b6:d0:9a:e1:93:cc:db:15:bc:52:cc: c1:d3:80:58:65:3c:22:4f:57:f4:07:1e:0e:ff:f4:6d:a9:e9: 16:02:c0:75:77:ee:1d:ea:03:ad:11:33:d9:38:08:4f:9f:38: ca:21:05:69:09:11:1e:90:6a:17:89:49:8e:17:b6:ce:5c:4b: 69:90:44:aa:67:74:5f:63:be:20:43:42:5d:02:c4:15:99:ad: ce:59:f7:fa:39:f4:e7:96:76:41:57:93:44:d8:aa:23:b5:6b: 34:40:70:3a:0b:53:96:6f:5c:ad:ca:16:ac:8e:d8:74:da:1b: 58:c9:03:9d:8d:f9:79:cc:56:af:ee:33:fc:82:e5:f5:87:de: 6b:c8:53:d8:35:de:e4:ad:c8:bf:86:8e:93:a7:9c:2e:e8:b1: 66:3e:28:02:51:41:a7:da:af:c3:47:47:fc:ce:30:c4:6f:f3: e3:f3:00:0d:89:4a:2d:66:b3:1a:c1:c8:4b:d0:bc:76:14:a7: ce:2a:1e:5f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaLtWPqeNq2Y5eLdzTJ/SjYTwV18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA1MDcwODM5MTVaFw0yNjA1MDYwODQ0MTVaMDMxMTAvBgNV BAMTKEVBQkU1QkIwRjk5NjQ5NzIyMkQ1MTBGNTFFM0EyNEFDRDc1QTAzNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqp+ez0AU1N5su0gZXpMcqjWHK 9Iah0BcreDPBQggayjrQRNnyQLC48bIj753qORqG0PU5r79Du0UUElxZAlF/9vRl hZRfu5QOG3Kik9utgKyyiClF56HjhYKqSggHlfcqOZ67bfW14g7HazDbC2a+uO+M RWMQgaMe9OlezrewqjhHe5vmj5dLQzJh9mlytBnjcskgUETN3hNp0mjAVnvUvWKz yaH11CUNPDIvaIX9YWEOD8ZGrF9NqohqxzD9GmiHS52paLlPmNUr/HcGLQMAeQIq 3JwmPoD59J9WxY87ysGJ9+4I7kLW6M4fV0x0Xw9/SOG1rVmKRnnDbgpCyNmdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6r5bsPmWSXIi1RD1HjokrNdaA14wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzMyZTMyMzUzMjJlMzEzNTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCK/ycMA0GCSqG SIb3DQEBCwUAA4IBAQCx5vBJJjRRkYaxYWyooPADPrF1c68O3HJsm9J+WPFyykmu E93/D2B8RZrynzygFUlWQpQeDZt6zeZ8oMCJttCa4ZPM2xW8UszB04BYZTwiT1f0 Bx4O//RtqekWAsB1d+4d6gOtETPZOAhPnzjKIQVpCREekGoXiUmOF7bOXEtpkESq Z3RfY74gQ0JdAsQVma3OWff6OfTnlnZBV5NE2KojtWs0QHA6C1OWb1ytyhasjth0 2htYyQOdjfl5zFav7jP8guX1h95ryFPYNd7krci/ho6Tp5wu6LFmPigCUUGn2q/D R0f8zjDEb/Pj8wANiUotZrMawchL0Lx2FKfOKh5f -----END CERTIFICATE-----Generated at Sun May 11 09:08:41 2025 by rpki-client