$ rpki-client -vvf repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/34332e3234352e3138302e302f32322d3234203d3e203538333937.roa File: 34332e3234352e3138302e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: THVSHOfDNgrFd49wZlYvuTuPkWSURiIGaUg0EUGrcPM= Subject key identifier: E9:D1:00:C8:0B:7E:4E:E6:7A:68:5D:A8:34:12:A8:D3:5D:71:C2:B3 Certificate issuer: /CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Certificate serial: 0BF781943AD2D2D958E68BABB45107B1F5508AD7 Authority key identifier: 8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/34332e3234352e3138302e302f32322d3234203d3e203538333937.roa Signing time: Sat 11 Oct 2025 11:00:01 +0000 ROA not before: Sat 11 Oct 2025 10:55:01 +0000 ROA not after: Sat 10 Oct 2026 11:00:01 +0000 asID: 58397 IP address blocks: 43.245.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 22:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:f7:81:94:3a:d2:d2:d9:58:e6:8b:ab:b4:51:07:b1:f5:50:8a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Validity Not Before: Oct 11 10:55:01 2025 GMT Not After : Oct 10 11:00:01 2026 GMT Subject: CN=E9D100C80B7E4EE67A685DA83412A8D35D71C2B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a8:5e:9f:9f:e4:b3:8d:d6:a1:bc:17:7c:f5: eb:92:3a:31:04:a6:84:1c:39:9f:90:78:7e:1c:23: 82:81:8e:a4:ab:c9:b6:1d:91:28:76:91:30:b8:ad: f0:01:94:9e:4a:77:5b:57:d5:61:15:a4:36:09:58: 86:ae:6c:94:c0:87:3b:f6:04:55:a0:11:42:68:15: 55:ed:bb:8e:bd:b5:d8:e9:c6:58:a9:07:16:87:82: 86:56:5b:c9:de:1d:33:7d:13:db:eb:e7:c6:6f:3e: 2f:98:21:98:dd:c0:db:10:9c:b8:00:f7:ea:2c:9b: fc:ab:da:c7:c2:94:04:ea:97:32:13:61:2b:b8:f0: 84:38:46:4e:91:7d:9e:c3:24:13:4e:50:bb:2b:0f: ef:1f:64:44:f0:9e:b8:eb:af:06:1b:b3:19:f4:09: e3:00:89:08:00:46:16:cc:bc:02:ef:22:03:e9:d1: 41:fb:a7:88:2e:d1:82:93:3d:41:39:0a:1d:71:1d: ff:ed:80:f9:7f:9c:28:ef:c5:72:2b:34:33:14:da: 21:b3:c6:8e:34:ac:4f:eb:b7:83:47:ce:d1:67:a8: 3d:4a:7c:76:f4:2d:7a:a0:33:16:f7:8e:ea:8e:26: 76:e6:c0:47:49:6e:d8:9b:91:5e:7a:64:51:be:47: e9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D1:00:C8:0B:7E:4E:E6:7A:68:5D:A8:34:12:A8:D3:5D:71:C2:B3 X509v3 Authority Key Identifier: keyid:8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/34332e3234352e3138302e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.245.180.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:b2:08:c8:a0:3d:24:de:49:c1:32:f6:07:99:a7:01:d7:cb: 5b:f8:52:83:07:dd:64:26:b8:fa:86:e5:0f:7b:de:a3:9e:d3: 54:7f:92:35:d1:df:cd:61:a2:70:cc:0f:0f:b4:42:3a:aa:43: 24:4e:00:2d:af:2f:14:c6:df:e3:f0:7b:9f:8e:84:27:a1:9c: 0d:09:73:61:46:66:38:70:0b:2c:ca:3f:67:e1:ae:50:cb:92: 5c:e0:87:a8:fd:a5:86:74:8d:8e:b6:8f:c5:7d:4c:ce:95:cd: 6d:e5:a2:09:22:2c:48:40:f1:08:8c:4a:8c:52:5f:48:ff:f1: a5:fe:fe:88:1f:b8:cb:cc:6c:1e:56:50:34:ea:b4:3e:08:6c: 66:a0:4b:f6:30:21:de:11:b2:95:3c:fa:b1:81:c1:5f:c4:74: f7:f0:03:69:9a:e1:23:7b:22:20:67:0b:b4:99:6c:83:ce:24: 58:db:39:f8:70:f3:ff:28:40:e8:76:d5:6b:b6:64:92:ac:5d: 09:c3:8f:40:5a:19:b7:d1:80:8f:9c:7d:ae:26:9d:1b:a6:bb: 03:3c:2f:b0:76:a0:b6:a4:32:de:ac:6c:04:c3:9e:e1:b9:a3: 64:32:6b:34:8f:0b:01:f1:3f:46:88:b3:9b:5c:83:3f:67:8d: 1c:ee:17:b7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC/eBlDrS0tlY5ourtFEHsfVQitcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5 NEZCNjQ4MTAeFw0yNTEwMTExMDU1MDFaFw0yNjEwMTAxMTAwMDFaMDMxMTAvBgNV BAMTKEU5RDEwMEM4MEI3RTRFRTY3QTY4NURBODM0MTJBOEQzNUQ3MUMyQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZqF6fn+SzjdahvBd89euSOjEE poQcOZ+QeH4cI4KBjqSrybYdkSh2kTC4rfABlJ5Kd1tX1WEVpDYJWIaubJTAhzv2 BFWgEUJoFVXtu469tdjpxlipBxaHgoZWW8neHTN9E9vr58ZvPi+YIZjdwNsQnLgA 9+osm/yr2sfClATqlzITYSu48IQ4Rk6RfZ7DJBNOULsrD+8fZETwnrjrrwYbsxn0 CeMAiQgARhbMvALvIgPp0UH7p4gu0YKTPUE5Ch1xHf/tgPl/nCjvxXIrNDMU2iGz xo40rE/rt4NHztFnqD1KfHb0LXqgMxb3juqOJnbmwEdJbtibkV56ZFG+R+l3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6dEAyAt+TuZ6aF2oNBKo011xwrMwHwYDVR0j BBgwFoAUipX69yPsEp4zbnWs4c1PMJT7ZIEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGI5ODcyMi0xY2I0LTQwZDQtYWM4Yi1jM2JjYTJiY2EyMTcvMC84QTk1RkFGNzIz RUMxMjlFMzM2RTc1QUNFMUNENEYzMDk0RkI2NDgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5NEZC NjQ4MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Yjk4NzIyLTFjYjQtNDBkNC1h YzhiLWMzYmNhMmJjYTIxNy8wLzM0MzMyZTMyMzQzNTJlMzEzODMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv1tDANBgkqhkiG 9w0BAQsFAAOCAQEAj7IIyKA9JN5JwTL2B5mnAdfLW/hSgwfdZCa4+oblD3veo57T VH+SNdHfzWGicMwPD7RCOqpDJE4ALa8vFMbf4/B7n46EJ6GcDQlzYUZmOHALLMo/ Z+GuUMuSXOCHqP2lhnSNjraPxX1MzpXNbeWiCSIsSEDxCIxKjFJfSP/xpf7+iB+4 y8xsHlZQNOq0PghsZqBL9jAh3hGylTz6sYHBX8R09/ADaZrhI3siIGcLtJlsg84k WNs5+HDz/yhA6HbVa7ZkkqxdCcOPQFoZt9GAj5x9riadG6a7AzwvsHagtqQy3qxs BMOe4bmjZDJrNI8LAfE/Roizm1yDP2eNHO4Xtw== -----END CERTIFICATE-----Generated at Mon Oct 20 12:35:08 2025 by rpki-client