$ rpki-client -vvf repo-rpki.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/34332e3234312e3234362e302f32332d3234203d3e20313532303837.roa File: 34332e3234312e3234362e302f32332d3234203d3e20313532303837.roa (raw, json) Hash identifier: nPcZF2JbaXVg4aqEl6fdLSlNMJ+HNs6j21SzssKEs40= Subject key identifier: B6:D1:66:01:74:A4:47:9D:F1:71:1E:00:3A:79:64:68:F4:4B:D3:66 Certificate issuer: /CN=84DE1C79BB946275D6796DBDBC79083CB24881A6 Certificate serial: 09B1B17A241E0358AD678D00F8E3488DA71A9625 Authority key identifier: 84:DE:1C:79:BB:94:62:75:D6:79:6D:BD:BC:79:08:3C:B2:48:81:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/84DE1C79BB946275D6796DBDBC79083CB24881A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/34332e3234312e3234362e302f32332d3234203d3e20313532303837.roa Signing time: Mon 23 Jun 2025 11:36:45 +0000 ROA not before: Mon 23 Jun 2025 11:31:45 +0000 ROA not after: Mon 22 Jun 2026 11:36:45 +0000 asID: 152087 IP address blocks: 43.241.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/84DE1C79BB946275D6796DBDBC79083CB24881A6.crl rsync://repo-rpki.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/84DE1C79BB946275D6796DBDBC79083CB24881A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/84DE1C79BB946275D6796DBDBC79083CB24881A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:b1:b1:7a:24:1e:03:58:ad:67:8d:00:f8:e3:48:8d:a7:1a:96:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84DE1C79BB946275D6796DBDBC79083CB24881A6 Validity Not Before: Jun 23 11:31:45 2025 GMT Not After : Jun 22 11:36:45 2026 GMT Subject: CN=B6D1660174A4479DF1711E003A796468F44BD366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4b:a7:34:1b:a6:75:ad:a1:47:a0:57:d9:52: be:41:50:62:88:49:56:75:b6:5b:a9:19:4e:12:55: 2f:78:1e:c2:d0:7b:28:40:35:3a:34:ce:7d:05:d8: 88:10:92:ca:bf:de:7a:e9:fa:52:5a:b7:41:59:9f: d4:65:82:61:c9:ad:c9:74:4b:dc:0c:79:e6:db:53: f7:75:b9:8f:b5:b0:19:6d:ca:ea:30:68:7c:b0:36: ec:6b:9a:1a:31:72:89:da:d7:a5:c8:1f:8d:4b:ba: 5e:7d:56:d0:29:f5:7c:5f:7e:ca:06:1d:bc:a7:f3: 07:6a:35:a5:8f:34:17:f6:47:19:4b:6c:eb:d3:52: 73:1e:0a:85:e0:36:79:89:51:7b:9d:97:46:93:31: b7:f3:cd:ab:54:4a:28:d9:a7:0e:99:d5:41:76:20: 9d:0f:a4:19:a7:1a:00:a5:63:4c:50:83:19:39:3c: 3d:cc:63:b3:7b:c1:5b:0f:5e:a5:22:09:f7:97:32: 91:75:b3:53:cf:49:d8:f9:98:ee:48:a6:16:a5:50: 03:95:21:37:bb:28:0d:8f:09:fb:2f:3e:3a:2a:22: 64:a5:cd:0f:a1:fa:d8:d3:56:15:63:77:5b:ee:68: 9b:60:64:52:9b:a8:d1:53:a6:0c:be:a6:f7:82:ae: aa:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D1:66:01:74:A4:47:9D:F1:71:1E:00:3A:79:64:68:F4:4B:D3:66 X509v3 Authority Key Identifier: keyid:84:DE:1C:79:BB:94:62:75:D6:79:6D:BD:BC:79:08:3C:B2:48:81:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/84DE1C79BB946275D6796DBDBC79083CB24881A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/84DE1C79BB946275D6796DBDBC79083CB24881A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1087159-30dd-41ba-9979-03588112a780/0/34332e3234312e3234362e302f32332d3234203d3e20313532303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.246.0/23 Signature Algorithm: sha256WithRSAEncryption 10:6b:a2:be:90:8a:86:d9:52:60:31:a0:55:a3:26:d8:00:6c: 82:4e:62:79:4c:2d:62:a9:6a:e8:cd:5f:3e:b8:25:2e:e7:05: 5d:9f:e8:86:c5:d9:e4:09:2f:33:50:1c:2c:0c:d0:c4:74:d3: ee:c7:d9:d2:ba:2b:a6:2d:f4:c3:41:05:bc:a6:64:62:ec:b9: ef:7d:a0:3d:17:63:75:b1:65:8c:fb:3e:0b:ad:73:e0:8a:70: 66:cd:70:7d:91:a4:59:96:e3:a5:9d:c0:b1:01:93:f0:ea:b3: 4f:8e:4b:d9:9e:93:66:af:90:9e:cb:bd:3b:f5:c1:29:07:2a: f6:0c:ab:6f:52:6e:d9:91:99:1b:06:52:2a:ca:7a:d3:e8:ce: 76:0f:bf:22:ef:a3:1e:68:0f:e8:8a:ae:dd:ca:fe:b3:7e:c2: c9:1c:02:7d:42:b2:b1:b7:c7:36:81:99:21:45:53:b3:5a:74: 6f:35:84:eb:d5:e9:e2:6c:5a:b1:1e:e2:c6:62:37:cf:b3:0e: a8:ba:f3:73:ff:b6:d8:4b:e8:3f:c2:ee:09:77:a1:04:07:21: 05:4a:7f:93:97:86:2a:bf:fe:48:8f:69:72:f4:55:54:6f:01: b1:ce:73:a1:0d:a0:97:14:d0:15:51:9d:db:ca:6f:30:8a:a1: 17:66:b5:be -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCbGxeiQeA1itZ40A+ONIjacaliUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODRERTFDNzlCQjk0NjI3NUQ2Nzk2REJEQkM3OTA4M0NC MjQ4ODFBNjAeFw0yNTA2MjMxMTMxNDVaFw0yNjA2MjIxMTM2NDVaMDMxMTAvBgNV BAMTKEI2RDE2NjAxNzRBNDQ3OURGMTcxMUUwMDNBNzk2NDY4RjQ0QkQzNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeS6c0G6Z1raFHoFfZUr5BUGKI SVZ1tlupGU4SVS94HsLQeyhANTo0zn0F2IgQksq/3nrp+lJat0FZn9RlgmHJrcl0 S9wMeebbU/d1uY+1sBltyuowaHywNuxrmhoxcona16XIH41Lul59VtAp9XxffsoG Hbyn8wdqNaWPNBf2RxlLbOvTUnMeCoXgNnmJUXudl0aTMbfzzatUSijZpw6Z1UF2 IJ0PpBmnGgClY0xQgxk5PD3MY7N7wVsPXqUiCfeXMpF1s1PPSdj5mO5IphalUAOV ITe7KA2PCfsvPjoqImSlzQ+h+tjTVhVjd1vuaJtgZFKbqNFTpgy+pveCrqoJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUttFmAXSkR53xcR4AOnlkaPRL02YwHwYDVR0j BBgwFoAUhN4cebuUYnXWeW29vHkIPLJIgaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTA4NzE1OS0zMGRkLTQxYmEtOTk3OS0wMzU4ODExMmE3ODAvMC84NERFMUM3OUJC OTQ2Mjc1RDY3OTZEQkRCQzc5MDgzQ0IyNDg4MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODRERTFDNzlCQjk0NjI3NUQ2Nzk2REJEQkM3OTA4M0NCMjQ4 ODFBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxMDg3MTU5LTMwZGQtNDFiYS05 OTc5LTAzNTg4MTEyYTc4MC8wLzM0MzMyZTMyMzQzMTJlMzIzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBK/H2MA0GCSqG SIb3DQEBCwUAA4IBAQAQa6K+kIqG2VJgMaBVoybYAGyCTmJ5TC1iqWrozV8+uCUu 5wVdn+iGxdnkCS8zUBwsDNDEdNPux9nSuiumLfTDQQW8pmRi7LnvfaA9F2N1sWWM +z4LrXPginBmzXB9kaRZluOlncCxAZPw6rNPjkvZnpNmr5Cey7079cEpByr2DKtv Um7ZkZkbBlIqynrT6M52D78i76MeaA/oiq7dyv6zfsLJHAJ9QrKxt8c2gZkhRVOz WnRvNYTr1enibFqxHuLGYjfPsw6ouvNz/7bYS+g/wu4Jd6EEByEFSn+Tl4Yqv/5I j2ly9FVUbwGxznOhDaCXFNAVUZ3bym8wiqEXZrW+ -----END CERTIFICATE-----Generated at Thu Jul 3 00:30:46 2025 by rpki-client