$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136352e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136352e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: cNKq2QbgGDLyN9PZcO+Zppr0DCkvwdiJFrPxVyBvpwk= Subject key identifier: D0:D4:1D:50:E4:00:42:AE:1F:7B:C9:06:72:4A:25:31:52:8C:FB:DE Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 384F78157A453FFA4CF072937F28BFDD7AA856E8 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136352e302f32342d3234203d3e2039373934.roa Signing time: Thu 10 Jul 2025 09:00:00 +0000 ROA not before: Thu 10 Jul 2025 08:55:00 +0000 ROA not after: Thu 09 Jul 2026 09:00:00 +0000 asID: 9794 IP address blocks: 203.201.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 22:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4f:78:15:7a:45:3f:fa:4c:f0:72:93:7f:28:bf:dd:7a:a8:56:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jul 10 08:55:00 2025 GMT Not After : Jul 9 09:00:00 2026 GMT Subject: CN=D0D41D50E40042AE1F7BC906724A2531528CFBDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:88:e4:52:ff:49:47:68:0d:11:18:6e:b1:38: 74:37:35:8c:a6:30:00:28:c8:5b:1b:1f:c0:55:04: 16:89:14:91:54:3a:3b:16:be:a9:d9:af:f8:52:0e: 14:8d:1a:e3:7d:0d:38:76:85:5a:69:bf:d3:4c:19: 72:36:63:20:96:2a:32:da:99:28:9a:e7:e5:cd:81: 38:4b:57:db:dc:9d:d7:18:59:06:19:24:33:29:b3: a5:01:b1:ad:5b:c9:4c:de:a2:d8:fd:1b:74:2f:e4: b9:09:8c:6b:ab:ca:8d:b5:49:5a:a5:af:21:79:d8: a6:24:39:b1:f0:b6:89:63:df:52:ea:d9:7b:b8:ee: 2d:37:af:db:7c:32:e1:6d:3d:77:1e:8e:da:a1:d2: 57:ab:bc:05:ef:17:00:f7:4e:70:78:61:e8:57:97: aa:59:28:db:55:98:76:9a:84:21:88:49:0e:62:d5: c0:59:73:fc:72:31:77:cb:31:17:d8:3c:95:15:ae: dc:8b:51:d5:39:7d:e8:53:72:b8:30:fa:09:f6:94: 8c:85:2f:55:6c:82:3a:0e:6f:cd:78:e1:69:34:a8: 99:d6:4e:25:b0:a0:bc:b9:d2:74:c7:5a:05:8b:4f: 05:66:19:fe:39:41:61:33:04:7d:dd:fb:14:5b:68: 49:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D4:1D:50:E4:00:42:AE:1F:7B:C9:06:72:4A:25:31:52:8C:FB:DE X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136352e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.165.0/24 Signature Algorithm: sha256WithRSAEncryption 27:f0:93:51:2e:20:f5:82:8a:cb:ed:37:5f:9e:3c:33:b7:c8: a9:a6:f4:79:4d:39:79:58:fd:01:39:01:bb:c3:81:f6:a6:94: bb:8b:50:04:93:a6:ac:c8:d0:1e:5b:dc:a2:13:d8:2c:03:52: 55:39:5f:64:0f:57:bb:ce:9b:35:58:b5:42:7e:f9:27:d4:78: d2:fa:70:24:68:a6:98:3b:8a:4e:59:1e:53:33:a5:42:47:c6: 1c:94:4a:58:94:0e:7a:aa:b3:64:b8:bd:17:1c:cd:47:48:97: 03:c7:8f:d2:90:cc:cb:87:55:a3:35:35:5f:e4:1e:35:8d:18: 14:51:d6:f8:d9:ca:41:58:08:91:47:4f:9f:39:c1:bb:68:c2: 33:7c:1b:5c:f4:26:44:9d:95:95:c9:3b:6a:c1:b0:e7:76:81: c5:8b:af:f6:dc:a3:1b:10:71:28:17:08:90:37:43:e0:88:a6: a7:2a:4a:53:c1:58:06:3f:17:41:10:c7:63:d8:26:3c:5b:bf: 1c:e7:e2:31:83:1b:9e:c3:9a:bb:67:ea:04:79:f0:05:b8:20: 9e:07:5b:30:df:dc:57:48:82:d3:9b:90:96:e1:81:e6:a3:03: d4:64:e1:bc:15:46:fe:47:76:e9:d9:3b:f6:07:83:29:2e:39: 17:73:6c:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOE94FXpFP/pM8HKTfyi/3XqoVugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA3MTAwODU1MDBaFw0yNjA3MDkwOTAwMDBaMDMxMTAvBgNV BAMTKEQwRDQxRDUwRTQwMDQyQUUxRjdCQzkwNjcyNEEyNTMxNTI4Q0ZCREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTiORS/0lHaA0RGG6xOHQ3NYym MAAoyFsbH8BVBBaJFJFUOjsWvqnZr/hSDhSNGuN9DTh2hVppv9NMGXI2YyCWKjLa mSia5+XNgThLV9vcndcYWQYZJDMps6UBsa1byUzeotj9G3Qv5LkJjGuryo21SVql ryF52KYkObHwtolj31Lq2Xu47i03r9t8MuFtPXcejtqh0lervAXvFwD3TnB4YehX l6pZKNtVmHaahCGISQ5i1cBZc/xyMXfLMRfYPJUVrtyLUdU5fehTcrgw+gn2lIyF L1VsgjoOb8144Wk0qJnWTiWwoLy50nTHWgWLTwVmGf45QWEzBH3d+xRbaElfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0NQdUOQAQq4fe8kGckolMVKM+94wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJpTANBgkqhkiG 9w0BAQsFAAOCAQEAJ/CTUS4g9YKKy+03X548M7fIqab0eU05eVj9ATkBu8OB9qaU u4tQBJOmrMjQHlvcohPYLANSVTlfZA9Xu86bNVi1Qn75J9R40vpwJGimmDuKTlke UzOlQkfGHJRKWJQOeqqzZLi9FxzNR0iXA8eP0pDMy4dVozU1X+QeNY0YFFHW+NnK QVgIkUdPnznBu2jCM3wbXPQmRJ2Vlck7asGw53aBxYuv9tyjGxBxKBcIkDdD4Iim pypKU8FYBj8XQRDHY9gmPFu/HOfiMYMbnsOau2fqBHnwBbggngdbMN/cV0iC05uQ luGB5qMD1GThvBVG/kd26dk79geDKS45F3Ns7Q== -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:03 2025 by rpki-client