$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e312e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: aRQOhDh+QgbdV0GZMYN6O6NT7LZD/2MINUKqkYCe0JM= Subject key identifier: 9B:A6:F2:2C:7A:B7:CB:41:8E:67:53:4E:F2:88:1F:C5:7E:AA:19:41 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 71DE4A89B658E40249653EA1FF240C2CB2F9BFDE Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e312e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:01 +0000 ROA not before: Mon 02 Jun 2025 00:58:01 +0000 ROA not after: Mon 01 Jun 2026 01:03:01 +0000 asID: 9794 IP address blocks: 202.148.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:de:4a:89:b6:58:e4:02:49:65:3e:a1:ff:24:0c:2c:b2:f9:bf:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:01 2025 GMT Not After : Jun 1 01:03:01 2026 GMT Subject: CN=9BA6F22C7AB7CB418E67534EF2881FC57EAA1941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2c:28:3c:6f:70:ac:ca:2c:97:b6:57:3d:fc: 20:5b:62:8f:ee:27:9e:1b:97:d5:76:01:4f:2a:ef: f6:6e:52:0e:c2:06:97:c5:10:87:bf:bb:92:f9:45: 7d:c6:05:33:01:d3:cc:ba:c5:00:e9:9c:bf:ed:a1: 98:8f:f4:53:44:af:7d:87:51:c0:ef:96:8f:f7:a8: a9:50:1a:77:c0:20:ce:20:6f:3b:9a:e7:61:fd:77: 7c:d3:78:0d:08:12:19:1e:aa:d6:68:8c:06:1d:7b: 8a:0a:10:c2:08:c4:e4:38:01:30:65:d2:53:82:35: b5:6e:24:c7:75:bc:5d:3a:47:a9:95:50:68:3f:87: 6d:84:a3:99:b9:55:cc:ec:e8:da:57:02:09:10:ea: d6:20:3b:40:c9:f4:f2:4c:49:00:50:cd:36:61:2f: 98:c5:2e:99:11:ae:6a:bc:47:91:f7:ca:fd:75:27: ae:e2:08:7d:dd:d0:82:e1:5b:a4:51:03:3e:16:52: fe:0d:53:64:05:5d:e2:40:4a:ba:bc:9e:6a:0f:4b: 7b:b7:df:4e:6b:c2:36:42:b4:08:c4:d7:2d:00:f0: 4e:7f:fd:fb:57:75:31:cb:95:8c:85:e7:a1:18:10: eb:0f:5f:a7:10:24:68:e5:a3:91:b2:be:ee:67:79: c9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A6:F2:2C:7A:B7:CB:41:8E:67:53:4E:F2:88:1F:C5:7E:AA:19:41 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.1.0/24 Signature Algorithm: sha256WithRSAEncryption 70:43:55:f0:82:d3:0d:3e:87:fb:25:0a:40:56:c0:3f:fd:cc: 4b:63:41:d9:a9:fb:81:75:2e:10:f0:fb:e6:23:1b:de:2b:83: 58:a3:d1:af:f5:62:83:d0:72:90:14:82:2c:a5:75:9c:98:d3: 59:81:41:59:fa:4f:1a:dd:50:28:b9:22:8f:2a:f7:1b:21:d3: 54:ed:d1:d5:5e:1c:00:da:a0:42:48:d7:47:d0:db:9d:c6:81: cc:75:11:bc:a8:d3:7b:16:b7:da:ef:db:a2:41:83:f6:97:69: 74:2a:ab:91:dd:bd:48:d1:b5:4d:e9:73:05:e2:58:00:97:4c: 4a:61:97:9d:d6:f9:91:eb:13:a8:77:4e:85:5a:da:de:bb:b9: 88:f8:31:81:86:ad:af:30:63:4c:70:57:44:ec:8f:c4:02:d2: 9d:76:65:c6:3e:63:26:4f:e4:ce:9b:59:73:ba:27:52:df:fc: 88:18:9b:7d:9f:c6:0d:48:87:99:1b:63:72:6b:36:88:32:84: 73:4c:a9:73:2c:be:ba:e9:56:b5:a4:13:24:83:15:05:12:62: e0:bd:01:77:2a:3c:ac:46:54:72:62:c0:9e:1f:a8:63:02:1a: d5:ab:a5:0f:c0:65:7b:74:ec:d5:b7:41:21:cf:e0:83:75:c5: b9:95:e0:3b -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUcd5KibZY5AJJZT6h/yQMLLL5v94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDFaFw0yNjA2MDEwMTAzMDFaMDMxMTAvBgNV BAMTKDlCQTZGMjJDN0FCN0NCNDE4RTY3NTM0RUYyODgxRkM1N0VBQTE5NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjLCg8b3CsyiyXtlc9/CBbYo/u J54bl9V2AU8q7/ZuUg7CBpfFEIe/u5L5RX3GBTMB08y6xQDpnL/toZiP9FNEr32H UcDvlo/3qKlQGnfAIM4gbzua52H9d3zTeA0IEhkeqtZojAYde4oKEMIIxOQ4ATBl 0lOCNbVuJMd1vF06R6mVUGg/h22Eo5m5Vczs6NpXAgkQ6tYgO0DJ9PJMSQBQzTZh L5jFLpkRrmq8R5H3yv11J67iCH3d0ILhW6RRAz4WUv4NU2QFXeJASrq8nmoPS3u3 305rwjZCtAjE1y0A8E5//ftXdTHLlYyF56EYEOsPX6cQJGjlo5Gyvu5necnbAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUm6byLHq3y0GOZ1NO8ogfxX6qGUEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTMxMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAEwDQYJKoZIhvcNAQEL BQADggEBAHBDVfCC0w0+h/slCkBWwD/9zEtjQdmp+4F1LhDw++YjG94rg1ij0a/1 YoPQcpAUgiyldZyY01mBQVn6TxrdUCi5Io8q9xsh01Tt0dVeHADaoEJI10fQ253G gcx1Ebyo03sWt9rv26JBg/aXaXQqq5HdvUjRtU3pcwXiWACXTEphl53W+ZHrE6h3 ToVa2t67uYj4MYGGra8wY0xwV0Tsj8QC0p12ZcY+YyZP5M6bWXO6J1Lf/IgYm32f xg1Ih5kbY3JrNogyhHNMqXMsvrrpVrWkEySDFQUSYuC9AXcqPKxGVHJiwJ4fqGMC GtWrpQ/AZXt07NW3QSHP4IN1xbmV4Ds= -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:32 2025 by rpki-client