$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: gzXSHuZjo3ZUiLgKZ/gmQ9tg6xjdMJDEKTNrWddZf68= Subject key identifier: 49:42:A3:8D:73:E3:4D:02:52:94:5E:D5:53:AA:4A:71:6D:A1:B3:B9 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 28FDF3C0FD0A5DBDAB66F55885BE73A434CEAD50 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:01 +0000 ROA not before: Mon 02 Jun 2025 00:58:01 +0000 ROA not after: Mon 01 Jun 2026 01:03:01 +0000 asID: 38778 IP address blocks: 202.148.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:fd:f3:c0:fd:0a:5d:bd:ab:66:f5:58:85:be:73:a4:34:ce:ad:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:01 2025 GMT Not After : Jun 1 01:03:01 2026 GMT Subject: CN=4942A38D73E34D0252945ED553AA4A716DA1B3B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c6:cd:86:0a:96:7a:d4:80:69:a3:4f:e5:a9: 5a:e6:f6:ca:57:f5:4d:dc:bb:8b:90:35:de:96:bc: 70:e1:6d:38:30:a2:76:0f:3f:8d:15:62:d1:83:9e: 7e:1d:a0:1d:95:6a:8e:22:d5:e3:39:d6:e1:02:9b: 44:d2:ea:21:09:f0:e8:f6:e9:5a:6b:e0:b2:4d:51: 1d:01:0c:3c:dd:d3:86:c0:59:69:4c:52:a6:65:84: 8c:99:56:52:fd:ec:e1:69:6e:89:81:67:1e:cf:b7: 16:fd:56:f1:19:33:27:a9:77:c0:73:6c:2f:e6:06: cf:1b:4a:e6:1a:89:03:9b:b7:71:5d:b0:0a:13:be: 3c:3c:8d:c4:8f:c1:49:1f:e2:cd:54:a2:13:c7:5e: bb:d0:52:bf:6c:a8:65:6b:2b:65:92:62:6b:e8:9e: a1:47:10:04:35:24:ea:78:3b:75:dc:5c:f2:55:ae: 50:53:3d:d8:d3:6c:90:5e:9a:96:41:cc:c1:a4:d4: ac:5f:ae:c7:f6:a8:26:d5:f6:24:98:fe:17:11:4b: e4:f3:88:f8:25:b5:7f:af:6a:27:35:79:d0:da:e1: 44:20:a1:33:b4:20:bb:3b:70:77:60:f5:5a:55:eb: b7:bd:42:c2:b3:07:dd:ae:4c:2e:51:74:5c:7f:e3: 12:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:42:A3:8D:73:E3:4D:02:52:94:5E:D5:53:AA:4A:71:6D:A1:B3:B9 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.10.0/24 Signature Algorithm: sha256WithRSAEncryption 83:c1:dc:cd:99:c9:86:9d:a8:6b:f6:5e:d9:4f:e1:ca:76:15: e8:2e:e2:e6:df:92:70:c8:85:07:78:1c:25:cb:0d:66:01:1a: bf:18:1c:aa:02:af:18:b6:03:35:63:43:5b:bd:5a:e1:91:09: d4:c7:5c:1f:dd:d0:cf:8c:8d:3a:cb:fe:f0:53:ac:93:fa:f6: de:5f:8c:fb:18:dc:a0:99:0f:e7:75:88:ad:a9:f4:54:75:9f: e9:4e:2f:1b:1b:fa:d6:59:45:3a:4e:9f:05:f0:00:2a:58:9d: 27:ef:d3:31:bf:51:fd:48:48:48:f7:48:7a:30:0e:31:c5:aa: 95:eb:f2:6c:ad:d1:31:b4:88:e9:1f:d9:c3:46:fe:0d:09:7a: 04:38:d6:fe:ca:c5:83:14:78:78:db:80:4c:6a:10:ac:59:28: 22:6c:9c:44:c6:fa:7a:c5:7c:5c:ef:cd:1a:7a:c2:84:7e:ec: 51:4f:43:03:f3:5b:42:ae:3a:b9:7e:d2:53:3a:ac:fb:d4:37: 3c:a1:1a:1e:74:5f:ce:42:15:da:a3:bf:83:30:52:18:db:ee: a7:49:09:ea:36:8c:9a:08:e5:46:ed:a4:9b:67:4b:dc:3b:c4: 41:61:b9:34:78:39:a6:0c:1a:50:db:60:0d:53:6e:67:40:3c: fd:9a:5f:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKP3zwP0KXb2rZvVYhb5zpDTOrVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDFaFw0yNjA2MDEwMTAzMDFaMDMxMTAvBgNV BAMTKDQ5NDJBMzhENzNFMzREMDI1Mjk0NUVENTUzQUE0QTcxNkRBMUIzQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgxs2GCpZ61IBpo0/lqVrm9spX 9U3cu4uQNd6WvHDhbTgwonYPP40VYtGDnn4doB2Vao4i1eM51uECm0TS6iEJ8Oj2 6Vpr4LJNUR0BDDzd04bAWWlMUqZlhIyZVlL97OFpbomBZx7Ptxb9VvEZMyepd8Bz bC/mBs8bSuYaiQObt3FdsAoTvjw8jcSPwUkf4s1UohPHXrvQUr9sqGVrK2WSYmvo nqFHEAQ1JOp4O3XcXPJVrlBTPdjTbJBempZBzMGk1Kxfrsf2qCbV9iSY/hcRS+Tz iPgltX+vaic1edDa4UQgoTO0ILs7cHdg9VpV67e9QsKzB92uTC5RdFx/4xIJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSUKjjXPjTQJSlF7VU6pKcW2hs7kwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUCjANBgkqhkiG 9w0BAQsFAAOCAQEAg8HczZnJhp2oa/Ze2U/hynYV6C7i5t+ScMiFB3gcJcsNZgEa vxgcqgKvGLYDNWNDW71a4ZEJ1MdcH93Qz4yNOsv+8FOsk/r23l+M+xjcoJkP53WI ran0VHWf6U4vGxv61llFOk6fBfAAKlidJ+/TMb9R/UhISPdIejAOMcWqlevybK3R MbSI6R/Zw0b+DQl6BDjW/srFgxR4eNuATGoQrFkoImycRMb6esV8XO/NGnrChH7s UU9DA/NbQq46uX7SUzqs+9Q3PKEaHnRfzkIV2qO/gzBSGNvup0kJ6jaMmgjlRu2k m2dL3DvEQWG5NHg5pgwaUNtgDVNuZ0A8/ZpfSA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:52:42 2025 by rpki-client