$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31312e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31312e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: Xw1ZUcYMdE8YJ6sLbengESZn8uy4htNEFQOaMyG6fXc= Subject key identifier: 24:6E:CD:57:0E:A9:C4:B6:99:8A:6F:63:8C:83:05:FF:11:51:6E:36 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 03B35FA8BEB65D1F91A4DAE78F39763CAB939BF3 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31312e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 02:00:01 +0000 ROA not before: Mon 02 Jun 2025 01:55:01 +0000 ROA not after: Mon 01 Jun 2026 02:00:01 +0000 asID: 38778 IP address blocks: 202.148.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b3:5f:a8:be:b6:5d:1f:91:a4:da:e7:8f:39:76:3c:ab:93:9b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:01 2025 GMT Not After : Jun 1 02:00:01 2026 GMT Subject: CN=246ECD570EA9C4B6998A6F638C8305FF11516E36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e0:7b:56:01:b0:1a:cd:55:87:c8:75:b1:67: 7c:97:5c:78:c0:47:a3:41:6e:77:9e:6e:75:2a:b9: c6:05:47:64:db:e6:ac:9f:df:ea:9e:63:69:52:f3: 99:91:c6:40:46:e5:e0:73:ba:5f:48:9f:09:00:63: 4f:d1:e7:ab:c0:78:1a:4c:e3:c6:94:79:73:79:8c: 9a:c0:72:d8:81:ca:9d:5b:d4:84:ed:96:ab:a1:9f: 61:93:74:a9:30:ff:eb:88:00:63:fe:cf:ef:ed:48: d2:08:c2:32:28:be:1b:74:5b:de:72:03:59:21:80: c9:21:8c:66:66:e6:29:c9:f5:c6:e7:a3:29:30:61: 91:3f:3d:57:ad:1c:2d:32:5a:11:b7:5a:cc:7c:91: f3:08:5b:50:40:68:50:16:99:1d:34:86:b6:1c:9f: 42:cc:04:e6:03:91:42:e8:d5:48:ea:68:32:4a:9f: 50:3e:11:74:90:51:6e:f3:4d:ad:e2:18:56:43:ba: e3:3c:20:78:5d:a0:4c:a9:73:91:cd:41:be:18:19: 1a:18:95:0e:68:9c:61:1f:32:40:17:a3:ec:9e:b8: aa:ee:24:97:6f:d1:34:c0:b2:f7:11:fb:ba:64:a1: 12:e1:6a:8e:05:a2:6b:dc:d3:7d:41:b9:6d:77:f0: 43:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:6E:CD:57:0E:A9:C4:B6:99:8A:6F:63:8C:83:05:FF:11:51:6E:36 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31312e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.11.0/24 Signature Algorithm: sha256WithRSAEncryption 60:5d:06:8a:b3:b3:4b:4b:3b:db:5b:70:85:e0:6c:e2:86:a9: 68:79:da:f8:6f:94:e6:3f:58:3b:69:6c:d5:eb:94:72:6b:a3: e4:c3:8e:b2:15:96:77:cb:92:4b:ce:66:93:f2:92:e1:ac:d3: f7:d0:55:23:08:19:7a:53:d6:69:54:05:e8:79:a6:ab:e8:d9: 8d:2e:1e:4f:42:77:7a:71:71:11:40:78:2b:a0:10:b2:e9:43: e8:5c:4f:c2:12:5e:e1:71:24:1e:dd:14:d9:cc:f6:bb:46:4f: 0f:b0:60:b5:aa:6f:bd:54:83:cc:c3:e1:7f:d4:26:9f:18:0e: 4f:22:1f:8b:9a:2c:0d:67:b3:c9:eb:41:f8:dd:61:76:04:de: c6:60:72:43:71:19:de:0b:80:b3:ef:8d:50:c1:f4:19:b4:a4: da:48:b0:70:4c:1f:1b:ee:80:1f:56:b8:1e:84:91:02:a4:67: 96:1f:47:c0:a8:dd:96:55:0a:8c:46:72:16:28:dc:5b:5c:d9: e0:fe:0d:a9:7f:9e:e1:1f:77:46:50:92:bd:e5:65:89:66:3c: 43:1b:d3:71:4b:02:fa:14:d8:d8:0e:b7:c8:8d:32:e3:43:a3: 44:9a:a5:07:f4:9b:2d:2a:00:4b:a6:92:ba:56:65:f4:61:fa: 74:a1:60:fa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA7NfqL62XR+RpNrnjzl2PKuTm/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDFaFw0yNjA2MDEwMjAwMDFaMDMxMTAvBgNV BAMTKDI0NkVDRDU3MEVBOUM0QjY5OThBNkY2MzhDODMwNUZGMTE1MTZFMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf4HtWAbAazVWHyHWxZ3yXXHjA R6NBbneebnUqucYFR2Tb5qyf3+qeY2lS85mRxkBG5eBzul9InwkAY0/R56vAeBpM 48aUeXN5jJrActiByp1b1ITtlquhn2GTdKkw/+uIAGP+z+/tSNIIwjIovht0W95y A1khgMkhjGZm5inJ9cbnoykwYZE/PVetHC0yWhG3Wsx8kfMIW1BAaFAWmR00hrYc n0LMBOYDkULo1UjqaDJKn1A+EXSQUW7zTa3iGFZDuuM8IHhdoEypc5HNQb4YGRoY lQ5onGEfMkAXo+yeuKruJJdv0TTAsvcR+7pkoRLhao4Fomvc031BuW138EMPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJG7NVw6pxLaZim9jjIMF/xFRbjYwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUCzANBgkqhkiG 9w0BAQsFAAOCAQEAYF0GirOzS0s721twheBs4oapaHna+G+U5j9YO2ls1euUcmuj 5MOOshWWd8uSS85mk/KS4azT99BVIwgZelPWaVQF6Hmmq+jZjS4eT0J3enFxEUB4 K6AQsulD6FxPwhJe4XEkHt0U2cz2u0ZPD7BgtapvvVSDzMPhf9QmnxgOTyIfi5os DWezyetB+N1hdgTexmByQ3EZ3guAs++NUMH0GbSk2kiwcEwfG+6AH1a4HoSRAqRn lh9HwKjdllUKjEZyFijcW1zZ4P4NqX+e4R93RlCSveVliWY8QxvTcUsC+hTY2A63 yI0y40OjRJqlB/SbLSoAS6aSulZl9GH6dKFg+g== -----END CERTIFICATE-----Generated at Fri Jun 6 16:49:10 2025 by rpki-client