$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31342e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: dt1cuyc/wD01+xyK3o0NyT+/gATqakNH0YItLtlQsxM= Subject key identifier: A1:E4:93:29:1F:F9:06:EB:BA:51:7B:6B:64:01:0D:61:4D:BF:BA:19 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 7E13533E62E7CD24F01A35D4C976C96E9C3F592A Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:05 +0000 ROA not before: Mon 02 Jun 2025 00:58:05 +0000 ROA not after: Mon 01 Jun 2026 01:03:05 +0000 asID: 38778 IP address blocks: 202.148.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:13:53:3e:62:e7:cd:24:f0:1a:35:d4:c9:76:c9:6e:9c:3f:59:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:05 2025 GMT Not After : Jun 1 01:03:05 2026 GMT Subject: CN=A1E493291FF906EBBA517B6B64010D614DBFBA19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a8:92:06:8f:a0:62:22:a7:e1:3b:f2:44:25: 76:65:db:1e:a3:79:d3:12:a2:77:69:12:36:82:e3: 96:a4:1e:78:ec:58:11:ac:8e:6d:31:4a:74:ac:20: 3d:ea:5b:a8:2a:30:55:68:d0:ee:5d:63:3f:3e:82: 99:ef:75:c5:ac:e5:df:bb:ae:41:0a:2f:0d:64:78: 06:1e:01:1b:3c:23:b0:29:5b:cc:e5:4b:45:fc:50: fa:ba:5b:22:db:43:53:d3:24:6f:1a:f1:2a:15:65: ae:ed:4e:86:9e:e8:26:d9:96:76:b1:d9:2c:dc:d4: 4f:80:6b:c1:d4:59:6f:aa:86:36:2d:94:6d:40:cf: c4:c8:87:e9:ba:86:5a:fe:ff:ec:89:b3:83:b7:34: 0c:40:7d:ab:da:4e:fc:fc:94:8a:95:ba:7e:63:26: 3f:1e:de:45:17:4f:a2:f2:6d:af:e3:7f:d6:65:46: 14:de:cb:52:6d:8b:95:68:91:ba:75:db:37:77:e5: 65:5f:eb:a2:0f:ea:2e:86:f8:15:ce:26:36:58:11: 73:fd:f5:c8:fb:5a:62:41:5a:12:09:d0:04:6d:3b: bf:29:af:c8:1e:0b:71:a0:e2:6e:f9:a7:b7:e5:82: a0:3c:7e:b5:63:eb:81:4e:78:9f:df:26:61:56:7f: eb:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:E4:93:29:1F:F9:06:EB:BA:51:7B:6B:64:01:0D:61:4D:BF:BA:19 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31342e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.14.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:ed:c6:f6:ee:f1:a6:0f:3d:e4:49:9d:1f:0b:2d:4b:dc:8e: b5:66:24:5f:a1:63:7a:ff:6a:fd:2d:bc:81:9b:c5:02:81:28: 36:ed:88:a7:27:d5:b7:ba:34:3c:d8:ef:98:8e:bf:30:a7:db: c7:ec:a7:a9:4a:21:4e:68:1e:d8:16:5b:f8:94:a5:c5:f7:ab: c1:d8:05:88:40:33:bb:0a:82:2c:be:9c:c6:79:2d:f0:23:13: 79:62:65:a2:d4:d1:23:43:b4:8d:2a:6e:fd:22:1d:8b:d0:d2: 87:25:c6:fd:64:cf:d0:83:b3:2b:40:6c:b5:28:3c:fa:92:98: 1b:70:c9:30:31:35:48:f7:de:97:e5:53:d9:68:88:db:9f:8c: 50:b0:31:b9:a7:09:e7:79:5f:a9:69:b3:23:81:8d:09:b3:60: a8:68:f7:2b:21:ef:46:fc:14:67:31:d0:25:94:66:04:b2:07: 1e:fe:e3:3d:30:cc:b9:72:94:dd:ac:1b:42:2a:9f:49:58:02: 30:66:19:6e:36:31:cd:f8:95:b8:17:1f:94:e9:34:c7:b7:65: f6:e8:bd:13:c6:57:34:2f:d2:9a:7c:fe:c3:30:39:bc:48:35: 00:73:bb:63:84:8f:b5:8e:6f:e7:c8:85:81:c2:fb:d9:fb:ef: 25:97:3b:89 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfhNTPmLnzSTwGjXUyXbJbpw/WSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDVaFw0yNjA2MDEwMTAzMDVaMDMxMTAvBgNV BAMTKEExRTQ5MzI5MUZGOTA2RUJCQTUxN0I2QjY0MDEwRDYxNERCRkJBMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfqJIGj6BiIqfhO/JEJXZl2x6j edMSondpEjaC45akHnjsWBGsjm0xSnSsID3qW6gqMFVo0O5dYz8+gpnvdcWs5d+7 rkEKLw1keAYeARs8I7ApW8zlS0X8UPq6WyLbQ1PTJG8a8SoVZa7tToae6CbZlnax 2Szc1E+Aa8HUWW+qhjYtlG1Az8TIh+m6hlr+/+yJs4O3NAxAfavaTvz8lIqVun5j Jj8e3kUXT6Lyba/jf9ZlRhTey1Jti5Vokbp12zd35WVf66IP6i6G+BXOJjZYEXP9 9cj7WmJBWhIJ0ARtO78pr8geC3Gg4m75p7flgqA8frVj64FOeJ/fJmFWf+vHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoeSTKR/5Buu6UXtrZAENYU2/uhkwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUDjANBgkqhkiG 9w0BAQsFAAOCAQEAmu3G9u7xpg895EmdHwstS9yOtWYkX6Fjev9q/S28gZvFAoEo Nu2IpyfVt7o0PNjvmI6/MKfbx+ynqUohTmge2BZb+JSlxferwdgFiEAzuwqCLL6c xnkt8CMTeWJlotTRI0O0jSpu/SIdi9DShyXG/WTP0IOzK0BstSg8+pKYG3DJMDE1 SPfel+VT2WiI25+MULAxuacJ53lfqWmzI4GNCbNgqGj3KyHvRvwUZzHQJZRmBLIH Hv7jPTDMuXKU3awbQiqfSVgCMGYZbjYxzfiVuBcflOk0x7dl9ui9E8ZXNC/Smnz+ wzA5vEg1AHO7Y4SPtY5v58iFgcL72fvvJZc7iQ== -----END CERTIFICATE-----Generated at Fri Jun 6 16:48:30 2025 by rpki-client