$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e31352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: kEeNNgNNeJrfTZKrmpzYg38uMdpZUjxG7vhqFIY7q0w= Subject key identifier: 68:92:B2:0A:66:E8:B1:C9:BB:00:A1:52:F7:24:DF:51:70:90:C9:7B Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 794DF834FFDDC3F41DC586D600B7EB9B966A82FF Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:01 +0000 ROA not before: Mon 02 Jun 2025 00:58:01 +0000 ROA not after: Mon 01 Jun 2026 01:03:01 +0000 asID: 38778 IP address blocks: 202.148.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:4d:f8:34:ff:dd:c3:f4:1d:c5:86:d6:00:b7:eb:9b:96:6a:82:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:01 2025 GMT Not After : Jun 1 01:03:01 2026 GMT Subject: CN=6892B20A66E8B1C9BB00A152F724DF517090C97B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:12:a0:b1:70:2e:e7:ef:b6:bc:fa:9c:e1:42: 0f:39:7b:80:fb:5e:e8:d1:34:cf:3d:6d:8c:e5:bd: 9d:05:96:1e:e4:93:4a:27:30:23:c7:37:17:a7:49: db:f1:c2:93:a2:ad:c3:59:98:e3:47:d5:21:26:a3: f6:ec:5a:01:48:c7:37:ec:83:61:67:33:95:fc:5b: 47:50:ad:76:49:21:20:c0:d6:b7:80:b2:57:23:07: 0c:1d:ed:6c:75:26:49:01:ed:1c:cc:6d:a2:3c:42: a8:48:8a:35:c5:41:2d:a3:b9:60:ee:1e:6f:20:45: f0:79:0d:f5:e6:52:da:70:bf:ee:9e:2e:ad:e8:50: 28:b3:7f:10:95:51:d3:19:07:88:8e:f1:0a:ed:96: d8:e3:06:3f:07:9a:ec:9b:7a:e7:3f:6d:f2:a9:95: d6:28:52:8c:b1:2e:ae:71:37:88:82:30:a6:7d:38: 77:16:f2:99:19:9a:bb:63:04:8d:54:cf:0f:a7:66: 84:83:56:df:50:72:7b:7b:ee:bc:95:d5:2b:d4:95: 4a:c8:d0:df:13:d6:9d:0f:94:5f:78:f7:e5:a2:5f: 19:76:ef:44:d3:b4:61:29:92:61:fe:df:a8:f9:af: 07:73:62:e1:55:0f:92:9d:ab:e3:46:53:19:3b:97: 9d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:92:B2:0A:66:E8:B1:C9:BB:00:A1:52:F7:24:DF:51:70:90:C9:7B X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.15.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:4c:a0:d7:61:80:f9:32:55:7f:35:a5:80:a5:20:d9:c4:9f: eb:72:9d:7e:34:e5:df:38:08:d2:a0:f7:ee:8c:b0:06:de:4e: e5:ee:ce:49:db:cd:f1:c7:b9:85:0c:3a:8d:9b:19:58:e4:54: 8d:ab:2f:16:7a:a4:82:02:13:80:f0:b4:a3:a9:db:52:7b:20: 43:e8:8a:5a:aa:73:f0:e6:ff:7e:c9:c0:70:a5:81:2f:b6:60: 0e:13:b6:db:8c:d9:91:f9:b4:14:9a:0f:36:03:ff:28:4b:d3: 60:71:e3:63:9e:a1:67:6d:97:93:0e:a1:a4:86:f8:41:e0:f6: 65:67:e0:30:4e:1a:de:ca:70:a7:a2:6e:ac:fa:ea:b2:fe:99: a0:fb:07:b2:67:1b:86:db:a5:88:32:a8:65:5a:f8:03:a0:31: 66:07:5a:b4:84:15:27:64:3c:b6:c4:47:ea:82:b9:fa:77:f5: 89:7a:43:6b:61:c6:48:ff:bf:d6:8e:ac:98:c2:3d:32:6f:d7: 4a:d8:a7:54:ec:c0:ed:25:97:c8:02:01:6e:f2:38:ae:4a:a1: 06:79:45:c4:ab:b2:f7:3e:da:54:1f:d9:2e:7d:f0:63:37:ec: 3b:bc:02:7f:3f:eb:05:ac:0c:a8:7e:b9:53:2f:7a:a5:90:e3: 7b:34:9f:84 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeU34NP/dw/QdxYbWALfrm5Zqgv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDFaFw0yNjA2MDEwMTAzMDFaMDMxMTAvBgNV BAMTKDY4OTJCMjBBNjZFOEIxQzlCQjAwQTE1MkY3MjRERjUxNzA5MEM5N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEEqCxcC7n77a8+pzhQg85e4D7 XujRNM89bYzlvZ0Flh7kk0onMCPHNxenSdvxwpOircNZmONH1SEmo/bsWgFIxzfs g2FnM5X8W0dQrXZJISDA1reAslcjBwwd7Wx1JkkB7RzMbaI8QqhIijXFQS2juWDu Hm8gRfB5DfXmUtpwv+6eLq3oUCizfxCVUdMZB4iO8QrtltjjBj8Hmuybeuc/bfKp ldYoUoyxLq5xN4iCMKZ9OHcW8pkZmrtjBI1Uzw+nZoSDVt9Qcnt77ryV1SvUlUrI 0N8T1p0PlF949+WiXxl270TTtGEpkmH+36j5rwdzYuFVD5Kdq+NGUxk7l51DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaJKyCmboscm7AKFS9yTfUXCQyXswHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUDzANBgkqhkiG 9w0BAQsFAAOCAQEAOkyg12GA+TJVfzWlgKUg2cSf63KdfjTl3zgI0qD37oywBt5O 5e7OSdvN8ce5hQw6jZsZWORUjasvFnqkggITgPC0o6nbUnsgQ+iKWqpz8Ob/fsnA cKWBL7ZgDhO224zZkfm0FJoPNgP/KEvTYHHjY56hZ22Xkw6hpIb4QeD2ZWfgME4a 3spwp6JurPrqsv6ZoPsHsmcbhtuliDKoZVr4A6AxZgdatIQVJ2Q8tsRH6oK5+nf1 iXpDa2HGSP+/1o6smMI9Mm/XStinVOzA7SWXyAIBbvI4rkqhBnlFxKuy9z7aVB/Z Ln3wYzfsO7wCfz/rBawMqH65Uy96pZDjezSfhA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:54:34 2025 by rpki-client