$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e31372e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: WWK9y8tKLQdaVe5N3L4l+oyH72bFpWD2RrN+ZSH6HDI= Subject key identifier: 6C:54:46:9B:BD:7D:7B:C5:F1:A1:ED:DC:78:DC:C1:5A:8A:9F:56:18 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2EFCB084A8FAAC803F5DF8402388A469675AA3B7 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:03 +0000 ROA not before: Mon 02 Jun 2025 00:58:03 +0000 ROA not after: Mon 01 Jun 2026 01:03:03 +0000 asID: 9794 IP address blocks: 202.148.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:fc:b0:84:a8:fa:ac:80:3f:5d:f8:40:23:88:a4:69:67:5a:a3:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:03 2025 GMT Not After : Jun 1 01:03:03 2026 GMT Subject: CN=6C54469BBD7D7BC5F1A1EDDC78DCC15A8A9F5618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bb:20:74:4d:2d:e9:48:ab:22:d3:d0:6a:0e: bf:56:91:32:44:40:42:05:94:ad:47:a0:70:3b:07: d2:b9:a6:02:58:37:4c:eb:74:e1:0c:0a:d7:e7:84: ac:ec:65:50:bd:de:c0:a8:a4:67:29:f7:20:bc:32: fd:9d:6a:1e:dd:05:ed:4a:2c:6c:ee:4f:21:2d:9b: ad:6e:d1:fb:aa:b1:32:49:b1:42:aa:03:62:7b:bd: a7:52:77:9d:df:d2:af:df:3e:85:16:90:4f:61:0e: 8d:12:a4:e7:da:01:93:6a:18:ce:34:63:3c:84:a7: 45:d5:f4:fe:71:b1:75:03:15:67:b6:2e:72:a4:34: da:7d:2f:51:10:92:72:2e:5c:03:0a:42:2e:bb:94: cd:50:4f:37:29:ff:38:40:a2:d9:38:df:d1:d6:b4: fb:fe:f3:43:43:93:ee:29:9e:5a:df:b1:62:11:68: 0d:9d:81:b1:f0:4c:c9:c9:a8:c2:04:96:24:0b:21: e6:3c:75:f9:4a:36:36:36:a7:0d:eb:a1:70:59:f1: 0e:48:da:71:01:20:c4:a3:5e:82:97:64:1b:4a:37: be:a6:83:f3:5b:e4:9d:1c:87:05:33:8f:a4:28:a9: 74:65:6e:5f:b3:41:9f:00:1b:fb:6d:13:b1:b0:f8: 5b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:54:46:9B:BD:7D:7B:C5:F1:A1:ED:DC:78:DC:C1:5A:8A:9F:56:18 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.17.0/24 Signature Algorithm: sha256WithRSAEncryption 47:c0:2d:59:ea:cc:d8:60:e5:11:8f:13:fc:ea:9a:dc:a9:cd: 7a:3f:7c:15:35:1f:c1:59:2b:26:c8:be:42:00:99:c3:5c:8b: 22:20:e5:36:52:13:fe:20:dd:8d:b9:ae:2a:5f:38:d9:71:04: b3:03:7b:96:1a:1f:a9:74:90:0a:7d:f0:5e:5c:51:4f:40:ec: dc:43:51:0e:4b:37:97:85:54:d3:1a:99:e0:2c:83:48:38:48: 35:92:67:05:47:af:37:de:fe:88:6a:86:62:fd:4e:56:8b:53: c5:ae:f1:23:db:42:a5:17:62:69:da:06:19:d3:70:38:41:f0: ff:60:dc:08:0c:93:6d:f7:f7:a6:5b:af:3d:7a:57:44:89:76: 49:9a:a5:8b:92:e8:08:a2:45:54:09:3f:16:50:1a:e6:bf:13: cf:f8:a7:07:1a:7e:28:45:38:99:ff:5a:fb:5e:05:24:be:16: 95:4a:ef:6d:a1:cc:eb:d3:5f:87:1e:90:ba:2e:32:25:db:bf: 57:56:40:6e:e7:be:4d:64:b9:f1:19:7b:d0:66:a4:1b:38:4f: 18:9a:6b:ca:2a:62:39:d6:1c:e1:99:70:f0:94:dd:3c:95:36: 33:6d:cc:2a:eb:96:b4:e9:1b:06:e3:fc:dd:a0:93:43:ca:e1: 16:c5:0d:f8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULvywhKj6rIA/XfhAI4ikaWdao7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDNaFw0yNjA2MDEwMTAzMDNaMDMxMTAvBgNV BAMTKDZDNTQ0NjlCQkQ3RDdCQzVGMUExRUREQzc4RENDMTVBOEE5RjU2MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSuyB0TS3pSKsi09BqDr9WkTJE QEIFlK1HoHA7B9K5pgJYN0zrdOEMCtfnhKzsZVC93sCopGcp9yC8Mv2dah7dBe1K LGzuTyEtm61u0fuqsTJJsUKqA2J7vadSd53f0q/fPoUWkE9hDo0SpOfaAZNqGM40 YzyEp0XV9P5xsXUDFWe2LnKkNNp9L1EQknIuXAMKQi67lM1QTzcp/zhAotk439HW tPv+80NDk+4pnlrfsWIRaA2dgbHwTMnJqMIEliQLIeY8dflKNjY2pw3roXBZ8Q5I 2nEBIMSjXoKXZBtKN76mg/Nb5J0chwUzj6QoqXRlbl+zQZ8AG/ttE7Gw+Ft3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbFRGm719e8Xxoe3ceNzBWoqfVhgwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBEwDQYJKoZIhvcN AQELBQADggEBAEfALVnqzNhg5RGPE/zqmtypzXo/fBU1H8FZKybIvkIAmcNciyIg 5TZSE/4g3Y25ripfONlxBLMDe5YaH6l0kAp98F5cUU9A7NxDUQ5LN5eFVNMameAs g0g4SDWSZwVHrzfe/ohqhmL9TlaLU8Wu8SPbQqUXYmnaBhnTcDhB8P9g3AgMk233 96Zbrz16V0SJdkmapYuS6AiiRVQJPxZQGua/E8/4pwcafihFOJn/WvteBSS+FpVK 722hzOvTX4cekLouMiXbv1dWQG7nvk1kufEZe9BmpBs4Txiaa8oqYjnWHOGZcPCU 3TyVNjNtzCrrlrTpGwbj/N2gk0PK4RbFDfg= -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:30 2025 by rpki-client