$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31382e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e31382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: XL0wBZrZS8VtCoBvPSpKxH3tihVAP3dh0sWVYvnY6z4= Subject key identifier: F4:D9:DD:A9:76:9B:CE:91:7B:48:58:AF:A8:73:2A:57:89:85:58:00 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 38524D48A9E69EE98B069A75632A2CCA55B99A7E Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31382e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:04 +0000 ROA not before: Mon 02 Jun 2025 00:58:04 +0000 ROA not after: Mon 01 Jun 2026 01:03:04 +0000 asID: 9794 IP address blocks: 202.148.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:52:4d:48:a9:e6:9e:e9:8b:06:9a:75:63:2a:2c:ca:55:b9:9a:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:04 2025 GMT Not After : Jun 1 01:03:04 2026 GMT Subject: CN=F4D9DDA9769BCE917B4858AFA8732A5789855800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:18:7e:b6:a7:51:c4:2d:37:32:fe:b0:69:33: 63:d4:b9:0c:ef:0b:62:d8:71:59:0d:f9:4e:a0:ee: 65:f1:23:17:29:23:d4:c0:3f:ca:a6:82:bb:11:95: 81:85:4e:3d:1a:d2:4b:f3:3a:29:2d:36:a0:09:97: a2:7f:0d:d7:ff:03:a6:7e:ea:0f:f2:b7:b4:bd:b8: e3:e5:63:a6:5d:a5:44:78:89:6a:65:00:45:2a:bd: 6b:41:9e:f0:9c:1e:e3:00:d8:b0:7d:07:8a:15:c8: c5:c2:45:24:a3:09:eb:81:35:6a:db:a7:e0:82:89: 06:1b:f4:30:41:f9:ba:af:78:c0:75:6e:0b:58:9d: c7:02:3c:6b:89:f0:28:97:0d:52:a6:4e:21:d4:bd: 1d:c8:7a:ae:4f:2d:6e:bc:62:86:d6:c8:94:3e:c5: 3a:67:96:ab:5c:ed:c2:02:9a:09:05:26:df:a8:4b: 05:44:77:a4:3e:28:7f:05:fa:1c:34:da:4d:4b:74: 52:d7:02:06:ac:ba:c1:34:e2:61:74:07:75:25:aa: 7f:9e:6a:27:d6:d6:b0:a2:8f:9a:a8:61:54:b6:44: 86:0a:51:e8:b3:3f:c9:88:5f:9b:dc:d0:d1:78:5b: 20:0c:ea:1f:10:fb:00:dc:55:b6:02:ef:87:61:a6: 17:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D9:DD:A9:76:9B:CE:91:7B:48:58:AF:A8:73:2A:57:89:85:58:00 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.18.0/24 Signature Algorithm: sha256WithRSAEncryption 17:7f:da:58:be:a1:74:d6:08:10:33:ce:b6:82:7e:23:aa:8b: 8b:dd:9c:26:03:78:f4:44:68:cd:c2:7e:6d:b0:80:04:06:f2: 1a:e6:ac:44:d8:69:62:53:d7:bd:02:8f:91:9b:43:c0:4b:82: bf:cd:05:99:2f:a6:28:8a:5d:3d:48:37:57:ac:08:1f:67:c0: 1a:0c:cb:7f:73:0b:c7:aa:98:6c:35:b9:2c:1e:33:40:89:d6: 3f:95:f4:0d:aa:14:46:42:53:73:c6:84:fd:d5:32:42:bc:fe: 42:40:8c:ec:6a:58:95:2c:d2:5e:54:98:8b:45:b7:d3:c7:ea: 65:38:54:9a:a7:03:03:e2:e0:51:08:32:c6:76:5f:13:70:fa: 72:ec:e1:da:05:be:bc:df:05:61:35:b7:cc:85:55:cb:df:ac: 1b:1f:40:7a:67:d1:b5:a4:b4:76:47:80:ef:6c:3e:dc:b1:98: d9:8f:94:d7:d4:32:ba:ba:5c:d0:30:83:53:95:fd:17:f9:a2: e7:12:1e:fc:be:6f:af:00:c6:4b:92:9a:6f:3e:fa:f3:f0:77: b9:5d:b2:57:71:d3:34:2a:e2:c4:29:ec:e1:44:16:d6:83:09: eb:38:0e:a7:41:57:88:b7:b3:e9:6a:76:fa:aa:d5:24:21:fc: 68:3b:c3:fc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOFJNSKnmnumLBpp1YyosylW5mn4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDRaFw0yNjA2MDEwMTAzMDRaMDMxMTAvBgNV BAMTKEY0RDlEREE5NzY5QkNFOTE3QjQ4NThBRkE4NzMyQTU3ODk4NTU4MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClGH62p1HELTcy/rBpM2PUuQzv C2LYcVkN+U6g7mXxIxcpI9TAP8qmgrsRlYGFTj0a0kvzOiktNqAJl6J/Ddf/A6Z+ 6g/yt7S9uOPlY6ZdpUR4iWplAEUqvWtBnvCcHuMA2LB9B4oVyMXCRSSjCeuBNWrb p+CCiQYb9DBB+bqveMB1bgtYnccCPGuJ8CiXDVKmTiHUvR3Ieq5PLW68YobWyJQ+ xTpnlqtc7cICmgkFJt+oSwVEd6Q+KH8F+hw02k1LdFLXAgasusE04mF0B3Ulqn+e aifW1rCij5qoYVS2RIYKUeizP8mIX5vc0NF4WyAM6h8Q+wDcVbYC74dhphcJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU9NndqXabzpF7SFivqHMqV4mFWAAwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBIwDQYJKoZIhvcN AQELBQADggEBABd/2li+oXTWCBAzzraCfiOqi4vdnCYDePREaM3Cfm2wgAQG8hrm rETYaWJT170Cj5GbQ8BLgr/NBZkvpiiKXT1IN1esCB9nwBoMy39zC8eqmGw1uSwe M0CJ1j+V9A2qFEZCU3PGhP3VMkK8/kJAjOxqWJUs0l5UmItFt9PH6mU4VJqnAwPi 4FEIMsZ2XxNw+nLs4doFvrzfBWE1t8yFVcvfrBsfQHpn0bWktHZHgO9sPtyxmNmP lNfUMrq6XNAwg1OV/Rf5oucSHvy+b68AxkuSmm8++vPwd7ldsldx0zQq4sQp7OFE FtaDCes4DqdBV4i3s+lqdvqq1SQh/Gg7w/w= -----END CERTIFICATE-----Generated at Thu Jun 5 18:37:20 2025 by rpki-client