$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31392e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e31392e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: KTKpHmygNn1xu5gSK5+66WaSzGnjrzjlsxMtZQgcP1s= Subject key identifier: 17:D1:FE:87:64:E9:C9:5D:5B:CC:47:B3:03:6B:22:4C:57:8C:3C:3F Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 578322760F83E6C0750AC8C797C34CA295AD4979 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31392e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:04 +0000 ROA not before: Mon 02 Jun 2025 00:58:04 +0000 ROA not after: Mon 01 Jun 2026 01:03:04 +0000 asID: 9794 IP address blocks: 202.148.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:83:22:76:0f:83:e6:c0:75:0a:c8:c7:97:c3:4c:a2:95:ad:49:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:04 2025 GMT Not After : Jun 1 01:03:04 2026 GMT Subject: CN=17D1FE8764E9C95D5BCC47B3036B224C578C3C3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:2d:d6:82:16:6d:de:cc:f1:4e:d3:ec:4c: a0:d9:48:c0:25:7f:6f:b3:5e:e9:51:22:b5:94:e4: 83:ad:90:25:ff:26:59:92:51:9d:cc:e2:d6:23:67: 75:45:35:d8:bd:75:d0:d0:22:c2:2b:b7:2a:3a:4b: 49:cb:f4:9e:df:2c:68:c5:60:4e:c2:81:9b:11:c3: 48:db:20:fc:e0:dd:84:52:64:b3:92:af:b3:be:bc: ea:cf:45:31:1d:9b:67:e4:0b:00:e2:97:71:35:c7: 36:39:ed:fb:73:20:8b:bb:a3:b6:e9:75:83:85:02: 64:ca:63:83:1a:c3:68:4b:10:a7:ad:fd:50:a1:5f: 0b:bc:eb:6d:21:72:86:4e:91:32:fd:38:49:18:f3: aa:99:ec:00:2f:ff:be:e8:9f:33:50:53:a7:4c:fb: 4d:eb:68:19:0e:94:7c:bf:91:d8:1f:c0:88:37:06: 53:c4:a4:f3:ff:ec:9a:f3:e2:21:c8:ff:f7:0b:65: 4f:98:35:00:4e:8c:5d:26:b3:dc:d8:47:89:49:7c: c9:1c:ce:9e:00:0d:b7:24:fc:48:56:39:01:aa:91: 10:98:bc:16:4f:2a:11:8c:c8:38:d9:e9:35:f1:79: cd:ac:29:ac:7f:a8:1d:9c:fd:5e:22:95:10:bb:8f: 5f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D1:FE:87:64:E9:C9:5D:5B:CC:47:B3:03:6B:22:4C:57:8C:3C:3F X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31392e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.19.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:a4:51:cb:c6:fe:85:49:26:66:28:1a:65:e7:30:ce:94:97: f6:54:73:e3:df:ef:15:04:23:89:a3:63:97:c6:76:9b:b5:60: 6d:2e:f4:c5:ca:92:55:d6:45:3c:7f:1a:7f:34:37:53:ae:c8: be:42:f1:21:9f:f5:9a:2a:68:aa:4d:b7:0d:e7:80:8b:1f:e7: e6:06:1b:c1:be:e7:f6:0a:70:bf:30:56:71:d5:ee:60:a8:fd: aa:7b:6d:da:3e:1b:2a:36:a3:d7:d7:d7:09:b0:09:a9:cb:8d: 54:26:72:33:ed:bb:3c:9c:a0:5f:9b:34:98:37:d5:ea:fa:ea: 23:64:67:59:b9:61:a2:ea:49:ac:8d:18:f2:c8:eb:18:f0:fb: e0:b0:2c:bc:ab:19:04:32:a4:1f:21:9c:7a:b2:35:76:69:80: 19:d0:7a:55:66:7f:0d:6c:75:fc:ef:78:ee:30:49:38:5a:a3: d1:06:28:87:62:05:1c:42:eb:2e:ca:4c:51:0c:7a:62:3d:32: 6a:b2:70:e5:a4:d0:68:e1:5c:30:33:43:5f:7a:c8:8c:31:20: e3:10:c2:4b:f0:07:7d:e3:dc:65:46:13:fc:63:c4:d5:67:d6: 7f:d4:7a:ea:f7:f1:f4:6d:84:f3:64:1b:d8:54:de:2b:10:f1: 21:c6:a0:01 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUV4Midg+D5sB1CsjHl8NMopWtSXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDRaFw0yNjA2MDEwMTAzMDRaMDMxMTAvBgNV BAMTKDE3RDFGRTg3NjRFOUM5NUQ1QkNDNDdCMzAzNkIyMjRDNTc4QzNDM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7+C3WghZt3szxTtPsTKDZSMAl f2+zXulRIrWU5IOtkCX/JlmSUZ3M4tYjZ3VFNdi9ddDQIsIrtyo6S0nL9J7fLGjF YE7CgZsRw0jbIPzg3YRSZLOSr7O+vOrPRTEdm2fkCwDil3E1xzY57ftzIIu7o7bp dYOFAmTKY4Maw2hLEKet/VChXwu8620hcoZOkTL9OEkY86qZ7AAv/77onzNQU6dM +03raBkOlHy/kdgfwIg3BlPEpPP/7Jrz4iHI//cLZU+YNQBOjF0ms9zYR4lJfMkc zp4ADbck/EhWOQGqkRCYvBZPKhGMyDjZ6TXxec2sKax/qB2c/V4ilRC7j18hAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUF9H+h2TpyV1bzEezA2siTFeMPD8wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBMwDQYJKoZIhvcN AQELBQADggEBAHqkUcvG/oVJJmYoGmXnMM6Ul/ZUc+Pf7xUEI4mjY5fGdpu1YG0u 9MXKklXWRTx/Gn80N1OuyL5C8SGf9ZoqaKpNtw3ngIsf5+YGG8G+5/YKcL8wVnHV 7mCo/ap7bdo+Gyo2o9fX1wmwCanLjVQmcjPtuzycoF+bNJg31er66iNkZ1m5YaLq SayNGPLI6xjw++CwLLyrGQQypB8hnHqyNXZpgBnQelVmfw1sdfzveO4wSThao9EG KIdiBRxC6y7KTFEMemI9MmqycOWk0GjhXDAzQ196yIwxIOMQwkvwB33j3GVGE/xj xNVn1n/Ueur38fRthPNkG9hU3isQ8SHGoAE= -----END CERTIFICATE-----Generated at Thu Jun 5 18:38:19 2025 by rpki-client