$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e322e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e322e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: ygB6exNJHbnGKarD6diuEd1tTR8mgFTFSMzFv5s5aBM= Subject key identifier: 5C:EF:5E:E0:1F:1E:01:41:7A:5D:38:49:11:5C:DF:F9:DA:D3:8F:B4 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 33C24045A6FCAED017BCBCA794383794855AEEA6 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e322e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:06 +0000 ROA not before: Mon 02 Jun 2025 00:58:06 +0000 ROA not after: Mon 01 Jun 2026 01:03:06 +0000 asID: 9794 IP address blocks: 202.148.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 19:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:c2:40:45:a6:fc:ae:d0:17:bc:bc:a7:94:38:37:94:85:5a:ee:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:06 2025 GMT Not After : Jun 1 01:03:06 2026 GMT Subject: CN=5CEF5EE01F1E01417A5D3849115CDFF9DAD38FB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:45:c5:62:5e:36:57:6c:ef:47:68:ff:f7:fd: 72:5f:9c:e9:ef:23:49:cc:da:ee:e3:fa:5f:c1:97: 7d:d4:fc:d5:39:58:59:3b:23:b1:7c:61:b1:b2:40: 13:7e:a9:d4:74:3b:d8:4d:bb:3a:58:c0:c1:5e:ca: e5:2b:c5:90:e3:52:7a:dc:45:91:a7:7d:1b:85:8d: 4b:00:ba:76:9c:84:f6:41:c3:4c:5f:e4:0f:87:3b: 14:96:76:00:f5:ea:71:d8:35:96:5d:8b:ed:49:bc: eb:a6:16:1b:82:c6:c8:5a:b9:eb:1e:90:cd:93:63: 46:a3:ce:e1:68:29:ea:af:dc:b7:fc:96:ed:6c:54: 0a:d1:41:cf:2e:cc:45:3e:28:5c:92:0a:73:75:8e: 21:33:ad:74:c8:2b:34:c1:8c:57:5c:60:67:82:aa: ae:62:a3:e6:8d:5a:89:8c:83:a1:e8:c0:44:ab:a8: 37:b7:c0:ee:82:19:c3:63:ce:c7:fe:f5:af:af:fa: 2a:ab:c1:e5:4c:6a:7e:4e:d4:db:fc:26:40:45:8f: 30:ea:79:98:64:f1:0c:d3:d2:4a:09:a2:b3:4f:28: 96:a9:8c:08:13:b1:98:ad:32:5e:98:31:73:f5:22: af:4d:27:b5:c0:c3:d2:09:9d:96:dd:a2:5d:ea:1f: 8f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:EF:5E:E0:1F:1E:01:41:7A:5D:38:49:11:5C:DF:F9:DA:D3:8F:B4 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e322e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.2.0/24 Signature Algorithm: sha256WithRSAEncryption 42:64:eb:62:94:a5:aa:3d:65:10:b3:c8:f8:db:bb:63:15:15: 5c:c4:5e:88:29:4a:a1:6c:7f:78:c2:38:58:5f:ee:1d:bc:47: 3e:47:f7:51:f8:1d:9f:41:c8:17:7a:30:ce:82:88:94:eb:79: b7:c3:d5:ff:f3:ad:02:f4:b7:3c:65:43:8e:c5:a9:0d:f8:2d: ca:b1:1a:8f:d2:8a:f7:76:83:e1:7e:ce:2f:37:96:c0:ec:88: 02:4b:95:c6:74:2d:65:cb:6c:09:47:7f:31:69:5f:3c:d8:f7: c1:4e:2f:82:db:cd:41:73:db:6a:e7:08:85:0b:31:fd:ba:7c: 8b:70:b2:86:3f:b1:1d:53:73:9b:3c:77:16:14:ed:ce:68:e8: ae:7d:98:3c:f2:3a:62:2c:5a:c5:18:89:b2:52:93:72:22:76: 48:95:ec:0c:f6:6a:e3:24:38:db:9e:19:c5:0a:f8:8f:60:2b: 8b:bf:a6:36:e4:53:48:ed:37:27:2f:d8:4e:82:82:44:a6:85: 6a:22:eb:2e:33:45:76:6c:ee:a2:f0:b4:33:e7:06:51:b3:14: 0d:6a:15:a8:10:10:10:ac:aa:2f:97:6b:0f:b1:f6:79:92:7c: 8a:07:b9:86:04:0f:38:23:30:cd:d9:e0:2c:07:6b:57:b5:27: eb:fa:7b:20 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUM8JARab8rtAXvLynlDg3lIVa7qYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDZaFw0yNjA2MDEwMTAzMDZaMDMxMTAvBgNV BAMTKDVDRUY1RUUwMUYxRTAxNDE3QTVEMzg0OTExNUNERkY5REFEMzhGQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiRcViXjZXbO9HaP/3/XJfnOnv I0nM2u7j+l/Bl33U/NU5WFk7I7F8YbGyQBN+qdR0O9hNuzpYwMFeyuUrxZDjUnrc RZGnfRuFjUsAunachPZBw0xf5A+HOxSWdgD16nHYNZZdi+1JvOumFhuCxshauese kM2TY0ajzuFoKeqv3Lf8lu1sVArRQc8uzEU+KFySCnN1jiEzrXTIKzTBjFdcYGeC qq5io+aNWomMg6HowESrqDe3wO6CGcNjzsf+9a+v+iqrweVMan5O1Nv8JkBFjzDq eZhk8QzT0koJorNPKJapjAgTsZitMl6YMXP1Iq9NJ7XAw9IJnZbdol3qH48FAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUXO9e4B8eAUF6XThJEVzf+drTj7QwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTMyMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAIwDQYJKoZIhvcNAQEL BQADggEBAEJk62KUpao9ZRCzyPjbu2MVFVzEXogpSqFsf3jCOFhf7h28Rz5H91H4 HZ9ByBd6MM6CiJTrebfD1f/zrQL0tzxlQ47FqQ34LcqxGo/Sivd2g+F+zi83lsDs iAJLlcZ0LWXLbAlHfzFpXzzY98FOL4LbzUFz22rnCIULMf26fItwsoY/sR1Tc5s8 dxYU7c5o6K59mDzyOmIsWsUYibJSk3IidkiV7Az2auMkONueGcUK+I9gK4u/pjbk U0jtNycv2E6CgkSmhWoi6y4zRXZs7qLwtDPnBlGzFA1qFagQEBCsqi+Xaw+x9nmS fIoHuYYEDzgjMM3Z4CwHa1e1J+v6eyA= -----END CERTIFICATE-----Generated at Sat Oct 25 04:14:34 2025 by rpki-client