$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32302e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 1h4udNV+4pOLu/4cmMV05EZhy16/Rx73OVOydC2PXnA= Subject key identifier: 31:88:75:31:55:FC:0A:78:EB:64:33:E4:55:45:96:01:D2:F5:E8:A9 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 59E9F945411F570E06D998C878DFEFA960A1CB2B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:01 +0000 ROA not before: Mon 02 Jun 2025 00:58:01 +0000 ROA not after: Mon 01 Jun 2026 01:03:01 +0000 asID: 9794 IP address blocks: 202.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e9:f9:45:41:1f:57:0e:06:d9:98:c8:78:df:ef:a9:60:a1:cb:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:01 2025 GMT Not After : Jun 1 01:03:01 2026 GMT Subject: CN=3188753155FC0A78EB6433E455459601D2F5E8A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:83:ce:e1:f1:e7:2b:f8:53:36:83:e4:ed:3e: 8b:a2:5a:90:2f:ce:f6:e4:77:7d:2f:bb:a5:d6:c2: db:98:4e:68:c5:4a:f0:c7:67:42:55:4d:6c:36:a6: bf:97:86:79:9a:ac:3c:32:9c:b9:1a:6e:d2:a3:5d: 36:11:35:5f:31:cd:e0:ae:5f:60:1c:e7:60:16:f6: 2c:04:7b:15:b6:1d:62:2e:a4:e4:04:df:ab:67:b9: 71:08:ae:0a:11:a6:fb:0f:d5:e4:3a:27:c9:3f:a7: 1b:56:4c:b5:18:3a:1f:01:4f:3b:58:f2:c5:aa:44: a5:f0:e7:76:e3:ec:c8:b8:67:3b:b6:1b:94:ea:1d: 10:66:c9:60:21:2b:3c:13:1c:84:f7:09:be:e9:97: 21:d9:7d:f3:21:c9:e9:70:3b:bd:3e:a4:c6:74:d4: 15:63:7f:78:e1:67:dc:50:e9:35:4a:fc:ad:b9:f1: 0f:a6:da:82:9d:9d:bd:ae:14:a8:c1:90:f4:49:bd: 92:8c:3c:3d:df:3c:7f:ed:4e:4f:8d:5d:90:f1:b7: e5:44:a8:79:79:8c:09:89:6b:55:48:82:aa:72:0c: e9:eb:0b:f6:15:d4:37:af:a6:2f:db:0c:b5:82:04: 4a:9d:b8:84:4d:ce:94:93:7f:fe:82:98:9a:05:74: 2a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:88:75:31:55:FC:0A:78:EB:64:33:E4:55:45:96:01:D2:F5:E8:A9 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32302e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption 00:5e:84:5b:6d:54:51:da:ce:a2:e1:64:09:32:f6:a1:b5:c3: 38:10:d7:24:88:17:e4:9f:b7:71:49:bd:f6:ed:4b:80:99:99: 10:ba:e6:c8:e2:b1:82:f0:da:c1:88:96:9f:fc:5a:38:da:3c: 21:a2:f4:a5:7d:7a:19:79:34:ad:c2:61:cb:ea:be:5a:66:60: d2:43:c5:14:64:36:17:81:e6:db:05:a8:38:3b:50:b4:4f:b3: a7:28:f7:10:f8:53:04:0f:a9:ba:0c:52:39:25:d3:ae:32:d9: 87:b4:9f:6a:2d:56:6a:36:b5:2c:1e:f8:33:41:a9:1f:51:e0: 66:39:e3:99:7b:37:43:f2:9f:8c:fe:2e:78:32:ce:44:e0:91: 47:ca:c3:27:f8:47:8d:74:b3:40:53:3a:08:4b:f0:d9:fd:e4: 72:4c:80:37:a8:35:c7:a6:f6:c6:37:51:03:10:0b:e3:ee:3f: 40:15:6c:66:53:b7:a5:ac:90:ec:1b:1c:9d:11:fd:1d:5d:76: f5:eb:bd:25:95:4b:2c:e7:f2:1a:37:70:c6:3f:b7:77:77:b9: 20:9d:6e:73:fe:e2:81:9e:d7:0a:4e:bb:9c:20:d1:91:29:8c: 7d:b5:99:74:9c:b2:d3:b6:ab:bd:58:4a:d8:00:88:4d:df:a5: 3e:06:77:2e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWen5RUEfVw4G2ZjIeN/vqWChyyswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDFaFw0yNjA2MDEwMTAzMDFaMDMxMTAvBgNV BAMTKDMxODg3NTMxNTVGQzBBNzhFQjY0MzNFNDU1NDU5NjAxRDJGNUU4QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCng87h8ecr+FM2g+TtPouiWpAv zvbkd30vu6XWwtuYTmjFSvDHZ0JVTWw2pr+XhnmarDwynLkabtKjXTYRNV8xzeCu X2Ac52AW9iwEexW2HWIupOQE36tnuXEIrgoRpvsP1eQ6J8k/pxtWTLUYOh8BTztY 8sWqRKXw53bj7Mi4Zzu2G5TqHRBmyWAhKzwTHIT3Cb7plyHZffMhyelwO70+pMZ0 1BVjf3jhZ9xQ6TVK/K258Q+m2oKdnb2uFKjBkPRJvZKMPD3fPH/tTk+NXZDxt+VE qHl5jAmJa1VIgqpyDOnrC/YV1Devpi/bDLWCBEqduIRNzpSTf/6CmJoFdCphAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMYh1MVX8CnjrZDPkVUWWAdL16KkwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBQwDQYJKoZIhvcN AQELBQADggEBAABehFttVFHazqLhZAky9qG1wzgQ1ySIF+Sft3FJvfbtS4CZmRC6 5sjisYLw2sGIlp/8WjjaPCGi9KV9ehl5NK3CYcvqvlpmYNJDxRRkNheB5tsFqDg7 ULRPs6co9xD4UwQPqboMUjkl064y2Ye0n2otVmo2tSwe+DNBqR9R4GY545l7N0Py n4z+LngyzkTgkUfKwyf4R410s0BTOghL8Nn95HJMgDeoNcem9sY3UQMQC+PuP0AV bGZTt6WskOwbHJ0R/R1ddvXrvSWVSyzn8ho3cMY/t3d3uSCdbnP+4oGe1wpOu5wg 0ZEpjH21mXScstO2q71YStgAiE3fpT4Gdy4= -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:28 2025 by rpki-client