$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: TGYc0r3aWKxE/Yyak9yjBJLKjsvlseM3URLtwaIQKyM= Subject key identifier: 29:17:D7:53:E1:B8:C6:97:6A:42:42:56:30:55:4C:23:04:EA:0E:2D Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 1EF8DEAAB4493D1CCDD45608A8CD3B2CD9CCF70A Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:05 +0000 ROA not before: Mon 02 Jun 2025 00:58:05 +0000 ROA not after: Mon 01 Jun 2026 01:03:05 +0000 asID: 9794 IP address blocks: 202.148.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:f8:de:aa:b4:49:3d:1c:cd:d4:56:08:a8:cd:3b:2c:d9:cc:f7:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:05 2025 GMT Not After : Jun 1 01:03:05 2026 GMT Subject: CN=2917D753E1B8C6976A42425630554C2304EA0E2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:1f:90:15:d3:da:18:ca:a4:03:a2:78:06:63: 2f:a9:79:de:84:93:1e:39:df:c3:a6:29:09:ee:ac: aa:bf:ed:2d:b3:d7:45:9f:d1:a4:67:75:14:46:2d: 22:ca:1f:4e:17:a7:f2:b0:c8:71:89:75:89:3c:4b: f0:31:d9:bc:12:df:0e:9f:a3:52:a8:43:b1:fb:00: 0c:bb:1f:1c:d5:8f:7d:4c:8b:bf:8c:8e:a0:6c:25: 6b:58:1a:df:31:de:4b:42:6f:93:4f:1e:7e:e1:34: 1c:0e:fe:d3:11:2f:38:d5:7e:52:8e:d5:9f:54:f1: 65:91:bb:b5:96:37:e2:bd:ae:32:4b:a3:8e:16:1a: 1e:a8:69:ad:2d:f8:36:6a:dd:0c:88:e3:e9:c6:c0: 17:8d:26:0c:74:a1:28:52:2c:5c:c8:ff:2b:69:64: e8:2c:51:4c:98:4c:24:e8:03:92:2c:92:ac:27:7f: 87:7b:e1:4c:94:72:5c:26:82:ec:fb:00:49:a9:85: 7b:44:cd:ae:ed:30:ed:46:d3:db:01:89:e1:0a:7d: 21:7e:cf:be:ca:c8:08:75:af:b9:dc:78:b3:24:c1: a5:20:44:1b:18:d9:dc:5d:a4:24:5b:b9:b3:e3:af: 96:2a:27:ae:e0:e6:e5:09:e2:04:0b:2f:7d:27:31: 8d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:17:D7:53:E1:B8:C6:97:6A:42:42:56:30:55:4C:23:04:EA:0E:2D X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.21.0/24 Signature Algorithm: sha256WithRSAEncryption 68:3b:e6:5f:ef:71:b9:1a:1b:13:2b:9c:3c:71:ba:9d:54:3c: 97:45:c0:d8:9c:70:65:88:ab:86:27:06:6a:ca:44:99:73:9f: a8:a3:3f:32:d4:b7:f8:f1:00:94:94:11:40:53:74:d6:49:1c: 66:14:65:74:e1:57:22:2c:82:7e:aa:3b:3e:41:e1:00:4f:07: 28:9c:41:11:af:d0:48:1d:aa:f0:13:8d:5b:57:37:39:aa:91: aa:09:c1:de:6c:41:bb:2f:6e:a8:e9:d5:7b:d7:66:07:27:16: 65:ac:28:23:b4:7b:11:53:22:67:3b:dd:4b:1f:05:be:98:ea: f5:d4:6c:5b:ce:ac:da:34:df:38:e3:4c:33:ff:75:96:4f:8b: 03:bc:c9:5f:dc:bf:09:bd:58:32:25:f4:d5:95:86:45:bc:f0: 0a:52:dd:50:d8:e5:6f:b6:97:86:e4:40:0e:17:3f:45:07:c2: 79:a5:90:5e:81:93:2a:fb:4d:28:90:ca:8e:c2:df:37:37:1b: 11:aa:cf:0a:64:11:36:ad:bc:5e:d1:4d:3a:28:55:45:11:74: 20:57:8c:e4:a1:09:99:e3:b8:86:1c:1e:74:6c:5a:43:6e:3e: 7d:25:ba:f1:bb:48:f2:d7:30:5d:9d:4f:03:ce:03:65:b6:a5: ab:49:e1:fa -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHvjeqrRJPRzN1FYIqM07LNnM9wowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDVaFw0yNjA2MDEwMTAzMDVaMDMxMTAvBgNV BAMTKDI5MTdENzUzRTFCOEM2OTc2QTQyNDI1NjMwNTU0QzIzMDRFQTBFMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvH5AV09oYyqQDongGYy+ped6E kx4538OmKQnurKq/7S2z10Wf0aRndRRGLSLKH04Xp/KwyHGJdYk8S/Ax2bwS3w6f o1KoQ7H7AAy7HxzVj31Mi7+MjqBsJWtYGt8x3ktCb5NPHn7hNBwO/tMRLzjVflKO 1Z9U8WWRu7WWN+K9rjJLo44WGh6oaa0t+DZq3QyI4+nGwBeNJgx0oShSLFzI/ytp ZOgsUUyYTCToA5Iskqwnf4d74UyUclwmguz7AEmphXtEza7tMO1G09sBieEKfSF+ z77KyAh1r7nceLMkwaUgRBsY2dxdpCRbubPjr5YqJ67g5uUJ4gQLL30nMY1DAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKRfXU+G4xpdqQkJWMFVMIwTqDi0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBUwDQYJKoZIhvcN AQELBQADggEBAGg75l/vcbkaGxMrnDxxup1UPJdFwNiccGWIq4YnBmrKRJlzn6ij PzLUt/jxAJSUEUBTdNZJHGYUZXThVyIsgn6qOz5B4QBPByicQRGv0EgdqvATjVtX NzmqkaoJwd5sQbsvbqjp1XvXZgcnFmWsKCO0exFTImc73UsfBb6Y6vXUbFvOrNo0 3zjjTDP/dZZPiwO8yV/cvwm9WDIl9NWVhkW88ApS3VDY5W+2l4bkQA4XP0UHwnml kF6Bkyr7TSiQyo7C3zc3GxGqzwpkETatvF7RTTooVUURdCBXjOShCZnjuIYcHnRs WkNuPn0luvG7SPLXMF2dTwPOA2W2patJ4fo= -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:48 2025 by rpki-client