$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32322e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: mAjonrSdtxGNRcHNSiLP5LZzqARO7OBiAwwQmPPCGN0= Subject key identifier: CA:D7:7D:6A:7E:00:A4:7D:2A:36:54:5E:D7:5E:0C:65:E4:BA:27:BB Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 017E0142CF6B47AE8A66C4122216B4C3ED15029E Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 02:00:02 +0000 ROA not before: Mon 02 Jun 2025 01:55:02 +0000 ROA not after: Mon 01 Jun 2026 02:00:02 +0000 asID: 9794 IP address blocks: 202.148.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:7e:01:42:cf:6b:47:ae:8a:66:c4:12:22:16:b4:c3:ed:15:02:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:02 2025 GMT Not After : Jun 1 02:00:02 2026 GMT Subject: CN=CAD77D6A7E00A47D2A36545ED75E0C65E4BA27BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:eb:65:f5:6e:0b:02:aa:50:b6:19:64:e8:b1: 81:a2:7b:01:8b:9b:6a:a7:36:11:65:c5:c5:e7:96: 9a:a7:41:04:25:94:7a:ff:95:97:a6:8b:0b:ed:a0: 66:7a:6c:b2:d3:d7:f2:f0:83:c6:dd:0f:a9:a3:85: 24:43:8b:85:af:97:3a:6c:21:54:75:9c:06:ad:2c: 38:6d:89:47:d5:00:b5:8a:80:e4:26:20:c8:08:6a: 45:b3:8f:05:3b:2c:51:ad:38:e6:68:63:dd:5b:de: c8:56:cd:02:d9:e6:ae:b4:02:9f:f7:1e:1e:67:74: 7d:52:ec:53:b9:d6:10:37:5e:bf:d1:1c:f0:84:f8: 0b:89:29:8c:ae:68:05:95:cc:32:7c:56:22:ac:28: 8a:2e:6f:24:fd:bc:5b:b5:33:74:77:6c:98:9b:04: 9c:be:78:73:31:60:33:f3:c4:e9:6e:eb:6a:d0:f7: 51:22:bc:92:2c:09:ed:85:64:b4:45:32:47:46:ca: 8f:de:b6:32:ff:22:64:dc:89:ba:ee:69:e0:d3:3d: 6b:59:09:b6:1d:32:f8:4a:7a:11:3d:8d:26:4a:1c: 4a:f9:ae:4a:28:e6:3f:61:69:3e:65:e4:10:67:12: 91:a5:7b:4d:7f:51:43:79:18:19:d8:3d:33:45:3b: b3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D7:7D:6A:7E:00:A4:7D:2A:36:54:5E:D7:5E:0C:65:E4:BA:27:BB X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32322e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.22.0/24 Signature Algorithm: sha256WithRSAEncryption 03:b4:6f:4e:c0:f8:4d:89:28:50:42:1d:4a:c4:7c:5f:0b:fd: 4d:59:42:cb:17:02:74:e8:80:e7:de:d8:37:18:45:a2:94:a9: 7d:23:aa:a6:dc:38:88:85:1e:4d:ed:35:08:49:c9:17:c4:ca: da:77:8f:62:63:50:50:9c:13:a1:37:47:11:49:48:16:64:36: 3b:c5:09:97:31:97:fa:05:8b:48:9c:37:21:33:db:28:76:0c: 0b:03:18:ea:bc:2d:e5:c0:43:6e:18:90:0f:c1:67:68:48:0e: 50:ce:53:6c:53:3d:d7:1b:ed:24:a9:3f:30:35:3b:b7:ad:3e: 0e:5f:88:fd:e0:f3:0d:bf:01:0b:ec:db:0c:5c:60:92:6f:f4: 42:31:ea:cf:48:20:c2:a6:d1:c7:82:82:8f:0f:eb:f6:08:37: e3:0a:1d:5b:de:27:56:ae:89:0b:92:51:65:82:d0:37:13:95: fb:75:57:3b:e4:b7:80:38:b0:c1:c7:6a:22:f8:23:41:c8:1a: 3e:3b:72:e2:ab:2a:cb:ea:00:d8:b8:b0:27:c0:1d:91:dc:eb: 99:54:70:fc:07:00:10:0e:ad:a0:41:d9:56:1b:34:90:53:56: 1f:de:b2:95:f6:df:42:02:67:0f:ca:74:bf:57:7a:23:23:d2: 80:fd:7a:a6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAX4BQs9rR66KZsQSIha0w+0VAp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDJaFw0yNjA2MDEwMjAwMDJaMDMxMTAvBgNV BAMTKENBRDc3RDZBN0UwMEE0N0QyQTM2NTQ1RUQ3NUUwQzY1RTRCQTI3QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg62X1bgsCqlC2GWTosYGiewGL m2qnNhFlxcXnlpqnQQQllHr/lZemiwvtoGZ6bLLT1/Lwg8bdD6mjhSRDi4Wvlzps IVR1nAatLDhtiUfVALWKgOQmIMgIakWzjwU7LFGtOOZoY91b3shWzQLZ5q60Ap/3 Hh5ndH1S7FO51hA3Xr/RHPCE+AuJKYyuaAWVzDJ8ViKsKIoubyT9vFu1M3R3bJib BJy+eHMxYDPzxOlu62rQ91EivJIsCe2FZLRFMkdGyo/etjL/ImTcibruaeDTPWtZ CbYdMvhKehE9jSZKHEr5rkoo5j9haT5l5BBnEpGle01/UUN5GBnYPTNFO7PNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUytd9an4ApH0qNlRe114MZeS6J7swHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBYwDQYJKoZIhvcN AQELBQADggEBAAO0b07A+E2JKFBCHUrEfF8L/U1ZQssXAnTogOfe2DcYRaKUqX0j qqbcOIiFHk3tNQhJyRfEytp3j2JjUFCcE6E3RxFJSBZkNjvFCZcxl/oFi0icNyEz 2yh2DAsDGOq8LeXAQ24YkA/BZ2hIDlDOU2xTPdcb7SSpPzA1O7etPg5fiP3g8w2/ AQvs2wxcYJJv9EIx6s9IIMKm0ceCgo8P6/YIN+MKHVveJ1auiQuSUWWC0DcTlft1 Vzvkt4A4sMHHaiL4I0HIGj47cuKrKsvqANi4sCfAHZHc65lUcPwHABAOraBB2VYb NJBTVh/espX230ICZw/KdL9XeiMj0oD9eqY= -----END CERTIFICATE-----Generated at Thu Jun 5 18:36:56 2025 by rpki-client