$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: rszf5zXbTDQonD6uQSwz8DoQmNWJrvEPxoHVoW/nrzo= Subject key identifier: A9:20:45:67:54:C5:1C:A6:D9:09:C8:8D:B8:43:D8:26:68:5B:D6:68 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 138A895D447F373B6AA725C3FD023B96F10C3B16 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:06 +0000 ROA not before: Mon 02 Jun 2025 00:58:06 +0000 ROA not after: Mon 01 Jun 2026 01:03:06 +0000 asID: 9794 IP address blocks: 202.148.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:8a:89:5d:44:7f:37:3b:6a:a7:25:c3:fd:02:3b:96:f1:0c:3b:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:06 2025 GMT Not After : Jun 1 01:03:06 2026 GMT Subject: CN=A920456754C51CA6D909C88DB843D826685BD668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d5:f2:34:bd:ad:8a:20:b3:f8:f9:51:8f:a1: f9:82:2d:39:13:b5:d4:83:c3:8a:dd:20:08:af:08: 73:8c:ed:73:6e:a1:9d:91:f9:a5:b0:3e:40:19:ae: 76:a2:92:e4:32:dc:d8:6b:7d:6a:96:ee:50:d3:0c: ce:3f:74:5a:e3:83:8c:02:e2:92:84:89:5c:56:65: c6:96:4d:00:d9:40:07:b4:c4:31:dc:ff:56:c7:7c: 3d:b1:f7:55:1b:eb:e5:5a:92:27:d9:b2:cc:14:e3: 0b:52:73:a2:19:19:b6:35:ee:dd:ec:a8:cf:45:65: 38:43:74:40:9c:39:96:73:e8:8d:05:76:9b:7e:75: da:da:b5:ef:7c:57:9d:fb:f4:43:27:c8:f2:db:1a: a7:cc:e9:17:b4:88:9d:87:d4:89:20:95:f5:93:02: ab:18:82:95:4c:12:ee:12:5b:c4:db:76:ff:e7:ba: 5f:40:92:ec:24:92:5c:ad:8d:94:56:15:a9:ac:10: bf:b0:7e:ae:8a:bc:ee:80:42:b4:41:71:35:ce:00: ba:19:cd:71:67:4e:bb:ac:6a:bc:77:85:49:7c:b4: 98:ca:0f:b6:1d:12:2f:b8:b6:87:8b:58:2e:53:4e: 1e:dc:3f:5b:02:2f:a7:5a:79:95:25:50:4c:f3:46: 48:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:20:45:67:54:C5:1C:A6:D9:09:C8:8D:B8:43:D8:26:68:5B:D6:68 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.23.0/24 Signature Algorithm: sha256WithRSAEncryption 19:39:51:ff:33:09:54:68:81:4c:e6:e4:b0:3f:3e:d9:05:6a: 0a:56:d6:f8:c4:fd:d9:31:2d:2a:7b:33:47:57:09:45:16:0d: 51:cb:2c:9f:87:0c:dc:29:e5:d8:f6:df:de:14:ae:f2:b5:9b: 8d:7b:ab:e2:af:f5:8d:2f:64:2b:b2:cf:8e:88:86:8f:fc:a6: 10:0c:d7:59:af:fd:46:ac:5c:30:b1:3f:7d:ab:7b:10:a2:77: 70:74:32:bb:67:3d:5a:25:ed:15:26:1d:1c:c7:f8:51:5a:62: 7f:7d:d1:c0:13:37:89:56:a7:b4:ed:15:4b:fb:c2:a5:2a:9e: c8:be:e4:af:b7:ed:b8:01:14:25:c0:47:c0:e5:c9:82:9d:b9: 9e:38:b1:34:15:7e:cd:3c:cb:ad:2e:ea:11:a1:48:8a:a3:6a: 5f:bd:3e:ff:8c:28:06:35:6d:c3:f6:db:3b:b9:a9:a6:2a:62: c0:8d:33:b2:e5:2d:eb:13:bc:02:7b:66:16:1f:27:4b:d2:4d: 8a:38:e6:ea:b5:f5:a1:a5:b1:5b:ab:5c:f1:df:7d:51:b2:92: 5c:ba:f5:a9:54:f0:9f:46:f0:5e:b4:30:88:7b:a4:35:ce:90: 7c:dc:bd:c1:33:21:d5:df:f7:99:b2:6d:c7:16:58:a5:95:84: 3c:40:6b:db -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUE4qJXUR/NztqpyXD/QI7lvEMOxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDZaFw0yNjA2MDEwMTAzMDZaMDMxMTAvBgNV BAMTKEE5MjA0NTY3NTRDNTFDQTZEOTA5Qzg4REI4NDNEODI2Njg1QkQ2NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/1fI0va2KILP4+VGPofmCLTkT tdSDw4rdIAivCHOM7XNuoZ2R+aWwPkAZrnaikuQy3NhrfWqW7lDTDM4/dFrjg4wC 4pKEiVxWZcaWTQDZQAe0xDHc/1bHfD2x91Ub6+VakifZsswU4wtSc6IZGbY17t3s qM9FZThDdECcOZZz6I0Fdpt+ddrate98V5379EMnyPLbGqfM6Re0iJ2H1IkglfWT AqsYgpVMEu4SW8Tbdv/nul9AkuwkklytjZRWFamsEL+wfq6KvO6AQrRBcTXOALoZ zXFnTrusarx3hUl8tJjKD7YdEi+4toeLWC5TTh7cP1sCL6daeZUlUEzzRkh/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUqSBFZ1TFHKbZCciNuEPYJmhb1mgwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBcwDQYJKoZIhvcN AQELBQADggEBABk5Uf8zCVRogUzm5LA/PtkFagpW1vjE/dkxLSp7M0dXCUUWDVHL LJ+HDNwp5dj2394UrvK1m417q+Kv9Y0vZCuyz46Iho/8phAM11mv/UasXDCxP32r exCid3B0MrtnPVol7RUmHRzH+FFaYn990cATN4lWp7TtFUv7wqUqnsi+5K+37bgB FCXAR8DlyYKduZ44sTQVfs08y60u6hGhSIqjal+9Pv+MKAY1bcP22zu5qaYqYsCN M7LlLesTvAJ7ZhYfJ0vSTYo45uq19aGlsVurXPHffVGykly69alU8J9G8F60MIh7 pDXOkHzcvcEzIdXf95mybccWWKWVhDxAa9s= -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:23 2025 by rpki-client