$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa File: 3230322e3134382e32342e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: XXOJAc6GXdTpaTNh0jbha/Z71qEQSzsCHnQDVblb2YE= Subject key identifier: 45:B0:E4:F0:7F:7A:65:40:9F:5B:3A:35:BB:A9:A0:33:E2:6A:46:E3 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5A11CB50EE00201BEF8BBFC42BC1831B6078EBE8 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:06 +0000 ROA not before: Mon 02 Jun 2025 00:58:06 +0000 ROA not after: Mon 01 Jun 2026 01:03:06 +0000 asID: 38778 IP address blocks: 202.148.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 19:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:11:cb:50:ee:00:20:1b:ef:8b:bf:c4:2b:c1:83:1b:60:78:eb:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:06 2025 GMT Not After : Jun 1 01:03:06 2026 GMT Subject: CN=45B0E4F07F7A65409F5B3A35BBA9A033E26A46E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:23:8b:e5:80:df:a9:5b:1d:0c:ae:7f:b9:36: 7e:27:01:f3:2f:13:e5:d6:51:4c:80:c3:a8:ab:1a: ff:bb:62:55:1a:2e:8a:36:aa:dd:ea:43:89:cc:c1: 5d:b8:89:3c:0f:22:60:9f:e3:6c:c4:f3:53:81:fa: a9:c3:33:6f:0d:c0:52:37:16:a7:63:22:76:dc:5a: 18:e6:91:c7:03:94:5f:a6:9b:e7:68:cc:56:aa:b0: 26:9a:80:60:40:78:59:06:86:00:41:88:38:56:88: ef:90:18:9b:87:9f:59:a1:8a:e5:9f:34:78:2a:4f: f8:fb:43:cf:4d:03:50:aa:44:51:db:31:78:d7:ac: a8:7b:70:ed:c7:35:af:7d:83:39:5a:02:f7:72:a2: 72:a0:26:5e:13:ca:d2:3e:4c:04:f0:b3:94:35:e3: 2c:8c:3e:5a:c5:e2:ff:e4:55:ae:33:ec:35:53:8e: ee:d0:e1:32:e1:a7:64:42:ea:95:b4:68:9e:34:6a: a9:2b:36:32:5d:2f:94:02:03:47:21:ca:44:88:76: 20:41:f0:43:0d:05:7e:1a:53:0a:35:63:01:e6:a8: 76:58:a2:6e:02:c8:d5:91:15:e2:c5:e7:a3:8a:bb: 14:a9:14:b5:b0:6f:ee:e5:3e:b1:3f:e7:95:ee:3f: 4e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B0:E4:F0:7F:7A:65:40:9F:5B:3A:35:BB:A9:A0:33:E2:6A:46:E3 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.24.0/23 Signature Algorithm: sha256WithRSAEncryption 62:03:64:ff:dc:28:43:85:0c:23:2c:1c:15:96:d8:30:04:be: 0d:57:5a:29:4d:5a:98:1b:07:e1:b5:e8:fd:6d:27:17:9a:e9: 4d:be:b0:af:ac:aa:0c:b7:61:78:64:45:76:30:b1:c7:f4:5e: f5:38:9a:ef:cb:78:dd:fd:4b:fb:ec:36:5b:7d:d2:e2:04:77: a3:43:d0:3c:49:57:25:3e:f0:d6:a9:10:b2:23:1f:3e:35:8c: 46:cb:70:00:a5:80:83:cd:cf:75:41:4a:f0:d0:a5:c2:4b:e6: ef:57:04:e1:66:d5:ee:ff:fe:01:c8:2e:2b:18:97:a5:f7:97: 2e:06:3e:37:6d:30:8a:b7:e4:61:ae:d4:59:1b:19:61:6c:2c: 36:74:4f:3b:14:21:c5:bf:7e:49:e4:0a:b6:8c:2d:c3:ef:4f: 9b:c7:d8:8a:89:34:58:76:b3:3f:94:b9:d8:02:68:c2:3e:15: 1f:83:95:4c:cb:7f:59:05:4f:e2:31:3b:26:bf:8c:54:9f:d9: e6:6c:40:4a:1f:43:67:7f:7f:78:39:30:15:e4:af:db:d0:e3: a6:58:26:4d:8c:0f:6b:ea:7d:4f:22:da:d6:dc:3f:d2:20:9b: ef:48:7f:1d:e0:55:23:80:f0:1e:80:24:15:d1:54:55:bb:98: c4:a1:3c:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWhHLUO4AIBvvi7/EK8GDG2B46+gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDZaFw0yNjA2MDEwMTAzMDZaMDMxMTAvBgNV BAMTKDQ1QjBFNEYwN0Y3QTY1NDA5RjVCM0EzNUJCQTlBMDMzRTI2QTQ2RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcI4vlgN+pWx0Mrn+5Nn4nAfMv E+XWUUyAw6irGv+7YlUaLoo2qt3qQ4nMwV24iTwPImCf42zE81OB+qnDM28NwFI3 FqdjInbcWhjmkccDlF+mm+dozFaqsCaagGBAeFkGhgBBiDhWiO+QGJuHn1mhiuWf NHgqT/j7Q89NA1CqRFHbMXjXrKh7cO3HNa99gzlaAvdyonKgJl4TytI+TATws5Q1 4yyMPlrF4v/kVa4z7DVTju7Q4TLhp2RC6pW0aJ40aqkrNjJdL5QCA0chykSIdiBB 8EMNBX4aUwo1YwHmqHZYom4CyNWRFeLF56OKuxSpFLWwb+7lPrE/55XuP05HAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURbDk8H96ZUCfWzo1u6mgM+JqRuMwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcqUGDANBgkqhkiG 9w0BAQsFAAOCAQEAYgNk/9woQ4UMIywcFZbYMAS+DVdaKU1amBsH4bXo/W0nF5rp Tb6wr6yqDLdheGRFdjCxx/Re9Tia78t43f1L++w2W33S4gR3o0PQPElXJT7w1qkQ siMfPjWMRstwAKWAg83PdUFK8NClwkvm71cE4WbV7v/+AcguKxiXpfeXLgY+N20w irfkYa7UWRsZYWwsNnRPOxQhxb9+SeQKtowtw+9Pm8fYiok0WHazP5S52AJowj4V H4OVTMt/WQVP4jE7Jr+MVJ/Z5mxASh9DZ39/eDkwFeSv29DjplgmTYwPa+p9TyLa 1tw/0iCb70h/HeBVI4DwHoAkFdFUVbuYxKE88w== -----END CERTIFICATE-----Generated at Sat Oct 25 04:19:07 2025 by rpki-client