$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e32342e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: EZLLl0hlTRZo1Y24Gdm1BvIBPdVzWXBgkHOTYa4w59s= Subject key identifier: 21:94:B1:A5:56:F6:C6:BE:F7:B3:BB:2A:47:4E:D2:48:46:77:3F:3D Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5CE2192133F70A3FB1982B4A3B1EA234E0CCF6D7 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:02 +0000 ROA not before: Mon 02 Jun 2025 00:58:02 +0000 ROA not after: Mon 01 Jun 2026 01:03:02 +0000 asID: 38778 IP address blocks: 202.148.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e2:19:21:33:f7:0a:3f:b1:98:2b:4a:3b:1e:a2:34:e0:cc:f6:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:02 2025 GMT Not After : Jun 1 01:03:02 2026 GMT Subject: CN=2194B1A556F6C6BEF7B3BB2A474ED24846773F3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:da:2b:5d:b7:37:c6:f6:4f:72:45:3c:8b:24: 5b:6b:63:0c:3b:c6:c5:91:2b:95:ed:ec:a6:ae:2a: 20:63:7a:dd:8b:50:dc:e7:ee:7c:a8:f0:4b:87:bf: 53:31:51:27:be:e7:39:36:74:d1:15:85:27:eb:0d: 88:98:9d:c2:88:ee:59:fa:a0:ae:f4:f6:30:e7:52: 65:20:23:9f:dd:36:e9:7d:21:8a:b7:78:bf:f0:75: 3a:1e:f1:e2:be:d7:e6:85:ce:20:05:9b:9a:c4:2c: 89:9b:77:6a:e4:be:58:57:04:28:61:26:bf:7b:d7: 33:1f:6d:f6:3f:c6:10:6c:73:8d:cf:1d:43:88:cb: 10:50:cd:5b:6d:01:88:fb:6b:9a:2f:2a:6b:f1:f1: 99:f6:59:98:14:38:4e:90:54:67:5f:42:fe:23:a6: a2:de:b8:9d:93:c0:fc:29:71:65:48:50:7f:d9:87: fe:d8:d2:4b:e1:5c:d0:a9:b0:e7:ad:99:4d:22:ea: ba:2f:c3:f7:f3:38:80:81:4e:e8:41:36:04:aa:8b: ee:52:13:78:2e:12:17:d5:10:39:5b:1e:b1:25:29: 26:e8:b2:47:79:42:8a:34:38:14:53:f7:9c:48:3a: 61:ba:e8:e9:09:6b:44:ed:09:2a:77:76:d2:f3:c9: 02:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:94:B1:A5:56:F6:C6:BE:F7:B3:BB:2A:47:4E:D2:48:46:77:3F:3D X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.24.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:ca:3b:88:1f:1f:f1:40:cc:e2:08:91:0f:51:44:11:a8:15: 03:6d:d9:52:67:07:bd:ce:27:72:dc:1d:be:9b:1b:03:a4:d4: 6f:11:94:0c:aa:73:a9:74:20:fb:0b:39:d1:0b:7b:b4:18:7a: e5:10:c7:4c:cf:50:22:af:d2:92:3d:3b:64:52:5f:fa:ff:99: f1:01:08:05:ac:35:2b:0a:80:17:be:fd:c3:c5:33:b3:2c:4f: 42:f6:11:e2:d1:2f:73:af:0c:1f:10:10:b6:48:f3:fe:6a:4b: 2b:ba:48:5b:0f:ed:21:f5:b9:de:d4:8f:b2:9a:6c:c0:69:39: 38:a5:11:56:c2:79:83:4d:d4:c6:2c:d7:b1:a3:4c:5b:82:54: d6:d2:fc:40:11:39:e9:10:28:8f:90:85:ac:24:bf:16:8c:55: 3f:0c:84:5b:c1:08:1f:6f:72:33:1d:e9:e5:3c:ef:93:a3:70: ef:bb:72:50:89:1c:63:8a:00:fa:48:e0:a8:2e:0e:24:c1:84: 76:f1:05:95:3e:03:77:38:3c:54:06:ae:d6:4f:94:5f:08:88: 85:49:c1:95:97:81:85:87:99:5f:58:cc:4e:a2:c8:a3:5d:25: 16:75:0e:c4:ec:b4:96:ab:4a:e0:66:15:df:a9:f5:05:9d:30: 48:19:2e:ba -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXOIZITP3Cj+xmCtKOx6iNODM9tcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDJaFw0yNjA2MDEwMTAzMDJaMDMxMTAvBgNV BAMTKDIxOTRCMUE1NTZGNkM2QkVGN0IzQkIyQTQ3NEVEMjQ4NDY3NzNGM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb2itdtzfG9k9yRTyLJFtrYww7 xsWRK5Xt7KauKiBjet2LUNzn7nyo8EuHv1MxUSe+5zk2dNEVhSfrDYiYncKI7ln6 oK709jDnUmUgI5/dNul9IYq3eL/wdToe8eK+1+aFziAFm5rELImbd2rkvlhXBChh Jr971zMfbfY/xhBsc43PHUOIyxBQzVttAYj7a5ovKmvx8Zn2WZgUOE6QVGdfQv4j pqLeuJ2TwPwpcWVIUH/Zh/7Y0kvhXNCpsOetmU0i6rovw/fzOICBTuhBNgSqi+5S E3guEhfVEDlbHrElKSboskd5Qoo0OBRT95xIOmG66OkJa0TtCSp3dtLzyQLVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIZSxpVb2xr73s7sqR07SSEZ3Pz0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGDANBgkqhkiG 9w0BAQsFAAOCAQEAa8o7iB8f8UDM4giRD1FEEagVA23ZUmcHvc4nctwdvpsbA6TU bxGUDKpzqXQg+ws50Qt7tBh65RDHTM9QIq/Skj07ZFJf+v+Z8QEIBaw1KwqAF779 w8UzsyxPQvYR4tEvc68MHxAQtkjz/mpLK7pIWw/tIfW53tSPsppswGk5OKURVsJ5 g03UxizXsaNMW4JU1tL8QBE56RAoj5CFrCS/FoxVPwyEW8EIH29yMx3p5Tzvk6Nw 77tyUIkcY4oA+kjgqC4OJMGEdvEFlT4Ddzg8VAau1k+UXwiIhUnBlZeBhYeZX1jM TqLIo10lFnUOxOy0lqtK4GYV36n1BZ0wSBkuug== -----END CERTIFICATE-----Generated at Thu Jun 5 18:53:02 2025 by rpki-client