$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e32352e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: PcCtgYYXz1vl2AhQe+57yd8cqnlnNTShormZMtzYpe0= Subject key identifier: 93:F2:B6:52:73:B6:56:00:D8:BE:39:E0:3B:D8:28:9D:D6:E8:40:D2 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 52B0D2CB8C32D9DD63A7A51BA38CDD6DB8E60AE5 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:06 +0000 ROA not before: Mon 02 Jun 2025 00:58:06 +0000 ROA not after: Mon 01 Jun 2026 01:03:06 +0000 asID: 38778 IP address blocks: 202.148.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b0:d2:cb:8c:32:d9:dd:63:a7:a5:1b:a3:8c:dd:6d:b8:e6:0a:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:06 2025 GMT Not After : Jun 1 01:03:06 2026 GMT Subject: CN=93F2B65273B65600D8BE39E03BD8289DD6E840D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:95:0e:4f:76:42:17:c2:f3:3c:48:fc:05:9b: 78:2c:40:72:f6:83:0d:9e:70:e1:ad:5a:11:65:99: ac:18:19:18:f0:1e:3f:59:0e:30:7b:24:ef:ae:1c: 6f:c1:01:a8:a1:85:e7:59:f8:61:6c:7e:04:34:15: c0:c7:a7:1b:11:5a:9c:24:b6:b8:98:a3:7c:d3:39: 19:c8:7d:2d:39:38:8d:23:c4:7c:cd:ec:e1:f8:d4: e2:dd:3a:b1:55:c2:8c:41:30:b2:71:f1:37:50:af: d1:88:98:8c:14:6f:c7:a8:d7:ba:b1:c5:fc:fd:f5: 39:54:48:16:44:97:f1:19:40:38:d3:51:bf:a8:70: 70:1e:e7:ff:b9:10:8a:3e:ee:d6:a3:35:f9:3e:7a: 18:1c:1e:57:53:d0:21:1e:9a:d2:84:00:a8:76:29: 6b:5e:92:1d:a0:a0:35:0a:37:27:08:8f:25:e9:13: 49:56:0c:ea:51:3e:d0:d0:e1:03:a7:06:8b:4d:ed: e1:31:33:92:cc:7f:33:eb:91:4e:e0:a4:8f:32:5d: c3:82:78:ed:57:93:6d:f3:c6:2c:b1:77:2a:cc:48: 4d:08:76:5d:91:7e:43:58:35:46:0c:c3:f0:72:fc: c4:dd:e9:c6:c9:0d:19:c3:ac:37:15:a8:47:b7:bf: d9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F2:B6:52:73:B6:56:00:D8:BE:39:E0:3B:D8:28:9D:D6:E8:40:D2 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.25.0/24 Signature Algorithm: sha256WithRSAEncryption 51:b3:94:14:3d:60:9c:31:fa:f8:81:df:df:4f:f8:89:fb:e5: 55:43:df:d7:8b:7f:d7:ba:09:a4:2d:b2:fc:95:97:19:1a:74: 3d:a6:ab:16:58:d5:55:33:01:fa:56:9b:3d:c6:12:56:3c:78: 50:64:7e:48:4e:65:3e:68:10:ac:57:e3:b6:78:26:4d:af:cc: 21:bb:ed:19:3c:88:41:ad:9e:4b:ec:5b:b1:a8:22:fc:88:2c: 1b:2b:4e:92:8a:b6:d0:e8:de:0a:89:16:58:6e:88:8f:87:17: 0f:4e:e6:d3:77:d7:60:d1:50:f0:c0:46:3e:5f:f1:ce:67:a9: 7a:23:06:8f:dd:af:e9:1f:30:8f:9b:b0:cb:90:b4:06:e9:46: 1c:81:84:43:c6:34:7d:7b:cf:cd:0d:da:4c:1a:5f:b0:2c:28: 3e:d1:9b:c2:0b:44:14:50:fc:01:0e:4d:0c:c8:b0:66:ee:b5: 4a:83:8b:19:79:e1:0e:fc:3b:f4:17:45:e7:53:36:64:86:2f: 25:e3:e1:bf:fc:29:3d:63:cb:95:81:56:e5:c8:d9:57:b4:14: a4:2e:11:92:b8:ba:85:5a:d1:3e:87:59:8b:82:32:15:f3:33: 11:5e:b6:b1:41:cf:7d:b7:74:25:1a:4d:cb:d9:67:76:c0:a1: ba:a1:f4:98 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUrDSy4wy2d1jp6Ubo4zdbbjmCuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDZaFw0yNjA2MDEwMTAzMDZaMDMxMTAvBgNV BAMTKDkzRjJCNjUyNzNCNjU2MDBEOEJFMzlFMDNCRDgyODlERDZFODQwRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnlQ5PdkIXwvM8SPwFm3gsQHL2 gw2ecOGtWhFlmawYGRjwHj9ZDjB7JO+uHG/BAaihhedZ+GFsfgQ0FcDHpxsRWpwk triYo3zTORnIfS05OI0jxHzN7OH41OLdOrFVwoxBMLJx8TdQr9GImIwUb8eo17qx xfz99TlUSBZEl/EZQDjTUb+ocHAe5/+5EIo+7tajNfk+ehgcHldT0CEemtKEAKh2 KWtekh2goDUKNycIjyXpE0lWDOpRPtDQ4QOnBotN7eExM5LMfzPrkU7gpI8yXcOC eO1Xk23zxiyxdyrMSE0Idl2RfkNYNUYMw/By/MTd6cbJDRnDrDcVqEe3v9llAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUk/K2UnO2VgDYvjngO9gondboQNIwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGTANBgkqhkiG 9w0BAQsFAAOCAQEAUbOUFD1gnDH6+IHf30/4ifvlVUPf14t/17oJpC2y/JWXGRp0 PaarFljVVTMB+labPcYSVjx4UGR+SE5lPmgQrFfjtngmTa/MIbvtGTyIQa2eS+xb sagi/IgsGytOkoq20OjeCokWWG6Ij4cXD07m03fXYNFQ8MBGPl/xzmepeiMGj92v 6R8wj5uwy5C0BulGHIGEQ8Y0fXvPzQ3aTBpfsCwoPtGbwgtEFFD8AQ5NDMiwZu61 SoOLGXnhDvw79BdF51M2ZIYvJePhv/wpPWPLlYFW5cjZV7QUpC4Rkri6hVrRPodZ i4IyFfMzEV62sUHPfbd0JRpNy9lndsChuqH0mA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:55:10 2025 by rpki-client