$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32362e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32362e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: fyXKcmQ44xoKAJwfE5g703N0IauGNeetsLE1tqf52cQ= Subject key identifier: 1A:4E:11:D2:BD:10:76:82:FD:72:1F:78:03:1A:B3:0D:EA:87:06:4E Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 690D0CC2AE00B8D622C14DCF7B20B160E8FD83 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32362e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:02 +0000 ROA not before: Mon 02 Jun 2025 00:58:02 +0000 ROA not after: Mon 01 Jun 2026 01:03:02 +0000 asID: 9794 IP address blocks: 202.148.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0d:0c:c2:ae:00:b8:d6:22:c1:4d:cf:7b:20:b1:60:e8:fd:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:02 2025 GMT Not After : Jun 1 01:03:02 2026 GMT Subject: CN=1A4E11D2BD107682FD721F78031AB30DEA87064E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:d6:b4:20:83:4b:be:87:f3:cd:fd:75:1b: 72:81:f9:5c:b9:45:e2:8c:9e:be:45:1d:e9:38:88: ff:dc:88:72:60:c8:73:85:2a:f6:1d:e3:b5:35:5d: d4:9c:60:5b:db:df:7a:74:4d:eb:6e:57:e9:20:62: 75:71:06:fc:63:39:8f:91:2a:82:a0:37:09:46:42: d8:77:35:c4:04:3e:d0:76:90:3c:4a:a0:13:98:2a: bf:66:2e:24:1a:da:5e:fa:75:66:ba:f9:d1:59:a6: 93:a9:54:5e:f3:d7:bd:48:2a:cd:b8:40:6d:d0:7d: aa:c0:12:d9:82:d0:a6:72:b0:51:34:52:9d:86:4c: c0:b6:61:bf:9b:74:e0:30:62:bb:46:62:16:85:7c: 38:c0:f5:3b:f3:df:3e:b5:fd:19:b1:61:1c:13:4c: e7:96:16:97:03:aa:c1:a3:88:53:cd:62:aa:43:f1: 9b:51:52:92:f5:14:1b:23:4d:29:0e:d9:20:10:3d: b8:c5:8a:c9:fd:2f:8b:f7:47:7f:e6:fb:03:c4:0d: bd:da:9d:1a:72:b9:53:06:c6:6b:34:bb:72:2e:71: d2:0c:b0:db:93:de:5c:f6:a1:31:91:7c:68:50:c3: cd:85:92:87:6f:49:82:79:84:e7:a6:22:da:9f:e4: 6d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4E:11:D2:BD:10:76:82:FD:72:1F:78:03:1A:B3:0D:EA:87:06:4E X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32362e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.26.0/24 Signature Algorithm: sha256WithRSAEncryption a5:a3:1c:47:b7:23:a0:34:e9:bc:0c:8b:c2:46:cd:98:e1:ce: 87:ef:3c:e8:53:24:2a:3c:5c:d2:05:1f:da:c8:3b:9e:80:0d: 33:86:d5:0d:ca:06:44:a4:bf:ef:a2:c5:af:de:06:90:99:33: 03:aa:94:3b:2e:10:97:2d:0a:4a:6e:5a:39:75:c6:27:78:c8: 47:4d:40:c7:54:be:50:16:8c:58:24:0e:f0:7d:22:f6:5e:70: 9c:14:5e:61:08:de:a0:14:59:6e:a6:5a:df:72:a2:31:16:9a: 1d:8d:ef:c5:34:a3:e8:e4:2b:8d:9b:81:de:16:86:84:bc:04: d2:77:26:23:fe:91:74:23:a4:b9:b4:95:6d:f3:88:00:b6:cc: f1:6f:75:cd:0b:d1:50:2c:ac:66:33:3f:8d:84:bd:4a:a7:aa: 36:05:f9:63:20:2e:b0:88:35:b3:cb:86:f1:e8:c2:b5:50:05: 7c:f2:6d:a3:e0:b0:a7:6e:00:76:90:9a:6b:db:85:26:e3:67: ff:94:8d:1d:b8:6d:4a:c2:1e:70:23:a2:49:46:6a:4b:f3:ec: e8:40:0e:a3:ca:34:58:53:e1:0b:e1:b4:16:be:61:05:67:ca: 94:75:d7:92:1c:35:6d:86:aa:1d:79:2f:0e:34:19:2d:35:90: ae:f4:ba:03 -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgITaQ0Mwq4AuNYiwU3PeyCxYOj9gzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwOUE2RjFGQTRGQzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2 M0NGMzYxMB4XDTI1MDYwMjAwNTgwMloXDTI2MDYwMTAxMDMwMlowMzExMC8GA1UE AxMoMUE0RTExRDJCRDEwNzY4MkZENzIxRjc4MDMxQUIzMERFQTg3MDY0RTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMA31rQgg0u+h/PN/XUbcoH5XLlF 4oyevkUd6TiI/9yIcmDIc4Uq9h3jtTVd1JxgW9vfenRN625X6SBidXEG/GM5j5Eq gqA3CUZC2Hc1xAQ+0HaQPEqgE5gqv2YuJBraXvp1Zrr50Vmmk6lUXvPXvUgqzbhA bdB9qsAS2YLQpnKwUTRSnYZMwLZhv5t04DBiu0ZiFoV8OMD1O/PfPrX9GbFhHBNM 55YWlwOqwaOIU81iqkPxm1FSkvUUGyNNKQ7ZIBA9uMWKyf0vi/dHf+b7A8QNvdqd GnK5UwbGazS7ci5x0gyw25PeXPahMZF8aFDDzYWSh29JgnmE56Yi2p/kbbkCAwEA AaOCAjAwggIsMB0GA1UdDgQWBBQaThHSvRB2gv1yH3gDGrMN6ocGTjAfBgNVHSME GDAWgBQJpvH6T8Uy1rThNGL8I0ycdjzzYTAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Yz NGVjYzQwLTZiODQtNDllOC1iNjBiLTZlOTkwNDEyOGNhOC8wLzA5QTZGMUZBNEZD NTMyRDZCNEUxMzQ2MkZDMjM0QzlDNzYzQ0YzNjEuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi8wOUE2RjFGQTRGQzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NG MzYxLmNlcjCBoAYIKwYBBQUHAQsEgZMwgZAwgY0GCCsGAQUFBzALhoGAcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTMyMzYyZTMwMmYzMjM0 MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGjANBgkqhkiG9w0B AQsFAAOCAQEApaMcR7cjoDTpvAyLwkbNmOHOh+886FMkKjxc0gUf2sg7noANM4bV DcoGRKS/76LFr94GkJkzA6qUOy4Qly0KSm5aOXXGJ3jIR01Ax1S+UBaMWCQO8H0i 9l5wnBReYQjeoBRZbqZa33KiMRaaHY3vxTSj6OQrjZuB3haGhLwE0ncmI/6RdCOk ubSVbfOIALbM8W91zQvRUCysZjM/jYS9SqeqNgX5YyAusIg1s8uG8ejCtVAFfPJt o+Cwp24AdpCaa9uFJuNn/5SNHbhtSsIecCOiSUZqS/Ps6EAOo8o0WFPhC+G0Fr5h BWfKlHXXkhw1bYaqHXkvDjQZLTWQrvS6Aw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:16 2025 by rpki-client