$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32372e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32372e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: G48/30Naa2DK9pfolZXtCXZIQnSJHO14K5C2KiYp/Co= Subject key identifier: 17:BC:5E:9B:0C:52:3F:6C:52:72:B7:EF:DC:1D:FC:D7:86:F6:84:14 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 10CC7A13B35F049599DF155623B0FA8C4D76FE47 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32372e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:00 +0000 ROA not before: Mon 02 Jun 2025 00:58:00 +0000 ROA not after: Mon 01 Jun 2026 01:03:00 +0000 asID: 9794 IP address blocks: 202.148.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:cc:7a:13:b3:5f:04:95:99:df:15:56:23:b0:fa:8c:4d:76:fe:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:00 2025 GMT Not After : Jun 1 01:03:00 2026 GMT Subject: CN=17BC5E9B0C523F6C5272B7EFDC1DFCD786F68414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e9:9f:51:4f:70:71:9c:5c:42:e7:3c:36:ee: 9e:f1:ca:20:e7:6f:9c:86:73:3f:ee:40:5f:cd:16: 64:55:6c:29:c5:18:c1:16:c1:28:79:d3:59:bc:d3: fb:36:74:8b:47:2b:93:48:7e:2f:f1:57:6d:d1:16: d8:eb:f6:78:26:9c:e4:58:b1:8e:3f:e2:a5:43:bb: 74:8c:89:b0:c2:90:6f:1f:cd:fe:f5:b2:30:d9:8c: f2:c4:ca:d3:bd:f7:d4:7c:dc:2e:aa:49:74:93:00: 0c:7a:84:e0:0f:81:31:de:9e:77:c9:f0:f8:34:9a: f7:e8:84:83:98:36:b1:4c:75:f1:a8:3b:ab:a3:d0: 44:ba:10:9d:36:29:be:ee:24:07:8d:ea:f5:4c:c0: 95:bf:f8:f5:67:98:50:b2:cb:2b:87:96:4f:11:d8: 37:48:20:79:21:83:28:19:0f:bf:97:41:06:9a:c4: 8d:22:78:7c:91:6f:c7:b6:75:2a:a4:a4:70:ac:47: 9b:16:be:66:0d:a5:f4:a9:82:a3:92:6b:7c:0d:3d: ea:7e:8d:82:4c:ff:65:ad:09:13:e7:6c:01:e3:52: 65:a1:d6:27:3c:ec:d9:28:a3:ca:19:ec:a9:e2:54: d0:a6:81:23:2b:a7:ab:90:8a:3a:9b:2a:fa:fd:0f: 5d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:BC:5E:9B:0C:52:3F:6C:52:72:B7:EF:DC:1D:FC:D7:86:F6:84:14 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32372e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.27.0/24 Signature Algorithm: sha256WithRSAEncryption 88:09:71:86:9a:bd:e6:3b:1d:75:f0:9b:19:18:b8:d9:62:15: 0c:1c:b3:75:54:2a:2b:98:3c:52:fc:ee:44:03:1e:ac:9c:73: fc:e3:b4:f4:0f:7b:b7:27:e2:7f:14:b5:b2:99:17:4a:a3:2c: a5:cf:16:06:e2:d9:c3:9f:23:55:37:72:ef:a5:d5:c8:28:77: 9a:11:ea:d2:7f:ad:44:92:37:aa:59:81:29:d2:46:ba:d9:98: f3:99:c3:62:d5:1b:fe:8f:b2:ba:b0:f5:39:e7:19:62:65:8b: 64:33:48:35:e6:04:70:cd:6a:c5:25:72:9c:e3:38:3a:99:92: 1c:ed:b1:2f:a9:a5:48:37:f1:d2:5c:78:2a:14:08:2e:b2:a8: 9a:ce:cf:7b:7f:1c:aa:77:91:6b:64:21:e9:d0:76:95:d2:1d: 9a:b3:15:90:b6:12:b5:d6:eb:e2:0e:af:f9:63:35:d8:31:fe: 64:50:84:64:cd:ed:4f:8f:77:13:5c:32:01:5d:84:3e:d1:a9: 77:f0:56:4e:cf:90:85:48:64:3b:59:c3:f6:7e:c5:89:12:0a: 83:bd:f8:fc:63:98:c3:da:ed:bf:39:82:0e:ec:93:07:6f:e0: bc:eb:b8:5b:dd:ed:fc:42:f5:75:4b:6e:b2:b8:dd:4a:19:ce: 49:a2:f5:b9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEMx6E7NfBJWZ3xVWI7D6jE12/kcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDBaFw0yNjA2MDEwMTAzMDBaMDMxMTAvBgNV BAMTKDE3QkM1RTlCMEM1MjNGNkM1MjcyQjdFRkRDMURGQ0Q3ODZGNjg0MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs6Z9RT3BxnFxC5zw27p7xyiDn b5yGcz/uQF/NFmRVbCnFGMEWwSh501m80/s2dItHK5NIfi/xV23RFtjr9ngmnORY sY4/4qVDu3SMibDCkG8fzf71sjDZjPLEytO999R83C6qSXSTAAx6hOAPgTHennfJ 8Pg0mvfohIOYNrFMdfGoO6uj0ES6EJ02Kb7uJAeN6vVMwJW/+PVnmFCyyyuHlk8R 2DdIIHkhgygZD7+XQQaaxI0ieHyRb8e2dSqkpHCsR5sWvmYNpfSpgqOSa3wNPep+ jYJM/2WtCRPnbAHjUmWh1ic87Nkoo8oZ7KniVNCmgSMrp6uQijqbKvr9D11fAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUF7xemwxSP2xScrfv3B3814b2hBQwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBswDQYJKoZIhvcN AQELBQADggEBAIgJcYaaveY7HXXwmxkYuNliFQwcs3VUKiuYPFL87kQDHqycc/zj tPQPe7cn4n8UtbKZF0qjLKXPFgbi2cOfI1U3cu+l1cgod5oR6tJ/rUSSN6pZgSnS RrrZmPOZw2LVG/6Psrqw9TnnGWJli2QzSDXmBHDNasUlcpzjODqZkhztsS+ppUg3 8dJceCoUCC6yqJrOz3t/HKp3kWtkIenQdpXSHZqzFZC2ErXW6+IOr/ljNdgx/mRQ hGTN7U+PdxNcMgFdhD7RqXfwVk7PkIVIZDtZw/Z+xYkSCoO9+PxjmMPa7b85gg7s kwdv4LzruFvd7fxC9XVLbrK43UoZzkmi9bk= -----END CERTIFICATE-----Generated at Thu Jun 5 18:36:31 2025 by rpki-client