$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32382e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: elTisdTgqk/Q23xJeyupgt7Q6tZtPeAIOyimugQ53EU= Subject key identifier: 43:26:8A:96:89:4C:1C:B6:83:01:50:BE:BC:84:E7:B1:5D:A3:B1:D3 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6A075801CF3E7792BEA39745802386A7C6F4AECC Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 02:00:01 +0000 ROA not before: Mon 02 Jun 2025 01:55:01 +0000 ROA not after: Mon 01 Jun 2026 02:00:01 +0000 asID: 9794 IP address blocks: 202.148.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:07:58:01:cf:3e:77:92:be:a3:97:45:80:23:86:a7:c6:f4:ae:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:01 2025 GMT Not After : Jun 1 02:00:01 2026 GMT Subject: CN=43268A96894C1CB6830150BEBC84E7B15DA3B1D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c8:dd:58:cd:a3:48:07:82:39:d7:5f:b4:41: f5:6d:53:e4:7a:fe:b2:89:a7:3f:82:ff:26:a6:40: b6:23:0b:00:1b:e2:b1:30:d7:be:72:ab:26:a5:f3: 10:d3:ca:2f:64:cb:c3:5c:5d:6c:d6:d3:26:cc:18: ee:5a:c1:15:02:83:f7:45:f2:77:bf:74:f2:78:81: 35:c7:82:c0:ac:38:26:78:56:6b:41:68:ee:a8:f4: 8e:5b:a5:b0:94:7e:28:50:e7:fc:42:ae:8c:78:58: fd:77:a6:1a:9d:e8:65:cf:c4:c7:e4:3d:95:6c:4d: 66:e2:95:44:3e:5f:24:be:30:56:fd:a9:f3:b1:4d: 3a:49:a2:73:ad:76:49:00:be:35:e5:7c:df:c3:71: 0a:62:fb:2b:cb:7b:4b:1f:19:86:17:99:1b:eb:b3: d1:1e:5d:ad:b2:4d:46:86:f9:7f:e5:03:2c:2b:ff: 6c:79:be:bc:b2:eb:f5:06:39:6a:02:fe:45:dd:98: 5d:77:da:59:75:37:0f:ae:81:de:b8:8e:fc:2e:22: fd:3c:ad:2d:83:aa:91:b9:00:7b:f1:fd:83:e2:e5: 5c:d7:04:2a:61:31:ab:b8:0b:1b:2d:31:ff:d7:e1: 3c:ad:2b:ad:80:78:9b:1f:8a:f6:94:5d:7f:18:f3: 13:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:26:8A:96:89:4C:1C:B6:83:01:50:BE:BC:84:E7:B1:5D:A3:B1:D3 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32382e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.28.0/24 Signature Algorithm: sha256WithRSAEncryption 96:91:c5:ab:b6:6b:c8:e1:fc:91:25:ea:21:12:b4:26:a0:79: 28:f6:16:f0:eb:70:11:d8:f0:a8:b9:2d:f9:57:ba:83:ae:9f: 43:ad:b0:b9:ee:64:8f:66:45:d9:1a:20:22:3d:45:5b:2b:2a: 37:46:14:ca:27:d0:ae:82:ec:bf:38:a5:eb:02:1a:a1:8a:6f: 14:97:98:7d:1d:0d:57:5c:1d:43:62:ef:05:63:bc:73:5e:ac: c2:e8:d2:84:04:bc:bb:ec:73:9b:04:d0:77:9f:3e:af:a9:e7: 1d:0d:6f:9e:1d:88:01:51:6e:e5:4c:75:45:63:09:37:14:a5: 0b:36:3a:07:8e:f0:2f:77:da:1c:20:1a:70:65:35:d5:6f:70: a5:55:77:07:c7:37:bd:db:04:da:bc:a1:37:c0:2f:46:da:ba: 5c:a5:64:c6:9d:aa:50:7f:d2:59:c1:18:02:b5:05:f6:35:50: a0:7e:ce:bc:e5:1b:85:32:58:b9:da:1e:c8:14:73:57:19:fb: 34:8b:35:a1:20:4d:65:9e:89:be:ad:fd:dd:cf:53:20:f3:42: e7:66:89:8b:0e:ca:9e:cb:c2:81:0b:af:a3:7c:23:45:bd:48: 99:16:1c:f5:ac:fb:e3:e5:57:3e:09:66:77:07:b7:bf:af:33: e1:0d:88:87 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUagdYAc8+d5K+o5dFgCOGp8b0rswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDFaFw0yNjA2MDEwMjAwMDFaMDMxMTAvBgNV BAMTKDQzMjY4QTk2ODk0QzFDQjY4MzAxNTBCRUJDODRFN0IxNURBM0IxRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2yN1YzaNIB4I511+0QfVtU+R6 /rKJpz+C/yamQLYjCwAb4rEw175yqyal8xDTyi9ky8NcXWzW0ybMGO5awRUCg/dF 8ne/dPJ4gTXHgsCsOCZ4VmtBaO6o9I5bpbCUfihQ5/xCrox4WP13phqd6GXPxMfk PZVsTWbilUQ+XyS+MFb9qfOxTTpJonOtdkkAvjXlfN/DcQpi+yvLe0sfGYYXmRvr s9EeXa2yTUaG+X/lAywr/2x5vryy6/UGOWoC/kXdmF132ll1Nw+ugd64jvwuIv08 rS2DqpG5AHvx/YPi5VzXBCphMau4CxstMf/X4TytK62AeJsfivaUXX8Y8xNrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQyaKlolMHLaDAVC+vITnsV2jsdMwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlBwwDQYJKoZIhvcN AQELBQADggEBAJaRxau2a8jh/JEl6iEStCageSj2FvDrcBHY8Ki5LflXuoOun0Ot sLnuZI9mRdkaICI9RVsrKjdGFMon0K6C7L84pesCGqGKbxSXmH0dDVdcHUNi7wVj vHNerMLo0oQEvLvsc5sE0HefPq+p5x0Nb54diAFRbuVMdUVjCTcUpQs2OgeO8C93 2hwgGnBlNdVvcKVVdwfHN73bBNq8oTfAL0baulylZMadqlB/0lnBGAK1BfY1UKB+ zrzlG4UyWLnaHsgUc1cZ+zSLNaEgTWWeib6t/d3PUyDzQudmiYsOyp7LwoELr6N8 I0W9SJkWHPWs++PlVz4JZncHt7+vM+ENiIc= -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:27 2025 by rpki-client