$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e32392e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 4Bav+DGogutOCBv0RbCQxTzCjDX0QAdw/lKYDg/o1h8= Subject key identifier: 3C:D7:F2:E8:F6:2F:34:1B:7E:49:CD:8D:BB:16:0C:A0:27:42:7B:11 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 6EEA6DE828BB6A6E4D24A86636A0055B80FC1911 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:04 +0000 ROA not before: Mon 02 Jun 2025 00:58:04 +0000 ROA not after: Mon 01 Jun 2026 01:03:04 +0000 asID: 9794 IP address blocks: 202.148.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ea:6d:e8:28:bb:6a:6e:4d:24:a8:66:36:a0:05:5b:80:fc:19:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:04 2025 GMT Not After : Jun 1 01:03:04 2026 GMT Subject: CN=3CD7F2E8F62F341B7E49CD8DBB160CA027427B11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f8:4d:47:59:ed:37:76:33:86:99:d6:8e:9c: 9a:ad:2f:4b:c0:bf:7d:df:6c:61:4c:75:f1:85:ad: 6b:64:a0:5a:af:a4:41:30:a9:1c:c8:ca:2a:de:b5: f1:26:dd:ba:34:78:90:bd:ac:da:96:47:0b:0b:e7: a4:c3:d4:12:95:bf:29:f0:2f:83:9d:92:72:06:af: 23:07:7b:9c:1b:87:f6:7b:78:0b:89:48:90:f3:d1: 81:83:91:50:52:79:bd:94:73:f3:98:85:ec:13:89: c0:90:d6:01:78:f4:e3:be:d7:60:3d:64:f5:38:3c: 84:50:52:4d:27:f3:b0:d6:15:60:d3:f1:1a:91:53: 02:a3:27:e4:ce:2b:8b:bc:c8:5a:46:8d:4c:54:20: 0f:d9:e2:59:62:99:ca:36:6e:14:61:61:ec:25:19: ce:00:e0:7f:e1:5f:2b:4f:6f:5c:28:dc:9f:da:0e: c7:c7:5a:7a:ac:7d:5e:cb:a7:cf:47:08:bc:2a:d2: 01:db:ce:a9:67:b6:40:aa:f9:93:9f:4b:7f:74:6a: 27:fd:4c:58:38:68:3d:d8:3c:7d:d3:8c:0b:23:a8: 1a:26:5c:5e:b0:58:0d:b9:2c:60:bc:ad:f1:15:aa: 00:73:5a:a3:f4:bb:46:89:ca:73:e7:0d:df:cb:ec: 9e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D7:F2:E8:F6:2F:34:1B:7E:49:CD:8D:BB:16:0C:A0:27:42:7B:11 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32392e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.29.0/24 Signature Algorithm: sha256WithRSAEncryption 92:b7:64:a1:9f:f5:5f:1c:ff:fa:6d:a3:ca:43:9b:5e:54:a4: a8:36:64:18:3d:70:e0:43:cb:69:50:e7:cb:df:65:b7:e5:da: 2f:d5:75:8c:86:97:45:be:f8:2e:68:10:77:ef:2d:12:22:da: c1:5f:9e:2d:38:5d:3c:46:64:a1:e9:d5:f6:b1:a7:09:1a:ff: 0b:cd:7c:55:66:ac:d1:b7:aa:81:d0:e6:80:15:3c:7c:59:be: 16:e8:e1:60:07:5b:8f:2f:71:d1:cd:1b:9b:f0:5a:ca:81:fd: 75:52:b2:42:27:17:f0:61:64:72:c3:31:3c:5b:df:4e:0d:ec: ee:b0:aa:9e:29:9f:e4:4d:a0:78:17:c4:df:e5:9c:4e:0e:22: fb:3b:6d:bf:e5:dc:9d:17:92:a0:29:f5:82:bb:4f:51:4c:f5: 70:22:1e:6d:69:f4:fa:02:38:28:51:2e:d8:6b:02:47:ee:00: fa:9a:67:f0:b4:c8:92:24:71:4b:5e:7e:d1:9a:3c:80:b9:7a: 6b:b0:ad:5c:ac:5d:d2:dd:6c:9d:3d:ea:6a:a7:df:fe:71:99: b3:0c:74:c4:4a:e0:30:a0:0e:69:2f:3f:96:72:36:ab:e0:b0: 67:7a:ff:06:7e:59:8f:e8:80:aa:42:24:e9:a5:e2:11:83:9c: 5d:d8:c7:89 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbupt6Ci7am5NJKhmNqAFW4D8GREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDRaFw0yNjA2MDEwMTAzMDRaMDMxMTAvBgNV BAMTKDNDRDdGMkU4RjYyRjM0MUI3RTQ5Q0Q4REJCMTYwQ0EwMjc0MjdCMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz+E1HWe03djOGmdaOnJqtL0vA v33fbGFMdfGFrWtkoFqvpEEwqRzIyiretfEm3bo0eJC9rNqWRwsL56TD1BKVvynw L4OdknIGryMHe5wbh/Z7eAuJSJDz0YGDkVBSeb2Uc/OYhewTicCQ1gF49OO+12A9 ZPU4PIRQUk0n87DWFWDT8RqRUwKjJ+TOK4u8yFpGjUxUIA/Z4llimco2bhRhYewl Gc4A4H/hXytPb1wo3J/aDsfHWnqsfV7Lp89HCLwq0gHbzqlntkCq+ZOfS390aif9 TFg4aD3YPH3TjAsjqBomXF6wWA25LGC8rfEVqgBzWqP0u0aJynPnDd/L7J6/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUPNfy6PYvNBt+Sc2NuxYMoCdCexEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlB0wDQYJKoZIhvcN AQELBQADggEBAJK3ZKGf9V8c//pto8pDm15UpKg2ZBg9cOBDy2lQ58vfZbfl2i/V dYyGl0W++C5oEHfvLRIi2sFfni04XTxGZKHp1faxpwka/wvNfFVmrNG3qoHQ5oAV PHxZvhbo4WAHW48vcdHNG5vwWsqB/XVSskInF/BhZHLDMTxb304N7O6wqp4pn+RN oHgXxN/lnE4OIvs7bb/l3J0XkqAp9YK7T1FM9XAiHm1p9PoCOChRLthrAkfuAPqa Z/C0yJIkcUteftGaPIC5emuwrVysXdLdbJ096mqn3/5xmbMMdMRK4DCgDmkvP5Zy NqvgsGd6/wZ+WY/ogKpCJOml4hGDnF3Yx4k= -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:04 2025 by rpki-client