$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: S14x2MJnXsQ6JOOm5+LYF7jfNX/7/71bfwEDpvL/N7E= Subject key identifier: 65:44:B7:9A:69:61:32:08:AD:A4:18:93:49:01:73:AF:B5:49:0F:45 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 0D50ECAE40EBEBA92E523029E21D8ED15968D62F Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:01 +0000 ROA not before: Mon 02 Jun 2025 00:58:01 +0000 ROA not after: Mon 01 Jun 2026 01:03:01 +0000 asID: 9794 IP address blocks: 202.148.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:50:ec:ae:40:eb:eb:a9:2e:52:30:29:e2:1d:8e:d1:59:68:d6:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:01 2025 GMT Not After : Jun 1 01:03:01 2026 GMT Subject: CN=6544B79A69613208ADA41893490173AFB5490F45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:dc:90:ef:91:11:f1:12:0a:6d:dc:4d:e0:ba: e7:06:76:9b:8b:ec:71:1c:00:58:45:0a:34:36:8b: 1b:41:6a:ab:8f:36:40:29:c8:d3:4e:f8:3c:ac:4c: 1f:51:0d:04:ed:2b:10:9e:f0:0b:3c:40:fa:3b:93: 93:35:fc:8c:9d:e6:99:c5:62:8d:44:40:75:39:49: a9:d6:3e:aa:ad:60:7c:fd:7f:c1:36:fc:fa:fc:58: 0f:e5:ea:b7:22:a1:07:6f:45:82:43:8d:92:70:13: 04:7f:aa:dd:0d:f9:27:91:49:d8:a2:82:ca:00:07: f1:46:39:7d:e9:40:95:3b:a2:15:80:e1:fe:45:5d: a8:df:b0:ac:ff:ed:a1:70:45:73:73:fb:33:8e:84: b6:0a:d8:c7:07:0e:28:2b:9b:83:41:02:7c:33:40: a2:13:e3:8e:47:8e:8b:61:5f:2f:53:f5:ea:95:7f: c4:4f:d6:6a:ac:2d:d7:f0:5b:e0:14:3f:07:8f:56: d7:5e:cc:1b:62:58:4f:a7:b4:35:c5:ec:3c:bb:fb: d4:40:7c:b7:7d:58:00:26:33:a6:84:4a:3e:9e:2f: 2c:f6:9b:bf:7e:cd:28:14:c6:ae:e7:a4:bc:10:26: 24:dd:c1:8c:4b:b9:c2:c9:b0:b0:35:02:83:24:02: fd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:44:B7:9A:69:61:32:08:AD:A4:18:93:49:01:73:AF:B5:49:0F:45 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.3.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:aa:c3:67:c3:12:aa:68:1f:76:7e:f2:15:26:5b:01:ae:af: fc:62:3f:3f:47:b7:a8:62:0f:8a:c7:46:6d:c0:a6:8e:b8:7f: ab:dd:e1:3b:72:4c:be:e8:68:3a:0a:5a:ac:92:70:35:bb:d6: 05:a4:c5:96:f3:78:60:39:5f:fc:39:ea:a0:2a:2f:8c:f9:cf: b7:26:8b:cd:db:8e:d4:67:82:d9:b7:16:c1:c1:54:b5:78:70: c4:9d:c1:35:08:8d:ee:8e:ec:f2:d0:cc:b0:79:0f:41:ba:b8: c2:5a:1a:c5:65:f4:d6:91:28:a7:36:46:8d:b5:e3:78:02:93: e8:e6:0f:ac:a3:66:a6:ac:44:4f:5d:6c:2f:8b:ff:3d:c7:d5: d8:ab:66:57:e7:5f:18:02:af:63:ca:cb:f8:39:3c:47:12:1f: d9:e3:81:f0:6f:eb:ee:05:2f:77:87:15:d8:a6:6b:9a:62:80: 95:fd:16:db:c8:77:0c:f0:e4:71:51:f9:b0:0a:f4:9b:24:17: ef:fd:64:9e:83:e3:56:ff:b0:91:b6:94:39:0b:20:e9:1a:6b: 9c:2b:c1:cc:98:c2:89:e5:55:43:66:89:22:37:22:8a:9e:2b: a7:d0:68:30:d2:a5:eb:69:46:c0:57:44:eb:8d:06:2f:d5:15: d7:54:70:36 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUDVDsrkDr66kuUjAp4h2O0Vlo1i8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDFaFw0yNjA2MDEwMTAzMDFaMDMxMTAvBgNV BAMTKDY1NDRCNzlBNjk2MTMyMDhBREE0MTg5MzQ5MDE3M0FGQjU0OTBGNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl3JDvkRHxEgpt3E3guucGdpuL 7HEcAFhFCjQ2ixtBaquPNkApyNNO+DysTB9RDQTtKxCe8As8QPo7k5M1/Iyd5pnF Yo1EQHU5SanWPqqtYHz9f8E2/Pr8WA/l6rcioQdvRYJDjZJwEwR/qt0N+SeRSdii gsoAB/FGOX3pQJU7ohWA4f5FXajfsKz/7aFwRXNz+zOOhLYK2McHDigrm4NBAnwz QKIT445HjothXy9T9eqVf8RP1mqsLdfwW+AUPwePVtdezBtiWE+ntDXF7Dy7+9RA fLd9WAAmM6aESj6eLyz2m79+zSgUxq7npLwQJiTdwYxLucLJsLA1AoMkAv29AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUZUS3mmlhMgitpBiTSQFzr7VJD0UwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAMwDQYJKoZIhvcNAQEL BQADggEBADyqw2fDEqpoH3Z+8hUmWwGur/xiPz9Ht6hiD4rHRm3Apo64f6vd4Tty TL7oaDoKWqyScDW71gWkxZbzeGA5X/w56qAqL4z5z7cmi83bjtRngtm3FsHBVLV4 cMSdwTUIje6O7PLQzLB5D0G6uMJaGsVl9NaRKKc2Ro2143gCk+jmD6yjZqasRE9d bC+L/z3H1dirZlfnXxgCr2PKy/g5PEcSH9njgfBv6+4FL3eHFdima5pigJX9FtvI dwzw5HFR+bAK9JskF+/9ZJ6D41b/sJG2lDkLIOkaa5wrwcyYwonlVUNmiSI3Ioqe K6fQaDDSpetpRsBXROuNBi/VFddUcDY= -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:17 2025 by rpki-client