$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa File: 3230322e3134382e33302e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: zagLKD93sG8kXxrh+cCMPIG9WwmP/Eidx5ZCVpbEjT4= Subject key identifier: B0:06:43:1D:BB:A9:E4:87:EE:A2:27:AB:10:B2:A4:48:0A:50:C7:98 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 22AAC6252DAADAC288E7D6E173F7108A6985037E Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:07 +0000 ROA not before: Mon 02 Jun 2025 00:58:07 +0000 ROA not after: Mon 01 Jun 2026 01:03:07 +0000 asID: 38778 IP address blocks: 202.148.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:aa:c6:25:2d:aa:da:c2:88:e7:d6:e1:73:f7:10:8a:69:85:03:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:07 2025 GMT Not After : Jun 1 01:03:07 2026 GMT Subject: CN=B006431DBBA9E487EEA227AB10B2A4480A50C798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cf:92:a9:58:49:55:1d:a2:1d:34:69:c3:8e: b4:de:a3:82:0a:c5:95:9f:aa:a6:cc:3c:77:52:01: c7:64:7d:d0:66:85:cb:25:42:4f:8a:79:d4:95:d6: a1:ee:3e:10:44:2b:ec:2a:bb:a5:2b:87:d5:e9:51: 2a:23:c6:c9:58:9e:82:4a:eb:cc:f8:54:42:a6:8f: 39:b1:bb:e7:80:80:d9:27:4e:d5:38:c0:13:9b:a5: 23:fd:d2:6a:db:e2:16:e2:01:cd:9e:f8:02:05:c7: 91:42:76:0b:6e:03:bb:02:b6:64:27:15:ea:df:2c: cd:83:a0:31:3b:de:cf:05:d8:13:8f:09:01:be:84: c5:4e:ed:8f:ff:a0:0a:91:31:f7:c7:b6:82:cf:f3: 11:f9:cf:b2:e2:1f:f2:df:ff:c0:c8:0b:e8:b0:13: 91:c7:ba:23:66:ae:f5:07:83:3e:59:1d:f5:f4:6d: 2a:1a:7f:d7:74:49:6b:8f:af:1a:ab:38:20:81:48: 3c:25:bb:5c:da:9a:f6:a2:a0:eb:76:53:3a:c0:33: e3:32:9d:88:12:c0:75:9d:90:0a:ed:2f:fa:d7:78: 1d:0e:85:75:e1:67:56:25:e8:86:22:93:66:79:89: b0:84:7d:8b:7c:9a:09:b3:1f:ec:3a:38:c4:25:00: 3f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:06:43:1D:BB:A9:E4:87:EE:A2:27:AB:10:B2:A4:48:0A:50:C7:98 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.30.0/23 Signature Algorithm: sha256WithRSAEncryption af:9f:e3:d4:a9:0b:73:8c:09:4e:db:01:5e:76:c6:b9:ca:f2: e8:c8:7c:da:81:98:09:c1:5c:d8:8c:71:db:39:eb:66:c6:86: b0:7b:e9:a5:42:2f:5b:81:98:82:cd:07:01:9a:2d:99:94:53: 72:2c:72:f1:79:08:d1:97:a9:e7:80:5b:b7:52:ed:fa:60:96: e0:09:46:5a:9e:31:e4:6e:3e:0d:15:3c:ca:8f:79:41:72:65: 9f:35:03:4e:5d:83:30:a2:8a:07:f6:b8:05:b6:9f:50:64:66: 7e:3d:a9:8e:b0:48:2d:ba:b1:60:e9:59:a9:82:2b:4f:c6:a7: 24:c6:4a:23:2f:d5:56:18:55:02:8f:3e:66:b4:2a:ef:89:4d: 88:4f:14:e4:30:64:5c:5b:0a:17:1a:0c:d3:69:7f:5b:88:b2: bd:34:48:93:4f:1c:76:a6:e2:8b:6c:62:d1:cf:0f:f8:d4:6b: cc:c7:04:be:67:78:0a:d0:a1:b7:cb:fa:24:9b:57:0b:3e:42: 53:d5:9f:e0:56:49:f5:95:a2:b8:14:e5:71:11:c3:c4:6c:7a: eb:41:7b:12:ea:5f:ac:be:a7:12:20:2a:75:64:1f:82:86:95: 82:c2:ec:68:44:cf:75:dc:41:d7:4c:87:cc:9c:d9:db:1b:33: 99:cd:2e:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIqrGJS2q2sKI59bhc/cQimmFA34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDdaFw0yNjA2MDEwMTAzMDdaMDMxMTAvBgNV BAMTKEIwMDY0MzFEQkJBOUU0ODdFRUEyMjdBQjEwQjJBNDQ4MEE1MEM3OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLz5KpWElVHaIdNGnDjrTeo4IK xZWfqqbMPHdSAcdkfdBmhcslQk+KedSV1qHuPhBEK+wqu6Urh9XpUSojxslYnoJK 68z4VEKmjzmxu+eAgNknTtU4wBObpSP90mrb4hbiAc2e+AIFx5FCdgtuA7sCtmQn FerfLM2DoDE73s8F2BOPCQG+hMVO7Y//oAqRMffHtoLP8xH5z7LiH/Lf/8DIC+iw E5HHuiNmrvUHgz5ZHfX0bSoaf9d0SWuPrxqrOCCBSDwlu1zamvaioOt2UzrAM+My nYgSwHWdkArtL/rXeB0OhXXhZ1Yl6IYik2Z5ibCEfYt8mgmzH+w6OMQlAD9BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUsAZDHbup5IfuoierELKkSApQx5gwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcqUHjANBgkqhkiG 9w0BAQsFAAOCAQEAr5/j1KkLc4wJTtsBXnbGucry6Mh82oGYCcFc2Ixx2znrZsaG sHvppUIvW4GYgs0HAZotmZRTcixy8XkI0Zep54Bbt1Lt+mCW4AlGWp4x5G4+DRU8 yo95QXJlnzUDTl2DMKKKB/a4BbafUGRmfj2pjrBILbqxYOlZqYIrT8anJMZKIy/V VhhVAo8+ZrQq74lNiE8U5DBkXFsKFxoM02l/W4iyvTRIk08cdqbii2xi0c8P+NRr zMcEvmd4CtCht8v6JJtXCz5CU9Wf4FZJ9ZWiuBTlcRHDxGx660F7EupfrL6nEiAq dWQfgoaVgsLsaETPddxB10yHzJzZ2xszmc0uMg== -----END CERTIFICATE-----Generated at Sun Jun 8 12:45:12 2025 by rpki-client