$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e33302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: lkFhb8YBOanfU0Qls9GsGoH/3jFHil9iMwvHSjpHciE= Subject key identifier: E9:E8:E2:07:FF:76:3B:54:E7:C3:DE:3B:1C:94:82:E1:D6:C7:6A:9D Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 4EAEA9358D17AEC228A9C0B142FF91FC4FC89077 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 02:00:00 +0000 ROA not before: Mon 02 Jun 2025 01:55:00 +0000 ROA not after: Mon 01 Jun 2026 02:00:00 +0000 asID: 38778 IP address blocks: 202.148.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ae:a9:35:8d:17:ae:c2:28:a9:c0:b1:42:ff:91:fc:4f:c8:90:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:00 2025 GMT Not After : Jun 1 02:00:00 2026 GMT Subject: CN=E9E8E207FF763B54E7C3DE3B1C9482E1D6C76A9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bc:3b:e9:7f:df:90:2b:2a:39:5d:17:db:94: c2:48:6e:99:ae:4b:72:a7:60:9a:6d:21:10:28:18: 30:f9:09:2f:66:f1:f7:95:c1:cd:8e:dc:5f:8c:88: c1:91:25:65:82:a7:df:7c:97:a4:f1:0e:a7:e4:5c: 2e:20:76:04:45:d6:f4:bc:2a:d5:3e:9b:d5:82:19: 37:7f:75:20:c2:e9:f4:81:e2:d6:66:ef:02:f8:dc: a2:7c:87:0d:5c:22:19:be:a2:c9:9f:d1:03:1f:52: 32:66:e5:e2:a2:82:bc:42:59:e8:fb:67:27:5c:1e: 46:d0:6a:e8:90:b4:d2:16:7e:07:90:a6:c6:78:8d: a3:53:f0:c2:5c:9f:47:69:93:1c:bd:f4:e0:1a:0c: 61:b7:f3:15:54:27:f3:eb:96:3e:33:a3:d8:55:75: b7:4d:a4:84:9a:66:b2:46:95:d8:74:85:15:d0:93: 1f:c6:89:b2:3b:45:27:10:06:4d:c9:ed:a8:2b:3c: 08:88:f2:13:e8:3a:61:31:fb:bd:bc:7f:15:29:92: 8b:4c:fb:50:5e:5e:18:d1:b5:84:94:8c:64:0b:24: 42:44:bd:e4:23:9d:b9:99:ac:31:eb:77:52:14:12: d4:29:da:7c:62:2d:62:7c:10:5e:73:ae:35:45:de: e2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E8:E2:07:FF:76:3B:54:E7:C3:DE:3B:1C:94:82:E1:D6:C7:6A:9D X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.30.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:65:b0:2d:b4:d8:9e:44:92:e7:7a:c1:93:8b:a3:e3:e8:ba: e1:46:08:4e:95:73:d0:9d:ae:c2:08:42:57:c0:da:5e:81:65: ab:41:f7:73:7e:62:e2:63:3a:5f:c6:99:d3:10:a1:74:2c:a4: 80:84:f6:18:17:b9:7e:0a:8b:63:30:d8:5c:94:64:c3:31:1d: be:44:5b:17:c1:42:60:3a:ad:80:2b:af:25:bd:53:46:ce:b2: 92:c7:72:4a:c6:dd:d7:93:39:af:01:d9:8b:d5:c6:f8:ba:e5: de:09:43:06:6d:90:14:b5:ae:41:fe:bb:02:36:66:32:29:f8: f5:b2:1f:df:8a:bc:08:bc:c1:78:fd:91:32:a0:df:e8:be:d3: e8:69:e8:0c:86:75:ad:11:90:23:94:0d:79:35:fe:f6:bf:c8: 30:ef:72:0a:d1:0f:d0:8a:2e:19:cb:c1:e9:55:03:d5:b4:b4: a9:cc:2b:40:53:03:2c:06:2c:70:9f:51:e7:cc:f2:88:c4:b2: af:a5:ff:bc:c6:74:53:29:01:9e:76:a8:31:5b:8c:f2:5b:a9: 8f:ba:14:cd:c6:09:c5:13:51:cc:92:3c:e6:98:ed:4f:93:8f: 66:14:cb:cb:01:90:23:7c:61:31:3b:7f:b6:4d:c4:bc:3d:53: dd:c1:17:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTq6pNY0XrsIoqcCxQv+R/E/IkHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDBaFw0yNjA2MDEwMjAwMDBaMDMxMTAvBgNV BAMTKEU5RThFMjA3RkY3NjNCNTRFN0MzREUzQjFDOTQ4MkUxRDZDNzZBOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrvDvpf9+QKyo5XRfblMJIbpmu S3KnYJptIRAoGDD5CS9m8feVwc2O3F+MiMGRJWWCp998l6TxDqfkXC4gdgRF1vS8 KtU+m9WCGTd/dSDC6fSB4tZm7wL43KJ8hw1cIhm+osmf0QMfUjJm5eKigrxCWej7 ZydcHkbQauiQtNIWfgeQpsZ4jaNT8MJcn0dpkxy99OAaDGG38xVUJ/Prlj4zo9hV dbdNpISaZrJGldh0hRXQkx/GibI7RScQBk3J7agrPAiI8hPoOmEx+728fxUpkotM +1BeXhjRtYSUjGQLJEJEveQjnbmZrDHrd1IUEtQp2nxiLWJ8EF5zrjVF3uKnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6ejiB/92O1Tnw947HJSC4dbHap0wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUHjANBgkqhkiG 9w0BAQsFAAOCAQEAOmWwLbTYnkSS53rBk4uj4+i64UYITpVz0J2uwghCV8DaXoFl q0H3c35i4mM6X8aZ0xChdCykgIT2GBe5fgqLYzDYXJRkwzEdvkRbF8FCYDqtgCuv Jb1TRs6yksdySsbd15M5rwHZi9XG+Lrl3glDBm2QFLWuQf67AjZmMin49bIf34q8 CLzBeP2RMqDf6L7T6GnoDIZ1rRGQI5QNeTX+9r/IMO9yCtEP0IouGcvB6VUD1bS0 qcwrQFMDLAYscJ9R58zyiMSyr6X/vMZ0UykBnnaoMVuM8lupj7oUzcYJxRNRzJI8 5pjtT5OPZhTLywGQI3xhMTt/tk3EvD1T3cEXBA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:52:00 2025 by rpki-client