$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e33312e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: bfEvagGX0XYQsWTmPCpWIM/keI50gWNT/NA0rXBWbs0= Subject key identifier: 1B:F8:EF:9F:32:C6:EF:A6:A2:CA:F9:0C:8A:DA:D6:9E:24:43:07:83 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 0BBA2DC7E4CC474E39DB13260AA0D40494C49B8B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:03 +0000 ROA not before: Mon 02 Jun 2025 00:58:03 +0000 ROA not after: Mon 01 Jun 2026 01:03:03 +0000 asID: 38778 IP address blocks: 202.148.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:ba:2d:c7:e4:cc:47:4e:39:db:13:26:0a:a0:d4:04:94:c4:9b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:03 2025 GMT Not After : Jun 1 01:03:03 2026 GMT Subject: CN=1BF8EF9F32C6EFA6A2CAF90C8ADAD69E24430783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:83:ab:a0:62:6a:9b:b7:1c:27:e9:f8:8a:99: 61:92:77:92:3c:d4:a9:ce:31:22:c9:72:b5:45:4c: 9a:60:ce:bf:5f:ff:3f:b2:f7:54:c5:77:59:73:91: 3f:b3:8c:17:8a:74:4b:ea:30:f4:57:64:4a:38:03: 3c:f5:88:a9:55:cd:21:b2:18:ad:7e:5a:c9:75:19: 64:8a:29:df:af:7c:5a:a8:61:ea:1e:0b:e9:54:87: bd:fe:66:39:dc:2a:7f:8b:d4:ab:53:b0:4f:8b:af: 5d:e8:f7:37:d8:c6:c1:f5:6d:8a:0d:8f:60:5c:89: dd:93:2e:69:7d:d7:45:e2:5e:cc:3d:f7:cc:28:4c: 3a:83:d7:8e:6a:7c:a8:72:53:34:7b:83:88:9b:25: 0f:02:66:02:3e:b6:56:c2:67:3a:95:d1:80:b8:1e: 75:19:19:1a:57:ba:7b:a7:3f:bf:45:32:c7:eb:13: 57:c8:81:9e:f9:04:44:98:cf:34:6a:c7:ef:f7:96: e1:e2:79:4d:fc:81:39:d2:0d:ab:bd:e5:23:50:3c: af:c8:3e:bd:06:f1:6e:66:3a:b1:13:42:41:bf:47: dd:b9:2a:b3:a1:f6:64:a3:6f:0c:38:cf:01:f3:69: 6d:a9:be:39:20:5b:d5:ed:81:d6:c9:cd:36:47:da: 75:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F8:EF:9F:32:C6:EF:A6:A2:CA:F9:0C:8A:DA:D6:9E:24:43:07:83 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e33312e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.31.0/24 Signature Algorithm: sha256WithRSAEncryption 66:a5:9f:5c:ed:8f:39:ea:8c:fb:f0:27:aa:ab:89:30:b8:d4: 4c:9a:30:7e:cb:70:f4:0c:f2:b0:ba:b6:26:a9:5d:9d:98:d7: 84:5d:44:be:7a:f5:a1:ae:e3:93:78:b6:b1:07:40:4d:ac:19: 8f:23:ec:17:98:2c:a5:e1:cb:ba:32:d9:c2:0b:e8:7b:5b:91: 70:95:a8:38:78:37:90:2d:40:bd:5e:aa:a2:bf:4e:97:6f:61: 56:fd:af:53:9a:ca:60:81:d7:64:83:ed:de:95:b7:a3:4b:6b: a9:41:f7:8a:95:aa:fc:83:55:59:a4:fe:1e:3d:b8:5b:15:25: 45:2f:9b:60:a9:06:4c:c5:7a:1f:51:1c:e7:c5:80:cf:07:79: f6:9e:aa:66:f6:59:55:96:92:50:b1:f9:67:e7:48:c8:07:da: 59:02:69:02:64:37:d3:c3:37:e9:73:eb:72:67:0c:6f:84:c7: ee:b8:3d:eb:0a:d5:c5:1b:27:a8:1b:c3:98:7a:17:00:10:0d: 27:6f:ef:7d:e1:9a:aa:86:1e:77:3f:bc:21:de:a1:dd:e7:cd: 4f:f6:2f:2e:f8:12:00:20:4d:e9:99:8b:a4:99:e5:72:0c:fc: fe:e8:45:cb:34:f3:67:05:be:47:2c:75:7d:1c:20:e2:24:c0: ac:5a:a7:5c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUC7otx+TMR0452xMmCqDUBJTEm4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDNaFw0yNjA2MDEwMTAzMDNaMDMxMTAvBgNV BAMTKDFCRjhFRjlGMzJDNkVGQTZBMkNBRjkwQzhBREFENjlFMjQ0MzA3ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8g6ugYmqbtxwn6fiKmWGSd5I8 1KnOMSLJcrVFTJpgzr9f/z+y91TFd1lzkT+zjBeKdEvqMPRXZEo4Azz1iKlVzSGy GK1+Wsl1GWSKKd+vfFqoYeoeC+lUh73+ZjncKn+L1KtTsE+Lr13o9zfYxsH1bYoN j2Bcid2TLml910XiXsw998woTDqD145qfKhyUzR7g4ibJQ8CZgI+tlbCZzqV0YC4 HnUZGRpXununP79FMsfrE1fIgZ75BESYzzRqx+/3luHieU38gTnSDau95SNQPK/I Pr0G8W5mOrETQkG/R925KrOh9mSjbww4zwHzaW2pvjkgW9XtgdbJzTZH2nXDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUG/jvnzLG76aiyvkMitrWniRDB4MwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUHzANBgkqhkiG 9w0BAQsFAAOCAQEAZqWfXO2POeqM+/AnqquJMLjUTJowfstw9AzysLq2JqldnZjX hF1Evnr1oa7jk3i2sQdATawZjyPsF5gspeHLujLZwgvoe1uRcJWoOHg3kC1AvV6q or9Ol29hVv2vU5rKYIHXZIPt3pW3o0trqUH3ipWq/INVWaT+Hj24WxUlRS+bYKkG TMV6H1Ec58WAzwd59p6qZvZZVZaSULH5Z+dIyAfaWQJpAmQ308M36XPrcmcMb4TH 7rg96wrVxRsnqBvDmHoXABANJ2/vfeGaqoYedz+8Id6h3efNT/YvLvgSACBN6ZmL pJnlcgz8/uhFyzTzZwW+Ryx1fRwg4iTArFqnXA== -----END CERTIFICATE-----Generated at Fri Jun 6 16:47:24 2025 by rpki-client