$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e342e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: HLRO3R1ruotFcWK68G0VY8RGqSXTAsJyPGA9YQdmIrs= Subject key identifier: 63:CC:92:EB:9D:DC:A4:8E:B8:6D:D5:77:57:15:76:CE:E9:30:66:FB Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5EA43F02DDEF5BFB6C557062F12A224B45497664 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:02 +0000 ROA not before: Mon 02 Jun 2025 00:58:02 +0000 ROA not after: Mon 01 Jun 2026 01:03:02 +0000 asID: 9794 IP address blocks: 202.148.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:a4:3f:02:dd:ef:5b:fb:6c:55:70:62:f1:2a:22:4b:45:49:76:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:02 2025 GMT Not After : Jun 1 01:03:02 2026 GMT Subject: CN=63CC92EB9DDCA48EB86DD577571576CEE93066FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:29:18:3a:ff:57:6c:12:81:26:96:ca:ad:f0: a1:d2:83:f3:8c:3e:62:7c:01:41:bb:c7:11:a9:c1: 46:9a:6f:53:1c:a9:85:43:5e:38:d4:c0:fc:81:ef: c0:61:ad:ce:6f:de:63:13:28:1e:d7:20:0c:f7:33: 8f:63:48:a5:50:46:41:9c:08:91:58:e9:04:01:d4: 26:37:da:16:be:48:d8:be:c1:71:a6:7f:14:22:e3: 9f:54:ad:97:cf:4b:1e:27:ba:42:a7:c0:d2:99:42: 6a:4d:fb:7d:d6:b8:82:4b:ae:67:4e:b8:c0:13:3e: 42:47:a2:6b:19:b1:82:65:2f:db:7a:2a:bd:c4:34: 30:54:05:46:a2:40:a0:00:2e:f0:72:56:d1:dd:4b: a1:78:b7:38:52:51:7d:53:aa:da:27:71:a7:72:1f: 03:fb:cb:50:ee:1e:49:c0:78:2d:01:f3:f1:3c:8b: 73:90:48:82:7a:84:5a:b9:a1:80:15:fd:d0:6c:71: 40:46:43:f7:c6:07:49:c5:85:24:37:71:70:02:69: 72:51:3d:47:13:d7:7d:53:ec:b4:a6:0b:5b:f4:47: 6e:82:30:f4:1e:d6:ec:e0:92:4e:19:15:76:97:d8: 33:ba:b0:84:83:87:5c:38:ac:11:0c:9b:18:df:f9: 99:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:CC:92:EB:9D:DC:A4:8E:B8:6D:D5:77:57:15:76:CE:E9:30:66:FB X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e342e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.4.0/24 Signature Algorithm: sha256WithRSAEncryption ba:1b:54:01:09:03:24:b5:a1:82:86:cc:aa:47:36:5a:5c:43: a4:a2:49:66:ff:61:73:03:83:fa:5e:51:31:e0:71:93:8c:26: 2d:94:f5:e4:ca:01:98:a2:ae:a9:78:7d:bb:c2:90:70:2e:3a: 5f:a1:89:e9:ce:44:a5:9a:ea:69:4f:37:66:d3:10:b8:b9:b9: a5:5e:0d:1a:3e:ae:04:6f:6f:0c:dc:10:26:98:f5:ba:1d:38: 9a:36:40:0f:ee:b1:42:62:d1:20:c2:a8:8c:70:a6:cf:b3:2c: 6c:5c:ed:ec:9c:58:83:69:ac:30:22:8f:32:0b:e8:8d:19:80: 6b:c3:ea:66:7c:3a:03:f5:e6:6e:a4:92:9c:0e:0b:cd:96:1c: 00:42:e6:a8:e2:46:26:e3:64:1a:c0:76:b8:78:b3:7d:84:6f: 3b:3f:dc:1b:53:1c:f2:52:35:04:09:ac:37:6e:5e:fe:ba:13: 99:d2:36:be:38:9a:98:cb:6a:33:e0:75:b2:1e:78:d9:50:98: dd:8e:26:87:f0:8b:a3:43:56:8c:a8:8d:53:df:5a:c2:ed:a1: 4a:83:32:f5:90:0c:3e:97:c1:88:30:0e:34:1f:da:47:af:b6: ac:45:a2:0d:42:86:0f:16:c3:98:42:b2:2d:fb:8e:0c:89:c4: 3d:fd:87:2d -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUXqQ/At3vW/tsVXBi8SoiS0VJdmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDJaFw0yNjA2MDEwMTAzMDJaMDMxMTAvBgNV BAMTKDYzQ0M5MkVCOUREQ0E0OEVCODZERDU3NzU3MTU3NkNFRTkzMDY2RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeKRg6/1dsEoEmlsqt8KHSg/OM PmJ8AUG7xxGpwUaab1McqYVDXjjUwPyB78Bhrc5v3mMTKB7XIAz3M49jSKVQRkGc CJFY6QQB1CY32ha+SNi+wXGmfxQi459UrZfPSx4nukKnwNKZQmpN+33WuIJLrmdO uMATPkJHomsZsYJlL9t6Kr3ENDBUBUaiQKAALvByVtHdS6F4tzhSUX1Tqtoncady HwP7y1DuHknAeC0B8/E8i3OQSIJ6hFq5oYAV/dBscUBGQ/fGB0nFhSQ3cXACaXJR PUcT131T7LSmC1v0R26CMPQe1uzgkk4ZFXaX2DO6sISDh1w4rBEMmxjf+ZmXAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUY8yS653cpI64bdV3VxV2zukwZvswHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTM0MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAQwDQYJKoZIhvcNAQEL BQADggEBALobVAEJAyS1oYKGzKpHNlpcQ6SiSWb/YXMDg/peUTHgcZOMJi2U9eTK AZiirql4fbvCkHAuOl+hienORKWa6mlPN2bTELi5uaVeDRo+rgRvbwzcECaY9bod OJo2QA/usUJi0SDCqIxwps+zLGxc7eycWINprDAijzIL6I0ZgGvD6mZ8OgP15m6k kpwOC82WHABC5qjiRibjZBrAdrh4s32Ebzs/3BtTHPJSNQQJrDduXv66E5nSNr44 mpjLajPgdbIeeNlQmN2OJofwi6NDVoyojVPfWsLtoUqDMvWQDD6XwYgwDjQf2kev tqxFog1Chg8Ww5hCsi37jgyJxD39hy0= -----END CERTIFICATE-----Generated at Thu Jun 5 18:30:09 2025 by rpki-client