$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e352e302f32342d3234203d3e2039373934.roa File: 3230322e3134382e352e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 1FveZareQEmpbYv6Nd9FQdDxTItSHlqTl62D0TdJhIQ= Subject key identifier: 46:83:57:60:97:5F:1E:BE:3B:AF:EE:2A:43:06:35:BD:F5:E1:26:5A Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 62E4DA2A37C15BF288ACC8B59161D9230BA42B9E Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e352e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:03 +0000 ROA not before: Mon 02 Jun 2025 00:58:03 +0000 ROA not after: Mon 01 Jun 2026 01:03:03 +0000 asID: 9794 IP address blocks: 202.148.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:e4:da:2a:37:c1:5b:f2:88:ac:c8:b5:91:61:d9:23:0b:a4:2b:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:03 2025 GMT Not After : Jun 1 01:03:03 2026 GMT Subject: CN=46835760975F1EBE3BAFEE2A430635BDF5E1265A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:20:7c:a9:97:2a:fc:c4:10:90:64:fb:16:8d: 55:93:00:da:ab:a9:0b:78:07:b6:05:14:26:5b:69: e0:18:6e:f6:f3:00:26:63:7c:63:de:81:aa:14:0a: 6e:57:4e:24:87:89:8e:b1:1f:f5:69:56:db:50:1b: 32:8b:a3:8c:f6:65:22:92:c4:cc:94:f2:2b:16:9d: 7a:56:ee:16:ef:fb:ce:39:2c:9a:54:59:b4:18:ed: 6d:e4:60:db:ea:74:13:76:90:a7:42:1a:e3:84:0c: 7f:d8:3f:21:4a:ff:0d:b2:31:59:16:43:5c:24:05: b1:2f:c1:d2:bb:7a:00:a1:6c:64:f1:34:07:f4:a2: 27:7e:4c:79:73:19:0a:6f:58:65:02:83:18:42:18: e6:98:8d:51:88:45:a5:94:15:5a:50:43:3f:2a:bf: c7:6c:f6:4a:d5:d7:e0:c4:f4:d4:a0:0c:81:d2:1f: 53:b6:24:a9:79:d3:4e:24:4b:36:fb:0d:b8:e2:87: f3:d3:7d:1e:b5:63:16:ab:74:af:81:a4:ee:6d:4c: 29:1f:1c:c3:30:52:cf:05:36:06:9e:5d:fd:70:cd: 22:69:be:92:d1:7b:a5:e9:83:e1:cd:70:67:bf:93: b4:86:8c:eb:8a:35:de:22:5a:87:18:00:65:a4:a7: 35:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:83:57:60:97:5F:1E:BE:3B:AF:EE:2A:43:06:35:BD:F5:E1:26:5A X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e352e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.5.0/24 Signature Algorithm: sha256WithRSAEncryption 31:01:46:5e:7b:9b:ec:eb:67:aa:75:6f:fb:ad:5d:cf:9c:33: 87:59:20:65:8d:b1:e3:7f:4a:af:65:5c:05:f8:b7:7c:70:93: d3:a0:29:e1:90:3e:d3:e9:61:44:0e:2c:aa:e2:06:82:23:c4: 9b:b6:0a:f0:ec:19:38:c3:a6:a2:52:d0:88:b2:c9:76:16:06: 94:e2:ba:f2:c8:4a:ac:0b:1e:c0:90:db:f4:ab:a9:67:6c:2d: b6:b0:7d:4a:87:22:a0:9e:91:b3:09:22:23:da:26:3f:37:00: ba:48:ef:36:fd:1d:51:8e:0b:7e:9a:0a:d9:00:e3:2a:3c:89: b3:32:b3:40:64:8c:27:ce:b3:c2:f3:c7:eb:db:60:cc:8d:c8: 26:d1:25:d5:89:44:4b:ef:5b:8e:eb:cb:b4:bd:fa:f3:2c:47: 07:8b:7b:88:8c:9e:ed:ec:61:02:1b:44:32:7b:b5:48:4b:34: 50:a0:b2:41:af:bc:bd:5d:0d:a9:63:fe:66:0d:be:0b:95:70: cd:cd:c8:23:49:5c:80:00:01:38:c5:c6:ed:e1:8b:30:33:f4: 6e:31:86:84:05:3b:b1:d8:83:bc:ac:73:27:57:0b:96:71:f3: 3c:62:0d:2b:a3:ab:1a:eb:85:fa:83:64:e3:bd:af:5c:7a:cd: 76:5e:72:38 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUYuTaKjfBW/KIrMi1kWHZIwukK54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDNaFw0yNjA2MDEwMTAzMDNaMDMxMTAvBgNV BAMTKDQ2ODM1NzYwOTc1RjFFQkUzQkFGRUUyQTQzMDYzNUJERjVFMTI2NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFIHyplyr8xBCQZPsWjVWTANqr qQt4B7YFFCZbaeAYbvbzACZjfGPegaoUCm5XTiSHiY6xH/VpVttQGzKLo4z2ZSKS xMyU8isWnXpW7hbv+845LJpUWbQY7W3kYNvqdBN2kKdCGuOEDH/YPyFK/w2yMVkW Q1wkBbEvwdK7egChbGTxNAf0oid+THlzGQpvWGUCgxhCGOaYjVGIRaWUFVpQQz8q v8ds9krV1+DE9NSgDIHSH1O2JKl5004kSzb7Dbjih/PTfR61YxardK+BpO5tTCkf HMMwUs8FNgaeXf1wzSJpvpLRe6Xpg+HNcGe/k7SGjOuKNd4iWocYAGWkpzWVAgMB AAGjggItMIICKTAdBgNVHQ4EFgQURoNXYJdfHr47r+4qQwY1vfXhJlowHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0ZWNjNDAtNmI4NC00OWU4LWI2 MGItNmU5OTA0MTI4Y2E4LzAvMzIzMDMyMmUzMTM0MzgyZTM1MmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzNzM5MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAUwDQYJKoZIhvcNAQEL BQADggEBADEBRl57m+zrZ6p1b/utXc+cM4dZIGWNseN/Sq9lXAX4t3xwk9OgKeGQ PtPpYUQOLKriBoIjxJu2CvDsGTjDpqJS0IiyyXYWBpTiuvLISqwLHsCQ2/SrqWds LbawfUqHIqCekbMJIiPaJj83ALpI7zb9HVGOC36aCtkA4yo8ibMys0BkjCfOs8Lz x+vbYMyNyCbRJdWJREvvW47ry7S9+vMsRweLe4iMnu3sYQIbRDJ7tUhLNFCgskGv vL1dDalj/mYNvguVcM3NyCNJXIAAATjFxu3hizAz9G4xhoQFO7HYg7yscydXC5Zx 8zxiDSujqxrrhfqDZOO9r1x6zXZecjg= -----END CERTIFICATE-----Generated at Thu Jun 5 18:32:36 2025 by rpki-client