$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e362e302f32332d3233203d3e203338373738.roa File: 3230322e3134382e362e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: WvjWTryqvpTjL/R7cNM00QYPDD3BKEvsxzwgu10W6cE= Subject key identifier: 40:E4:EF:C4:0C:46:30:F2:F2:41:E5:36:8A:B9:D4:BE:E7:24:E3:71 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 1782AB5CCC6AB615A9B76462CBA226770FAE7A2A Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e362e302f32332d3233203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:04 +0000 ROA not before: Mon 02 Jun 2025 00:58:04 +0000 ROA not after: Mon 01 Jun 2026 01:03:04 +0000 asID: 38778 IP address blocks: 202.148.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:82:ab:5c:cc:6a:b6:15:a9:b7:64:62:cb:a2:26:77:0f:ae:7a:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:04 2025 GMT Not After : Jun 1 01:03:04 2026 GMT Subject: CN=40E4EFC40C4630F2F241E5368AB9D4BEE724E371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:49:c9:36:45:1e:47:a0:a5:76:42:19:ac:34: c4:02:8a:83:ac:b1:24:0b:a6:69:7c:bb:db:f0:6c: 07:4f:3b:15:43:28:be:da:ac:7d:71:1e:00:de:2a: 95:b4:dd:ef:72:c4:9f:5f:5e:4f:82:8a:7d:3e:a0: 2c:4c:ec:19:21:bc:f0:32:b1:5e:97:7e:8d:78:ca: 01:95:15:12:6c:3d:a1:17:50:4b:7f:45:71:64:1c: ca:b7:27:51:f4:70:32:1d:05:5a:f8:d1:64:68:2f: c5:21:23:56:84:88:ad:4f:dc:aa:c0:2d:6d:5d:14: 9f:f0:3b:3b:84:86:26:9c:30:73:47:8f:bf:31:bf: a8:f2:e8:73:32:5f:5a:85:74:f8:04:5b:da:0d:30: 12:10:44:38:97:ea:ba:60:c2:7a:78:b8:44:84:ed: 62:7b:aa:62:58:9f:f0:f5:6a:d6:86:87:5a:21:54: 94:44:da:26:6d:54:86:bf:5f:70:46:50:d2:f6:c4: db:b4:81:48:28:02:bb:2f:d6:65:55:39:5a:bc:b1: 81:55:ba:2e:80:3d:a1:a8:14:2c:ab:7c:2b:4f:1a: 98:ac:54:ce:b5:42:0a:11:b0:37:ec:55:ff:37:f5: f0:8d:5b:03:05:86:c5:82:2d:eb:f8:9e:7f:37:79: d1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E4:EF:C4:0C:46:30:F2:F2:41:E5:36:8A:B9:D4:BE:E7:24:E3:71 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e362e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.6.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:73:6c:a4:de:06:d2:a3:80:9b:91:b5:2e:30:6d:d4:a7:1b: 48:f6:e3:e5:f6:ff:a8:87:21:e4:c1:6d:2a:1f:90:f4:b5:75: 9f:b9:67:4f:34:f3:fd:08:4f:96:4e:e9:50:2d:5f:e5:88:56: fc:bf:05:b0:cb:31:0b:7b:f8:29:b9:ee:63:7b:af:fb:8d:2e: 62:00:e9:8d:e4:81:eb:25:8e:44:7c:55:4f:47:a2:80:6b:e5: 47:09:81:4e:a2:33:b5:80:72:b2:f0:a4:6b:0d:b1:65:9e:7a: c4:ef:19:7a:0f:f7:36:b3:98:b0:af:b7:41:0e:fa:4d:72:a3: df:13:1d:5d:d8:33:e4:cd:08:81:60:5d:7a:ae:13:97:ed:b4: e7:c7:75:c6:21:81:60:92:98:a7:d6:39:72:1a:01:1c:f8:5b: b4:a9:5e:55:c1:f0:99:1d:47:cf:c8:0e:f3:16:f5:31:60:0d: 12:33:6c:bf:7d:21:65:25:61:af:1e:be:74:33:16:bc:3d:77: e0:99:87:84:10:34:5c:1f:1b:8f:7f:55:2d:d2:cc:b8:ed:72: e9:0f:1a:ae:d5:d4:49:2d:2e:f8:51:c4:bc:c9:1c:71:7c:db: 02:01:ba:c9:9f:57:a4:3d:e5:b7:18:da:05:c4:67:62:02:87: 4d:25:c6:91 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUF4KrXMxqthWpt2Riy6Imdw+ueiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDRaFw0yNjA2MDEwMTAzMDRaMDMxMTAvBgNV BAMTKDQwRTRFRkM0MEM0NjMwRjJGMjQxRTUzNjhBQjlENEJFRTcyNEUzNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtSck2RR5HoKV2QhmsNMQCioOs sSQLpml8u9vwbAdPOxVDKL7arH1xHgDeKpW03e9yxJ9fXk+Cin0+oCxM7BkhvPAy sV6Xfo14ygGVFRJsPaEXUEt/RXFkHMq3J1H0cDIdBVr40WRoL8UhI1aEiK1P3KrA LW1dFJ/wOzuEhiacMHNHj78xv6jy6HMyX1qFdPgEW9oNMBIQRDiX6rpgwnp4uESE 7WJ7qmJYn/D1ataGh1ohVJRE2iZtVIa/X3BGUNL2xNu0gUgoArsv1mVVOVq8sYFV ui6APaGoFCyrfCtPGpisVM61QgoRsDfsVf839fCNWwMFhsWCLev4nn83edH/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUQOTvxAxGMPLyQeU2irnUvuck43EwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKlAYwDQYJKoZIhvcN AQELBQADggEBAFxzbKTeBtKjgJuRtS4wbdSnG0j24+X2/6iHIeTBbSofkPS1dZ+5 Z0808/0IT5ZO6VAtX+WIVvy/BbDLMQt7+Cm57mN7r/uNLmIA6Y3kgesljkR8VU9H ooBr5UcJgU6iM7WAcrLwpGsNsWWeesTvGXoP9zazmLCvt0EO+k1yo98THV3YM+TN CIFgXXquE5fttOfHdcYhgWCSmKfWOXIaARz4W7SpXlXB8JkdR8/IDvMW9TFgDRIz bL99IWUlYa8evnQzFrw9d+CZh4QQNFwfG49/VS3SzLjtcukPGq7V1EktLvhRxLzJ HHF82wIBusmfV6Q95bcY2gXEZ2ICh00lxpE= -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:32 2025 by rpki-client