$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa File: 3230322e3134382e382e302f32312d3231203d3e203338373738.roa (raw, json) Hash identifier: OfzeHIeCV1C5XAT9BHbbUhGHdvDcmYxtXVNiHr+uO+M= Subject key identifier: FF:17:6A:AA:35:9F:72:3F:B7:3A:E1:39:7C:D3:E2:C3:BA:CB:60:64 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 5C88F45425AE8FE01B2451F0A3DEEF5BF76D72D7 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa Signing time: Mon 02 Jun 2025 02:00:01 +0000 ROA not before: Mon 02 Jun 2025 01:55:01 +0000 ROA not after: Mon 01 Jun 2026 02:00:01 +0000 asID: 38778 IP address blocks: 202.148.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:88:f4:54:25:ae:8f:e0:1b:24:51:f0:a3:de:ef:5b:f7:6d:72:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:01 2025 GMT Not After : Jun 1 02:00:01 2026 GMT Subject: CN=FF176AAA359F723FB73AE1397CD3E2C3BACB6064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:15:81:ff:c1:13:d0:6c:ff:70:38:cb:b4: 2f:6f:b4:3f:ad:e9:93:6a:02:2f:7e:84:60:5b:0d: 0e:67:79:f6:d5:b9:82:a9:b5:83:83:cb:7b:68:19: d3:3b:43:ef:c1:c0:91:cc:39:f5:b8:10:bd:4a:f6: 07:f0:b6:85:4e:5f:2f:7b:c1:ec:da:b2:35:ff:f8: 64:53:51:ff:19:12:2c:de:3d:b2:a9:13:91:ad:41: 23:28:6d:22:79:80:27:4f:ca:21:94:45:17:3a:e4: ec:a6:d9:50:60:1a:b1:a0:28:a1:ce:92:b1:7c:b5: b1:55:8d:71:02:bb:e1:56:c3:48:fa:1c:a2:35:66: bb:e7:33:8a:e2:db:fe:1b:bb:b0:01:35:3d:de:78: f8:b0:9e:c5:4b:6b:e4:8e:3b:7b:40:1b:92:76:be: e6:d5:f5:74:d1:0e:e2:3a:95:a5:f5:77:f2:99:a6: 50:43:36:54:03:76:16:31:d9:25:e1:98:51:08:f7: 8a:1e:ab:51:5f:2a:a9:3a:ac:35:48:da:74:0b:c6: f2:a6:a6:3c:08:2e:36:d3:60:68:21:50:23:a4:79: 54:f5:a2:c5:bc:fd:23:ae:fb:27:f9:0b:16:bb:da: d2:87:0f:61:f2:9d:ae:47:ea:61:94:e4:1e:28:95: a2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:17:6A:AA:35:9F:72:3F:B7:3A:E1:39:7C:D3:E2:C3:BA:CB:60:64 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.8.0/21 Signature Algorithm: sha256WithRSAEncryption 56:c2:3b:ab:ba:e3:f7:f1:85:3f:75:1c:9b:45:d4:42:34:55: 90:01:3b:a4:61:3f:c1:7b:6a:48:a0:07:e6:1f:82:e0:f7:03: 47:5b:d8:57:32:a9:c7:86:81:28:e8:bf:87:34:30:dc:59:7f: 31:be:a2:61:17:5e:d3:a2:db:1c:2f:42:7c:08:26:e6:e4:6a: 75:6e:eb:49:b9:90:f0:b3:8b:55:ba:d5:c9:ca:af:e8:af:f4: 10:f8:3c:68:5e:a5:b4:f7:2e:66:b4:f9:d3:12:57:ff:43:97: 67:1d:a7:eb:40:fd:d0:20:83:f6:1c:43:9d:60:1f:d9:f5:c5: 98:39:b9:5e:91:28:05:8f:10:2c:23:0a:31:23:0e:8b:6f:3e: eb:b5:a8:9d:ca:35:8c:cc:4b:09:25:4b:9c:fb:c4:67:21:52: ea:71:4e:51:17:bb:d0:4f:1c:77:f0:c1:8f:73:c1:e9:8b:94: d5:d2:9c:69:79:ca:cd:e3:4e:2e:b1:00:20:41:5c:aa:42:1c: 2d:3b:6f:e7:6a:38:dd:69:7d:3d:8c:f4:98:bf:f2:75:af:19: 1c:9a:20:a2:7a:a3:c4:8a:a1:0c:bb:ce:d0:14:c9:db:8a:0a: 04:0b:53:c7:e0:d3:5f:b7:02:80:e8:39:1c:64:f7:0e:bd:19: c3:68:9a:76 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXIj0VCWuj+AbJFHwo97vW/dtctcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDFaFw0yNjA2MDEwMjAwMDFaMDMxMTAvBgNV BAMTKEZGMTc2QUFBMzU5RjcyM0ZCNzNBRTEzOTdDRDNFMkMzQkFDQjYwNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMOxWB/8ET0Gz/cDjLtC9vtD+t 6ZNqAi9+hGBbDQ5nefbVuYKptYODy3toGdM7Q+/BwJHMOfW4EL1K9gfwtoVOXy97 wezasjX/+GRTUf8ZEizePbKpE5GtQSMobSJ5gCdPyiGURRc65Oym2VBgGrGgKKHO krF8tbFVjXECu+FWw0j6HKI1ZrvnM4ri2/4bu7ABNT3eePiwnsVLa+SOO3tAG5J2 vubV9XTRDuI6laX1d/KZplBDNlQDdhYx2SXhmFEI94oeq1FfKqk6rDVI2nQLxvKm pjwILjbTYGghUCOkeVT1osW8/SOu+yf5Cxa72tKHD2Hyna5H6mGU5B4olaLzAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU/xdqqjWfcj+3OuE5fNPiw7rLYGQwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzODJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKlAgwDQYJKoZIhvcN AQELBQADggEBAFbCO6u64/fxhT91HJtF1EI0VZABO6RhP8F7akigB+YfguD3A0db 2FcyqceGgSjov4c0MNxZfzG+omEXXtOi2xwvQnwIJubkanVu60m5kPCzi1W61cnK r+iv9BD4PGhepbT3Lma0+dMSV/9Dl2cdp+tA/dAgg/YcQ51gH9n1xZg5uV6RKAWP ECwjCjEjDotvPuu1qJ3KNYzMSwklS5z7xGchUupxTlEXu9BPHHfwwY9zwemLlNXS nGl5ys3jTi6xACBBXKpCHC07b+dqON1pfT2M9Ji/8nWvGRyaIKJ6o8SKoQy7ztAU yduKCgQLU8fg01+3AoDoORxk9w69GcNomnY= -----END CERTIFICATE-----Generated at Fri Jun 6 16:42:55 2025 by rpki-client