$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e382e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: KX3Hoz/udQvhjwPbQFMJellUqmB/wMrLwsGS/KoR6jQ= Subject key identifier: 0A:56:39:AC:D6:51:CC:39:16:85:F7:81:EE:1C:96:0F:1B:12:33:FE Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 7FB8BC562809F7CA50D4327B6FAD9FF1070762ED Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:06 +0000 ROA not before: Mon 02 Jun 2025 00:58:06 +0000 ROA not after: Mon 01 Jun 2026 01:03:06 +0000 asID: 38778 IP address blocks: 202.148.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b8:bc:56:28:09:f7:ca:50:d4:32:7b:6f:ad:9f:f1:07:07:62:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:06 2025 GMT Not After : Jun 1 01:03:06 2026 GMT Subject: CN=0A5639ACD651CC391685F781EE1C960F1B1233FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:41:0c:ef:11:01:ea:69:ca:aa:21:e3:ff:72: b3:f5:12:ad:e0:c6:8a:8e:2a:99:ba:5e:9b:4d:6e: 0b:d6:30:a3:bf:54:90:3b:1e:57:47:4b:84:a7:0d: b0:ce:da:db:2c:7c:e2:dd:4c:bc:7f:12:ac:9a:aa: 61:31:ec:c9:c0:3e:b5:15:09:42:a9:9f:fc:9a:88: 3e:d4:3c:48:04:5f:cb:79:d8:0c:93:2e:e8:ba:31: 86:56:7f:83:ed:04:bf:90:87:b5:5c:7f:e5:93:7c: e4:89:92:dc:29:73:6f:52:55:20:e6:cf:ee:f1:07: 6b:0c:7c:5d:5c:60:4e:89:33:33:39:ad:49:38:9a: a9:20:63:48:76:e8:12:1a:fb:3f:c7:07:9a:c5:de: dc:0d:ef:ed:fd:be:80:16:9f:b4:a1:62:32:e2:07: db:45:71:9f:de:cb:9e:3b:f1:a1:da:e2:f3:84:3f: 5a:79:01:5a:f7:bc:02:66:63:51:5c:48:43:e6:5b: 7e:f7:fb:26:37:f1:20:45:ef:96:76:f9:f8:6c:ac: 38:d7:4a:ab:79:20:9d:ca:45:5f:78:bb:87:d7:bc: 0a:85:0c:3c:db:97:02:9c:86:13:cb:e6:8f:c6:1a: 01:3e:b1:ab:eb:5a:e5:3e:23:43:92:60:e7:d6:f8: 5e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:56:39:AC:D6:51:CC:39:16:85:F7:81:EE:1C:96:0F:1B:12:33:FE X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.8.0/24 Signature Algorithm: sha256WithRSAEncryption a1:c0:90:6c:d4:72:c4:66:ce:80:a7:4f:d5:c7:06:31:0a:bf: 3c:be:8f:8d:94:d5:c7:4c:2e:ae:66:f9:5b:4e:f6:fb:56:71: c0:c0:95:0f:3b:bd:54:ea:35:2a:d9:93:3c:6e:7a:0f:67:f1: a2:4e:97:f5:b1:b3:86:b6:92:51:5c:8d:91:ff:43:26:f3:ce: c9:fa:ac:93:97:a3:e3:db:cd:56:f5:be:06:2a:b3:a8:69:bc: 0e:77:30:75:cc:d4:64:b9:41:2c:6a:f5:cd:c4:68:0f:1a:fc: 67:0f:26:21:9b:71:a3:f2:dd:98:6d:d8:8f:ac:05:97:de:b4: 24:6a:0f:7c:1d:c9:23:c5:d4:f8:7e:43:de:11:e6:82:b9:d6: b8:86:e3:57:7a:a6:a9:a0:a6:06:4a:97:67:ab:af:e3:9e:72: a1:8b:29:3e:2b:c4:10:09:5c:26:fe:17:bb:78:54:67:45:19: fc:f1:03:9d:f0:56:22:05:61:82:c9:e2:0d:8e:c5:ba:fd:ce: ff:78:b7:e4:06:5c:fc:f4:e6:a3:09:c4:af:cd:fe:7e:a0:1a: a6:9c:ea:8b:34:bc:6b:46:c4:70:91:e3:1f:94:36:fd:16:f2: 67:f8:f6:fc:fc:cc:a6:7c:4e:da:dc:39:ce:1e:3e:05:17:a8: 8d:95:6b:5d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUf7i8VigJ98pQ1DJ7b62f8QcHYu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDZaFw0yNjA2MDEwMTAzMDZaMDMxMTAvBgNV BAMTKDBBNTYzOUFDRDY1MUNDMzkxNjg1Rjc4MUVFMUM5NjBGMUIxMjMzRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYQQzvEQHqacqqIeP/crP1Eq3g xoqOKpm6XptNbgvWMKO/VJA7HldHS4SnDbDO2tssfOLdTLx/EqyaqmEx7MnAPrUV CUKpn/yaiD7UPEgEX8t52AyTLui6MYZWf4PtBL+Qh7Vcf+WTfOSJktwpc29SVSDm z+7xB2sMfF1cYE6JMzM5rUk4mqkgY0h26BIa+z/HB5rF3twN7+39voAWn7ShYjLi B9tFcZ/ey5478aHa4vOEP1p5AVr3vAJmY1FcSEPmW373+yY38SBF75Z2+fhsrDjX Sqt5IJ3KRV94u4fXvAqFDDzblwKchhPL5o/GGgE+savrWuU+I0OSYOfW+F4bAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUClY5rNZRzDkWhfeB7hyWDxsSM/4wHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAgwDQYJKoZIhvcN AQELBQADggEBAKHAkGzUcsRmzoCnT9XHBjEKvzy+j42U1cdMLq5m+VtO9vtWccDA lQ87vVTqNSrZkzxueg9n8aJOl/Wxs4a2klFcjZH/Qybzzsn6rJOXo+PbzVb1vgYq s6hpvA53MHXM1GS5QSxq9c3EaA8a/GcPJiGbcaPy3Zht2I+sBZfetCRqD3wdySPF 1Ph+Q94R5oK51riG41d6pqmgpgZKl2err+OecqGLKT4rxBAJXCb+F7t4VGdFGfzx A53wViIFYYLJ4g2Oxbr9zv94t+QGXPz05qMJxK/N/n6gGqac6os0vGtGxHCR4x+U Nv0W8mf49vz8zKZ8TtrcOc4ePgUXqI2Va10= -----END CERTIFICATE-----Generated at Fri Jun 6 16:52:33 2025 by rpki-client