$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa File: 3230322e3134382e392e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 6wmie3nm39789Nf1PwYv68WgNxuncIAMbDRWOSSgJQM= Subject key identifier: 6C:91:F9:EC:6E:8F:2D:F1:A9:22:7C:75:8B:42:79:D8:39:DB:EF:B9 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2BF86F3A562BC50B83BCEB579D06309AAEF897C5 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 02:00:02 +0000 ROA not before: Mon 02 Jun 2025 01:55:02 +0000 ROA not after: Mon 01 Jun 2026 02:00:02 +0000 asID: 38778 IP address blocks: 202.148.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f8:6f:3a:56:2b:c5:0b:83:bc:eb:57:9d:06:30:9a:ae:f8:97:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:02 2025 GMT Not After : Jun 1 02:00:02 2026 GMT Subject: CN=6C91F9EC6E8F2DF1A9227C758B4279D839DBEFB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5d:8a:d9:17:30:3b:82:55:aa:c7:c6:65:d5: 15:8c:d5:02:58:7b:6c:de:02:e9:a7:1c:e0:17:0d: 9d:64:60:75:1b:17:a4:36:89:09:18:f4:16:f1:2a: 4a:79:a6:39:8f:b3:5d:7e:03:c3:f7:f2:49:b6:cc: 6f:1f:2e:b0:eb:91:a5:1c:77:87:b2:67:a8:af:06: b6:67:da:08:6d:44:90:81:57:43:cc:7c:55:1f:02: 5e:94:ed:5c:c9:bc:0d:3b:dc:16:8d:15:1d:38:ee: 3f:f1:78:08:10:1b:96:fd:dc:92:08:7b:1e:96:71: ce:f5:89:40:86:53:03:54:bc:85:b7:e6:dc:84:16: a2:72:1f:c7:60:03:9b:e5:b9:26:f6:31:d0:06:d1: 4a:10:97:2e:8d:d6:ed:7f:2b:0d:9d:93:fb:68:b8: d1:56:14:0c:f2:27:83:2d:2d:59:de:61:65:3f:2d: 60:67:18:02:c3:e9:bb:e7:a1:3f:a5:88:86:96:bc: 88:d6:b0:39:70:60:19:4b:9e:83:2a:a0:10:f0:a3: 7c:b2:77:96:68:65:21:6d:59:0e:46:4d:4f:8d:f6: 36:87:9c:fb:49:08:6e:bc:42:bf:b6:10:75:da:b5: 79:bb:6d:26:de:e8:9e:17:a0:0c:7e:73:1f:8c:e7: b1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:91:F9:EC:6E:8F:2D:F1:A9:22:7C:75:8B:42:79:D8:39:DB:EF:B9 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e392e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.148.9.0/24 Signature Algorithm: sha256WithRSAEncryption 72:f9:80:50:d2:47:3c:e4:6b:35:ad:a8:04:55:5d:e9:77:24: a0:1e:31:40:52:3a:5e:e9:75:0c:51:0c:fb:ef:c3:00:d3:66: b7:74:e4:60:a4:a6:04:20:aa:dd:72:f9:64:dc:6f:f4:1e:d8: d5:0a:96:0c:2f:9d:e0:84:c2:d6:a9:ac:74:90:87:ab:eb:76: c3:06:87:29:fe:92:ad:ed:fd:11:a2:a6:51:bd:d7:38:f9:77: 3e:8c:78:74:71:9d:1b:9f:48:16:c1:c8:a3:c3:67:ec:e4:3c: 4e:0f:79:de:0d:55:68:9c:a4:97:a7:a7:90:fa:e7:0c:32:de: ab:cd:e7:f7:4b:f0:4d:b3:7b:e3:b5:30:b8:5b:6c:08:1b:59: 30:9b:4e:e4:d2:7a:d5:f2:ab:ea:02:15:39:85:4f:25:ed:9a: 51:f0:03:23:b5:58:e7:d8:6a:84:2b:2f:71:02:c3:4f:eb:ac: 26:43:27:48:62:7c:e6:32:81:39:ef:f2:8b:d4:47:26:44:94: da:e1:ce:ee:b8:a0:05:c1:cf:4e:c3:0b:1c:3f:c7:eb:ec:15: 1f:cc:b1:2c:a4:4a:8b:4a:a4:a3:05:3b:63:f9:60:64:a6:24: c1:0d:33:ee:71:f2:a8:9f:c2:ff:e7:c8:5e:71:97:9f:55:1a: 15:01:7f:cd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUK/hvOlYrxQuDvOtXnQYwmq74l8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDJaFw0yNjA2MDEwMjAwMDJaMDMxMTAvBgNV BAMTKDZDOTFGOUVDNkU4RjJERjFBOTIyN0M3NThCNDI3OUQ4MzlEQkVGQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAXYrZFzA7glWqx8Zl1RWM1QJY e2zeAumnHOAXDZ1kYHUbF6Q2iQkY9BbxKkp5pjmPs11+A8P38km2zG8fLrDrkaUc d4eyZ6ivBrZn2ghtRJCBV0PMfFUfAl6U7VzJvA073BaNFR047j/xeAgQG5b93JII ex6Wcc71iUCGUwNUvIW35tyEFqJyH8dgA5vluSb2MdAG0UoQly6N1u1/Kw2dk/to uNFWFAzyJ4MtLVneYWU/LWBnGALD6bvnoT+liIaWvIjWsDlwYBlLnoMqoBDwo3yy d5ZoZSFtWQ5GTU+N9jaHnPtJCG68Qr+2EHXatXm7bSbe6J4XoAx+cx+M57GdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbJH57G6PLfGpInx1i0J52Dnb77kwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKlAkwDQYJKoZIhvcN AQELBQADggEBAHL5gFDSRzzkazWtqARVXel3JKAeMUBSOl7pdQxRDPvvwwDTZrd0 5GCkpgQgqt1y+WTcb/Qe2NUKlgwvneCEwtaprHSQh6vrdsMGhyn+kq3t/RGiplG9 1zj5dz6MeHRxnRufSBbByKPDZ+zkPE4Ped4NVWicpJenp5D65wwy3qvN5/dL8E2z e+O1MLhbbAgbWTCbTuTSetXyq+oCFTmFTyXtmlHwAyO1WOfYaoQrL3ECw0/rrCZD J0hifOYygTnv8ovURyZElNrhzu64oAXBz07DCxw/x+vsFR/MsSykSotKpKMFO2P5 YGSmJMENM+5x8qifwv/nyF5xl59VGhUBf80= -----END CERTIFICATE-----Generated at Fri Jun 6 16:49:53 2025 by rpki-client