$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: IEBavkt5GsrL+lx+EUQ04Lxk3eonb+Vm12Y5IohUdws= Subject key identifier: D2:7A:F2:A8:7E:DA:77:F5:B0:47:A8:5F:8E:0C:FF:C8:99:46:9C:F3 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 162CF4835823C08CA23837222DF18C11F675E70E Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:04 +0000 ROA not before: Mon 02 Jun 2025 00:58:04 +0000 ROA not after: Mon 01 Jun 2026 01:03:04 +0000 asID: 9794 IP address blocks: 203.201.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:2c:f4:83:58:23:c0:8c:a2:38:37:22:2d:f1:8c:11:f6:75:e7:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:04 2025 GMT Not After : Jun 1 01:03:04 2026 GMT Subject: CN=D27AF2A87EDA77F5B047A85F8E0CFFC899469CF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:15:c3:a7:38:e6:b1:f1:51:40:09:93:e7: 36:d3:1c:c7:6e:53:76:eb:0e:ff:93:cf:42:31:82: 99:53:ed:11:cc:95:d5:79:88:2b:a4:49:78:d8:05: 3e:45:58:33:fb:60:e4:ae:a5:f3:7e:91:09:22:42: 84:6a:18:2c:d7:70:fa:9f:07:c7:1f:07:f8:d8:6d: 37:17:b8:14:41:0c:f8:c2:3e:a5:27:c3:28:8d:cf: 5b:59:c0:01:27:a7:c2:17:bd:4e:24:23:2e:64:5a: d8:54:59:06:14:b2:ca:65:0d:1f:ee:89:8f:fe:4e: 11:52:d8:8b:10:11:05:a0:d6:21:33:fe:92:8c:cb: 63:59:5b:1e:e8:44:3a:cf:13:57:e0:aa:db:d4:2c: 7e:9b:9c:26:89:69:2a:9b:33:58:d1:58:c3:aa:da: 44:1c:2e:cb:d9:bb:c2:02:59:c0:ec:d1:bc:7a:d1: eb:a2:ee:b9:72:ac:cb:31:db:59:58:e5:fb:46:a4: 03:f6:9a:07:29:e9:0a:f2:79:b4:37:bf:d5:33:30: 47:f2:52:b9:1e:f7:c2:2b:9d:e3:f8:cb:01:fb:a8: 3b:26:fc:4d:5f:3f:5a:f9:bb:b8:09:eb:1b:b3:9a: c8:0e:23:0f:96:75:23:23:9e:53:ab:c5:23:ee:0d: 96:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:7A:F2:A8:7E:DA:77:F5:B0:47:A8:5F:8E:0C:FF:C8:99:46:9C:F3 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136312e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.161.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:c5:59:98:24:84:89:68:39:84:0b:ea:ca:77:fe:c8:d9:ac: f6:cf:14:1c:74:1b:f2:49:75:d9:e5:1e:21:f8:f5:e7:17:64: f7:e9:4b:2d:94:03:a3:24:83:01:e7:54:28:5d:20:6c:15:76: ca:68:de:29:22:34:df:7a:48:13:6d:f9:c8:4a:29:0c:19:6a: ca:14:f0:70:5f:fd:06:ac:6e:d1:fb:27:88:1e:c6:61:6f:6c: 4c:ab:63:1c:e5:3c:23:2f:f2:93:1a:fc:3f:bb:7c:bb:a2:a4: 68:45:6d:b3:ba:78:04:49:48:f6:45:a7:1e:9e:8a:7a:ee:98: 44:fa:60:5b:e2:54:22:5b:30:84:d8:01:39:04:46:4c:a7:fe: ac:04:e3:21:bc:39:d3:f1:e1:20:3e:15:38:75:0e:47:f5:5c: f4:70:0e:e8:16:8e:78:9c:cd:66:bf:ca:93:78:d5:d6:55:45: e8:e7:5f:0e:0d:15:88:cb:f5:0d:36:08:1f:24:fb:07:91:85: 39:bb:74:d7:f6:24:36:b0:41:6c:b7:2c:c2:c5:96:ef:d0:b5: ed:15:ba:96:35:ac:4d:15:a7:28:7a:b5:47:1b:c3:9b:08:cf: 5b:c0:3a:48:14:0f:61:fd:e4:ce:97:a8:dd:86:73:87:17:01: f9:45:29:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFiz0g1gjwIyiODciLfGMEfZ15w4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDRaFw0yNjA2MDEwMTAzMDRaMDMxMTAvBgNV BAMTKEQyN0FGMkE4N0VEQTc3RjVCMDQ3QTg1RjhFMENGRkM4OTk0NjlDRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFjBXDpzjmsfFRQAmT5zbTHMdu U3brDv+Tz0IxgplT7RHMldV5iCukSXjYBT5FWDP7YOSupfN+kQkiQoRqGCzXcPqf B8cfB/jYbTcXuBRBDPjCPqUnwyiNz1tZwAEnp8IXvU4kIy5kWthUWQYUssplDR/u iY/+ThFS2IsQEQWg1iEz/pKMy2NZWx7oRDrPE1fgqtvULH6bnCaJaSqbM1jRWMOq 2kQcLsvZu8ICWcDs0bx60eui7rlyrMsx21lY5ftGpAP2mgcp6QryebQ3v9UzMEfy Urke98IrneP4ywH7qDsm/E1fP1r5u7gJ6xuzmsgOIw+WdSMjnlOrxSPuDZY7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0nryqH7ad/WwR6hfjgz/yJlGnPMwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJoTANBgkqhkiG 9w0BAQsFAAOCAQEAmsVZmCSEiWg5hAvqynf+yNms9s8UHHQb8kl12eUeIfj15xdk 9+lLLZQDoySDAedUKF0gbBV2ymjeKSI033pIE235yEopDBlqyhTwcF/9Bqxu0fsn iB7GYW9sTKtjHOU8Iy/ykxr8P7t8u6KkaEVts7p4BElI9kWnHp6Keu6YRPpgW+JU IlswhNgBOQRGTKf+rATjIbw50/HhID4VOHUOR/Vc9HAO6BaOeJzNZr/Kk3jV1lVF 6OdfDg0ViMv1DTYIHyT7B5GFObt01/YkNrBBbLcswsWW79C17RW6ljWsTRWnKHq1 RxvDmwjPW8A6SBQPYf3kzpeo3YZzhxcB+UUpMg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:12 2025 by rpki-client