$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136322e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136322e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: kLLhOxB4NphHgZwsJXoe60a+7pIV/sDoLiCOiyDt0cw= Subject key identifier: 04:2B:37:94:0A:AA:D7:AB:0E:47:00:49:5E:5C:4D:7C:7C:5A:6D:47 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 4481D9CAC6BDF2CD31E38853613DCDF263913DA9 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136322e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:03 +0000 ROA not before: Mon 02 Jun 2025 00:58:03 +0000 ROA not after: Mon 01 Jun 2026 01:03:03 +0000 asID: 9794 IP address blocks: 203.201.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:81:d9:ca:c6:bd:f2:cd:31:e3:88:53:61:3d:cd:f2:63:91:3d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:03 2025 GMT Not After : Jun 1 01:03:03 2026 GMT Subject: CN=042B37940AAAD7AB0E4700495E5C4D7C7C5A6D47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bc:d7:e3:43:3d:f9:47:a7:ad:d9:57:62:22: 07:23:93:33:d9:66:80:98:15:c5:80:81:51:1c:83: 57:64:9b:d3:93:66:67:db:c5:df:a5:34:bd:26:44: 9a:cb:2f:92:3a:80:23:eb:99:1e:9f:9b:d1:33:11: 10:cc:37:53:b4:e5:56:9e:cc:c5:80:ef:7f:5e:1d: c8:dc:21:9f:1d:f6:e9:43:10:b6:a4:cb:6d:27:f6: 65:04:12:19:3c:18:f5:d6:b4:4b:15:a3:cc:1a:0a: d7:be:68:76:99:42:7e:92:b0:49:bc:a5:f4:1d:d7: 9a:d0:b4:9e:59:cb:46:0d:26:01:bc:13:f4:93:ea: 1e:ed:4a:5a:6f:83:de:20:53:c1:ee:46:bf:a1:9b: 5b:97:a2:7e:32:1b:b1:7c:df:58:77:c3:53:3c:de: cd:38:c3:cb:a3:d0:f6:74:a9:df:7e:4c:58:ce:32: 8a:d0:60:a1:a8:47:9d:ca:fa:63:3f:c7:bd:34:21: bc:b4:a4:50:52:3e:88:85:c1:15:0e:f4:56:9b:ac: 65:8e:3c:4f:cd:4d:dd:41:26:14:07:4c:7a:22:e3: e2:e8:b4:24:24:71:dd:d4:f7:9b:49:8f:b2:b3:da: c2:8f:6c:a7:60:a3:6d:30:f6:e6:50:de:71:ac:a6: 29:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2B:37:94:0A:AA:D7:AB:0E:47:00:49:5E:5C:4D:7C:7C:5A:6D:47 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136322e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.162.0/24 Signature Algorithm: sha256WithRSAEncryption b3:29:7a:5b:83:ba:30:c4:a9:0b:7d:33:cf:18:e3:26:cf:fe: 33:c6:b8:4c:1b:2d:05:e6:f1:4a:71:ca:57:e8:e0:90:bf:34: b5:06:6d:8f:7f:43:00:cc:a7:e4:9e:72:ee:5f:ec:1d:81:54: 22:17:95:eb:76:df:e1:06:60:2e:be:8e:31:e1:15:22:d5:1e: d4:ba:30:87:5d:bb:69:42:c2:ac:f5:a9:fc:40:f6:1b:09:c1: 43:e2:14:db:5d:40:3e:08:dd:9b:8a:fd:ca:2a:dc:e6:19:6e: d5:78:4f:cf:e8:69:47:e3:45:33:cc:a0:01:42:af:f0:b0:8d: 8c:f0:ed:38:95:13:92:ad:ed:5e:c1:5a:a5:90:9e:b5:be:43: 70:27:fb:3a:99:63:d0:e1:39:b4:0b:4f:67:3e:66:59:2e:19: d8:9f:34:3b:fb:43:56:f8:52:8c:6e:0b:ae:94:0a:ce:18:52: 6e:fd:3d:c4:f1:5f:21:56:45:ea:c7:74:03:ee:c7:75:eb:28: 38:93:be:3d:10:78:fa:42:d3:1a:30:02:4a:fd:89:72:e0:5e: 89:78:f7:14:35:d4:98:20:c0:d7:aa:88:73:d8:be:53:90:c3: 73:cf:d4:6d:60:a8:f0:dd:b3:e9:0b:87:97:9d:1c:df:fe:4f: f0:ba:56:c3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURIHZysa98s0x44hTYT3N8mORPakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDNaFw0yNjA2MDEwMTAzMDNaMDMxMTAvBgNV BAMTKDA0MkIzNzk0MEFBQUQ3QUIwRTQ3MDA0OTVFNUM0RDdDN0M1QTZENDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzvNfjQz35R6et2VdiIgcjkzPZ ZoCYFcWAgVEcg1dkm9OTZmfbxd+lNL0mRJrLL5I6gCPrmR6fm9EzERDMN1O05Vae zMWA739eHcjcIZ8d9ulDELaky20n9mUEEhk8GPXWtEsVo8waCte+aHaZQn6SsEm8 pfQd15rQtJ5Zy0YNJgG8E/ST6h7tSlpvg94gU8HuRr+hm1uXon4yG7F831h3w1M8 3s04w8uj0PZ0qd9+TFjOMorQYKGoR53K+mM/x700Iby0pFBSPoiFwRUO9FabrGWO PE/NTd1BJhQHTHoi4+LotCQkcd3U95tJj7Kz2sKPbKdgo20w9uZQ3nGspinVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBCs3lAqq16sORwBJXlxNfHxabUcwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJojANBgkqhkiG 9w0BAQsFAAOCAQEAsyl6W4O6MMSpC30zzxjjJs/+M8a4TBstBebxSnHKV+jgkL80 tQZtj39DAMyn5J5y7l/sHYFUIheV63bf4QZgLr6OMeEVItUe1Lowh127aULCrPWp /ED2GwnBQ+IU211APgjdm4r9yirc5hlu1XhPz+hpR+NFM8ygAUKv8LCNjPDtOJUT kq3tXsFapZCetb5DcCf7Oplj0OE5tAtPZz5mWS4Z2J80O/tDVvhSjG4LrpQKzhhS bv09xPFfIVZF6sd0A+7HdesoOJO+PRB4+kLTGjACSv2JcuBeiXj3FDXUmCDA16qI c9i+U5DDc8/UbWCo8N2z6QuHl50c3/5P8LpWww== -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:07 2025 by rpki-client