$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: GAohz5RTMDzvAhDdX4yMhjOpe6KzDjN07MV00hsUFVM= Subject key identifier: 74:C8:C6:20:83:B6:70:44:D8:73:02:B1:D4:34:A7:49:02:7E:1F:C8 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 74A1213BE0182691F7B3F951FF6FBB739FD1AB82 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 02:00:01 +0000 ROA not before: Mon 02 Jun 2025 01:55:01 +0000 ROA not after: Mon 01 Jun 2026 02:00:01 +0000 asID: 9794 IP address blocks: 203.201.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:a1:21:3b:e0:18:26:91:f7:b3:f9:51:ff:6f:bb:73:9f:d1:ab:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:01 2025 GMT Not After : Jun 1 02:00:01 2026 GMT Subject: CN=74C8C62083B67044D87302B1D434A749027E1FC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:74:45:f6:6e:6c:31:6c:cd:a5:65:e3:59:bc: a9:8e:62:78:12:43:d4:9a:a1:2e:4d:70:72:36:3c: 2c:6c:2e:ea:97:48:d3:97:9c:af:69:a7:fc:7b:1b: bf:16:54:83:de:52:de:c1:96:61:a8:34:9a:f2:fa: 47:b5:ec:e2:6a:8b:d4:c5:d6:da:35:2c:86:db:bd: 0c:b7:33:b7:89:19:3a:fb:fd:28:ef:93:1a:35:b4: 59:17:65:67:d0:de:d9:c1:b7:eb:59:23:21:1f:c7: 8a:5f:5a:fb:31:50:c9:a5:f5:e4:91:9c:85:05:43: a9:d2:6b:9e:c5:1f:18:73:fb:ce:67:ea:cf:f9:6e: dd:26:2e:ad:50:30:4d:b8:a9:6d:b4:03:a9:0e:b1: 8c:71:da:79:75:47:5f:e0:ef:da:aa:15:7c:5b:00: 9a:e9:75:07:3d:c6:8b:29:6e:73:68:10:8f:29:c7: 9e:4c:61:03:c0:42:b7:eb:65:8d:62:83:2d:c7:fa: 01:60:6f:92:94:aa:61:75:b6:18:1f:2e:f8:61:a1: a0:f5:44:1c:0f:d9:e3:db:8f:eb:d1:24:a1:ea:21: 74:6f:a6:d8:a5:87:7a:60:2d:7e:c3:72:b1:8a:9e: 84:84:35:48:62:a2:75:5b:4c:6d:81:6c:f8:6c:57: 2f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C8:C6:20:83:B6:70:44:D8:73:02:B1:D4:34:A7:49:02:7E:1F:C8 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136332e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.163.0/24 Signature Algorithm: sha256WithRSAEncryption 83:75:fa:34:20:e6:2a:4b:f5:f2:0c:61:85:e3:ff:55:ff:69: cd:ac:77:ba:ca:9b:1c:d1:69:3a:59:0a:28:33:0c:40:8c:90: 0a:04:61:0c:11:2c:41:59:33:0f:3b:48:b5:7c:7c:43:4b:89: 43:61:77:16:2d:59:e6:fb:37:2c:29:3b:f2:c6:d1:14:54:1d: 82:e9:08:a4:91:0a:43:b6:63:e6:ae:27:64:42:ab:a5:61:61: 9b:37:ff:16:fd:81:33:70:fe:dc:45:60:fa:23:6e:89:20:16: bb:ac:3b:eb:9c:6a:78:b5:5b:29:80:08:95:eb:43:6c:ae:76: 76:ee:39:3a:c0:46:50:bf:94:ee:db:fc:8f:98:8d:fa:6b:f1: ce:b0:71:81:5e:4a:0f:5a:71:62:96:0b:91:12:4c:67:85:ce: bb:1e:1e:05:14:0a:89:87:cd:38:68:79:f8:da:d6:d0:e0:5a: 35:59:58:22:82:5c:6a:ab:40:61:d9:a0:6e:39:ea:ee:20:c2: d6:64:17:78:b2:fe:a2:cf:2b:6c:de:91:8c:97:ed:33:25:8d: e5:48:70:de:fa:62:44:0b:66:b6:e3:42:2f:36:73:07:72:4e: 3e:c1:ce:79:52:57:9c:7f:42:2b:91:09:17:61:35:bb:ca:f4: 68:9a:f5:9c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdKEhO+AYJpH3s/lR/2+7c5/Rq4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDFaFw0yNjA2MDEwMjAwMDFaMDMxMTAvBgNV BAMTKDc0QzhDNjIwODNCNjcwNDREODczMDJCMUQ0MzRBNzQ5MDI3RTFGQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGdEX2bmwxbM2lZeNZvKmOYngS Q9SaoS5NcHI2PCxsLuqXSNOXnK9pp/x7G78WVIPeUt7BlmGoNJry+ke17OJqi9TF 1to1LIbbvQy3M7eJGTr7/Sjvkxo1tFkXZWfQ3tnBt+tZIyEfx4pfWvsxUMml9eSR nIUFQ6nSa57FHxhz+85n6s/5bt0mLq1QME24qW20A6kOsYxx2nl1R1/g79qqFXxb AJrpdQc9xospbnNoEI8px55MYQPAQrfrZY1igy3H+gFgb5KUqmF1thgfLvhhoaD1 RBwP2ePbj+vRJKHqIXRvptilh3pgLX7DcrGKnoSENUhionVbTG2BbPhsVy8rAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUdMjGIIO2cETYcwKx1DSnSQJ+H8gwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJozANBgkqhkiG 9w0BAQsFAAOCAQEAg3X6NCDmKkv18gxhheP/Vf9pzax3usqbHNFpOlkKKDMMQIyQ CgRhDBEsQVkzDztItXx8Q0uJQ2F3Fi1Z5vs3LCk78sbRFFQdgukIpJEKQ7Zj5q4n ZEKrpWFhmzf/Fv2BM3D+3EVg+iNuiSAWu6w765xqeLVbKYAIletDbK52du45OsBG UL+U7tv8j5iN+mvxzrBxgV5KD1pxYpYLkRJMZ4XOux4eBRQKiYfNOGh5+NrW0OBa NVlYIoJcaqtAYdmgbjnq7iDC1mQXeLL+os8rbN6RjJftMyWN5Uhw3vpiRAtmtuNC LzZzB3JOPsHOeVJXnH9CK5EJF2E1u8r0aJr1nA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:17 2025 by rpki-client