$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136342e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136342e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: dtoSXtIOp/2ygTLVtdliSjHj0nebDvP0cvBxTHECaEs= Subject key identifier: 49:C6:C9:D9:62:4E:F0:87:15:A3:FF:11:85:00:2A:58:69:81:B0:12 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 06A97410C4AD78EDE2777A48C0D643AECC5C541E Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136342e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:03 +0000 ROA not before: Mon 02 Jun 2025 00:58:03 +0000 ROA not after: Mon 01 Jun 2026 01:03:03 +0000 asID: 9794 IP address blocks: 203.201.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:a9:74:10:c4:ad:78:ed:e2:77:7a:48:c0:d6:43:ae:cc:5c:54:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:03 2025 GMT Not After : Jun 1 01:03:03 2026 GMT Subject: CN=49C6C9D9624EF08715A3FF1185002A586981B012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:0c:cb:00:08:54:e9:51:99:b8:7e:e8:50:64: 59:02:fa:0d:cb:32:79:ae:5e:d1:1c:77:fb:ce:05: fe:0f:65:ad:07:30:04:00:39:d0:af:91:51:e1:61: 2f:60:cf:fd:69:7b:3f:4f:60:ec:f0:ee:15:d3:1a: 4e:38:87:5e:d9:25:bb:29:b5:39:88:f4:3b:53:67: 76:49:ab:93:28:33:87:dd:6a:f4:e9:03:e6:5e:c2: 55:f3:1a:b9:4b:75:60:f3:79:4f:53:fe:c9:d9:e5: d8:d8:07:a6:ce:5b:24:cc:da:b9:e1:4f:4e:0f:0d: b3:87:78:9d:57:62:aa:da:fc:e3:4b:c5:21:f5:6e: 71:ed:f1:4d:07:e6:aa:e8:14:28:e2:77:50:50:cd: 3f:be:ea:ac:a6:3a:cf:90:70:d0:e9:62:4c:98:47: d9:94:c9:d1:24:fc:a1:73:08:dd:1e:6e:6f:71:6e: d9:ac:8f:3f:47:9f:f7:16:b5:bf:1f:d6:99:3e:b3: 00:e7:b2:51:de:e3:e6:8b:ef:cd:82:27:20:27:f7: a5:6b:d0:3e:07:72:c7:d9:6f:8c:6b:85:2c:dc:94: 93:dd:ea:26:cb:06:42:36:3f:44:22:b7:0d:9f:18: 03:61:f0:25:b5:76:2a:05:e7:dc:a8:f4:bc:1f:bb: d9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C6:C9:D9:62:4E:F0:87:15:A3:FF:11:85:00:2A:58:69:81:B0:12 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136342e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.164.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:90:8d:78:1c:00:08:69:a0:a0:54:11:14:89:a1:d1:fb:c1: 6c:3a:04:a9:cf:6e:bd:b4:49:bc:61:b0:d7:3a:47:58:72:ba: 9c:23:5d:10:18:7a:a7:31:3c:3b:ad:30:8c:9d:2e:81:c2:b4: d6:f4:f3:83:0e:87:66:1a:b2:04:dd:c9:e6:9d:79:28:60:84: 8c:35:03:0c:a5:00:53:42:41:7b:b9:53:69:e0:da:10:e3:6c: d5:f4:13:a8:ba:b4:94:49:b8:30:40:a6:ed:b5:38:79:7f:c6: 37:95:2a:88:d2:c1:8d:a0:9b:06:2d:c8:e1:bf:90:0c:14:3f: 0b:19:c3:10:5b:81:32:a5:5f:7a:1d:13:f2:bc:fa:5c:44:a1: 31:d9:61:d6:ea:76:3a:80:27:88:47:2c:83:17:e1:14:eb:6f: e1:25:50:21:75:2b:6b:75:04:97:c0:04:35:d6:a3:53:2d:2d: 32:92:18:ac:6c:e0:a8:49:20:ab:2e:26:27:5f:53:59:37:b4: a0:df:db:20:f8:bb:9d:91:6b:11:d9:b8:10:07:cd:d7:6b:d9: f0:8b:68:cf:96:3c:cd:e5:24:8e:ad:60:d8:d8:96:d4:ef:f1: 39:55:e0:cb:00:7c:ff:f3:47:a9:8e:9e:ea:ca:e6:6a:64:94: 8b:42:f4:e5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBql0EMSteO3id3pIwNZDrsxcVB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDNaFw0yNjA2MDEwMTAzMDNaMDMxMTAvBgNV BAMTKDQ5QzZDOUQ5NjI0RUYwODcxNUEzRkYxMTg1MDAyQTU4Njk4MUIwMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1DMsACFTpUZm4fuhQZFkC+g3L MnmuXtEcd/vOBf4PZa0HMAQAOdCvkVHhYS9gz/1pez9PYOzw7hXTGk44h17ZJbsp tTmI9DtTZ3ZJq5MoM4fdavTpA+ZewlXzGrlLdWDzeU9T/snZ5djYB6bOWyTM2rnh T04PDbOHeJ1XYqra/ONLxSH1bnHt8U0H5qroFCjid1BQzT++6qymOs+QcNDpYkyY R9mUydEk/KFzCN0ebm9xbtmsjz9Hn/cWtb8f1pk+swDnslHe4+aL782CJyAn96Vr 0D4HcsfZb4xrhSzclJPd6ibLBkI2P0Qitw2fGANh8CW1dioF59yo9Lwfu9knAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUScbJ2WJO8IcVo/8RhQAqWGmBsBIwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJpDANBgkqhkiG 9w0BAQsFAAOCAQEALJCNeBwACGmgoFQRFImh0fvBbDoEqc9uvbRJvGGw1zpHWHK6 nCNdEBh6pzE8O60wjJ0ugcK01vTzgw6HZhqyBN3J5p15KGCEjDUDDKUAU0JBe7lT aeDaEONs1fQTqLq0lEm4MECm7bU4eX/GN5UqiNLBjaCbBi3I4b+QDBQ/CxnDEFuB MqVfeh0T8rz6XEShMdlh1up2OoAniEcsgxfhFOtv4SVQIXUra3UEl8AENdajUy0t MpIYrGzgqEkgqy4mJ19TWTe0oN/bIPi7nZFrEdm4EAfN12vZ8Itoz5Y8zeUkjq1g 2NiW1O/xOVXgywB8//NHqY6e6srmamSUi0L05Q== -----END CERTIFICATE-----Generated at Thu Jun 5 18:24:17 2025 by rpki-client