$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136362e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136362e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: TS5AoIe/Ev3xPM0MFz2seNZxoW3VfGB9qbYwVtKaOMo= Subject key identifier: 14:ED:A6:36:47:06:AD:DA:1D:24:4B:C5:07:A1:5F:63:C9:4D:0C:31 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 34D4CBC882493E552FC1C57FB65C86A8A9055021 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136362e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:05 +0000 ROA not before: Mon 02 Jun 2025 00:58:05 +0000 ROA not after: Mon 01 Jun 2026 01:03:05 +0000 asID: 9794 IP address blocks: 203.201.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:d4:cb:c8:82:49:3e:55:2f:c1:c5:7f:b6:5c:86:a8:a9:05:50:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:05 2025 GMT Not After : Jun 1 01:03:05 2026 GMT Subject: CN=14EDA6364706ADDA1D244BC507A15F63C94D0C31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4f:79:59:70:d0:fc:0b:64:6a:cb:16:a7:f7: d8:88:b9:e8:4e:c0:53:09:f7:f5:6c:72:8c:da:b9: c6:e3:7a:e1:ef:42:6d:98:94:b6:46:5e:5e:a6:b6: ff:48:5d:61:d6:31:2f:88:1d:b6:a8:00:5d:05:f9: 0e:d2:63:93:d4:93:fb:ab:ca:b1:ec:18:7d:b0:a3: 1f:2c:ef:17:3d:58:d1:ca:4d:c0:a0:d9:0b:2f:79: 07:56:99:fd:eb:4a:c8:77:8f:28:91:65:cf:b8:f5: 88:4e:1f:18:60:d9:94:6e:8d:c4:ea:b5:6c:2e:d3: 8d:36:f0:cb:e2:1d:1f:96:7d:a0:57:7b:7e:5d:e6: 7e:64:ab:0d:23:7c:ce:5d:71:e9:9e:3c:f4:83:2f: 90:ff:a7:af:e8:fa:f1:ef:0d:8d:9f:70:61:92:7d: 84:64:d5:24:4b:8e:68:60:dc:c8:45:c5:c0:49:07: ff:e6:78:d2:19:32:fa:97:ae:5c:f6:6a:aa:4d:24: 39:59:d9:35:bc:5b:3c:09:b8:ba:11:60:97:fe:61: 2a:89:47:7a:cb:ca:56:f7:43:65:ea:bb:b0:a6:d2: 50:9f:dc:1a:76:3e:82:7c:44:7d:d8:a9:63:72:8a: 66:61:e3:88:a2:6d:12:36:c6:95:09:c7:c2:20:8f: 07:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:ED:A6:36:47:06:AD:DA:1D:24:4B:C5:07:A1:5F:63:C9:4D:0C:31 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136362e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.166.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:ff:ae:40:d2:8f:ab:c9:1c:86:ae:06:59:e9:a1:96:d5:3d: c8:0a:e4:07:79:1e:73:51:df:08:ce:85:05:90:6f:bc:50:d9: 20:56:5a:4d:83:1e:96:5e:e0:0e:71:46:9f:2e:1e:57:62:70: a5:b0:71:7a:cc:6d:ed:b3:a2:b9:03:15:9a:cc:de:6c:6b:4b: 97:df:8c:ff:71:09:33:a2:f9:db:19:3a:5f:9d:c0:3d:d6:ff: f1:c9:31:1e:fa:88:3d:76:a1:20:1d:01:f1:d8:eb:68:c7:7c: b4:42:49:dc:7c:88:3d:e3:f8:f1:3a:59:5f:5d:c2:06:e0:de: 18:13:4e:1c:bd:cc:72:a3:27:ae:49:d9:88:bc:99:44:f9:bb: 23:79:d6:2c:20:82:1e:b6:7e:88:57:2e:22:88:c1:c8:72:fc: 69:2e:f3:ac:d9:a0:b3:2c:6d:2a:c5:f5:32:af:93:49:f7:72: 76:b2:61:83:bd:5a:ca:3e:a8:e9:45:2d:5b:fd:cf:c5:44:1d: 56:39:d6:43:65:ac:61:56:ae:e6:79:72:54:da:14:08:82:ea: 06:b5:91:0e:fa:ec:56:77:98:c5:58:35:f3:97:85:64:17:3d: 80:d6:cd:28:21:6e:82:98:88:a0:68:ac:12:1c:59:03:2e:2d: dc:ec:d0:81 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNNTLyIJJPlUvwcV/tlyGqKkFUCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDVaFw0yNjA2MDEwMTAzMDVaMDMxMTAvBgNV BAMTKDE0RURBNjM2NDcwNkFEREExRDI0NEJDNTA3QTE1RjYzQzk0RDBDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyT3lZcND8C2Rqyxan99iIuehO wFMJ9/VscozaucbjeuHvQm2YlLZGXl6mtv9IXWHWMS+IHbaoAF0F+Q7SY5PUk/ur yrHsGH2wox8s7xc9WNHKTcCg2QsveQdWmf3rSsh3jyiRZc+49YhOHxhg2ZRujcTq tWwu04028MviHR+WfaBXe35d5n5kqw0jfM5dcemePPSDL5D/p6/o+vHvDY2fcGGS fYRk1SRLjmhg3MhFxcBJB//meNIZMvqXrlz2aqpNJDlZ2TW8WzwJuLoRYJf+YSqJ R3rLylb3Q2Xqu7Cm0lCf3Bp2PoJ8RH3YqWNyimZh44iibRI2xpUJx8Igjwf9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFO2mNkcGrdodJEvFB6FfY8lNDDEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJpjANBgkqhkiG 9w0BAQsFAAOCAQEALf+uQNKPq8kchq4GWemhltU9yArkB3kec1HfCM6FBZBvvFDZ IFZaTYMell7gDnFGny4eV2JwpbBxesxt7bOiuQMVmszebGtLl9+M/3EJM6L52xk6 X53APdb/8ckxHvqIPXahIB0B8djraMd8tEJJ3HyIPeP48TpZX13CBuDeGBNOHL3M cqMnrknZiLyZRPm7I3nWLCCCHrZ+iFcuIojByHL8aS7zrNmgsyxtKsX1Mq+TSfdy drJhg71ayj6o6UUtW/3PxUQdVjnWQ2WsYVau5nlyVNoUCILqBrWRDvrsVneYxVg1 85eFZBc9gNbNKCFugpiIoGisEhxZAy4t3OzQgQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:27 2025 by rpki-client