$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136372e302f32342d3234203d3e2039373934.roa File: 3230332e3230312e3136372e302f32342d3234203d3e2039373934.roa (raw, json) Hash identifier: 0DQmXQ9OTszZuNhOUNMuovf2PpPJ8Lg4gSgj7mAItF4= Subject key identifier: F9:33:B4:2E:48:1E:49:8A:BE:DD:DA:ED:CD:2A:E5:7C:13:9C:4A:A1 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 50E4BEFCE7FD1BD88BEE1D3B5EB0C198C02CE760 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136372e302f32342d3234203d3e2039373934.roa Signing time: Mon 02 Jun 2025 01:03:03 +0000 ROA not before: Mon 02 Jun 2025 00:58:03 +0000 ROA not after: Mon 01 Jun 2026 01:03:03 +0000 asID: 9794 IP address blocks: 203.201.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e4:be:fc:e7:fd:1b:d8:8b:ee:1d:3b:5e:b0:c1:98:c0:2c:e7:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:03 2025 GMT Not After : Jun 1 01:03:03 2026 GMT Subject: CN=F933B42E481E498ABEDDDAEDCD2AE57C139C4AA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:96:a8:58:64:06:1e:9b:f9:23:0b:15:07:66: 5d:cf:b1:65:ae:93:e5:62:43:c1:78:61:d1:3b:8a: d4:c4:c6:b8:8f:17:fb:6f:33:e8:27:11:a7:d8:e9: b2:01:73:40:7b:cb:b6:89:2b:d8:7a:63:b4:85:41: ea:37:c6:d0:a3:2f:29:ba:8e:98:3c:b2:2c:53:94: 5f:d6:a6:4a:6f:c3:c8:5c:80:44:66:3b:7e:6b:b8: 86:90:3d:33:92:76:8f:78:5f:1f:2d:ba:2d:e7:a8: 2c:ec:95:97:e2:cd:05:d8:49:12:d5:6d:71:56:9f: 94:63:d2:83:8d:a8:92:a2:20:a1:39:a9:b3:da:9b: 10:b5:f9:ea:a4:6e:3a:60:f5:4b:d4:b6:66:67:91: ee:e5:29:88:5d:d6:54:a6:99:3f:ee:44:63:76:74: 48:2d:d7:3e:8b:a6:45:55:f8:67:a4:07:1a:cd:9d: cf:24:24:17:55:4e:ca:5a:0e:b4:7c:56:8a:51:f7: 4e:2a:4c:4d:ea:d9:7a:8b:64:2a:4b:89:6a:ce:f8: 16:50:b5:fc:18:38:ba:b1:3e:92:31:82:b5:3d:9d: a3:21:45:b6:a4:1f:c2:7f:5c:d1:a3:30:7c:8f:88: 59:02:89:c8:ee:ff:9e:66:ea:91:bb:44:f0:50:1b: 36:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:33:B4:2E:48:1E:49:8A:BE:DD:DA:ED:CD:2A:E5:7C:13:9C:4A:A1 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136372e302f32342d3234203d3e2039373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.167.0/24 Signature Algorithm: sha256WithRSAEncryption 79:61:5b:f7:56:ac:24:1d:d7:61:a5:80:98:0d:b1:d6:7d:80: ec:7d:e1:72:76:32:16:01:8a:f3:7f:07:ef:2a:3a:64:f4:49: 54:59:98:20:f3:31:6e:55:8c:d3:62:e0:7e:c9:7f:91:4d:36: 20:65:a5:e2:e2:b1:2a:2a:2c:df:22:97:73:e6:5f:9d:8b:f1: 0a:56:77:90:9d:9b:65:5f:c8:81:b2:b0:e2:7a:de:45:f3:7a: d2:1a:0d:27:f2:d3:89:b7:a1:e3:f9:68:fb:83:98:4b:3a:c9: b2:e9:d5:3e:9a:14:80:24:3f:39:9a:a0:be:09:36:76:40:6a: 24:69:58:5f:0a:d9:5b:87:c1:8e:b1:bb:32:96:6e:b4:e0:0a: 84:07:c6:1d:e7:3d:a5:e6:65:49:f3:fc:67:37:79:36:14:a0: 53:9b:18:b9:80:0d:e9:2d:7e:58:a8:6b:95:80:e8:7c:84:9c: 4e:a5:7f:33:14:c1:9d:a1:47:5a:36:7e:4a:a9:d1:b9:61:ba: 07:84:38:fd:9a:a7:7c:80:ce:46:4d:6e:16:a2:bd:66:e8:ec: 48:ad:40:b8:15:11:e8:06:e8:d1:a7:a5:7d:17:1f:81:1c:0f: 50:b7:70:c5:68:07:8e:da:2a:54:b4:02:8d:07:c2:23:a4:eb: 40:73:8d:12 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUOS+/Of9G9iL7h07XrDBmMAs52AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDNaFw0yNjA2MDEwMTAzMDNaMDMxMTAvBgNV BAMTKEY5MzNCNDJFNDgxRTQ5OEFCRUREREFFRENEMkFFNTdDMTM5QzRBQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCslqhYZAYem/kjCxUHZl3PsWWu k+ViQ8F4YdE7itTExriPF/tvM+gnEafY6bIBc0B7y7aJK9h6Y7SFQeo3xtCjLym6 jpg8sixTlF/Wpkpvw8hcgERmO35ruIaQPTOSdo94Xx8tui3nqCzslZfizQXYSRLV bXFWn5Rj0oONqJKiIKE5qbPamxC1+eqkbjpg9UvUtmZnke7lKYhd1lSmmT/uRGN2 dEgt1z6LpkVV+GekBxrNnc8kJBdVTspaDrR8VopR904qTE3q2XqLZCpLiWrO+BZQ tfwYOLqxPpIxgrU9naMhRbakH8J/XNGjMHyPiFkCicju/55m6pG7RPBQGzbvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+TO0LkgeSYq+3drtzSrlfBOcSqEwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTM3MzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMvJpzANBgkqhkiG 9w0BAQsFAAOCAQEAeWFb91asJB3XYaWAmA2x1n2A7H3hcnYyFgGK838H7yo6ZPRJ VFmYIPMxblWM02Lgfsl/kU02IGWl4uKxKios3yKXc+ZfnYvxClZ3kJ2bZV/IgbKw 4nreRfN60hoNJ/LTibeh4/lo+4OYSzrJsunVPpoUgCQ/OZqgvgk2dkBqJGlYXwrZ W4fBjrG7MpZutOAKhAfGHec9peZlSfP8Zzd5NhSgU5sYuYAN6S1+WKhrlYDofISc TqV/MxTBnaFHWjZ+SqnRuWG6B4Q4/ZqnfIDORk1uFqK9ZujsSK1AuBUR6Abo0ael fRcfgRwPULdwxWgHjtoqVLQCjQfCI6TrQHONEg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:25:53 2025 by rpki-client