$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 4ONUqZJzHxpriORipCvw3VAsa3Wt54WSe2T5NHIr6SQ= Subject key identifier: 4C:EE:2C:31:37:AE:87:0A:33:D2:B1:B1:FA:EE:04:3A:6B:10:68:B3 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 2F82B07D93584C66547DCEE650A402554234B211 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 02:00:01 +0000 ROA not before: Mon 02 Jun 2025 01:55:01 +0000 ROA not after: Mon 01 Jun 2026 02:00:01 +0000 asID: 38778 IP address blocks: 203.201.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:82:b0:7d:93:58:4c:66:54:7d:ce:e6:50:a4:02:55:42:34:b2:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:01 2025 GMT Not After : Jun 1 02:00:01 2026 GMT Subject: CN=4CEE2C3137AE870A33D2B1B1FAEE043A6B1068B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:61:7a:f4:37:0a:05:bc:de:17:9f:09:8a:ee: bf:07:a2:41:fe:32:cc:5c:77:2c:fa:49:91:4b:f6: 03:c7:4d:20:c4:d4:d8:f3:40:3e:b5:21:f8:95:de: 3b:a3:fa:b4:f1:fc:3c:87:80:ef:f7:7f:91:46:97: 4b:3e:91:8c:3c:a2:bf:e9:e3:ca:bf:1f:f2:83:2b: dc:39:e3:6f:9e:6f:1f:ca:5a:3d:fa:52:f8:0c:97: ba:9d:08:af:29:e9:6c:b2:9b:85:24:01:be:f6:f2: a1:4c:02:26:b2:ff:8c:bb:f5:2c:07:c2:97:06:8e: 3b:0a:b0:69:6b:f7:a5:86:7c:da:4e:65:e5:97:6a: bd:b7:d3:a1:1e:fc:72:4b:1a:00:5f:9a:65:64:e2: 98:73:ac:6d:26:87:cd:aa:4f:8b:98:90:91:96:cd: 1a:f9:50:ea:1a:f2:d7:f3:7f:05:ac:e3:97:86:ef: 6f:6a:a8:48:19:e2:0f:b4:37:32:94:73:4b:0d:77: 14:45:d5:e7:4e:18:60:24:69:37:fd:bc:ba:64:95: 50:30:41:36:d7:f6:a9:58:ae:37:1e:07:28:f3:d3: b0:d8:1a:8a:f3:84:2f:1f:11:88:f6:f7:79:74:fc: 4c:31:eb:60:be:73:65:f2:45:df:e4:37:c0:f2:f9: 7b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:EE:2C:31:37:AE:87:0A:33:D2:B1:B1:FA:EE:04:3A:6B:10:68:B3 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136392e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.169.0/24 Signature Algorithm: sha256WithRSAEncryption 92:c0:cf:6b:26:98:f4:64:12:49:e9:4e:b3:67:5e:90:74:f3: 72:01:76:f5:e5:87:79:da:6d:ae:c1:ae:43:fc:fe:89:b4:38: fc:2c:96:ea:49:af:00:3c:07:fd:8c:72:45:2b:f9:49:8c:1d: 85:3f:3e:44:93:3b:ac:c7:21:5b:ed:83:e1:f3:42:cf:5c:0b: 9d:c0:07:31:6e:cf:e5:58:d2:9d:25:e2:fb:0b:ec:56:41:4a: b1:77:83:59:87:e8:86:63:21:ad:35:36:7b:1e:6b:07:7b:3a: f3:ac:83:99:e7:ed:ea:ed:05:dc:3f:c8:b2:75:81:69:70:1b: 19:2d:81:ac:46:73:29:11:89:88:6d:d2:7f:36:46:47:69:65: 84:10:a0:7f:5c:6a:14:2f:d0:d6:a8:24:b3:5c:c3:b9:bf:80: 06:7d:5c:bd:a0:76:21:a2:c5:dc:2f:70:29:30:cf:b6:73:7c: cb:bc:89:90:eb:5c:68:c5:3b:d0:e3:61:1b:62:ea:87:58:61: 4b:be:c7:bb:28:7e:f3:d5:68:13:21:28:03:80:a2:1a:cb:c7: ec:1d:1a:79:47:f6:fa:97:c6:e7:23:bb:a0:61:4b:17:0c:cd: aa:19:bc:34:40:2a:7d:7c:04:0f:fc:22:a1:ec:a7:1f:4f:ec: 8a:61:e1:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL4KwfZNYTGZUfc7mUKQCVUI0shEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDFaFw0yNjA2MDEwMjAwMDFaMDMxMTAvBgNV BAMTKDRDRUUyQzMxMzdBRTg3MEEzM0QyQjFCMUZBRUUwNDNBNkIxMDY4QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2YXr0NwoFvN4XnwmK7r8HokH+ Msxcdyz6SZFL9gPHTSDE1NjzQD61IfiV3juj+rTx/DyHgO/3f5FGl0s+kYw8or/p 48q/H/KDK9w542+ebx/KWj36UvgMl7qdCK8p6Wyym4UkAb728qFMAiay/4y79SwH wpcGjjsKsGlr96WGfNpOZeWXar2306Ee/HJLGgBfmmVk4phzrG0mh82qT4uYkJGW zRr5UOoa8tfzfwWs45eG729qqEgZ4g+0NzKUc0sNdxRF1edOGGAkaTf9vLpklVAw QTbX9qlYrjceByjz07DYGorzhC8fEYj293l0/Ewx62C+c2XyRd/kN8Dy+XtDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTO4sMTeuhwoz0rGx+u4EOmsQaLMwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mpMA0GCSqG SIb3DQEBCwUAA4IBAQCSwM9rJpj0ZBJJ6U6zZ16QdPNyAXb15Yd52m2uwa5D/P6J tDj8LJbqSa8APAf9jHJFK/lJjB2FPz5EkzusxyFb7YPh80LPXAudwAcxbs/lWNKd JeL7C+xWQUqxd4NZh+iGYyGtNTZ7HmsHezrzrIOZ5+3q7QXcP8iydYFpcBsZLYGs RnMpEYmIbdJ/NkZHaWWEEKB/XGoUL9DWqCSzXMO5v4AGfVy9oHYhosXcL3ApMM+2 c3zLvImQ61xoxTvQ42EbYuqHWGFLvse7KH7z1WgTISgDgKIay8fsHRp5R/b6l8bn I7ugYUsXDM2qGbw0QCp9fAQP/CKh7KcfT+yKYeG9 -----END CERTIFICATE-----Generated at Fri Jun 6 16:43:29 2025 by rpki-client