$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa File: 3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa (raw, json) Hash identifier: 2B8gTOx7Mgl3KtolHS+EVY4i3u8xCY8gStAyNU2X5/Q= Subject key identifier: BE:6E:3E:3D:38:13:DE:4E:DA:76:46:2F:FE:9A:52:09:16:6F:7B:C4 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 569AE8671530FDEABA9FED55618AE0B11CA203F4 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:05 +0000 ROA not before: Mon 02 Jun 2025 00:58:05 +0000 ROA not after: Mon 01 Jun 2026 01:03:05 +0000 asID: 38778 IP address blocks: 203.201.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:9a:e8:67:15:30:fd:ea:ba:9f:ed:55:61:8a:e0:b1:1c:a2:03:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:05 2025 GMT Not After : Jun 1 01:03:05 2026 GMT Subject: CN=BE6E3E3D3813DE4EDA76462FFE9A5209166F7BC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:67:a6:5d:b8:7b:d5:6e:08:2b:01:3b:c5:87: 47:7d:a1:92:21:8d:3a:6d:7c:e6:2d:83:0f:d4:98: 51:35:cd:ec:d0:e0:cc:28:23:65:98:aa:2f:2e:c9: 2b:37:b9:8b:81:41:75:f1:fe:b1:36:1e:3a:42:c9: 72:4b:11:b3:fd:11:d6:71:6a:f5:7f:14:56:f6:46: f9:ed:b8:a2:36:6f:bc:9f:10:11:97:8a:dc:30:75: fa:ec:c1:e3:56:52:42:7e:5f:68:1f:7d:17:83:47: 97:a8:32:4a:18:9d:dc:0a:c9:77:c8:43:ba:33:f9: 84:eb:30:e8:9d:7f:bc:8b:e9:06:ba:ea:42:e0:95: d1:58:ea:a2:23:1e:ba:e1:50:c8:2d:09:d3:30:b0: 7a:fc:fb:92:fe:88:f8:4e:b6:df:95:63:64:d1:c9: d1:80:10:97:88:29:78:ab:38:fa:4a:07:12:28:78: 22:60:75:e0:86:af:55:24:51:64:25:e8:5e:96:c9: f8:bb:f8:17:ca:73:41:b6:83:c7:73:61:08:30:4e: f4:89:95:7a:42:b2:36:5f:13:03:2f:bc:59:c0:b8: 78:b2:a1:a3:ce:1c:24:ba:53:d3:21:0d:bb:3e:eb: c4:e7:c6:e9:18:df:bd:ac:d8:e6:01:58:96:36:d4: 1d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:6E:3E:3D:38:13:DE:4E:DA:76:46:2F:FE:9A:52:09:16:6F:7B:C4 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32332d3233203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.170.0/23 Signature Algorithm: sha256WithRSAEncryption ae:1c:fd:77:cd:9a:21:7b:91:c8:89:53:20:33:a9:22:9c:54: 36:3f:64:70:cc:5b:f3:9b:30:a9:3d:4d:44:e3:c7:21:43:d6: 12:58:85:57:63:8e:43:00:35:3a:a7:37:ab:65:39:32:b7:22: ff:4f:a2:e3:f4:97:4e:ee:39:c0:e3:e3:2f:03:3e:ca:f3:bb: ba:55:60:d9:ad:87:f5:e0:bd:11:75:b5:cf:04:9b:27:d6:47: 00:9f:58:64:8a:1b:bc:e3:88:2d:1c:ff:51:6f:80:23:37:3c: 69:00:71:47:ee:93:62:ab:e3:0d:28:9f:a7:a3:42:52:d8:e6: 3f:f1:84:60:f9:a7:fc:99:62:96:99:ca:59:ad:1f:6c:66:d8: fc:64:bb:23:b2:18:a5:b3:31:79:b1:33:b5:e6:c7:d0:b4:b2: 21:2e:56:b2:70:43:7d:6c:90:51:68:01:30:6e:a2:bb:1a:23: ee:d4:59:e4:68:97:4d:b3:ce:60:66:5c:48:2c:fa:d3:5c:63: 08:4f:b4:56:e1:0c:b7:c0:89:1f:fb:62:79:3c:cd:23:fb:f3: 5d:77:e6:08:c8:9c:9d:6e:e6:55:bf:8d:1e:ac:71:83:18:4a: cc:59:18:e9:68:88:46:a9:4d:36:b6:dc:93:0f:1c:73:5e:fb: f4:e6:42:ea -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVproZxUw/eq6n+1VYYrgsRyiA/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDVaFw0yNjA2MDEwMTAzMDVaMDMxMTAvBgNV BAMTKEJFNkUzRTNEMzgxM0RFNEVEQTc2NDYyRkZFOUE1MjA5MTY2RjdCQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Z6ZduHvVbggrATvFh0d9oZIh jTptfOYtgw/UmFE1zezQ4MwoI2WYqi8uySs3uYuBQXXx/rE2HjpCyXJLEbP9EdZx avV/FFb2RvntuKI2b7yfEBGXitwwdfrsweNWUkJ+X2gffReDR5eoMkoYndwKyXfI Q7oz+YTrMOidf7yL6Qa66kLgldFY6qIjHrrhUMgtCdMwsHr8+5L+iPhOtt+VY2TR ydGAEJeIKXirOPpKBxIoeCJgdeCGr1UkUWQl6F6Wyfi7+BfKc0G2g8dzYQgwTvSJ lXpCsjZfEwMvvFnAuHiyoaPOHCS6U9MhDbs+68TnxukY372s2OYBWJY21B09AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvm4+PTgT3k7adkYv/ppSCRZve8QwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy8mqMA0GCSqG SIb3DQEBCwUAA4IBAQCuHP13zZohe5HIiVMgM6kinFQ2P2RwzFvzmzCpPU1E48ch Q9YSWIVXY45DADU6pzerZTkytyL/T6Lj9JdO7jnA4+MvAz7K87u6VWDZrYf14L0R dbXPBJsn1kcAn1hkihu844gtHP9Rb4AjNzxpAHFH7pNiq+MNKJ+no0JS2OY/8YRg +af8mWKWmcpZrR9sZtj8ZLsjshilszF5sTO15sfQtLIhLlaycEN9bJBRaAEwbqK7 GiPu1FnkaJdNs85gZlxILPrTXGMIT7RW4Qy3wIkf+2J5PM0j+/Ndd+YIyJydbuZV v40erHGDGErMWRjpaIhGqU02ttyTDxxzXvv05kLq -----END CERTIFICATE-----Generated at Fri Jun 6 16:44:02 2025 by rpki-client