$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: QrpvNcp6tucRoYDhMfDahm1BighVg0dfE6Ea6eNe1vo= Subject key identifier: BC:59:F7:F8:35:76:F4:44:E4:A1:3E:39:53:E7:B5:63:42:2D:44:A7 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 695DFCC4B3F78385A382E98FF93C031150335077 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:01 +0000 ROA not before: Mon 02 Jun 2025 00:58:01 +0000 ROA not after: Mon 01 Jun 2026 01:03:01 +0000 asID: 38778 IP address blocks: 203.201.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:5d:fc:c4:b3:f7:83:85:a3:82:e9:8f:f9:3c:03:11:50:33:50:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:01 2025 GMT Not After : Jun 1 01:03:01 2026 GMT Subject: CN=BC59F7F83576F444E4A13E3953E7B563422D44A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e7:cb:a7:a7:03:0c:3c:e3:fc:b0:39:37:bb: 50:77:90:2c:d4:b2:98:ad:bb:48:2a:65:2d:15:9f: 3d:a3:43:0c:7d:4f:d4:75:84:10:0a:d1:ae:8f:a6: ed:a7:1c:05:52:f8:1a:90:d1:c9:fe:41:1b:a6:5f: 80:8c:e0:14:7c:11:a4:63:4b:d7:0a:20:5f:df:fb: f4:03:f8:44:51:c9:4d:18:7f:83:09:c1:77:39:67: 06:7d:8f:79:b9:0d:02:74:f6:e4:90:6b:a4:e7:a4: 67:85:fb:8f:35:49:fb:90:ef:e5:4f:6b:9c:fb:dd: 20:b7:22:29:3e:28:29:51:73:b8:f0:72:55:ff:2e: eb:e7:2b:6b:65:ed:03:9e:56:70:3e:b9:47:c1:5d: ae:d1:2c:69:5a:17:ef:72:9e:73:04:f7:b4:f4:7d: 96:1c:3c:8b:a8:6f:6a:65:85:23:ff:c5:ca:fe:c0: f7:4f:7c:ae:1d:df:11:e9:b7:30:f8:68:1d:2e:2e: 6f:89:ca:38:22:03:93:54:97:cd:04:64:76:7b:ff: 21:3e:80:cc:d7:16:3c:05:ba:3b:4e:19:5e:ab:94: 5f:6c:15:90:b4:46:70:40:2f:de:4e:41:5e:8a:f6: 8f:8f:39:de:d6:d9:09:e7:67:be:56:51:8c:db:d5: 6a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:59:F7:F8:35:76:F4:44:E4:A1:3E:39:53:E7:B5:63:42:2D:44:A7 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137302e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.170.0/24 Signature Algorithm: sha256WithRSAEncryption a0:11:52:2e:8d:0d:87:98:2f:b9:f3:fc:b6:88:e6:9c:12:95: 24:f2:35:a1:ae:84:b4:04:d6:3b:84:87:a6:ef:56:cc:65:3c: fd:ee:96:1a:f5:d9:75:de:78:fe:5c:17:7c:b1:69:9d:82:41: 1b:72:49:1a:b3:1e:2a:98:f2:31:ce:a4:2e:8b:81:3f:aa:42: 83:3b:20:0e:37:2f:d9:66:5f:e9:2a:6d:da:6f:35:d8:f2:6e: df:2d:7b:8f:b0:48:f4:ab:40:3e:b2:62:5a:9c:78:ec:00:4e: 8c:95:46:93:74:5b:cb:b7:eb:e5:6a:62:9a:2f:fd:f6:6c:36: 35:27:2d:99:a7:06:91:c8:3a:96:f4:09:8b:74:83:87:ed:e5: e6:5d:b6:9a:59:1c:7e:bd:98:ea:27:16:cd:0a:bd:f3:b6:46: f7:75:d2:31:8e:6b:d2:35:32:02:d5:25:08:cc:50:f6:1b:9e: 11:46:0b:97:b1:74:87:91:66:07:69:42:ae:30:86:ea:96:59: ff:b5:7a:f9:7a:e7:70:26:3f:37:37:0b:66:cf:ac:f5:ba:48: 08:bd:2e:69:28:71:a7:0e:cd:73:8f:3a:e8:f1:37:c9:8e:61: c9:9d:46:eb:83:80:dd:32:64:85:f5:49:b5:be:c0:86:c3:5b: 61:ec:73:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaV38xLP3g4WjgumP+TwDEVAzUHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDFaFw0yNjA2MDEwMTAzMDFaMDMxMTAvBgNV BAMTKEJDNTlGN0Y4MzU3NkY0NDRFNEExM0UzOTUzRTdCNTYzNDIyRDQ0QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX58unpwMMPOP8sDk3u1B3kCzU spitu0gqZS0Vnz2jQwx9T9R1hBAK0a6Ppu2nHAVS+BqQ0cn+QRumX4CM4BR8EaRj S9cKIF/f+/QD+ERRyU0Yf4MJwXc5ZwZ9j3m5DQJ09uSQa6TnpGeF+481SfuQ7+VP a5z73SC3Iik+KClRc7jwclX/LuvnK2tl7QOeVnA+uUfBXa7RLGlaF+9ynnME97T0 fZYcPIuob2plhSP/xcr+wPdPfK4d3xHptzD4aB0uLm+JyjgiA5NUl80EZHZ7/yE+ gMzXFjwFujtOGV6rlF9sFZC0RnBAL95OQV6K9o+POd7W2QnnZ75WUYzb1WoBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvFn3+DV29ETkoT45U+e1Y0ItRKcwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mqMA0GCSqG SIb3DQEBCwUAA4IBAQCgEVIujQ2HmC+58/y2iOacEpUk8jWhroS0BNY7hIem71bM ZTz97pYa9dl13nj+XBd8sWmdgkEbckkasx4qmPIxzqQui4E/qkKDOyAONy/ZZl/p Km3abzXY8m7fLXuPsEj0q0A+smJanHjsAE6MlUaTdFvLt+vlamKaL/32bDY1Jy2Z pwaRyDqW9AmLdIOH7eXmXbaaWRx+vZjqJxbNCr3ztkb3ddIxjmvSNTIC1SUIzFD2 G54RRguXsXSHkWYHaUKuMIbqlln/tXr5eudwJj83Nwtmz6z1ukgIvS5pKHGnDs1z jzro8TfJjmHJnUbrg4DdMmSF9Um1vsCGw1th7HO9 -----END CERTIFICATE-----Generated at Fri Jun 6 16:55:51 2025 by rpki-client