$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: TgvOFJWabM0+OTEojyl9vyUOgwFiGljg4u9LHkCu3Pw= Subject key identifier: FE:8B:FD:03:42:2F:B0:77:53:54:66:B0:D3:57:19:3E:5A:CC:98:5B Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 65C3E0E359CC5FF71FA40121C648D08C82512435 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:01 +0000 ROA not before: Mon 02 Jun 2025 00:58:01 +0000 ROA not after: Mon 01 Jun 2026 01:03:01 +0000 asID: 38778 IP address blocks: 203.201.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c3:e0:e3:59:cc:5f:f7:1f:a4:01:21:c6:48:d0:8c:82:51:24:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:01 2025 GMT Not After : Jun 1 01:03:01 2026 GMT Subject: CN=FE8BFD03422FB077535466B0D357193E5ACC985B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ee:47:35:24:df:70:3e:2e:96:1c:dd:b2:d4: 9d:08:62:05:d9:66:2d:85:9f:00:8b:78:75:06:05: 18:ae:67:4d:37:34:d7:b9:95:98:ca:3e:76:0f:19: 46:e0:97:48:f6:78:a8:cc:1a:0e:98:2b:8a:3e:e5: 84:c9:52:01:88:f6:fd:39:24:b4:b1:20:c2:50:dd: ce:ef:49:91:85:a7:08:06:1e:aa:66:23:d1:94:57: 1a:eb:e9:5c:a7:27:6a:f5:4f:a0:ee:73:18:f0:f0: 85:2d:66:32:f7:5c:4a:3d:4d:ea:00:26:77:49:67: f4:72:b2:a1:35:7d:0d:d0:90:f2:49:76:24:cf:54: c4:8a:b8:e2:dc:9e:71:e9:84:0e:b6:cb:3b:32:10: 89:bb:d9:80:56:7a:6d:a6:4b:0d:7a:28:49:78:25: 04:6c:a4:d7:71:0e:64:df:3d:3a:43:2d:f4:e4:fc: 11:f5:0c:3c:4f:64:e5:58:68:9c:da:44:1b:cf:29: b8:7a:ab:b7:9b:ab:f0:99:85:28:b0:2e:c8:32:32: 0d:f0:fc:25:88:de:bb:5b:46:1b:8d:2b:41:ee:20: 5f:49:3a:d3:ed:57:b3:ec:54:6a:d3:67:95:7c:42: fd:da:bd:5c:6f:f0:1f:62:9d:aa:b3:80:ae:c4:09: eb:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:8B:FD:03:42:2F:B0:77:53:54:66:B0:D3:57:19:3E:5A:CC:98:5B X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137312e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.171.0/24 Signature Algorithm: sha256WithRSAEncryption 03:da:d8:c3:38:c3:d5:6f:aa:f5:f1:de:7e:5e:9a:b5:ef:34: 23:f7:0e:4e:93:39:db:55:b0:ec:ce:48:e7:f1:e9:84:a4:a3: e3:b3:c5:ec:c0:fd:c9:37:be:2c:dc:6b:9f:00:e6:7b:07:99: 26:b5:ca:34:dc:89:2e:cc:08:da:19:2a:cc:72:19:ab:9a:92: 7a:9f:dc:a6:1c:86:74:1b:ef:dd:a5:43:68:0e:66:c1:65:e2: 0e:85:4f:be:5f:d4:30:b7:8f:0a:82:e8:fb:76:9f:1a:70:bb: 18:8b:bb:d2:26:55:b0:ae:7d:12:a7:46:3e:c3:ea:f3:13:eb: 44:23:45:3f:c6:ba:c8:ec:af:7e:c0:0a:50:18:5a:9e:60:d1: 6e:fe:26:4c:ce:4f:ad:28:8c:1b:86:e0:27:09:45:07:8c:45: b8:b0:24:76:fd:6d:eb:d0:d3:db:e2:47:ab:4f:b1:62:65:2c: f0:97:6c:86:27:66:c6:9a:29:59:a5:98:98:5f:5e:1c:95:b3: 50:dd:0d:a2:7a:c4:ba:b1:4e:1a:bf:cf:33:fc:6e:eb:97:3e: 72:ff:f7:ff:17:b8:8d:8a:31:43:f0:25:af:30:d3:05:ac:a1: c3:a7:cd:f9:cb:ce:10:e5:65:ef:2f:ff:41:ae:61:dd:87:97: 88:a9:c0:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZcPg41nMX/cfpAEhxkjQjIJRJDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDFaFw0yNjA2MDEwMTAzMDFaMDMxMTAvBgNV BAMTKEZFOEJGRDAzNDIyRkIwNzc1MzU0NjZCMEQzNTcxOTNFNUFDQzk4NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC67kc1JN9wPi6WHN2y1J0IYgXZ Zi2FnwCLeHUGBRiuZ003NNe5lZjKPnYPGUbgl0j2eKjMGg6YK4o+5YTJUgGI9v05 JLSxIMJQ3c7vSZGFpwgGHqpmI9GUVxrr6VynJ2r1T6Ducxjw8IUtZjL3XEo9TeoA JndJZ/RysqE1fQ3QkPJJdiTPVMSKuOLcnnHphA62yzsyEIm72YBWem2mSw16KEl4 JQRspNdxDmTfPTpDLfTk/BH1DDxPZOVYaJzaRBvPKbh6q7ebq/CZhSiwLsgyMg3w /CWI3rtbRhuNK0HuIF9JOtPtV7PsVGrTZ5V8Qv3avVxv8B9inaqzgK7ECetVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/ov9A0IvsHdTVGaw01cZPlrMmFswHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mrMA0GCSqG SIb3DQEBCwUAA4IBAQAD2tjDOMPVb6r18d5+Xpq17zQj9w5OkznbVbDszkjn8emE pKPjs8XswP3JN74s3GufAOZ7B5kmtco03IkuzAjaGSrMchmrmpJ6n9ymHIZ0G+/d pUNoDmbBZeIOhU++X9Qwt48Kguj7dp8acLsYi7vSJlWwrn0Sp0Y+w+rzE+tEI0U/ xrrI7K9+wApQGFqeYNFu/iZMzk+tKIwbhuAnCUUHjEW4sCR2/W3r0NPb4kerT7Fi ZSzwl2yGJ2bGmilZpZiYX14clbNQ3Q2iesS6sU4av88z/G7rlz5y//f/F7iNijFD 8CWvMNMFrKHDp835y84Q5WXvL/9BrmHdh5eIqcDG -----END CERTIFICATE-----Generated at Fri Jun 6 16:50:40 2025 by rpki-client