$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa File: 3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa (raw, json) Hash identifier: QndHCSx2BNo6B9PU2PwCBFgIg2FHd/j9GLA3Q9N/MWs= Subject key identifier: 18:60:0D:72:4F:17:ED:C9:B1:04:DC:EE:88:73:CB:D3:25:B4:84:8C Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 418DBD0EBBE4EF3B3CB3B51C7E875A97512D9A9A Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa Signing time: Mon 02 Jun 2025 02:00:00 +0000 ROA not before: Mon 02 Jun 2025 01:55:00 +0000 ROA not after: Mon 01 Jun 2026 02:00:00 +0000 asID: 38778 IP address blocks: 203.201.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:8d:bd:0e:bb:e4:ef:3b:3c:b3:b5:1c:7e:87:5a:97:51:2d:9a:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 01:55:00 2025 GMT Not After : Jun 1 02:00:00 2026 GMT Subject: CN=18600D724F17EDC9B104DCEE8873CBD325B4848C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e1:17:16:87:fe:46:a7:0b:82:4f:13:46:b7: 20:cb:0f:19:2b:c8:4a:31:b0:48:2e:ee:40:2f:33: e9:dd:6d:b0:12:a0:4b:d6:dd:ee:7a:92:37:68:e4: c7:17:77:9d:ac:0a:c5:74:84:12:64:e6:02:7d:08: af:3e:99:fd:84:91:bf:86:60:e9:cb:b1:38:c6:9c: 03:5f:52:31:bc:0c:07:1e:5b:63:4e:1c:38:5d:0a: 71:d3:46:2d:05:d9:cf:c3:1f:f2:f2:3a:22:d3:01: 3e:4a:fe:ca:8d:8e:b6:7c:68:19:15:5e:c1:13:17: ce:7d:3c:ea:a2:bf:ef:5a:3d:d1:10:16:c3:44:39: 14:f9:28:ec:65:56:d4:43:74:0e:8d:1a:62:f7:8e: 9a:bb:8a:77:fe:72:6f:9d:39:9a:06:0f:37:c0:0c: eb:3b:0c:51:ca:83:4b:68:f7:c1:50:04:31:d5:fd: ac:01:25:2c:38:5d:12:ef:cd:61:2c:f2:7d:ee:f5: 28:9a:53:34:b7:5e:2b:b7:35:d5:88:0d:26:e7:54: be:c1:f0:c1:02:b4:6b:7a:f0:de:8d:37:de:11:92: 20:36:80:7b:a9:01:c5:62:4f:29:21:06:bd:9d:7b: ef:8a:5f:82:21:82:17:06:fc:b0:92:80:15:dd:f3: 5e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:60:0D:72:4F:17:ED:C9:B1:04:DC:EE:88:73:CB:D3:25:B4:84:8C X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137322e302f32322d3232203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.172.0/22 Signature Algorithm: sha256WithRSAEncryption 09:82:15:31:f4:7f:69:40:62:11:f4:22:93:be:35:52:9b:3e: e3:97:a0:40:71:7b:4a:e7:a4:65:be:d3:71:ea:2a:f5:4d:6a: eb:b7:46:69:c4:59:22:ad:71:b1:63:19:55:af:5d:a7:0b:10: 15:6a:3b:75:f7:4f:2c:b3:39:60:32:ed:e9:6c:e1:59:05:76: cf:d9:64:83:e6:96:7f:3c:fb:7d:c2:ed:5b:23:27:d5:4a:4f: 00:39:03:41:5a:ea:d0:96:9d:d7:40:aa:26:80:3e:e4:32:4a: cc:37:af:b0:d7:05:90:fd:0d:f2:ac:64:49:31:ef:38:89:8e: 6c:b7:10:a4:9d:65:85:47:3f:89:1e:2e:55:1a:91:3b:87:e6: 73:68:fe:7c:48:01:aa:93:83:46:a6:2c:f1:77:d7:84:1e:2e: 19:d2:86:c1:32:ac:27:75:6e:81:1d:dd:dc:d7:94:5c:13:78: 4f:62:16:67:1c:65:10:d7:ba:c5:0d:da:24:f4:1d:bf:58:d5: 73:16:de:b7:c3:40:20:7e:42:8d:1e:00:74:9d:17:fa:3b:bf: e0:d4:f9:f2:23:32:3c:e5:51:5c:3b:40:62:3a:1f:03:da:78: d7:13:1b:cc:4d:59:4a:0c:a2:6c:93:12:26:58:c3:0f:cb:03: ca:54:6a:e3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQY29Drvk7zs8s7Ucfodal1EtmpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMTU1MDBaFw0yNjA2MDEwMjAwMDBaMDMxMTAvBgNV BAMTKDE4NjAwRDcyNEYxN0VEQzlCMTA0RENFRTg4NzNDQkQzMjVCNDg0OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe4RcWh/5GpwuCTxNGtyDLDxkr yEoxsEgu7kAvM+ndbbASoEvW3e56kjdo5McXd52sCsV0hBJk5gJ9CK8+mf2Ekb+G YOnLsTjGnANfUjG8DAceW2NOHDhdCnHTRi0F2c/DH/LyOiLTAT5K/sqNjrZ8aBkV XsETF859POqiv+9aPdEQFsNEORT5KOxlVtRDdA6NGmL3jpq7inf+cm+dOZoGDzfA DOs7DFHKg0to98FQBDHV/awBJSw4XRLvzWEs8n3u9SiaUzS3Xiu3NdWIDSbnVL7B 8MECtGt68N6NN94RkiA2gHupAcViTykhBr2de++KX4IhghcG/LCSgBXd815VAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGGANck8X7cmxBNzuiHPL0yW0hIwwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzIyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCy8msMA0GCSqG SIb3DQEBCwUAA4IBAQAJghUx9H9pQGIR9CKTvjVSmz7jl6BAcXtK56RlvtNx6ir1 TWrrt0ZpxFkirXGxYxlVr12nCxAVajt1908sszlgMu3pbOFZBXbP2WSD5pZ/PPt9 wu1bIyfVSk8AOQNBWurQlp3XQKomgD7kMkrMN6+w1wWQ/Q3yrGRJMe84iY5stxCk nWWFRz+JHi5VGpE7h+ZzaP58SAGqk4NGpizxd9eEHi4Z0obBMqwndW6BHd3c15Rc E3hPYhZnHGUQ17rFDdok9B2/WNVzFt63w0AgfkKNHgB0nRf6O7/g1PnyIzI85VFc O0BiOh8D2njXExvMTVlKDKJskxImWMMPywPKVGrj -----END CERTIFICATE-----Generated at Fri Jun 6 16:45:28 2025 by rpki-client