$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137332e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137332e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: iE0K2W/aZvIKjkjtlZJbjDy4+wPuhKyN5OkzqWAVjVY= Subject key identifier: 90:5F:90:71:58:BF:06:D8:25:0C:5D:3C:54:2B:E9:41:97:67:1C:38 Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 26E3414DC2886C531DD94A0F4701BEFB40F7E298 Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137332e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:05 +0000 ROA not before: Mon 02 Jun 2025 00:58:05 +0000 ROA not after: Mon 01 Jun 2026 01:03:05 +0000 asID: 38778 IP address blocks: 203.201.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:e3:41:4d:c2:88:6c:53:1d:d9:4a:0f:47:01:be:fb:40:f7:e2:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:05 2025 GMT Not After : Jun 1 01:03:05 2026 GMT Subject: CN=905F907158BF06D8250C5D3C542BE94197671C38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d2:b3:98:af:36:53:a4:1d:83:98:73:f1:59: 54:68:1e:f5:b9:49:0f:75:74:e7:db:73:f2:09:a0: 81:a9:61:da:8e:6a:03:9d:39:ef:73:39:e7:c6:17: ef:78:08:94:0d:76:21:c6:69:ea:a9:a2:53:e0:06: de:b0:b8:95:88:f4:07:60:38:73:89:0d:77:1f:cb: db:43:04:7d:be:f4:eb:f0:ec:eb:d8:be:c0:0c:ea: 5a:ba:73:33:f7:6b:da:95:ac:78:7c:7e:50:5d:dd: 6a:ac:39:45:db:7a:f8:6a:9a:bb:79:11:a8:81:fa: 56:82:b3:c9:a8:d1:79:80:ce:94:b4:13:f6:52:77: d3:f5:b7:3d:b1:2f:ff:c0:f5:fe:c0:84:97:c7:38: 2c:98:7a:e0:05:dd:48:07:15:78:d4:d8:a5:ea:62: be:3d:8a:e4:e9:69:3d:d3:2a:fe:3c:f8:ba:ef:62: c5:d2:a3:d1:db:a3:15:9c:0a:f4:a0:1a:28:13:c5: e9:56:29:6e:b7:bf:c6:80:f6:9e:90:7e:ba:64:cd: 24:cb:3b:6a:7f:2a:ab:d2:8c:70:66:e1:e3:24:e5: a7:33:57:26:2b:6c:a8:f0:99:b3:46:20:b1:16:7b: ae:86:c1:0b:b3:1c:41:c7:78:e1:1f:89:09:88:0a: 90:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:5F:90:71:58:BF:06:D8:25:0C:5D:3C:54:2B:E9:41:97:67:1C:38 X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137332e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.173.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:38:2f:d6:d7:3a:38:77:e6:e0:8e:c2:49:ef:8e:12:a0:ab: cb:06:fa:34:24:a1:69:12:9c:a4:26:10:af:6d:c4:60:14:22: 66:61:a9:36:ae:57:7e:cc:b0:1a:e8:d8:8b:25:62:89:e3:b4: fc:2b:58:4e:9c:3a:cb:bd:bf:b2:91:c8:23:3f:6c:81:60:54: d1:fe:b9:19:c3:9e:63:81:dc:b6:03:b1:74:9e:8b:0e:aa:a9: ae:6d:40:46:76:b2:8e:e4:50:eb:f3:94:f8:1f:46:07:9c:8c: 55:02:03:f4:5d:6b:22:11:63:d5:e9:80:1f:68:38:7b:27:79: 58:7a:e8:82:4b:b7:7f:b3:dc:7f:77:3c:38:ae:e0:e1:cc:95: c3:ce:4b:b2:96:9e:4f:b9:20:48:91:d2:cd:ee:2a:83:43:b7: aa:99:c5:7c:38:77:56:2b:a4:0c:c5:c7:0d:2b:f8:f4:b1:77: 18:f6:d1:fb:48:d8:f9:71:1f:09:be:ef:25:8d:c1:9c:b3:39: ae:1c:d0:71:14:d1:5b:22:bc:5a:c7:3c:99:bd:12:d1:1e:59: 70:00:ce:b9:e6:3b:87:12:ff:b2:22:ad:d9:2e:00:cc:1e:a4: 99:15:59:27:ed:12:6a:7e:87:50:f6:35:89:85:83:ae:e1:aa: 8c:bd:5f:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJuNBTcKIbFMd2UoPRwG++0D34pgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDVaFw0yNjA2MDEwMTAzMDVaMDMxMTAvBgNV BAMTKDkwNUY5MDcxNThCRjA2RDgyNTBDNUQzQzU0MkJFOTQxOTc2NzFDMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd0rOYrzZTpB2DmHPxWVRoHvW5 SQ91dOfbc/IJoIGpYdqOagOdOe9zOefGF+94CJQNdiHGaeqpolPgBt6wuJWI9Adg OHOJDXcfy9tDBH2+9Ovw7OvYvsAM6lq6czP3a9qVrHh8flBd3WqsOUXbevhqmrt5 EaiB+laCs8mo0XmAzpS0E/ZSd9P1tz2xL//A9f7AhJfHOCyYeuAF3UgHFXjU2KXq Yr49iuTpaT3TKv48+LrvYsXSo9HboxWcCvSgGigTxelWKW63v8aA9p6QfrpkzSTL O2p/KqvSjHBm4eMk5aczVyYrbKjwmbNGILEWe66GwQuzHEHHeOEfiQmICpAHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkF+QcVi/BtglDF08VCvpQZdnHDgwHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8mtMA0GCSqG SIb3DQEBCwUAA4IBAQBrOC/W1zo4d+bgjsJJ744SoKvLBvo0JKFpEpykJhCvbcRg FCJmYak2rld+zLAa6NiLJWKJ47T8K1hOnDrLvb+ykcgjP2yBYFTR/rkZw55jgdy2 A7F0nosOqqmubUBGdrKO5FDr85T4H0YHnIxVAgP0XWsiEWPV6YAfaDh7J3lYeuiC S7d/s9x/dzw4ruDhzJXDzkuylp5PuSBIkdLN7iqDQ7eqmcV8OHdWK6QMxccNK/j0 sXcY9tH7SNj5cR8Jvu8ljcGcszmuHNBxFNFbIrxaxzyZvRLRHllwAM655juHEv+y Iq3ZLgDMHqSZFVkn7RJqfodQ9jWJhYOu4aqMvV8S -----END CERTIFICATE-----Generated at Fri Jun 6 16:50:27 2025 by rpki-client