$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137342e302f32342d3234203d3e203338373738.roa File: 3230332e3230312e3137342e302f32342d3234203d3e203338373738.roa (raw, json) Hash identifier: 9EFofumrQbo0XJ3mabIzSt5NblEjIzdBU7geHq9XCrQ= Subject key identifier: 7D:F8:B1:A5:A6:A7:FE:A3:83:1B:8D:D0:D9:E4:C0:E7:42:FC:A7:8A Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Certificate serial: 7CF1983E96706671749984DAF5460115DC90B57B Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137342e302f32342d3234203d3e203338373738.roa Signing time: Mon 02 Jun 2025 01:03:06 +0000 ROA not before: Mon 02 Jun 2025 00:58:06 +0000 ROA not after: Mon 01 Jun 2026 01:03:06 +0000 asID: 38778 IP address blocks: 203.201.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:f1:98:3e:96:70:66:71:74:99:84:da:f5:46:01:15:dc:90:b5:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361 Validity Not Before: Jun 2 00:58:06 2025 GMT Not After : Jun 1 01:03:06 2026 GMT Subject: CN=7DF8B1A5A6A7FEA3831B8DD0D9E4C0E742FCA78A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c1:f8:1d:62:00:d6:10:1f:2f:c3:19:62:14: 7c:5d:60:93:ef:1a:7e:fc:22:e8:1f:17:3d:70:b7: ab:16:2c:c3:43:ad:42:bc:67:b8:e4:3d:ea:f7:d5: 45:a2:e8:a2:4e:2a:44:96:bf:ab:50:55:4c:ab:e2: c7:c2:d9:3f:84:c1:04:1c:bc:c9:f6:81:9e:8f:b7: 0d:30:2a:03:04:f4:43:e6:9d:fe:18:32:98:11:81: ef:7e:01:75:9b:31:16:61:d1:56:0a:e2:40:55:98: a4:ee:bb:35:a7:82:66:2f:4d:7b:b7:18:ce:3f:30: e7:71:16:a4:d0:70:b3:63:26:64:87:32:5e:5e:c7: 3e:a2:56:74:26:36:73:d2:65:59:6a:dc:76:e5:d0: d4:18:e0:40:f9:f0:0c:82:d2:f9:fd:fa:af:e2:e0: ea:d8:40:87:4f:1d:97:91:86:c3:07:a7:1d:3f:fa: 20:bb:09:da:a0:ff:73:9f:f5:f0:5c:57:25:e7:19: 8a:da:54:8f:41:51:7a:b6:ac:af:01:4f:ee:ef:6b: 28:92:64:d1:2e:08:eb:f9:b8:69:3b:fd:29:99:fe: 10:62:fb:e8:f6:68:f8:40:9d:b2:06:f6:47:15:b0: 0f:d1:77:9e:dc:f2:85:64:53:df:61:76:37:7b:eb: 56:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F8:B1:A5:A6:A7:FE:A3:83:1B:8D:D0:D9:E4:C0:E7:42:FC:A7:8A X509v3 Authority Key Identifier: keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3137342e302f32342d3234203d3e203338373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.201.174.0/24 Signature Algorithm: sha256WithRSAEncryption c3:fa:b9:44:5e:61:53:89:18:d5:f8:bc:41:a1:13:2a:e0:ea: 0b:ff:cd:96:9f:36:78:7a:80:5c:22:41:aa:46:50:8c:ae:c5: fb:e9:ac:5a:52:89:94:d2:11:bc:f6:5d:2a:a0:02:16:56:86: f1:18:4f:b0:81:c0:fd:76:f6:a7:85:91:9e:b8:27:6e:2a:70: 6e:cc:6b:de:8a:d7:fc:00:4a:38:c7:09:0f:ce:f0:db:aa:48: c7:70:60:b4:d7:da:54:21:cb:8a:85:ef:4b:bd:64:a7:aa:7b: 66:5b:9c:6a:c6:eb:93:1e:f7:bd:85:71:66:ee:ee:17:5e:f6: ec:49:86:54:62:1e:f7:5e:4e:85:f4:18:89:19:1e:74:5d:e3: db:e9:b3:f3:5f:fc:38:61:0d:1e:e6:59:da:e3:1c:0b:1c:ce: fa:29:d6:64:75:eb:b0:55:b9:54:25:58:ce:30:14:40:8f:71: 17:73:c3:12:ee:d0:34:8a:37:88:fd:5e:80:1b:35:6e:55:42: d8:c8:5b:14:85:05:13:ee:52:c9:e9:d5:0f:6f:7a:c7:f8:27: 11:b4:bc:8f:5d:b6:02:59:59:86:3d:ad:95:94:5a:40:8e:0b: 57:b4:6f:8e:15:a6:a3:db:8b:f9:85:06:b1:32:3b:ec:6c:ab: e6:89:de:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfPGYPpZwZnF0mYTa9UYBFdyQtXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3 NjNDRjM2MTAeFw0yNTA2MDIwMDU4MDZaFw0yNjA2MDEwMTAzMDZaMDMxMTAvBgNV BAMTKDdERjhCMUE1QTZBN0ZFQTM4MzFCOEREMEQ5RTRDMEU3NDJGQ0E3OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLwfgdYgDWEB8vwxliFHxdYJPv Gn78IugfFz1wt6sWLMNDrUK8Z7jkPer31UWi6KJOKkSWv6tQVUyr4sfC2T+EwQQc vMn2gZ6Ptw0wKgME9EPmnf4YMpgRge9+AXWbMRZh0VYK4kBVmKTuuzWngmYvTXu3 GM4/MOdxFqTQcLNjJmSHMl5exz6iVnQmNnPSZVlq3Hbl0NQY4ED58AyC0vn9+q/i 4OrYQIdPHZeRhsMHpx0/+iC7Cdqg/3Of9fBcVyXnGYraVI9BUXq2rK8BT+7vayiS ZNEuCOv5uGk7/SmZ/hBi++j2aPhAnbIG9kcVsA/Rd57c8oVkU99hdjd761bJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUffixpaan/qODG43Q2eTA50L8p4owHwYDVR0j BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND RjM2MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMzJlMzIzMDMxMmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy8muMA0GCSqG SIb3DQEBCwUAA4IBAQDD+rlEXmFTiRjV+LxBoRMq4OoL/82WnzZ4eoBcIkGqRlCM rsX76axaUomU0hG89l0qoAIWVobxGE+wgcD9dvanhZGeuCduKnBuzGveitf8AEo4 xwkPzvDbqkjHcGC019pUIcuKhe9LvWSnqntmW5xqxuuTHve9hXFm7u4XXvbsSYZU Yh73Xk6F9BiJGR50XePb6bPzX/w4YQ0e5lna4xwLHM76KdZkdeuwVblUJVjOMBRA j3EXc8MS7tA0ijeI/V6AGzVuVULYyFsUhQUT7lLJ6dUPb3rH+CcRtLyPXbYCWVmG Pa2VlFpAjgtXtG+OFaaj24v5hQaxMjvsbKvmid5Y -----END CERTIFICATE-----Generated at Fri Jun 6 16:48:32 2025 by rpki-client