$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32322d3232203d3e203338373535.roa File: 3230332e3132332e36302e302f32322d3232203d3e203338373535.roa (raw, json) Hash identifier: gNI/uSTjYQTRRB3e/EB+iGR51Yon6zBV3LmFMzRSGVc= Subject key identifier: D0:98:03:3E:3E:FA:CA:B0:2A:16:A0:28:24:13:9B:7F:14:38:DE:91 Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 50994C9B5113717915F17C678EBA65A99E87094A Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32322d3232203d3e203338373535.roa Signing time: Thu 03 Jul 2025 12:00:03 +0000 ROA not before: Thu 03 Jul 2025 11:55:03 +0000 ROA not after: Thu 02 Jul 2026 12:00:03 +0000 asID: 38755 IP address blocks: 203.123.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 22:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:99:4c:9b:51:13:71:79:15:f1:7c:67:8e:ba:65:a9:9e:87:09:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Jul 3 11:55:03 2025 GMT Not After : Jul 2 12:00:03 2026 GMT Subject: CN=D098033E3EFACAB02A16A02824139B7F1438DE91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4d:4a:aa:fc:2a:f1:6a:bf:7b:ff:0b:e8:bd: e6:a8:93:ee:64:47:f1:6e:7b:73:eb:68:3e:88:e6: 35:38:3a:5c:86:bd:5f:57:b9:db:84:a2:73:f2:88: 0a:28:d5:d1:c2:02:cb:80:85:6d:c5:b6:58:ad:40: 3c:68:89:6a:3c:56:63:27:9a:74:51:0c:55:89:f4: ab:9f:72:a2:f2:64:a6:72:fd:c4:2e:4b:5d:a0:28: ad:0a:f6:83:86:46:50:e5:13:5c:d3:e2:9e:b4:1e: d4:3b:86:69:d2:52:65:be:73:d2:0d:b3:1b:23:01: 2e:8a:61:5f:97:37:28:55:70:ff:8d:2f:43:13:6c: 39:3d:67:0d:04:83:70:84:95:78:e3:80:f6:f7:03: fe:9c:79:eb:2d:60:42:14:c4:29:8a:b2:56:b7:3c: ba:5c:da:d6:5e:89:aa:2d:fa:1d:31:80:cb:7f:9a: 0b:d7:fd:33:49:e8:fe:20:40:54:20:e6:25:36:8c: ab:88:c3:b1:e4:97:79:2c:47:d6:ac:cf:b0:7b:1e: f5:b5:18:67:b3:84:51:6b:c4:c3:5d:61:ca:09:3a: f0:7b:b3:7b:03:65:ff:d0:ac:7f:63:28:cf:0b:7e: 90:a0:55:4f:6f:88:01:8b:c3:8f:fa:a7:1c:8f:1c: 13:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:98:03:3E:3E:FA:CA:B0:2A:16:A0:28:24:13:9B:7F:14:38:DE:91 X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32322d3232203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.123.60.0/22 Signature Algorithm: sha256WithRSAEncryption 81:f9:cc:b0:d3:3b:53:ae:b6:e8:fc:2c:88:f4:60:39:38:9d: e7:da:a0:2f:30:3a:cd:67:12:f7:7d:2c:eb:b9:71:1a:33:47: 65:38:f1:5d:92:8f:73:44:35:ec:99:0b:47:d2:05:f4:06:ff: 8b:1f:6b:67:cc:78:af:81:d9:6f:1c:96:ab:cd:94:93:dc:56: 1f:16:ef:19:61:17:ea:b2:6c:de:e7:69:06:6d:fa:02:c4:d2: 16:d9:b3:88:87:dc:49:29:0d:e0:3a:ac:ad:87:5a:cc:e8:d7: 42:d4:26:bd:21:b7:e8:87:33:ec:31:58:fa:46:f2:26:eb:ca: b5:81:76:51:9c:62:2f:32:7c:36:31:94:1e:7f:4a:ac:fd:0f: 16:d8:61:00:49:17:f3:4d:36:d5:fe:a2:5a:42:9f:33:e8:3f: 77:96:52:f6:99:45:3b:71:88:4d:ba:16:a8:56:29:51:00:53: 4e:ca:50:12:d0:9f:2d:5a:73:0b:26:00:9a:e7:3c:6b:a6:35: 93:ac:7b:1b:9d:b1:ac:3d:30:49:31:b4:58:1a:67:dd:7c:e3: dc:1d:4d:1b:16:43:c4:39:c4:2c:a2:86:2a:d6:1e:e0:34:05: 76:61:88:61:17:b3:bf:3e:f9:ec:fa:71:5a:34:ac:41:fc:39: fc:5d:e4:a8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUJlMm1ETcXkV8XxnjrplqZ6HCUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNTA3MDMxMTU1MDNaFw0yNjA3MDIxMjAwMDNaMDMxMTAvBgNV BAMTKEQwOTgwMzNFM0VGQUNBQjAyQTE2QTAyODI0MTM5QjdGMTQzOERFOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0TUqq/Crxar97/wvoveaok+5k R/Fue3PraD6I5jU4OlyGvV9XuduEonPyiAoo1dHCAsuAhW3FtlitQDxoiWo8VmMn mnRRDFWJ9KufcqLyZKZy/cQuS12gKK0K9oOGRlDlE1zT4p60HtQ7hmnSUmW+c9IN sxsjAS6KYV+XNyhVcP+NL0MTbDk9Zw0Eg3CElXjjgPb3A/6ceestYEIUxCmKsla3 PLpc2tZeiaot+h0xgMt/mgvX/TNJ6P4gQFQg5iU2jKuIw7Hkl3ksR9asz7B7HvW1 GGezhFFrxMNdYcoJOvB7s3sDZf/QrH9jKM8LfpCgVU9viAGLw4/6pxyPHBNVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0JgDPj76yrAqFqAoJBObfxQ43pEwHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMzJlMzEzMjMzMmUzNjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAst7PDANBgkqhkiG 9w0BAQsFAAOCAQEAgfnMsNM7U6626PwsiPRgOTid59qgLzA6zWcS930s67lxGjNH ZTjxXZKPc0Q17JkLR9IF9Ab/ix9rZ8x4r4HZbxyWq82Uk9xWHxbvGWEX6rJs3udp Bm36AsTSFtmziIfcSSkN4DqsrYdazOjXQtQmvSG36Icz7DFY+kbyJuvKtYF2UZxi LzJ8NjGUHn9KrP0PFthhAEkX80021f6iWkKfM+g/d5ZS9plFO3GITboWqFYpUQBT TspQEtCfLVpzCyYAmuc8a6Y1k6x7G52xrD0wSTG0WBpn3Xzj3B1NGxZDxDnELKKG KtYe4DQFdmGIYRezvz757PpxWjSsQfw5/F3kqA== -----END CERTIFICATE-----Generated at Mon Jul 21 23:19:01 2025 by rpki-client