$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32342d3234203d3e203338373535.roa File: 3230332e3132332e36302e302f32342d3234203d3e203338373535.roa (raw, json) Hash identifier: 3kqcTj3+vV70wJ1/6llsiu6o2nkFqbHvAlISphTHITc= Subject key identifier: 0C:4F:9C:C7:FD:BD:F3:07:6F:B0:CF:6B:81:FD:5E:39:4D:3D:5C:19 Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 08BEC3A069E25F8D609C46CD1CD9657B0B456B17 Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32342d3234203d3e203338373535.roa Signing time: Thu 03 Jul 2025 11:02:49 +0000 ROA not before: Thu 03 Jul 2025 10:57:49 +0000 ROA not after: Thu 02 Jul 2026 11:02:49 +0000 asID: 38755 IP address blocks: 203.123.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 22:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:be:c3:a0:69:e2:5f:8d:60:9c:46:cd:1c:d9:65:7b:0b:45:6b:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Jul 3 10:57:49 2025 GMT Not After : Jul 2 11:02:49 2026 GMT Subject: CN=0C4F9CC7FDBDF3076FB0CF6B81FD5E394D3D5C19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:82:17:6f:d3:0c:cc:d5:1b:c7:49:60:8a:42: 3a:ae:f0:f6:8b:ba:c6:cc:72:2d:1f:37:75:99:14: 2f:4d:e1:0f:85:32:8c:bd:ab:18:21:05:a8:9f:12: 61:de:f8:eb:95:2f:cb:75:60:1c:47:5f:1d:d5:a7: 9e:1b:c1:4f:58:01:62:fe:88:fd:29:8a:a5:68:73: 4b:ca:02:08:1e:01:15:77:d7:9e:f5:3e:b4:a6:a0: f5:7f:86:a8:8d:b3:23:4a:5d:56:c1:6d:e8:37:de: f0:e1:3b:84:00:76:0b:4f:e0:a1:60:ae:31:a4:f7: 2c:bf:cf:fe:d1:53:91:56:b7:25:87:49:30:77:1a: 40:01:0f:e5:3f:17:db:04:22:82:51:b2:4b:ba:bc: a3:a6:a4:b3:43:39:4f:e9:72:a2:81:e8:a1:1a:17: 00:a4:96:db:4d:37:9b:13:12:bd:dd:99:2d:4f:15: 8b:39:0f:98:a8:7a:42:b7:39:17:77:72:f5:6b:8d: 3c:2e:12:a7:95:fb:e5:ce:af:ea:42:08:fc:91:47: a3:df:4c:f0:3a:e1:c1:f9:34:36:57:ab:b2:f0:09: ad:f9:81:80:ba:4c:3e:69:84:9b:68:cc:7d:14:97: df:84:21:2a:02:09:2e:79:a3:f6:21:12:5d:b1:b5: e0:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4F:9C:C7:FD:BD:F3:07:6F:B0:CF:6B:81:FD:5E:39:4D:3D:5C:19 X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32342d3234203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.123.60.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:53:0f:33:1c:da:da:94:f4:15:86:59:17:f1:ab:44:3b:52: d6:06:94:87:f6:3c:ac:67:b4:39:11:95:42:3a:18:ed:80:b5: c5:e7:fc:c7:31:9c:d5:fe:b9:8e:8f:aa:b0:2c:12:50:10:83: 86:3b:75:15:72:80:8d:46:0d:57:fc:b3:d2:f2:43:c1:b2:22: 32:eb:cf:10:cb:4d:94:37:5b:e7:5c:32:2a:dd:e6:7f:0e:bb: 1f:ee:c1:61:e8:43:47:44:19:8b:d2:02:c4:42:15:4e:92:61: 4a:38:96:4e:03:9e:06:6f:86:c5:4e:80:db:88:bb:a1:7f:de: 9a:c5:4b:f1:b6:b9:0f:cc:5d:4e:7a:d3:cf:86:c7:46:d8:61: 59:dd:d2:ca:4e:b9:ad:0e:40:77:52:67:c9:72:c8:eb:c7:fc: 5c:c4:6e:29:c4:82:77:cf:01:1d:dd:1f:3a:20:54:a8:aa:18: 1e:24:e6:6f:5e:46:ab:a5:02:44:33:bc:35:d4:e3:5d:72:b0: 61:d7:4f:2d:8e:25:8d:0b:12:b7:21:7b:57:78:2a:30:03:7c: d7:b1:61:2b:89:da:9b:77:29:7e:a9:24:11:71:57:0d:6a:bb: 79:b8:ab:8e:10:40:a9:88:81:36:8e:3c:1b:79:cd:b0:3d:df: f6:09:bc:e6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCL7DoGniX41gnEbNHNllewtFaxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNTA3MDMxMDU3NDlaFw0yNjA3MDIxMTAyNDlaMDMxMTAvBgNV BAMTKDBDNEY5Q0M3RkRCREYzMDc2RkIwQ0Y2QjgxRkQ1RTM5NEQzRDVDMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUghdv0wzM1RvHSWCKQjqu8PaL usbMci0fN3WZFC9N4Q+FMoy9qxghBaifEmHe+OuVL8t1YBxHXx3Vp54bwU9YAWL+ iP0piqVoc0vKAggeARV31571PrSmoPV/hqiNsyNKXVbBbeg33vDhO4QAdgtP4KFg rjGk9yy/z/7RU5FWtyWHSTB3GkABD+U/F9sEIoJRsku6vKOmpLNDOU/pcqKB6KEa FwCklttNN5sTEr3dmS1PFYs5D5ioekK3ORd3cvVrjTwuEqeV++XOr+pCCPyRR6Pf TPA64cH5NDZXq7LwCa35gYC6TD5phJtozH0Ul9+EISoCCS55o/YhEl2xteD5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDE+cx/298wdvsM9rgf1eOU09XBkwHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMzJlMzEzMjMzMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMt7PDANBgkqhkiG 9w0BAQsFAAOCAQEAG1MPMxza2pT0FYZZF/GrRDtS1gaUh/Y8rGe0ORGVQjoY7YC1 xef8xzGc1f65jo+qsCwSUBCDhjt1FXKAjUYNV/yz0vJDwbIiMuvPEMtNlDdb51wy Kt3mfw67H+7BYehDR0QZi9ICxEIVTpJhSjiWTgOeBm+GxU6A24i7oX/emsVL8ba5 D8xdTnrTz4bHRthhWd3Syk65rQ5Ad1JnyXLI68f8XMRuKcSCd88BHd0fOiBUqKoY HiTmb15Gq6UCRDO8NdTjXXKwYddPLY4ljQsStyF7V3gqMAN817FhK4nam3cpfqkk EXFXDWq7ebirjhBAqYiBNo48G3nNsD3f9gm85g== -----END CERTIFICATE-----Generated at Mon Jul 21 23:20:54 2025 by rpki-client