$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32332d3234203d3e203338373535.roa File: 3230332e3132332e36322e302f32332d3234203d3e203338373535.roa (raw, json) Hash identifier: HqirHRUkLLBs+xi+FDAaNL/xx9FpR0Z6sikO90+fQOw= Subject key identifier: 5A:3C:22:99:51:EB:6F:99:BD:B5:9B:BA:15:18:D7:5E:DD:95:7D:84 Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 2014FE621282E2625BC40BEB49AA73894FD2D239 Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32332d3234203d3e203338373535.roa Signing time: Thu 03 Jul 2025 12:00:03 +0000 ROA not before: Thu 03 Jul 2025 11:55:03 +0000 ROA not after: Thu 02 Jul 2026 12:00:03 +0000 asID: 38755 IP address blocks: 203.123.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 22:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:14:fe:62:12:82:e2:62:5b:c4:0b:eb:49:aa:73:89:4f:d2:d2:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Jul 3 11:55:03 2025 GMT Not After : Jul 2 12:00:03 2026 GMT Subject: CN=5A3C229951EB6F99BDB59BBA1518D75EDD957D84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:39:9c:af:43:f2:2f:90:39:66:f5:97:02:57: b2:85:b5:59:3a:d7:e8:d0:71:03:70:35:44:26:34: 9d:22:e2:0d:33:80:c2:60:3f:09:ec:6a:ef:36:48: e3:a7:b1:47:74:97:d5:1f:44:aa:6a:3e:5a:48:b1: 59:d0:2b:db:52:da:50:69:7e:c4:71:8a:55:6a:92: 9e:79:fb:b1:96:30:83:c3:60:d5:93:7a:39:c7:34: aa:94:b1:d9:7d:f9:98:c1:fb:fe:3d:71:b2:e9:b7: e5:9c:7d:7a:dd:d7:d6:ee:df:70:3b:43:7d:f3:50: 81:4a:7b:b3:4c:96:30:ca:cb:c9:4d:50:81:7c:b1: 4d:8f:82:05:d6:2d:6a:4e:13:f9:8c:3e:ec:b1:ed: 2f:07:db:ce:05:e3:61:cc:b6:e4:6e:02:1f:2e:13: d3:cd:f7:17:68:0d:1c:36:b7:5b:a6:5c:74:73:ca: c8:25:65:06:f2:53:ce:39:9b:13:90:48:49:6d:11: 11:9d:f9:d0:64:41:bb:32:0b:94:6f:69:35:be:a3: d4:63:56:4b:f7:dd:3f:22:37:bf:d5:e3:9c:1b:4f: c4:f1:0f:17:46:f2:16:13:d4:b9:b7:04:d6:2a:b6: 6f:3d:f0:8b:f5:51:0f:51:b7:14:34:10:09:c4:da: 3c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3C:22:99:51:EB:6F:99:BD:B5:9B:BA:15:18:D7:5E:DD:95:7D:84 X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32332d3234203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.123.62.0/23 Signature Algorithm: sha256WithRSAEncryption 78:48:ad:90:7d:e7:ec:74:83:59:76:23:7a:de:81:ce:3e:8f: 06:bb:d2:e3:f3:d0:4d:1f:91:cc:5d:df:93:e8:64:09:8e:30: b0:18:9e:56:5d:9c:95:98:99:15:93:eb:43:d1:3a:88:b1:c7: 1f:93:74:2e:2e:c6:c0:d9:44:24:ec:3a:b9:65:98:ce:b7:ce: d6:aa:d9:a1:3d:3f:71:3b:6b:86:1e:ad:c7:95:7e:59:51:36: 60:88:5d:cb:e2:eb:9b:77:ea:b0:15:9f:20:3e:9b:be:7a:84: 39:b4:30:8b:db:2a:49:74:c3:ef:d1:b0:cf:ee:24:24:5b:c3: cd:22:62:67:de:a4:5d:c1:13:8e:d6:2b:02:b5:1e:ae:bb:bc: 48:60:b6:fd:80:5d:43:86:db:3e:7c:42:36:14:11:5a:3a:95: 64:67:dc:9d:ff:fe:e5:df:93:17:76:29:da:d6:33:5e:81:fe: df:83:82:58:5c:44:92:3b:16:87:8d:15:a0:c7:af:a8:97:44: 5c:06:02:31:f0:69:a9:f2:89:32:0c:38:25:f1:b2:c7:f2:a6: 3e:73:65:1a:f7:0d:79:69:9c:39:1f:7a:97:27:26:bf:0f:42: c9:50:01:de:c6:16:02:df:60:0e:67:f5:f1:6f:84:65:86:3b: 10:a6:10:11 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIBT+YhKC4mJbxAvrSapziU/S0jkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNTA3MDMxMTU1MDNaFw0yNjA3MDIxMjAwMDNaMDMxMTAvBgNV BAMTKDVBM0MyMjk5NTFFQjZGOTlCREI1OUJCQTE1MThENzVFREQ5NTdEODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZOZyvQ/IvkDlm9ZcCV7KFtVk6 1+jQcQNwNUQmNJ0i4g0zgMJgPwnsau82SOOnsUd0l9UfRKpqPlpIsVnQK9tS2lBp fsRxilVqkp55+7GWMIPDYNWTejnHNKqUsdl9+ZjB+/49cbLpt+WcfXrd19bu33A7 Q33zUIFKe7NMljDKy8lNUIF8sU2PggXWLWpOE/mMPuyx7S8H284F42HMtuRuAh8u E9PN9xdoDRw2t1umXHRzysglZQbyU845mxOQSEltERGd+dBkQbsyC5RvaTW+o9Rj Vkv33T8iN7/V45wbT8TxDxdG8hYT1Lm3BNYqtm898Iv1UQ9RtxQ0EAnE2jzfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWjwimVHrb5m9tZu6FRjXXt2VfYQwHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMzJlMzEzMjMzMmUzNjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAct7PjANBgkqhkiG 9w0BAQsFAAOCAQEAeEitkH3n7HSDWXYjet6Bzj6PBrvS4/PQTR+RzF3fk+hkCY4w sBieVl2clZiZFZPrQ9E6iLHHH5N0Li7GwNlEJOw6uWWYzrfO1qrZoT0/cTtrhh6t x5V+WVE2YIhdy+Lrm3fqsBWfID6bvnqEObQwi9sqSXTD79Gwz+4kJFvDzSJiZ96k XcETjtYrArUerru8SGC2/YBdQ4bbPnxCNhQRWjqVZGfcnf/+5d+TF3Yp2tYzXoH+ 34OCWFxEkjsWh40VoMevqJdEXAYCMfBpqfKJMgw4JfGyx/KmPnNlGvcNeWmcOR96 lycmvw9CyVAB3sYWAt9gDmf18W+EZYY7EKYQEQ== -----END CERTIFICATE-----Generated at Mon Jul 21 23:22:12 2025 by rpki-client