$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32342d3234203d3e203338373535.roa File: 3230332e3132332e36322e302f32342d3234203d3e203338373535.roa (raw, json) Hash identifier: HU7RwIKw1sU0I8YKRpn3wdAuyI5s2A4fkpVIFZbCBaU= Subject key identifier: 69:6F:C3:4F:93:3E:DA:04:41:F4:B2:66:D2:78:9E:E3:92:79:7B:7C Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Certificate serial: 605A807D66FBCAFEB425634B75789645BBF59636 Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32342d3234203d3e203338373535.roa Signing time: Thu 03 Jul 2025 12:00:02 +0000 ROA not before: Thu 03 Jul 2025 11:55:02 +0000 ROA not after: Thu 02 Jul 2026 12:00:02 +0000 asID: 38755 IP address blocks: 203.123.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 22:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:5a:80:7d:66:fb:ca:fe:b4:25:63:4b:75:78:96:45:bb:f5:96:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7 Validity Not Before: Jul 3 11:55:02 2025 GMT Not After : Jul 2 12:00:02 2026 GMT Subject: CN=696FC34F933EDA0441F4B266D2789EE392797B7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cc:1f:45:16:1b:72:c7:9a:6d:ce:eb:3b:ff: 93:c4:8d:14:87:0b:13:71:27:c6:32:61:5e:de:05: 06:32:63:08:65:67:da:82:2f:8e:f4:07:60:d6:f2: 21:a6:1e:f4:41:51:4e:7f:30:87:f0:0f:de:44:2f: e9:e5:77:c0:1b:63:a3:47:a2:e7:50:df:03:b5:07: cd:cb:3d:18:24:92:49:ad:e3:cc:2f:4c:b6:88:01: ea:b0:aa:7a:ea:c6:07:9c:6b:7c:f5:8c:2d:53:00: 8d:61:77:a4:6e:d1:8f:eb:1a:7e:c8:79:c7:4b:e1: 13:95:7e:81:54:7f:62:b5:dd:60:0a:b1:a0:f4:58: d3:40:9b:93:af:52:8d:15:81:97:5f:09:5b:8d:87: b9:22:a9:f4:2f:de:f4:09:dc:b4:5a:b9:28:63:34: 25:23:fe:12:7a:03:06:8a:2f:a1:09:d4:ed:ee:95: b8:14:45:e4:a5:d1:87:75:99:06:9c:ec:be:55:51: bb:d4:c4:30:e4:db:fb:44:b5:47:21:91:8e:81:ae: 5b:7e:71:3c:f5:4e:26:2d:04:ed:28:bb:cf:ac:9a: 6e:85:f9:d9:37:3b:d4:95:d7:a2:cd:8d:fa:48:7f: 94:78:d4:da:7e:6c:a3:f9:74:0c:cf:f6:ab:99:36: 27:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6F:C3:4F:93:3E:DA:04:41:F4:B2:66:D2:78:9E:E3:92:79:7B:7C X509v3 Authority Key Identifier: keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36322e302f32342d3234203d3e203338373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.123.62.0/24 Signature Algorithm: sha256WithRSAEncryption 99:01:6a:92:61:d3:92:5d:be:66:8c:df:9f:67:bd:3a:fa:cc: 30:ee:dc:61:c6:57:9c:9d:33:f9:06:69:94:53:ab:77:f6:59: 25:56:0d:39:28:79:54:c5:3a:7d:bf:fd:5b:4b:5c:10:34:7a: 7e:08:30:95:c2:e2:d3:f4:0a:99:97:4c:51:60:bc:75:ba:4a: 37:dc:4f:a4:2c:e2:6c:83:61:b9:02:61:13:fc:81:da:06:52: 53:1b:0b:06:6a:39:76:9c:c1:5a:14:5d:a6:b0:9b:39:b4:d9: 55:35:a9:84:28:bf:c9:5e:f4:fe:e6:5d:2a:0b:a2:5f:1f:44: e1:d3:55:27:fe:79:37:09:b5:76:7f:e5:15:0e:5e:75:a2:6f: 87:84:8f:6c:9c:66:57:9f:e3:52:f3:65:88:2d:c5:b9:2d:7d: 8d:43:c4:06:c6:cc:ce:98:28:78:bc:8a:45:63:13:41:16:b6: 74:21:2a:1f:4a:7f:0e:d3:05:6c:67:ea:9d:76:e6:04:b4:9b: aa:5b:b4:8b:d5:bd:8b:61:09:1b:49:c7:df:24:8b:83:f0:83: 1b:20:57:bf:67:4c:6a:c7:d6:d3:f9:38:23:e0:f5:88:ad:eb: 47:92:1f:4a:29:12:d9:59:40:4e:15:9b:bf:cc:1e:57:9c:d0: 58:7e:b8:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYFqAfWb7yv60JWNLdXiWRbv1ljYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlE MDFCMTVDNzAeFw0yNTA3MDMxMTU1MDJaFw0yNjA3MDIxMjAwMDJaMDMxMTAvBgNV BAMTKDY5NkZDMzRGOTMzRURBMDQ0MUY0QjI2NkQyNzg5RUUzOTI3OTdCN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrzB9FFhtyx5ptzus7/5PEjRSH CxNxJ8YyYV7eBQYyYwhlZ9qCL470B2DW8iGmHvRBUU5/MIfwD95EL+nld8AbY6NH oudQ3wO1B83LPRgkkkmt48wvTLaIAeqwqnrqxgeca3z1jC1TAI1hd6Ru0Y/rGn7I ecdL4ROVfoFUf2K13WAKsaD0WNNAm5OvUo0VgZdfCVuNh7kiqfQv3vQJ3LRauShj NCUj/hJ6AwaKL6EJ1O3ulbgUReSl0Yd1mQac7L5VUbvUxDDk2/tEtUchkY6Brlt+ cTz1TiYtBO0ou8+smm6F+dk3O9SV16LNjfpIf5R41Np+bKP5dAzP9quZNidLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaW/DT5M+2gRB9LJm0nie45J5e3wwHwYDVR0j BBgwFoAUn2GZAYO40QSM3+YulhbDqdAbFccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWIzOTAyYi03NDU5LTQ4NTQtYTVmNS0wOWYxNWQ4Yzg3ZDMvMC85RjYxOTkwMTgz QjhEMTA0OENERkU2MkU5NjE2QzNBOUQwMUIxNUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2MTk5MDE4M0I4RDEwNDhDREZFNjJFOTYxNkMzQTlEMDFC MTVDNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhYjM5MDJiLTc0NTktNDg1NC1h NWY1LTA5ZjE1ZDhjODdkMy8wLzMyMzAzMzJlMzEzMjMzMmUzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMt7PjANBgkqhkiG 9w0BAQsFAAOCAQEAmQFqkmHTkl2+Zozfn2e9OvrMMO7cYcZXnJ0z+QZplFOrd/ZZ JVYNOSh5VMU6fb/9W0tcEDR6fggwlcLi0/QKmZdMUWC8dbpKN9xPpCzibINhuQJh E/yB2gZSUxsLBmo5dpzBWhRdprCbObTZVTWphCi/yV70/uZdKguiXx9E4dNVJ/55 Nwm1dn/lFQ5edaJvh4SPbJxmV5/jUvNliC3FuS19jUPEBsbMzpgoeLyKRWMTQRa2 dCEqH0p/DtMFbGfqnXbmBLSbqlu0i9W9i2EJG0nH3ySLg/CDGyBXv2dMasfW0/k4 I+D1iK3rR5IfSikS2VlAThWbv8weV5zQWH64dg== -----END CERTIFICATE-----Generated at Mon Jul 21 23:21:23 2025 by rpki-client