$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130302e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130302e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: eli9HVW5SbIlHlZ77bLJSw28nBX7PJuxpjeRLJ5LE+4= Subject key identifier: 93:BE:D2:34:E8:D7:75:4C:BD:29:6D:78:11:67:82:20:D6:99:2A:65 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 79846677B066BFC0B4E924261980EEF89D72BEB0 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130302e302f32342d3234203d3e203130313337.roa Signing time: Thu 15 May 2025 09:00:34 +0000 ROA not before: Thu 15 May 2025 08:55:34 +0000 ROA not after: Thu 14 May 2026 09:00:34 +0000 asID: 10137 IP address blocks: 203.99.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:84:66:77:b0:66:bf:c0:b4:e9:24:26:19:80:ee:f8:9d:72:be:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 08:55:34 2025 GMT Not After : May 14 09:00:34 2026 GMT Subject: CN=93BED234E8D7754CBD296D7811678220D6992A65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:58:95:85:66:c8:b7:48:de:5a:7e:00:ec:2e: 2a:3f:62:25:7f:eb:3d:a1:ff:99:f3:50:11:af:ce: 08:a4:d6:bf:82:9f:f6:14:15:fa:44:23:2f:cf:a7: f5:97:fd:65:ba:d1:19:e8:a1:22:b0:c5:69:a4:ef: f3:3e:32:fb:db:a1:69:e2:02:b1:44:a5:c5:2b:1c: ae:5a:c1:ae:0f:08:05:13:3e:19:a3:f5:66:a1:f8: c9:95:de:ad:75:70:cf:c6:37:6f:ff:16:14:64:68: e4:45:c8:c9:99:ef:24:8d:8e:5d:8a:05:43:1b:93: 3d:35:88:30:d2:90:2e:d8:40:2d:ce:f3:de:d1:96: 66:52:fb:f9:17:50:a6:c2:ca:0e:7e:80:3a:58:2b: 85:62:cd:e8:cf:99:c7:5f:66:2d:21:dd:cf:a3:5a: 05:8f:88:73:8b:57:21:11:fe:91:da:7c:f2:b6:2e: 8a:e5:a8:71:99:5a:23:ac:37:eb:5f:b5:5e:b0:bf: 26:17:e9:42:e2:b8:05:b4:19:d8:2a:b5:eb:0b:6c: ae:fc:37:49:b4:8a:c2:22:3a:3b:11:3d:a5:82:7c: 9c:75:6a:e7:97:a4:85:37:9c:a0:2b:69:a0:2e:aa: 72:0a:32:69:8b:0a:6c:83:75:b0:87:0c:86:e0:69: 54:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:BE:D2:34:E8:D7:75:4C:BD:29:6D:78:11:67:82:20:D6:99:2A:65 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130302e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.100.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:6d:f2:e5:45:97:32:3b:4c:92:fb:f4:f2:9c:3b:35:4f:9d: a3:67:25:20:50:13:58:4d:40:da:96:af:8f:8d:ac:2e:6c:be: 93:32:33:ff:53:0d:7b:c7:bf:de:15:dc:fe:0f:af:e0:f0:07: 4d:15:b8:a9:16:6e:a0:38:09:79:ff:50:ac:ea:8a:5f:d9:e6: ea:6d:79:9a:e5:c2:b1:47:e2:c3:5c:3e:87:f4:fd:f9:f9:a3: 36:2d:b5:fe:d1:03:be:24:c6:ef:de:76:60:1b:42:bf:97:76: 23:2a:d1:b3:56:66:cb:c4:f9:64:36:56:c1:f6:77:1d:1d:24: 0c:90:1e:67:32:77:38:81:3e:0a:d0:5d:2f:9c:12:05:6b:ab: b0:c0:0f:fb:d9:a6:fc:06:32:25:00:19:ad:e6:f6:b5:53:79: 57:43:84:68:e4:4a:1c:91:31:b9:be:85:c8:f3:fe:30:48:b8: d0:cf:de:ff:15:11:be:5e:9c:2d:af:3a:e6:1f:bc:28:90:e9: 2a:38:30:fe:69:93:07:97:e0:d6:79:55:46:3e:72:d8:d6:75: d1:15:52:6f:9b:9d:c9:a6:89:02:09:81:17:b8:b7:79:d9:35: be:84:d3:ea:5c:74:ba:09:23:f2:14:f0:38:08:a9:b7:17:9c: 41:2e:6d:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeYRmd7Bmv8C06SQmGYDu+J1yvrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwODU1MzRaFw0yNjA1MTQwOTAwMzRaMDMxMTAvBgNV BAMTKDkzQkVEMjM0RThENzc1NENCRDI5NkQ3ODExNjc4MjIwRDY5OTJBNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIWJWFZsi3SN5afgDsLio/YiV/ 6z2h/5nzUBGvzgik1r+Cn/YUFfpEIy/Pp/WX/WW60RnooSKwxWmk7/M+MvvboWni ArFEpcUrHK5awa4PCAUTPhmj9Wah+MmV3q11cM/GN2//FhRkaORFyMmZ7ySNjl2K BUMbkz01iDDSkC7YQC3O897RlmZS+/kXUKbCyg5+gDpYK4VizejPmcdfZi0h3c+j WgWPiHOLVyER/pHafPK2LorlqHGZWiOsN+tftV6wvyYX6ULiuAW0GdgqtesLbK78 N0m0isIiOjsRPaWCfJx1aueXpIU3nKAraaAuqnIKMmmLCmyDdbCHDIbgaVTtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUk77SNOjXdUy9KW14EWeCINaZKmUwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjZDANBgkqhkiG 9w0BAQsFAAOCAQEAbm3y5UWXMjtMkvv08pw7NU+do2clIFATWE1A2pavj42sLmy+ kzIz/1MNe8e/3hXc/g+v4PAHTRW4qRZuoDgJef9QrOqKX9nm6m15muXCsUfiw1w+ h/T9+fmjNi21/tEDviTG7952YBtCv5d2IyrRs1Zmy8T5ZDZWwfZ3HR0kDJAeZzJ3 OIE+CtBdL5wSBWursMAP+9mm/AYyJQAZreb2tVN5V0OEaORKHJExub6FyPP+MEi4 0M/e/xURvl6cLa865h+8KJDpKjgw/mmTB5fg1nlVRj5y2NZ10RVSb5udyaaJAgmB F7i3edk1voTT6lx0ugkj8hTwOAiptxecQS5tIQ== -----END CERTIFICATE-----Generated at Sun Jun 8 07:30:07 2025 by rpki-client