$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130322e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: U7xVJqzcdtgk1gwOwySKzGn7HVpecbzvGscMv3tKmH8= Subject key identifier: 2D:BE:1A:95:FB:CC:F5:C8:18:42:BD:16:A1:55:89:71:38:D3:EC:39 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 66DF7275AF3AD06CAFEA434E24250289770D6BAC Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa Signing time: Thu 15 May 2025 08:00:00 +0000 ROA not before: Thu 15 May 2025 07:55:00 +0000 ROA not after: Thu 14 May 2026 08:00:00 +0000 asID: 10137 IP address blocks: 203.99.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:df:72:75:af:3a:d0:6c:af:ea:43:4e:24:25:02:89:77:0d:6b:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 07:55:00 2025 GMT Not After : May 14 08:00:00 2026 GMT Subject: CN=2DBE1A95FBCCF5C81842BD16A155897138D3EC39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a4:90:17:c8:38:c2:ea:28:d9:93:28:7b:ee: 0c:d0:6b:8d:0e:64:c1:3f:df:0e:27:f2:89:bd:3f: d4:ed:cb:ac:70:ee:22:58:94:1f:b7:ca:28:27:99: 66:c2:9d:11:1c:19:b4:86:73:be:77:6f:b2:4a:0b: a3:c0:48:b2:a2:fc:cf:85:67:90:61:2e:d7:db:68: 1f:ca:a7:54:b2:f3:1b:59:33:2a:34:5d:c4:f1:85: aa:0e:3a:bf:ca:b0:37:69:27:d4:4e:22:27:fb:27: 1e:d5:2a:6c:58:5d:17:c9:4d:10:61:03:04:a6:b8: cd:a7:94:55:32:fb:f2:0f:1e:7b:81:30:d5:94:f3: 67:a5:b8:9f:7e:b2:ad:01:f3:ca:65:d4:54:98:d9: 69:20:85:4b:8b:3b:6c:76:3b:3b:0a:e7:26:5a:9c: 61:e3:3c:5d:c1:f2:79:d1:90:53:f5:13:ad:87:02: 88:b2:4a:04:b1:7d:52:f0:c9:11:db:22:45:b7:cf: 0e:bf:c2:c4:65:c8:b8:27:23:70:20:c6:e8:2e:a4: 22:8d:10:a1:52:d1:93:a2:d3:ec:97:de:87:af:92: ed:c0:81:da:88:f7:42:94:60:0c:6a:3f:7f:20:a0: 34:71:a3:37:b2:65:24:6e:25:60:ac:98:dc:83:0a: bf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BE:1A:95:FB:CC:F5:C8:18:42:BD:16:A1:55:89:71:38:D3:EC:39 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130322e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.102.0/24 Signature Algorithm: sha256WithRSAEncryption 57:e1:d6:02:b9:8c:0a:0d:49:63:9b:18:63:36:16:27:1d:08: 62:15:82:8a:f0:95:48:76:bb:c4:7f:f7:21:97:20:f7:f0:ee: 0c:46:1c:44:e9:ec:d8:39:59:85:a9:27:90:d4:72:99:78:c3: 70:2a:b7:3c:45:81:cc:10:64:42:90:45:5e:e3:47:88:b3:13: 55:e5:a0:ab:1c:d0:38:38:c5:a7:79:88:bf:67:12:9c:92:cf: 89:b8:c6:6a:09:40:d7:6d:76:de:12:66:c3:08:8d:b9:e5:00: 77:7c:74:4e:4d:88:2a:40:c9:78:96:98:19:a6:93:e2:ec:ee: 22:5e:1c:e3:c3:b4:76:88:65:49:01:29:8c:b7:f6:ad:d0:69: e9:37:ae:9a:85:cc:0f:21:cb:a7:01:99:a3:9c:b7:d4:38:2c: 65:88:7f:37:99:3d:cd:5d:72:45:4b:a6:06:b9:a4:8f:6e:07: e7:12:b9:44:a1:33:78:53:7e:8e:74:5c:ba:7b:59:7e:68:fa: de:91:f9:af:ba:eb:90:3c:b0:7f:f1:f7:a5:b3:71:bd:2e:ae: e1:8c:a5:f3:9e:46:5d:35:ce:62:ff:ec:2f:60:83:03:fe:1d: 6f:04:ce:2f:ca:56:b2:d0:09:78:3c:71:6f:ba:3c:64:2a:ad: b7:ca:49:a0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZt9yda860Gyv6kNOJCUCiXcNa6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwNzU1MDBaFw0yNjA1MTQwODAwMDBaMDMxMTAvBgNV BAMTKDJEQkUxQTk1RkJDQ0Y1QzgxODQyQkQxNkExNTU4OTcxMzhEM0VDMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkpJAXyDjC6ijZkyh77gzQa40O ZME/3w4n8om9P9Tty6xw7iJYlB+3yignmWbCnREcGbSGc753b7JKC6PASLKi/M+F Z5BhLtfbaB/Kp1Sy8xtZMyo0XcTxhaoOOr/KsDdpJ9ROIif7Jx7VKmxYXRfJTRBh AwSmuM2nlFUy+/IPHnuBMNWU82eluJ9+sq0B88pl1FSY2WkghUuLO2x2OzsK5yZa nGHjPF3B8nnRkFP1E62HAoiySgSxfVLwyRHbIkW3zw6/wsRlyLgnI3AgxugupCKN EKFS0ZOi0+yX3oevku3AgdqI90KUYAxqP38goDRxozeyZSRuJWCsmNyDCr81AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULb4alfvM9cgYQr0WoVWJcTjT7DkwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjZjANBgkqhkiG 9w0BAQsFAAOCAQEAV+HWArmMCg1JY5sYYzYWJx0IYhWCivCVSHa7xH/3IZcg9/Du DEYcROns2DlZhaknkNRymXjDcCq3PEWBzBBkQpBFXuNHiLMTVeWgqxzQODjFp3mI v2cSnJLPibjGaglA12123hJmwwiNueUAd3x0Tk2IKkDJeJaYGaaT4uzuIl4c48O0 dohlSQEpjLf2rdBp6TeumoXMDyHLpwGZo5y31DgsZYh/N5k9zV1yRUumBrmkj24H 5xK5RKEzeFN+jnRcuntZfmj63pH5r7rrkDywf/H3pbNxvS6u4Yyl855GXTXOYv/s L2CDA/4dbwTOL8pWstAJeDxxb7o8ZCqtt8pJoA== -----END CERTIFICATE-----Generated at Sun Jun 8 06:19:20 2025 by rpki-client