$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130382e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: TKIaCGNmw0FCbWe/3+O7LJSlQ7xoNdfmZ92Bv+OHeJ0= Subject key identifier: 77:D6:6C:5F:F9:47:68:4A:91:67:3F:65:E4:8A:B2:CE:FE:C9:AD:27 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 48E500DC88179389D9578A68B79255D987900FCB Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa Signing time: Thu 15 May 2025 09:00:35 +0000 ROA not before: Thu 15 May 2025 08:55:35 +0000 ROA not after: Thu 14 May 2026 09:00:35 +0000 asID: 10137 IP address blocks: 203.99.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:e5:00:dc:88:17:93:89:d9:57:8a:68:b7:92:55:d9:87:90:0f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 08:55:35 2025 GMT Not After : May 14 09:00:35 2026 GMT Subject: CN=77D66C5FF947684A91673F65E48AB2CEFEC9AD27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e3:a2:dc:db:f3:00:88:da:81:bc:a3:d3:7e: a1:5e:5f:14:c3:9f:ad:a3:44:7f:a6:8c:6d:af:6c: a4:c8:2e:c5:a5:41:71:eb:5c:3d:1a:37:f7:ca:17: ba:2f:d4:cd:cb:94:89:97:11:1e:fd:23:72:ee:46: 94:bf:38:4b:13:9f:7a:81:1d:7a:95:98:a2:03:2f: f7:ca:a8:4d:e9:d5:bf:5f:06:4f:f4:e4:ae:7d:81: 8a:8a:16:8c:f6:12:18:af:13:b8:d6:a7:c6:25:1c: d8:ae:b4:37:32:7b:42:68:be:ec:14:df:03:1c:b3: ff:09:78:8e:0b:44:51:3e:e8:ae:69:63:ec:2b:89: 08:2b:8d:d6:e6:ca:c8:57:dc:e3:4c:ed:65:ee:9f: 48:04:d3:2b:68:07:a7:2a:56:43:b6:6b:38:5b:3a: 6c:58:00:d3:46:59:b9:3d:b8:5f:46:5b:83:64:99: 4d:b2:7d:8e:7a:ac:23:42:63:e0:1b:fc:dd:7b:3b: 05:38:f7:89:0c:98:73:fc:bf:19:83:7d:29:1c:30: ea:5c:89:14:50:9e:c4:ea:05:4a:e0:da:3f:d9:72: 8a:88:5d:9d:4b:a8:9a:d3:b9:51:e6:3f:c5:d4:41: 01:2f:d5:82:1d:f5:d5:05:35:85:c9:4f:ed:94:ab: 14:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D6:6C:5F:F9:47:68:4A:91:67:3F:65:E4:8A:B2:CE:FE:C9:AD:27 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.108.0/24 Signature Algorithm: sha256WithRSAEncryption 27:cd:08:a3:19:d0:ed:dd:f9:36:b4:7e:6f:b7:c7:6d:1d:97: 9f:26:3e:ea:c2:aa:53:c1:f2:24:ce:42:33:2d:c9:68:2b:b0: 75:d1:cf:e6:88:ea:d5:9a:bb:12:29:f2:79:83:d5:d0:92:a8: 68:2f:8c:eb:79:f2:d3:64:89:9e:d4:8b:03:03:98:6f:60:51: 81:8a:ff:e7:27:54:02:f6:bb:17:67:97:8c:80:cd:78:eb:38: c4:95:4e:c2:6c:22:10:8f:8e:dc:70:6b:80:28:a2:89:45:49: 93:d2:5a:58:bd:bf:8d:23:b5:82:0a:e8:32:a4:b7:d3:a3:14: b9:d2:64:08:34:82:eb:7b:ce:4a:d3:37:c6:3b:85:cb:cc:42: 0e:c8:03:f8:85:96:c7:c1:88:26:96:eb:5f:10:b5:70:cf:cc: 88:8e:4a:c9:e7:0a:a0:46:4b:ce:87:4c:d2:8e:30:5b:34:13: 5b:d9:38:97:57:f0:4b:8f:85:7b:51:75:8a:7d:2f:c0:62:83: 38:a7:76:2f:45:30:de:ae:21:2e:6d:8d:e4:8e:9e:50:b7:3e: 24:f6:9a:09:e3:26:c9:b7:d0:94:c6:43:4e:70:d6:1e:db:7d: a5:af:2e:9c:6b:c2:9b:74:e1:94:3b:d1:02:10:a8:7f:be:9f: 7d:ee:21:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSOUA3IgXk4nZV4pot5JV2YeQD8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwODU1MzVaFw0yNjA1MTQwOTAwMzVaMDMxMTAvBgNV BAMTKDc3RDY2QzVGRjk0NzY4NEE5MTY3M0Y2NUU0OEFCMkNFRkVDOUFEMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv46Lc2/MAiNqBvKPTfqFeXxTD n62jRH+mjG2vbKTILsWlQXHrXD0aN/fKF7ov1M3LlImXER79I3LuRpS/OEsTn3qB HXqVmKIDL/fKqE3p1b9fBk/05K59gYqKFoz2EhivE7jWp8YlHNiutDcye0JovuwU 3wMcs/8JeI4LRFE+6K5pY+wriQgrjdbmyshX3ONM7WXun0gE0ytoB6cqVkO2azhb OmxYANNGWbk9uF9GW4NkmU2yfY56rCNCY+Ab/N17OwU494kMmHP8vxmDfSkcMOpc iRRQnsTqBUrg2j/ZcoqIXZ1LqJrTuVHmP8XUQQEv1YId9dUFNYXJT+2UqxTTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUd9ZsX/lHaEqRZz9l5Iqyzv7JrScwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjbDANBgkqhkiG 9w0BAQsFAAOCAQEAJ80IoxnQ7d35NrR+b7fHbR2XnyY+6sKqU8HyJM5CMy3JaCuw ddHP5ojq1Zq7EinyeYPV0JKoaC+M63ny02SJntSLAwOYb2BRgYr/5ydUAva7F2eX jIDNeOs4xJVOwmwiEI+O3HBrgCiiiUVJk9JaWL2/jSO1ggroMqS306MUudJkCDSC 63vOStM3xjuFy8xCDsgD+IWWx8GIJpbrXxC1cM/MiI5KyecKoEZLzodM0o4wWzQT W9k4l1fwS4+Fe1F1in0vwGKDOKd2L0Uw3q4hLm2N5I6eULc+JPaaCeMmybfQlMZD TnDWHtt9pa8unGvCm3ThlDvRAhCof76ffe4hJw== -----END CERTIFICATE-----Generated at Sun Jun 8 06:43:42 2025 by rpki-client