$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131302e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3131302e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: OcKouWixei8TpwsTFVkFBcyninhRrEylV36bA4eOzLY= Subject key identifier: 31:F1:1B:A8:94:D3:B3:E5:C1:D1:06:B9:9A:D8:5D:EA:51:C9:9B:EA Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 1A89DA2AC0A2A91FF7B22D9ABA0CAC198F026451 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131302e302f32342d3234203d3e203130313337.roa Signing time: Thu 15 May 2025 09:00:35 +0000 ROA not before: Thu 15 May 2025 08:55:35 +0000 ROA not after: Thu 14 May 2026 09:00:35 +0000 asID: 10137 IP address blocks: 203.99.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:89:da:2a:c0:a2:a9:1f:f7:b2:2d:9a:ba:0c:ac:19:8f:02:64:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 08:55:35 2025 GMT Not After : May 14 09:00:35 2026 GMT Subject: CN=31F11BA894D3B3E5C1D106B99AD85DEA51C99BEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0f:35:76:97:72:0d:2d:fa:03:01:10:a4:c5: 77:41:11:00:25:b2:b2:d0:5d:08:1f:c4:41:fd:ae: 58:98:20:2f:4f:cb:f5:c8:41:6e:cc:40:ac:92:3c: b8:bd:7f:5b:c9:e9:0b:e8:00:99:3a:ad:a4:18:8e: 8c:13:6b:8b:78:34:f8:73:32:9d:3e:ea:d9:49:50: b1:d1:22:12:84:38:9e:a4:6e:37:63:0c:db:6e:13: 6b:7c:42:d9:18:b4:0a:ee:ee:93:da:6d:b0:0c:04: 3e:f8:a8:59:70:dc:66:4b:c9:f5:16:99:94:2c:06: bb:b8:07:b8:99:07:63:a5:73:4a:c0:79:da:ab:ba: da:96:9d:16:f7:69:31:8b:65:98:32:8e:da:6c:e3: 61:c0:a0:d6:6a:a9:d4:a7:7e:1b:72:e7:f7:13:62: b1:b0:82:6a:4f:cc:16:42:9d:26:c1:d5:9c:67:e3: df:5d:59:47:97:86:b2:b7:c4:73:a7:2a:af:c2:8b: 6b:10:dc:06:f2:a6:aa:5f:1d:2c:dd:e6:81:44:7f: 62:34:ed:08:13:95:13:48:4d:be:85:d0:f7:f2:67: ff:3c:87:28:0a:d2:96:57:d2:ff:7f:f2:8f:25:06: dd:01:a1:6f:20:16:e5:18:be:0d:60:d3:45:a7:b4: 2e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F1:1B:A8:94:D3:B3:E5:C1:D1:06:B9:9A:D8:5D:EA:51:C9:9B:EA X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131302e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.110.0/24 Signature Algorithm: sha256WithRSAEncryption ac:e0:ba:3d:e0:a4:66:f4:a5:e8:04:7c:10:70:84:fc:f7:46: 07:54:14:9b:71:16:c1:85:49:96:85:69:8a:53:34:e9:76:0c: a9:27:52:ee:a3:ad:df:1e:1f:48:90:c7:95:a9:be:ec:91:93: 5b:e0:d0:ba:83:b9:b7:ce:75:d5:ca:b4:49:ae:63:44:94:12: aa:5c:73:b3:bb:1b:8a:dc:37:b4:99:c4:86:e3:b9:a5:cd:eb: 95:2e:84:fc:8a:eb:28:5c:26:f0:71:6e:e6:55:4d:cf:62:b4: 87:bb:fe:33:a7:29:0a:5b:2a:d7:c2:22:20:5d:c5:6e:92:90: 76:fb:5d:e9:92:9a:d8:52:a6:76:bc:51:62:c6:fc:42:e4:f7: d2:55:24:0a:7b:c3:73:e7:94:63:c9:d4:a1:13:a2:13:ee:ff: 71:b5:3e:2c:0e:0c:d6:30:92:71:e9:ed:9d:f5:c8:af:b9:04: e8:c4:45:7f:3a:49:4a:b8:a8:e7:54:71:b2:09:38:07:00:c1: ff:e7:0c:61:ba:1f:70:b0:ba:e8:c1:3f:4b:fa:c2:ee:40:f4: 8e:93:b9:8e:ae:b4:7a:c8:7c:62:e1:13:2c:13:56:4b:0c:e2: 3a:c8:52:12:eb:b4:83:16:31:71:ac:6b:e8:51:b2:0e:d7:98: c6:c4:a3:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGonaKsCiqR/3si2augysGY8CZFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwODU1MzVaFw0yNjA1MTQwOTAwMzVaMDMxMTAvBgNV BAMTKDMxRjExQkE4OTREM0IzRTVDMUQxMDZCOTlBRDg1REVBNTFDOTlCRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDDzV2l3INLfoDARCkxXdBEQAl srLQXQgfxEH9rliYIC9Py/XIQW7MQKySPLi9f1vJ6QvoAJk6raQYjowTa4t4NPhz Mp0+6tlJULHRIhKEOJ6kbjdjDNtuE2t8QtkYtAru7pPabbAMBD74qFlw3GZLyfUW mZQsBru4B7iZB2Olc0rAedqrutqWnRb3aTGLZZgyjtps42HAoNZqqdSnfhty5/cT YrGwgmpPzBZCnSbB1Zxn499dWUeXhrK3xHOnKq/Ci2sQ3AbypqpfHSzd5oFEf2I0 7QgTlRNITb6F0PfyZ/88hygK0pZX0v9/8o8lBt0BoW8gFuUYvg1g00WntC4lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMfEbqJTTs+XB0Qa5mthd6lHJm+owHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjbjANBgkqhkiG 9w0BAQsFAAOCAQEArOC6PeCkZvSl6AR8EHCE/PdGB1QUm3EWwYVJloVpilM06XYM qSdS7qOt3x4fSJDHlam+7JGTW+DQuoO5t8511cq0Sa5jRJQSqlxzs7sbitw3tJnE huO5pc3rlS6E/IrrKFwm8HFu5lVNz2K0h7v+M6cpClsq18IiIF3FbpKQdvtd6ZKa 2FKmdrxRYsb8QuT30lUkCnvDc+eUY8nUoROiE+7/cbU+LA4M1jCScentnfXIr7kE 6MRFfzpJSrio51Rxsgk4BwDB/+cMYbofcLC66ME/S/rC7kD0jpO5jq60esh8YuET LBNWSwziOshSEuu0gxYxcaxr6FGyDteYxsSjaw== -----END CERTIFICATE-----Generated at Sun Jun 8 07:28:33 2025 by rpki-client