$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131322e302f32342d3234203d3e203536323431.roa File: 3230332e39392e3131322e302f32342d3234203d3e203536323431.roa (raw, json) Hash identifier: d70EdgOAl/ZvYk+xnYqFc0mp89JoqalAszoU+/bGI6Q= Subject key identifier: 97:F2:EC:4D:B5:2C:FF:0B:4D:EF:CA:08:C4:C6:52:95:7E:83:B0:96 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 63E888714D9DFE7E183003116FAD6B500F741967 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131322e302f32342d3234203d3e203536323431.roa Signing time: Thu 15 May 2025 08:00:00 +0000 ROA not before: Thu 15 May 2025 07:55:00 +0000 ROA not after: Thu 14 May 2026 08:00:00 +0000 asID: 56241 IP address blocks: 203.99.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e8:88:71:4d:9d:fe:7e:18:30:03:11:6f:ad:6b:50:0f:74:19:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 07:55:00 2025 GMT Not After : May 14 08:00:00 2026 GMT Subject: CN=97F2EC4DB52CFF0B4DEFCA08C4C652957E83B096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cc:3b:e5:09:07:82:45:d2:ae:d4:3b:52:d8: 9c:9f:c8:9d:da:c0:52:34:06:00:bd:59:a7:d6:cf: d4:48:46:a5:d6:82:69:62:69:ae:b7:7a:43:a2:0a: 1f:2c:05:ae:ba:67:13:1e:a5:a3:55:e4:5f:f6:98: a7:5a:32:ef:b3:fb:d6:12:05:b5:ff:44:d7:a4:c5: 0d:1b:55:13:e2:dd:87:fd:15:56:f6:fc:38:2b:1e: ff:b5:ef:65:41:5d:27:9d:2b:48:dd:d2:cd:f3:08: 0e:10:2f:f7:bf:d8:ef:ae:d0:4c:6f:61:ee:e0:e8: 4e:91:1d:12:a4:a0:8a:97:f5:38:66:a0:2a:a5:8a: b7:2d:c4:da:a9:c6:6b:02:4b:38:38:09:2c:94:05: 5d:30:bc:22:31:04:51:6c:c4:ae:86:28:f4:3b:90: ba:17:fc:84:43:f5:c6:9a:c6:07:d9:95:f5:87:31: 76:09:5e:83:e8:dd:f8:69:2f:67:cc:3d:ed:a6:a4: b5:94:73:d9:e8:a8:01:bc:9b:57:fe:99:09:aa:b1: 36:a1:88:0e:04:df:3a:55:81:97:83:d6:dd:fd:db: 00:8f:9e:10:cf:72:a6:5b:a2:9b:4d:95:16:94:db: c9:3a:71:6c:af:f9:7a:8c:58:46:1d:6a:f4:62:35: 79:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F2:EC:4D:B5:2C:FF:0B:4D:EF:CA:08:C4:C6:52:95:7E:83:B0:96 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131322e302f32342d3234203d3e203536323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.112.0/24 Signature Algorithm: sha256WithRSAEncryption b5:12:a1:47:a6:94:c5:75:72:d7:ab:d0:6d:26:e2:0b:a2:a3: c5:0b:c9:16:f8:6e:a8:13:03:03:3e:c4:5b:28:80:d8:4c:ce: 50:90:8e:b2:6d:73:ad:0e:74:00:20:fa:98:a7:d9:1b:a8:5d: ea:41:b4:1a:9c:3c:9b:90:e9:86:4f:8c:01:92:af:77:d2:45: 07:60:ef:70:80:3e:ff:74:0b:be:83:01:3c:91:02:75:47:a6: 6d:00:31:b1:c2:33:90:60:ca:6e:d6:7b:7b:fa:90:66:0f:c7: 86:cf:2d:e5:e7:a9:cf:fd:79:fa:f7:37:08:a1:35:47:f9:b6: 3a:54:b9:e7:13:46:14:7a:c4:6c:f4:35:2b:c0:57:c6:b8:40: 91:61:06:84:bf:e6:a2:74:33:96:1c:fb:73:f6:9e:1e:37:75: 1c:df:b3:b1:b3:cd:ad:94:30:25:9e:fb:1f:5f:e1:56:10:16: ff:1a:87:74:60:3e:bb:40:e3:d6:b5:b4:b2:fa:9d:fc:65:33: 3f:99:c3:60:06:27:b2:f1:5d:aa:e2:42:0b:5d:04:fe:54:fe: e2:a4:46:2f:48:07:ab:41:45:66:b8:93:82:52:c3:a5:08:cd: 13:05:f6:e0:c6:bf:cc:93:2d:bf:b2:8c:bf:8f:e4:3f:92:17: 0a:d0:3f:a9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY+iIcU2d/n4YMAMRb61rUA90GWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwNzU1MDBaFw0yNjA1MTQwODAwMDBaMDMxMTAvBgNV BAMTKDk3RjJFQzREQjUyQ0ZGMEI0REVGQ0EwOEM0QzY1Mjk1N0U4M0IwOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzzDvlCQeCRdKu1DtS2JyfyJ3a wFI0BgC9WafWz9RIRqXWgmliaa63ekOiCh8sBa66ZxMepaNV5F/2mKdaMu+z+9YS BbX/RNekxQ0bVRPi3Yf9FVb2/DgrHv+172VBXSedK0jd0s3zCA4QL/e/2O+u0Exv Ye7g6E6RHRKkoIqX9ThmoCqlirctxNqpxmsCSzg4CSyUBV0wvCIxBFFsxK6GKPQ7 kLoX/IRD9caaxgfZlfWHMXYJXoPo3fhpL2fMPe2mpLWUc9noqAG8m1f+mQmqsTah iA4E3zpVgZeD1t392wCPnhDPcqZboptNlRaU28k6cWyv+XqMWEYdavRiNXk5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUl/LsTbUs/wtN78oIxMZSlX6DsJYwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjcDANBgkqhkiG 9w0BAQsFAAOCAQEAtRKhR6aUxXVy16vQbSbiC6KjxQvJFvhuqBMDAz7EWyiA2EzO UJCOsm1zrQ50ACD6mKfZG6hd6kG0Gpw8m5Dphk+MAZKvd9JFB2DvcIA+/3QLvoMB PJECdUembQAxscIzkGDKbtZ7e/qQZg/Hhs8t5eepz/15+vc3CKE1R/m2OlS55xNG FHrEbPQ1K8BXxrhAkWEGhL/monQzlhz7c/aeHjd1HN+zsbPNrZQwJZ77H1/hVhAW /xqHdGA+u0Dj1rW0svqd/GUzP5nDYAYnsvFdquJCC10E/lT+4qRGL0gHq0FFZriT glLDpQjNEwX24Ma/zJMtv7KMv4/kP5IXCtA/qQ== -----END CERTIFICATE-----Generated at Sat Jun 7 15:52:00 2025 by rpki-client