$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3132332e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: BQH0kw0B4e6ppzio5BwiL1URsCzNmPHuZzOzrCjwaYY= Subject key identifier: FA:D3:B4:64:C3:7B:46:BE:FA:70:CA:CC:EE:2E:3B:C4:AC:FA:97:C4 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 176749CFCB8FAA8B1A72AD71835A78F155BDD110 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa Signing time: Thu 15 May 2025 09:00:34 +0000 ROA not before: Thu 15 May 2025 08:55:34 +0000 ROA not after: Thu 14 May 2026 09:00:34 +0000 asID: 10137 IP address blocks: 203.99.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:67:49:cf:cb:8f:aa:8b:1a:72:ad:71:83:5a:78:f1:55:bd:d1:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 08:55:34 2025 GMT Not After : May 14 09:00:34 2026 GMT Subject: CN=FAD3B464C37B46BEFA70CACCEE2E3BC4ACFA97C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:69:55:e4:af:b0:81:7a:7f:60:0d:0a:06: 0b:a1:72:11:63:d3:06:28:8f:f8:44:22:60:fc:1e: 75:15:7a:8a:44:d7:bf:9d:a8:de:f1:2e:1a:f6:77: f5:ba:b7:34:86:f9:7b:22:82:fc:a2:35:3b:12:55: 31:d3:a6:af:91:29:f3:53:aa:b9:53:aa:21:5e:b7: 1c:7b:d3:54:4c:86:18:0f:93:e6:30:00:ec:51:b5: 79:3c:df:0d:bd:97:11:e5:ad:88:a2:57:3e:ad:80: 5a:75:6d:61:60:e6:2b:45:82:3c:1c:f3:41:59:56: 7d:84:e4:10:31:34:d0:8d:7e:e7:94:2a:db:f5:24: ca:5a:69:1b:4d:7b:08:1a:ab:10:c3:62:06:78:2c: 71:fa:58:92:10:31:4c:bd:a5:64:5e:06:68:52:3c: 8b:44:ed:ca:c7:b2:fd:db:33:d3:3e:c2:24:b0:aa: 05:08:3a:7c:f4:bc:e8:00:c3:9c:68:ee:60:80:d5: 15:79:a2:25:8d:32:5e:1f:71:74:b6:c0:eb:ff:aa: 07:fa:f0:97:1a:c7:c6:af:99:db:0b:1c:25:2f:6d: 07:96:3d:17:b6:34:9e:3b:e4:6d:f5:d1:51:a1:25: b2:3b:bb:03:24:1b:37:10:2b:33:87:06:ec:b4:31: 00:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D3:B4:64:C3:7B:46:BE:FA:70:CA:CC:EE:2E:3B:C4:AC:FA:97:C4 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3132332e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.123.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:ae:d5:4e:c5:c6:14:f0:50:70:a6:93:4f:ca:c7:25:35:54: 0a:f8:97:31:24:0c:06:06:34:3d:91:7c:54:49:43:dc:25:06: 91:0b:88:57:8d:d9:ad:86:4a:31:6a:3e:33:04:5c:38:30:19: 15:d8:9f:6c:10:c1:12:ef:36:ab:c3:7b:14:04:79:bb:5c:39: f6:d8:a0:bf:f2:39:92:b3:40:7e:0a:4a:3e:e9:a5:37:3e:2d: a5:fe:84:15:6e:42:82:af:63:e7:69:3b:27:6a:93:bc:f9:2f: 02:b7:1b:6c:b9:93:c2:fd:b7:15:49:82:85:fb:29:90:0a:81: 1f:89:42:60:73:a0:57:f5:4b:33:99:1b:8a:e4:41:6e:fb:ff: 37:23:cd:48:f1:de:1a:a5:90:a8:e5:03:67:3b:39:0d:16:8b: d5:ac:63:d1:d2:c7:cc:c7:a8:2d:fe:bc:65:f7:20:cb:8a:fe: 2b:a0:af:e7:36:72:d6:ac:0b:6f:48:2d:d0:46:1e:2c:1f:9f: d1:7b:47:8d:72:6e:07:b2:28:f5:44:09:67:8f:17:b9:bd:46: 8b:5a:7e:70:cd:72:8e:4a:fe:ca:5f:00:d6:79:14:b1:5e:d2: 74:95:ef:11:f6:65:d5:5c:43:33:16:67:9c:9c:54:3e:e1:3a: 23:98:3c:dd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF2dJz8uPqosacq1xg1p48VW90RAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwODU1MzRaFw0yNjA1MTQwOTAwMzRaMDMxMTAvBgNV BAMTKEZBRDNCNDY0QzM3QjQ2QkVGQTcwQ0FDQ0VFMkUzQkM0QUNGQTk3QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1PmlV5K+wgXp/YA0KBguhchFj 0wYoj/hEImD8HnUVeopE17+dqN7xLhr2d/W6tzSG+XsigvyiNTsSVTHTpq+RKfNT qrlTqiFetxx701RMhhgPk+YwAOxRtXk83w29lxHlrYiiVz6tgFp1bWFg5itFgjwc 80FZVn2E5BAxNNCNfueUKtv1JMpaaRtNewgaqxDDYgZ4LHH6WJIQMUy9pWReBmhS PItE7crHsv3bM9M+wiSwqgUIOnz0vOgAw5xo7mCA1RV5oiWNMl4fcXS2wOv/qgf6 8Jcax8avmdsLHCUvbQeWPRe2NJ475G310VGhJbI7uwMkGzcQKzOHBuy0MQBpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+tO0ZMN7Rr76cMrM7i47xKz6l8QwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjezANBgkqhkiG 9w0BAQsFAAOCAQEAPq7VTsXGFPBQcKaTT8rHJTVUCviXMSQMBgY0PZF8VElD3CUG kQuIV43ZrYZKMWo+MwRcODAZFdifbBDBEu82q8N7FAR5u1w59tigv/I5krNAfgpK PumlNz4tpf6EFW5Cgq9j52k7J2qTvPkvArcbbLmTwv23FUmChfspkAqBH4lCYHOg V/VLM5kbiuRBbvv/NyPNSPHeGqWQqOUDZzs5DRaL1axj0dLHzMeoLf68Zfcgy4r+ K6Cv5zZy1qwLb0gt0EYeLB+f0XtHjXJuB7Io9UQJZ48Xub1Gi1p+cM1yjkr+yl8A 1nkUsV7SdJXvEfZl1VxDMxZnnJxUPuE6I5g83Q== -----END CERTIFICATE-----Generated at Sat Jun 7 23:36:02 2025 by rpki-client