$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa File: 3230332e39392e39362e302f32342d3234203d3e203536323431.roa (raw, json) Hash identifier: QQEl1leZhF0X49G+UBT0CT/1lmpnoPikc672j59nRAg= Subject key identifier: 93:4B:55:64:D2:12:EC:29:E1:FB:43:9B:0D:C1:05:98:49:6A:BE:C3 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 2808A9D89B853796F36C2827B069505E62EDC523 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa Signing time: Thu 15 May 2025 09:00:35 +0000 ROA not before: Thu 15 May 2025 08:55:35 +0000 ROA not after: Thu 14 May 2026 09:00:35 +0000 asID: 56241 IP address blocks: 203.99.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:08:a9:d8:9b:85:37:96:f3:6c:28:27:b0:69:50:5e:62:ed:c5:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 08:55:35 2025 GMT Not After : May 14 09:00:35 2026 GMT Subject: CN=934B5564D212EC29E1FB439B0DC10598496ABEC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:41:21:70:7a:4d:69:ac:1f:aa:bf:09:a9:86: 1f:33:c0:3b:c8:4c:6c:7f:7a:26:98:c3:6b:de:e7: 31:ae:f9:a4:ab:74:da:c9:6c:e6:a0:fa:0d:78:c7: 68:b3:f0:e9:b3:ea:49:3c:3d:f8:c5:6c:36:ff:fa: 59:2d:89:48:7e:2b:27:6b:01:d8:64:17:59:89:ae: bc:4f:af:11:1f:8c:e1:b1:60:43:67:0d:24:b1:d2: f4:96:25:06:cf:ad:a8:93:c7:a8:df:b2:f3:60:62: d9:9b:d5:66:ba:60:04:00:95:48:c2:b8:fb:60:61: e8:dd:68:0b:f8:9b:ab:64:4f:be:63:42:ac:a1:95: d3:8b:dd:9c:7e:9b:15:01:0c:d2:92:7d:ba:d8:1c: 63:fe:40:eb:35:01:13:c4:99:9e:05:32:43:52:72: d1:d7:c3:15:5d:20:fd:e7:63:4d:4d:14:c1:f0:1a: cc:d2:63:64:3e:2a:fb:b9:ef:ad:62:86:8f:50:30: 08:50:05:88:13:d6:86:18:dc:f0:11:cc:4c:21:96: e4:f7:14:de:ba:d4:b6:ea:c3:66:5d:81:68:cc:b2: 96:93:e8:57:4d:fc:37:5e:ee:4c:8c:d9:17:bf:6b: 88:24:f3:12:80:05:f2:12:d9:82:a1:26:f1:4b:0e: a9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4B:55:64:D2:12:EC:29:E1:FB:43:9B:0D:C1:05:98:49:6A:BE:C3 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39362e302f32342d3234203d3e203536323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.96.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:9c:79:50:7b:03:77:6b:3c:90:e2:6f:00:6f:8d:8c:c0:32: b1:16:5a:37:0f:ba:d5:22:4d:d9:f8:ed:2a:e2:c5:9f:08:b8: c4:e8:f9:2d:0d:24:d8:f6:92:db:a0:bb:bd:c0:07:7a:60:6f: e2:43:07:05:e9:75:f5:d6:62:90:73:8e:38:60:5b:af:3f:84: 0a:35:02:66:15:16:53:05:32:79:e2:88:d1:e8:f1:a1:5a:9f: 80:f6:4d:56:48:97:da:ad:df:09:49:d0:a4:b5:68:cd:d3:48: 94:1a:9a:07:cb:d6:76:6c:1b:49:40:5c:93:4c:25:c2:c4:cb: e5:24:77:65:01:a1:3a:3f:eb:59:67:0f:83:1e:ad:e7:bb:00: 5d:5d:5c:fd:96:9f:29:25:8d:a9:a7:85:aa:60:86:cc:36:6e: 31:5f:7f:19:29:be:e6:7b:24:5f:d8:3d:d0:af:db:c5:e3:75: e4:79:b5:c6:ff:0f:f4:14:5a:3d:2d:ff:ad:76:f3:a3:47:2c: 80:bd:86:13:a9:90:06:1d:d0:1b:f3:44:5f:96:b6:09:9d:40: 05:5d:64:50:f3:08:16:06:2c:48:4c:94:a9:d2:cf:f4:a2:78: da:b4:98:1d:1f:b0:a6:ab:2a:35:a3:c1:de:2c:0d:3c:7e:8c: 8b:5d:4e:ee -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKAip2JuFN5bzbCgnsGlQXmLtxSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwODU1MzVaFw0yNjA1MTQwOTAwMzVaMDMxMTAvBgNV BAMTKDkzNEI1NTY0RDIxMkVDMjlFMUZCNDM5QjBEQzEwNTk4NDk2QUJFQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaQSFwek1prB+qvwmphh8zwDvI TGx/eiaYw2ve5zGu+aSrdNrJbOag+g14x2iz8Omz6kk8PfjFbDb/+lktiUh+Kydr AdhkF1mJrrxPrxEfjOGxYENnDSSx0vSWJQbPraiTx6jfsvNgYtmb1Wa6YAQAlUjC uPtgYejdaAv4m6tkT75jQqyhldOL3Zx+mxUBDNKSfbrYHGP+QOs1ARPEmZ4FMkNS ctHXwxVdIP3nY01NFMHwGszSY2Q+Kvu5761iho9QMAhQBYgT1oYY3PARzEwhluT3 FN661Lbqw2ZdgWjMspaT6FdN/Dde7kyM2Re/a4gk8xKABfIS2YKhJvFLDqmTAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUk0tVZNIS7Cnh+0ObDcEFmElqvsMwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzkzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzYzMjM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLY2AwDQYJKoZIhvcN AQELBQADggEBAIuceVB7A3drPJDibwBvjYzAMrEWWjcPutUiTdn47SrixZ8IuMTo +S0NJNj2ktugu73AB3pgb+JDBwXpdfXWYpBzjjhgW68/hAo1AmYVFlMFMnniiNHo 8aFan4D2TVZIl9qt3wlJ0KS1aM3TSJQamgfL1nZsG0lAXJNMJcLEy+Ukd2UBoTo/ 61lnD4Meree7AF1dXP2Wnykljamnhapghsw2bjFffxkpvuZ7JF/YPdCv28XjdeR5 tcb/D/QUWj0t/61286NHLIC9hhOpkAYd0BvzRF+WtgmdQAVdZFDzCBYGLEhMlKnS z/SieNq0mB0fsKarKjWjwd4sDTx+jItdTu4= -----END CERTIFICATE-----Generated at Sun Jun 8 07:25:22 2025 by rpki-client