$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39372e302f32342d3234203d3e203130313337.roa File: 3230332e39392e39372e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: AUrPeDtvCDIlLijZhNwOF27tO0OFAv5oKcq9RZUfz7k= Subject key identifier: 86:CA:6F:33:EF:BC:9D:D0:08:DA:B4:54:6B:91:D4:BE:94:93:3C:C3 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 08CFA15A16768BAF3D9525CB952035AE2EFAF930 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39372e302f32342d3234203d3e203130313337.roa Signing time: Thu 15 May 2025 09:00:34 +0000 ROA not before: Thu 15 May 2025 08:55:34 +0000 ROA not after: Thu 14 May 2026 09:00:34 +0000 asID: 10137 IP address blocks: 203.99.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:cf:a1:5a:16:76:8b:af:3d:95:25:cb:95:20:35:ae:2e:fa:f9:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 08:55:34 2025 GMT Not After : May 14 09:00:34 2026 GMT Subject: CN=86CA6F33EFBC9DD008DAB4546B91D4BE94933CC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d8:16:96:5e:4c:e1:36:9c:ae:78:94:94:5e: bd:b4:33:8b:45:48:a9:62:1c:50:8c:cc:ec:53:09: 28:94:9a:f5:40:c9:36:8a:8f:e9:9c:30:d9:b1:5d: 04:d7:47:a7:5e:20:9b:e3:4d:3b:15:3d:bd:54:97: 73:c2:4f:f2:bf:3d:74:51:db:fc:4e:21:ef:1e:f2: 6e:9b:20:78:4e:a9:ec:be:4e:05:85:34:1c:4a:57: bb:70:0d:61:d2:ee:ca:66:ec:b0:c3:0b:81:d1:7d: e7:a1:65:38:16:5c:1f:db:7e:2a:81:a7:0d:e1:d5: a5:af:b4:b1:35:81:b2:69:eb:53:6b:ed:a9:d1:95: 87:9e:3d:c0:ec:26:d1:ba:d0:9e:6f:ad:c6:c4:8f: 2a:92:0b:ef:d1:a0:de:19:bf:df:ba:33:6a:02:ce: 49:8c:08:7e:d3:e8:be:3d:53:b6:37:23:2e:e8:58: 07:1e:01:26:1f:13:92:17:11:cf:2c:b7:71:a7:ba: 42:c5:99:a9:dc:97:e3:57:74:ab:fc:5a:2a:41:df: 0d:b5:45:ec:39:05:dc:49:9c:13:78:13:ba:41:3c: 49:67:2b:a7:dc:08:68:b6:91:fc:31:1a:f3:61:0d: 10:74:e4:dc:e3:e7:bd:8b:20:59:90:e7:87:52:93: d3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CA:6F:33:EF:BC:9D:D0:08:DA:B4:54:6B:91:D4:BE:94:93:3C:C3 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e39372e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.97.0/24 Signature Algorithm: sha256WithRSAEncryption 73:0e:cf:e9:ca:a1:47:e8:07:ae:24:94:7f:68:77:31:70:5b: 28:e1:f6:f7:b9:30:35:ab:8d:dd:a3:2b:b9:cf:e0:a0:93:ed: 5d:5b:af:d4:09:71:73:5f:15:ae:7e:a6:15:f3:0b:4e:29:c2: 8a:2f:54:19:88:43:bc:40:c2:1e:ae:88:1b:e7:a1:14:32:d7: a2:86:9b:46:7b:af:34:8b:15:52:19:50:1c:02:00:ab:e3:6d: 54:ca:a7:7a:8f:55:92:41:5a:2d:ec:a1:bb:4f:13:d5:da:56: b9:a1:1c:78:90:da:6b:0e:09:56:44:0a:24:58:f7:c6:f1:7c: fe:9c:6f:83:25:bd:93:b8:9f:9f:38:27:ae:1e:6a:d3:e1:57: b5:7a:f8:a7:ea:ee:43:78:3a:3f:a1:fb:3d:f4:f4:05:33:d5: b8:87:f2:58:fa:73:71:d7:c3:f3:81:18:e1:3d:a3:93:3e:bc: 73:ea:5c:06:dc:17:bf:24:59:7b:21:ea:38:ad:11:e4:33:c3: 00:31:3b:2b:a1:49:b4:9f:56:48:9e:ea:5a:c6:e6:4f:4f:25: 0a:92:95:f5:78:28:05:21:f3:e0:fc:bd:04:68:f1:50:6e:cf: 9b:22:35:3a:a7:a2:10:9e:f1:a9:a8:58:55:e7:c3:1e:39:bd: dd:bd:ea:64 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCM+hWhZ2i689lSXLlSA1ri76+TAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwODU1MzRaFw0yNjA1MTQwOTAwMzRaMDMxMTAvBgNV BAMTKDg2Q0E2RjMzRUZCQzlERDAwOERBQjQ1NDZCOTFENEJFOTQ5MzNDQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr2BaWXkzhNpyueJSUXr20M4tF SKliHFCMzOxTCSiUmvVAyTaKj+mcMNmxXQTXR6deIJvjTTsVPb1Ul3PCT/K/PXRR 2/xOIe8e8m6bIHhOqey+TgWFNBxKV7twDWHS7spm7LDDC4HRfeehZTgWXB/bfiqB pw3h1aWvtLE1gbJp61Nr7anRlYeePcDsJtG60J5vrcbEjyqSC+/RoN4Zv9+6M2oC zkmMCH7T6L49U7Y3Iy7oWAceASYfE5IXEc8st3GnukLFmancl+NXdKv8WipB3w21 Rew5BdxJnBN4E7pBPElnK6fcCGi2kfwxGvNhDRB05Nzj572LIFmQ54dSk9PnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhspvM++8ndAI2rRUa5HUvpSTPMMwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzkzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzAzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLY2EwDQYJKoZIhvcN AQELBQADggEBAHMOz+nKoUfoB64klH9odzFwWyjh9ve5MDWrjd2jK7nP4KCT7V1b r9QJcXNfFa5+phXzC04pwoovVBmIQ7xAwh6uiBvnoRQy16KGm0Z7rzSLFVIZUBwC AKvjbVTKp3qPVZJBWi3sobtPE9XaVrmhHHiQ2msOCVZECiRY98bxfP6cb4MlvZO4 n584J64eatPhV7V6+Kfq7kN4Oj+h+z309AUz1biH8lj6c3HXw/OBGOE9o5M+vHPq XAbcF78kWXsh6jitEeQzwwAxOyuhSbSfVkie6lrG5k9PJQqSlfV4KAUh8+D8vQRo 8VBuz5siNTqnohCe8amoWFXnwx45vd296mQ= -----END CERTIFICATE-----Generated at Sat Jun 7 23:31:45 2025 by rpki-client