$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS7597.roa File: AS7597.roa (raw, json) Hash identifier: QWWa9PNkJ++6RsJiHAOGHz8kuX0djmz5JCETB6i8fBU= Subject key identifier: 6F:63:09:9E:83:14:E9:D0:99:4B:6A:B2:62:78:19:C6:63:99:F2:59 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41F77A14954FE7797296F0FC7C4ABE273C2BDFA2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS7597.roa Signing time: Mon 23 Jun 2025 08:00:00 +0000 ROA not before: Mon 23 Jun 2025 07:55:00 +0000 ROA not after: Mon 22 Jun 2026 08:00:00 +0000 asID: 7597 IP address blocks: 123.108.8.0/21 maxlen: 24 203.119.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 23:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f7:7a:14:95:4f:e7:79:72:96:f0:fc:7c:4a:be:27:3c:2b:df:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 23 07:55:00 2025 GMT Not After : Jun 22 08:00:00 2026 GMT Subject: CN=6F63099E8314E9D0994B6AB2627819C66399F259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:df:66:ef:da:8d:cb:a8:7c:af:8f:64:ac:e6: cf:49:e6:75:3c:74:26:41:b6:62:e8:dc:2b:39:05: a9:75:a7:a5:0c:ef:b7:4b:56:57:96:14:6c:91:61: 6c:dd:c2:d1:e7:50:c1:54:8d:66:ef:ff:4c:a2:89: 8e:62:2f:22:41:70:ca:ff:a3:22:00:af:f8:28:7f: 81:8d:ac:b9:79:25:f4:e3:61:e2:fb:65:e6:df:e9: 61:3d:ac:0e:a3:92:2e:42:dc:cc:17:24:64:cc:16: e3:80:9d:8f:77:68:4a:6d:ef:9b:38:3c:08:ce:d5: 69:f8:93:62:ae:07:18:af:11:14:34:5a:34:04:28: 30:07:94:a8:77:15:dc:8a:a4:b3:45:d0:8a:84:9a: b5:48:50:2e:1d:54:2d:56:ba:d2:aa:94:eb:73:0e: 37:c3:d8:d6:47:67:7c:bc:bf:27:9b:5e:77:22:2a: 03:4f:33:86:5a:36:4f:4d:a3:13:fc:74:74:26:54: 00:08:bb:cb:6e:6f:d7:0a:5f:cb:9c:91:8c:93:af: 4e:a5:52:d0:e8:77:04:5e:41:81:b8:4b:fb:b4:c5: 9e:9a:03:cb:90:de:81:c2:dd:f8:f0:c5:32:71:c5: ac:a4:b6:dc:6d:f1:9d:21:9d:8d:26:e8:0d:48:98: f2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:63:09:9E:83:14:E9:D0:99:4B:6A:B2:62:78:19:C6:63:99:F2:59 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS7597.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.108.8.0/21 203.119.13.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:7a:05:50:b8:0a:a0:2f:5b:12:5e:e8:2a:c9:18:15:ae:7e: fc:3f:aa:2f:56:b8:56:e1:13:0e:de:1f:fa:81:4c:c0:c4:f2: 78:98:6f:c7:3d:e9:f8:23:02:08:71:56:79:f1:88:03:c1:8e: 92:06:f2:02:b3:27:7f:ec:b8:4c:f8:56:ed:13:5b:09:36:34: af:d4:b8:a0:64:ca:b2:43:2e:29:d9:cd:c8:f4:57:f1:2c:35: 0a:22:d7:ba:68:f3:99:40:aa:b9:aa:21:ff:66:45:91:91:e0: d7:93:ec:05:6e:29:7a:71:89:8f:6a:42:fb:56:a4:7c:12:f4: b0:e4:e3:81:f9:e6:81:bd:cd:d3:a0:5b:6e:a6:30:99:9a:a2: 7d:68:59:03:d0:f4:30:51:09:04:70:09:46:6a:fd:68:ba:8b: d1:ad:75:f6:91:2a:85:90:15:00:11:df:25:44:da:3f:6c:22: e1:66:b6:93:6a:0d:e7:27:81:de:dc:62:0b:87:43:34:0c:ad: e4:49:50:ab:b2:39:79:5f:af:29:7b:d9:78:2c:9f:27:02:6b: ed:91:15:d3:93:ca:57:ed:b8:d8:b1:44:23:28:03:77:35:31: 78:c5:c1:61:63:3d:a5:07:fb:26:ac:9e:c8:ce:1e:16:96:2d: 37:e8:7b:0a -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgIUQfd6FJVP53lylvD8fEq+Jzwr36IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyMzA3NTUwMFoX DTI2MDYyMjA4MDAwMFowMzExMC8GA1UEAxMoNkY2MzA5OUU4MzE0RTlEMDk5NEI2 QUIyNjI3ODE5QzY2Mzk5RjI1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvfZu/ajcuofK+PZKzmz0nmdTx0JkG2YujcKzkFqXWnpQzvt0tWV5YUbJFh bN3C0edQwVSNZu//TKKJjmIvIkFwyv+jIgCv+Ch/gY2suXkl9ONh4vtl5t/pYT2s DqOSLkLczBckZMwW44Cdj3doSm3vmzg8CM7VafiTYq4HGK8RFDRaNAQoMAeUqHcV 3Iqks0XQioSatUhQLh1ULVa60qqU63MON8PY1kdnfLy/J5tedyIqA08zhlo2T02j E/x0dCZUAAi7y25v1wpfy5yRjJOvTqVS0Oh3BF5BgbhL+7TFnpoDy5DegcLd+PDF MnHFrKS23G3xnSGdjSboDUiY8i8CAwEAAaOCAdQwggHQMB0GA1UdDgQWBBRvYwme gxTp0JlLarJieBnGY5nyWTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFIGCCsGAQUFBwELBEYwRDBCBggrBgEFBQcwC4Y2cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzc1OTcucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIE AgABMAwDBAN7bAgDBADLdw0wDQYJKoZIhvcNAQELBQADggEBACp6BVC4CqAvWxJe 6CrJGBWufvw/qi9WuFbhEw7eH/qBTMDE8niYb8c96fgjAghxVnnxiAPBjpIG8gKz J3/suEz4Vu0TWwk2NK/UuKBkyrJDLinZzcj0V/EsNQoi17po85lAqrmqIf9mRZGR 4NeT7AVuKXpxiY9qQvtWpHwS9LDk44H55oG9zdOgW26mMJmaon1oWQPQ9DBRCQRw CUZq/Wi6i9GtdfaRKoWQFQAR3yVE2j9sIuFmtpNqDecngd7cYguHQzQMreRJUKuy OXlfryl72XgsnycCa+2RFdOTylftuNixRCMoA3c1MXjFwWFjPaUH+yasnsjOHhaW LTfoewo= -----END CERTIFICATE-----Generated at Thu Nov 6 02:10:20 2025 by rpki-client