$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130332e302f32342d3234203d3e203536323431.roa File: 3230332e39392e3130332e302f32342d3234203d3e203536323431.roa (raw, json) Hash identifier: SXMkU1Rh4Uz2EVIKbRBDwUsHYWkICcmXLOypacuWtf8= Subject key identifier: 08:24:00:93:EF:F4:67:E5:4E:DA:9E:83:DD:B0:F7:DC:8F:04:43:97 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 7A69D0AFBCDD4E163513668F05976043E2112544 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130332e302f32342d3234203d3e203536323431.roa Signing time: Mon 03 Nov 2025 08:00:00 +0000 ROA not before: Mon 03 Nov 2025 07:55:00 +0000 ROA not after: Mon 02 Nov 2026 08:00:00 +0000 asID: 56241 IP address blocks: 203.99.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 13:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:69:d0:af:bc:dd:4e:16:35:13:66:8f:05:97:60:43:e2:11:25:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Nov 3 07:55:00 2025 GMT Not After : Nov 2 08:00:00 2026 GMT Subject: CN=08240093EFF467E54EDA9E83DDB0F7DC8F044397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f9:d5:81:e5:26:11:05:e1:fe:12:5b:67:d3: 21:8d:3d:e1:ce:d2:ed:e7:80:67:9f:83:b7:2f:ed: 3b:14:68:db:56:d8:76:ec:4e:91:2d:ec:c9:3c:c8: be:fb:44:8d:ba:bb:12:49:50:94:f4:05:73:cd:ba: fe:c4:3c:85:0a:70:3d:33:b0:f6:e9:37:26:aa:6f: 3b:14:86:1f:60:8a:f3:f4:50:a3:ac:c3:8f:6e:80: fd:fc:12:f6:c3:23:96:3d:f9:4f:01:55:fc:e5:26: 9a:bf:d3:3a:71:bf:f5:15:40:85:fa:bf:64:9c:a8: c3:ea:e2:e4:3c:3b:0c:0b:de:93:fa:3f:e8:99:c2: b5:77:e7:6f:3f:9f:80:b9:5f:65:4c:2f:3b:6c:50: e6:de:d8:6f:0a:3d:ba:46:13:ce:48:f1:c4:54:90: 09:98:af:9c:68:27:5f:31:8c:cc:73:83:0b:bb:26: 90:0b:a8:5a:d8:f5:d7:5b:24:60:7a:9e:70:2c:94: a7:af:7d:7e:75:0d:05:54:0a:61:16:94:80:94:90: 8c:2a:d9:16:1d:40:26:00:da:14:26:3a:db:84:91: 12:34:3d:60:9f:ff:cc:8f:1f:ce:82:01:a2:b0:e6: 93:f9:51:e5:a1:f5:de:f2:54:81:fb:f7:13:9a:a7: ae:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:24:00:93:EF:F4:67:E5:4E:DA:9E:83:DD:B0:F7:DC:8F:04:43:97 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130332e302f32342d3234203d3e203536323431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.103.0/24 Signature Algorithm: sha256WithRSAEncryption 48:ed:96:4d:3c:80:3c:7e:06:7c:be:ce:0a:70:62:72:25:3e: fc:88:8d:7f:3b:51:f1:68:7c:a6:19:1f:43:e5:7c:78:ad:3a: 1b:04:88:e8:7b:5f:34:ae:5e:23:3d:a6:b1:f6:8b:d8:92:16: ae:9b:62:ca:2f:5b:de:c7:e4:31:6d:33:9b:8c:39:ae:ae:0d: a7:3a:4b:40:bf:dd:76:97:52:f9:a4:31:08:c6:c8:90:51:6b: 1f:bb:bd:03:d6:33:8d:c3:60:8a:14:90:a4:97:6d:67:c5:2a: 8a:de:3a:03:a7:72:18:41:80:fb:16:4f:4c:a1:06:7f:04:97: 8e:7e:e6:1d:e8:ce:1a:64:c1:77:a6:67:af:15:53:c7:23:9c: cb:a5:14:71:43:a2:6e:e1:b5:0d:69:4b:09:16:76:90:4d:a4: c1:46:40:35:73:10:7c:b0:03:c1:7d:90:c2:a4:81:63:ff:af: 12:c2:5d:65:f4:dd:b4:c4:38:61:2c:ad:ef:ae:80:57:8f:f9: d2:08:f1:11:20:a5:31:9f:90:0c:9e:94:3c:77:df:cd:48:25: 48:02:d3:07:61:af:c7:47:e8:45:24:2c:a0:b6:ca:23:e3:b9: 55:f2:d2:97:73:8c:d7:e0:ef:48:31:49:f3:d4:86:9e:b5:25: e6:ca:83:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUemnQr7zdThY1E2aPBZdgQ+IRJUQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTExMDMwNzU1MDBaFw0yNjExMDIwODAwMDBaMDMxMTAvBgNV BAMTKDA4MjQwMDkzRUZGNDY3RTU0RURBOUU4M0REQjBGN0RDOEYwNDQzOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs+dWB5SYRBeH+Eltn0yGNPeHO 0u3ngGefg7cv7TsUaNtW2HbsTpEt7Mk8yL77RI26uxJJUJT0BXPNuv7EPIUKcD0z sPbpNyaqbzsUhh9givP0UKOsw49ugP38EvbDI5Y9+U8BVfzlJpq/0zpxv/UVQIX6 v2ScqMPq4uQ8OwwL3pP6P+iZwrV3528/n4C5X2VMLztsUObe2G8KPbpGE85I8cRU kAmYr5xoJ18xjMxzgwu7JpALqFrY9ddbJGB6nnAslKevfX51DQVUCmEWlICUkIwq 2RYdQCYA2hQmOtuEkRI0PWCf/8yPH86CAaKw5pP5UeWh9d7yVIH79xOap64zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCCQAk+/0Z+VO2p6D3bD33I8EQ5cwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjZzANBgkqhkiG 9w0BAQsFAAOCAQEASO2WTTyAPH4GfL7OCnBiciU+/IiNfztR8Wh8phkfQ+V8eK06 GwSI6HtfNK5eIz2msfaL2JIWrptiyi9b3sfkMW0zm4w5rq4NpzpLQL/ddpdS+aQx CMbIkFFrH7u9A9YzjcNgihSQpJdtZ8Uqit46A6dyGEGA+xZPTKEGfwSXjn7mHejO GmTBd6ZnrxVTxyOcy6UUcUOibuG1DWlLCRZ2kE2kwUZANXMQfLADwX2QwqSBY/+v EsJdZfTdtMQ4YSyt766AV4/50gjxESClMZ+QDJ6UPHffzUglSALTB2Gvx0foRSQs oLbKI+O5VfLSl3OM1+DvSDFJ89SGnrUl5sqD9w== -----END CERTIFICATE-----Generated at Tue Nov 4 21:42:45 2025 by rpki-client