$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130342e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130342e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: 9qEvIzOy0D8JAXDM1zYF6HhMW0WOzNrErV421v4pSGY= Subject key identifier: C6:5C:08:6B:1B:5F:13:CD:85:E4:9D:B7:15:4C:D0:6C:1E:8E:AF:0E Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 10D831375F0E1030B99F63CB46DDD6C1256483C2 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130342e302f32342d3234203d3e203130313337.roa Signing time: Thu 16 Apr 2026 09:03:59 +0000 ROA not before: Thu 16 Apr 2026 08:58:59 +0000 ROA not after: Thu 15 Apr 2027 09:03:59 +0000 asID: 10137 IP address blocks: 203.99.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 13:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:d8:31:37:5f:0e:10:30:b9:9f:63:cb:46:dd:d6:c1:25:64:83:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Apr 16 08:58:59 2026 GMT Not After : Apr 15 09:03:59 2027 GMT Subject: CN=C65C086B1B5F13CD85E49DB7154CD06C1E8EAF0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ee:c7:73:ba:3b:d2:62:f4:7f:ec:5c:26:db: 09:98:2b:23:50:e8:f7:84:2b:6e:ea:f3:3a:12:ef: 5c:81:51:7d:21:6c:e6:2e:87:28:3c:5d:92:b0:e6: 09:46:0f:5f:f5:16:65:d5:8b:04:cb:bc:24:dd:b3: cd:23:f4:94:95:71:9e:b2:f3:be:22:68:74:98:48: b5:1d:fa:da:31:b0:f9:c5:bf:3c:e2:88:d9:42:23: 76:c6:5e:e0:5b:c9:e6:1e:6f:98:7a:3f:72:0d:9c: 53:71:7f:cc:75:68:62:1b:53:e6:1a:e2:9e:41:36: 87:81:38:a2:50:4f:61:85:68:eb:0a:15:0d:67:74: 3c:5c:20:d3:4d:fe:02:7d:90:f2:f6:85:10:0d:eb: 87:ba:b3:53:c9:d6:36:b6:30:0a:3b:8b:1c:44:a4: c9:0b:a4:f0:c6:64:21:51:bd:57:0e:be:c2:8d:21: 29:cd:3a:82:26:38:76:08:30:16:ee:e7:2c:62:97: 97:ad:a4:10:f3:bb:3f:42:3f:4e:02:f5:be:09:d1: 17:b0:34:63:6c:54:ee:3b:73:75:e9:ec:b9:66:b7: 44:dc:79:6d:cf:a0:cb:01:ab:46:ba:02:4e:8f:89: 34:ec:df:7e:bc:bf:a5:44:ec:72:b2:1f:72:39:90: 75:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:5C:08:6B:1B:5F:13:CD:85:E4:9D:B7:15:4C:D0:6C:1E:8E:AF:0E X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130342e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.104.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:ff:ba:d0:45:a9:71:bf:ee:4b:66:0f:ff:37:ad:01:22:c9: 0c:66:6f:73:ed:03:63:53:2b:af:8b:7d:5e:c8:84:cf:6f:d7: 25:7c:28:c3:da:e2:c0:7e:ad:67:2f:01:53:fb:ca:0b:05:57: 80:31:32:8a:25:b4:8f:75:5c:f4:37:1f:99:d4:84:0d:85:75: 91:fd:82:2a:35:8c:32:e8:8e:d7:7c:84:34:7a:0b:89:2d:48: 82:b5:b0:c3:c0:44:6a:f9:8e:92:9c:f7:e9:f5:18:e3:5e:bc: 05:c2:4d:8d:5d:1f:94:ea:24:8e:d2:9b:94:cf:3e:2c:58:57: 7a:e8:19:73:40:5d:f7:4f:12:bc:ad:26:d2:d8:a5:56:69:81: 38:74:bd:d8:fc:d3:fe:08:ef:55:6c:5d:9a:2e:e2:9d:78:15: 3a:13:a1:db:9c:00:64:cf:f7:4a:3a:53:f2:36:2e:26:27:e3: 62:fa:dc:50:5d:66:cb:0b:5e:97:c6:42:3d:d2:ae:bf:c2:c6: b5:cd:38:c0:c8:d4:67:0c:20:35:96:07:59:fc:71:91:85:b3: e6:2e:77:1f:ca:0f:41:36:cb:12:fe:d7:3d:68:04:8d:14:12: d6:79:14:af:fd:a6:e6:61:99:e8:f2:30:b4:bf:59:9a:cf:4d: 7a:72:e3:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUENgxN18OEDC5n2PLRt3WwSVkg8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNjA0MTYwODU4NTlaFw0yNzA0MTUwOTAzNTlaMDMxMTAvBgNV BAMTKEM2NUMwODZCMUI1RjEzQ0Q4NUU0OURCNzE1NENEMDZDMUU4RUFGMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu7sdzujvSYvR/7Fwm2wmYKyNQ 6PeEK27q8zoS71yBUX0hbOYuhyg8XZKw5glGD1/1FmXViwTLvCTds80j9JSVcZ6y 874iaHSYSLUd+toxsPnFvzziiNlCI3bGXuBbyeYeb5h6P3INnFNxf8x1aGIbU+Ya 4p5BNoeBOKJQT2GFaOsKFQ1ndDxcINNN/gJ9kPL2hRAN64e6s1PJ1ja2MAo7ixxE pMkLpPDGZCFRvVcOvsKNISnNOoImOHYIMBbu5yxil5etpBDzuz9CP04C9b4J0Rew NGNsVO47c3Xp7Llmt0TceW3PoMsBq0a6Ak6PiTTs3368v6VE7HKyH3I5kHVnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxlwIaxtfE82F5J23FUzQbB6Orw4wHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjaDANBgkqhkiG 9w0BAQsFAAOCAQEAK/+60EWpcb/uS2YP/zetASLJDGZvc+0DY1Mrr4t9XsiEz2/X JXwow9riwH6tZy8BU/vKCwVXgDEyiiW0j3Vc9DcfmdSEDYV1kf2CKjWMMuiO13yE NHoLiS1IgrWww8BEavmOkpz36fUY4168BcJNjV0flOokjtKblM8+LFhXeugZc0Bd 908SvK0m0tilVmmBOHS92PzT/gjvVWxdmi7inXgVOhOh25wAZM/3SjpT8jYuJifj YvrcUF1mywtel8ZCPdKuv8LGtc04wMjUZwwgNZYHWfxxkYWz5i53H8oPQTbLEv7X PWgEjRQS1nkUr/2m5mGZ6PIwtL9Zms9NenLjzA== -----END CERTIFICATE-----Generated at Fri Apr 17 17:01:00 2026 by rpki-client