$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130342e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130342e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: WCaydPpduBP1gTZ18eU836XFVth8SjC2QKbaWvlZDFc= Subject key identifier: A1:85:58:83:C4:26:9C:14:DB:11:76:43:DD:0F:BF:65:23:9C:8C:73 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 6B4CB0972F1BC5DDA717353B082C36A610CEB66B Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130342e302f32342d3234203d3e203130313337.roa Signing time: Thu 15 May 2025 09:00:35 +0000 ROA not before: Thu 15 May 2025 08:55:35 +0000 ROA not after: Thu 14 May 2026 09:00:35 +0000 asID: 10137 IP address blocks: 203.99.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 21:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:4c:b0:97:2f:1b:c5:dd:a7:17:35:3b:08:2c:36:a6:10:ce:b6:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: May 15 08:55:35 2025 GMT Not After : May 14 09:00:35 2026 GMT Subject: CN=A1855883C4269C14DB117643DD0FBF65239C8C73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:91:2e:82:d4:05:94:d0:62:25:10:92:cc:12: a4:22:6b:9b:c0:46:02:c5:9e:1b:1a:c7:24:71:54: cd:4b:b0:a7:d7:68:c4:29:26:0e:d4:b6:93:d7:19: 01:3f:e4:31:e4:20:45:8f:e2:ac:1e:34:53:24:c6: 26:89:54:b8:48:0e:de:a9:5d:81:14:7a:3c:06:27: 9f:bb:65:97:b9:84:e1:ec:ee:6f:d8:5e:3d:68:d2: e6:e2:05:84:80:64:12:fe:fa:0d:9a:57:fa:19:7d: f3:25:97:c1:5a:ce:d7:4c:3b:14:2a:2b:48:d4:b7: ec:7b:78:e3:67:e1:89:7c:84:f5:8c:22:11:dc:cf: 08:47:92:91:1b:f3:6b:51:16:37:87:3e:8e:f3:ac: 62:af:09:8f:3a:97:01:19:7a:5b:73:60:9a:61:2b: b2:b2:c2:90:65:1c:9c:86:0f:06:a9:8d:ee:32:12: 6a:50:59:57:5c:56:de:bc:b1:6c:67:18:34:3d:1e: 5b:05:17:6c:35:86:ba:1c:6d:e0:12:51:35:c7:98: b0:ff:aa:98:c6:75:33:90:03:b5:cf:43:99:49:a5: ee:48:73:d6:c2:c3:b9:48:ef:77:9a:33:e2:64:65: 47:00:4e:99:7b:01:f3:0e:17:f9:c1:fe:b5:0f:32: 0f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:85:58:83:C4:26:9C:14:DB:11:76:43:DD:0F:BF:65:23:9C:8C:73 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130342e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.104.0/24 Signature Algorithm: sha256WithRSAEncryption 85:a3:30:78:a0:65:94:ca:eb:f4:39:b0:db:8b:56:f2:e5:f7: 00:8f:79:dd:91:7c:aa:b9:76:c0:47:32:64:af:da:c0:e0:eb: c8:4b:41:53:e8:f7:9d:c0:dc:35:49:09:30:fc:87:20:83:ea: 2d:00:18:46:69:44:1a:97:eb:6a:92:1c:a5:c4:c5:fe:48:d8: 6d:21:50:99:6b:e3:6c:8f:15:9c:2e:79:45:a0:c7:b6:09:7b: 2e:de:d8:54:1e:e6:f0:70:74:a2:28:62:5e:96:9e:06:09:df: 3b:33:fe:1c:59:3d:1c:8a:1b:0d:e5:03:bd:d0:ac:65:27:4c: 3c:10:6e:98:e8:2b:28:11:12:b8:ac:b6:c8:a9:9f:f6:d3:61: 39:17:c9:2a:aa:b9:7e:ae:a6:63:8f:41:4f:75:d3:e2:9b:3e: f0:9c:94:65:69:13:45:7c:64:4d:6a:6c:37:a5:e6:b0:76:b7: fa:07:8e:26:52:e1:c8:d4:29:47:0e:04:b2:f8:6f:e4:9a:d8: 93:21:6a:95:5b:59:34:fc:d3:8a:14:42:4e:9e:06:14:9f:d3: 10:69:48:9b:93:1d:06:93:d7:80:2a:0c:64:e1:5d:b7:a8:21: 09:3d:72:82:ef:0e:02:44:d0:2c:4d:a9:ca:76:87:39:f4:c8: d7:77:42:96 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUa0ywly8bxd2nFzU7CCw2phDOtmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNTA1MTUwODU1MzVaFw0yNjA1MTQwOTAwMzVaMDMxMTAvBgNV BAMTKEExODU1ODgzQzQyNjlDMTREQjExNzY0M0REMEZCRjY1MjM5QzhDNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCskS6C1AWU0GIlEJLMEqQia5vA RgLFnhsaxyRxVM1LsKfXaMQpJg7UtpPXGQE/5DHkIEWP4qweNFMkxiaJVLhIDt6p XYEUejwGJ5+7ZZe5hOHs7m/YXj1o0ubiBYSAZBL++g2aV/oZffMll8FaztdMOxQq K0jUt+x7eONn4Yl8hPWMIhHczwhHkpEb82tRFjeHPo7zrGKvCY86lwEZeltzYJph K7KywpBlHJyGDwapje4yEmpQWVdcVt68sWxnGDQ9HlsFF2w1hrocbeASUTXHmLD/ qpjGdTOQA7XPQ5lJpe5Ic9bCw7lI73eaM+JkZUcATpl7AfMOF/nB/rUPMg8zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUoYVYg8QmnBTbEXZD3Q+/ZSOcjHMwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjaDANBgkqhkiG 9w0BAQsFAAOCAQEAhaMweKBllMrr9Dmw24tW8uX3AI953ZF8qrl2wEcyZK/awODr yEtBU+j3ncDcNUkJMPyHIIPqLQAYRmlEGpfrapIcpcTF/kjYbSFQmWvjbI8VnC55 RaDHtgl7Lt7YVB7m8HB0oihiXpaeBgnfOzP+HFk9HIobDeUDvdCsZSdMPBBumOgr KBESuKy2yKmf9tNhORfJKqq5fq6mY49BT3XT4ps+8JyUZWkTRXxkTWpsN6XmsHa3 +geOJlLhyNQpRw4Esvhv5JrYkyFqlVtZNPzTihRCTp4GFJ/TEGlIm5MdBpPXgCoM ZOFdt6ghCT1ygu8OAkTQLE2pynaHOfTI13dClg== -----END CERTIFICATE-----Generated at Mon Jun 16 13:10:47 2025 by rpki-client