$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3130382e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: dTTw1IZ3BImbrODm1sWSz9DeIvvIV+CkogY6l3pC9R8= Subject key identifier: AE:0A:9F:6C:09:1A:E7:80:2A:14:C7:07:55:6E:65:0E:9E:86:B3:E4 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 3B6B5AF7E09315CAF6F8704A7ED7DA89AFFCEE39 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa Signing time: Thu 16 Apr 2026 09:03:59 +0000 ROA not before: Thu 16 Apr 2026 08:58:59 +0000 ROA not after: Thu 15 Apr 2027 09:03:59 +0000 asID: 10137 IP address blocks: 203.99.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 13:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:6b:5a:f7:e0:93:15:ca:f6:f8:70:4a:7e:d7:da:89:af:fc:ee:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Apr 16 08:58:59 2026 GMT Not After : Apr 15 09:03:59 2027 GMT Subject: CN=AE0A9F6C091AE7802A14C707556E650E9E86B3E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ec:72:5a:5c:e5:ed:e7:f5:b0:4e:59:f6:67: 4a:49:ce:d5:5b:04:fa:ab:0c:4b:11:5c:80:cb:de: 2a:50:59:ec:ed:3f:e0:ab:80:c5:49:d3:bf:a2:49: 88:a9:ae:f2:8f:b8:f7:1d:de:56:51:4d:b3:94:83: 01:f5:76:f7:40:c6:20:1c:9f:78:38:4d:af:ff:f9: ac:2a:5e:f6:98:43:a4:a5:a3:52:07:f4:3b:71:99: 82:73:c6:53:cb:e0:d0:7b:f5:13:96:22:b4:4d:2c: 87:64:a7:7b:e9:ce:36:26:d0:a5:c4:09:46:b4:28: 48:f8:b2:e2:77:1d:b1:76:cf:28:43:da:b4:72:07: ea:3d:26:19:8b:c3:7c:fb:b6:de:74:bf:11:7b:46: 12:c6:7a:39:5d:e7:77:5c:06:55:86:8c:56:c8:51: 41:a0:06:18:7a:7c:71:8b:e4:7c:03:49:a1:28:78: 57:59:0b:39:91:34:04:a0:95:e8:0c:98:29:1d:51: 2b:7c:e1:75:49:6a:3c:c8:85:dc:2b:3d:9c:37:f2: e5:dc:01:ec:1a:e7:41:89:65:b9:6b:8f:43:18:fb: b3:70:39:ad:96:7f:0d:28:68:65:49:23:aa:18:5b: e0:12:f2:8c:c0:db:82:8d:ef:37:3b:0d:68:da:1b: 93:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:0A:9F:6C:09:1A:E7:80:2A:14:C7:07:55:6E:65:0E:9E:86:B3:E4 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130382e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.108.0/24 Signature Algorithm: sha256WithRSAEncryption ae:f2:fe:08:5d:74:24:0f:31:15:45:29:54:34:4a:e0:5d:e0: c8:fc:a9:06:90:5e:41:4f:84:82:71:20:d1:ca:12:e2:7f:c2: 50:49:ea:33:d0:11:7a:68:69:74:ee:fe:3d:48:01:ab:c0:ef: 86:06:54:16:0d:09:86:41:b8:68:97:ca:d5:da:ad:dc:37:d3: 63:8a:08:68:78:17:fe:3c:21:cd:d7:e1:b5:6f:57:14:a0:dd: e4:34:b4:ee:4f:ca:6e:33:21:7f:7e:cc:27:fc:e3:00:69:1c: 53:4d:8f:49:61:11:da:79:ab:9a:c4:71:b0:46:6b:28:44:9e: 25:c2:cf:a4:dd:3a:ee:ac:22:86:ba:15:f5:cd:fa:0d:59:d3: 49:33:a1:cb:be:ff:dc:8c:95:39:94:98:0d:17:c3:8a:56:0b: c1:c8:87:cf:f2:f1:21:ca:b6:66:f2:16:f9:53:1f:b4:0b:47: 88:01:50:02:47:df:7f:f7:c6:d8:e6:01:54:8f:96:79:8b:91: 10:79:18:a7:56:c2:12:8c:6f:65:c5:cb:26:4c:a7:b2:79:96: f1:ac:de:64:86:a2:76:18:61:d4:93:f4:e6:bf:44:67:f5:e5: 03:0f:43:72:38:aa:42:d3:36:d8:f6:05:c6:d3:44:f8:29:1d: b8:ed:64:3d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUO2ta9+CTFcr2+HBKftfaia/87jkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNjA0MTYwODU4NTlaFw0yNzA0MTUwOTAzNTlaMDMxMTAvBgNV BAMTKEFFMEE5RjZDMDkxQUU3ODAyQTE0QzcwNzU1NkU2NTBFOUU4NkIzRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz7HJaXOXt5/WwTln2Z0pJztVb BPqrDEsRXIDL3ipQWeztP+CrgMVJ07+iSYiprvKPuPcd3lZRTbOUgwH1dvdAxiAc n3g4Ta//+awqXvaYQ6Slo1IH9DtxmYJzxlPL4NB79ROWIrRNLIdkp3vpzjYm0KXE CUa0KEj4suJ3HbF2zyhD2rRyB+o9JhmLw3z7tt50vxF7RhLGejld53dcBlWGjFbI UUGgBhh6fHGL5HwDSaEoeFdZCzmRNASglegMmCkdUSt84XVJajzIhdwrPZw38uXc Aewa50GJZblrj0MY+7NwOa2Wfw0oaGVJI6oYW+AS8ozA24KN7zc7DWjaG5MvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrgqfbAka54AqFMcHVW5lDp6Gs+QwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjbDANBgkqhkiG 9w0BAQsFAAOCAQEArvL+CF10JA8xFUUpVDRK4F3gyPypBpBeQU+EgnEg0coS4n/C UEnqM9ARemhpdO7+PUgBq8DvhgZUFg0JhkG4aJfK1dqt3DfTY4oIaHgX/jwhzdfh tW9XFKDd5DS07k/KbjMhf37MJ/zjAGkcU02PSWER2nmrmsRxsEZrKESeJcLPpN06 7qwihroV9c36DVnTSTOhy77/3IyVOZSYDRfDilYLwciHz/LxIcq2ZvIW+VMftAtH iAFQAkfff/fG2OYBVI+WeYuREHkYp1bCEoxvZcXLJkynsnmW8azeZIaidhhh1JP0 5r9EZ/XlAw9DcjiqQtM22PYFxtNE+CkduO1kPQ== -----END CERTIFICATE-----Generated at Fri Apr 17 14:48:42 2026 by rpki-client