$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131312e302f32342d3234203d3e203130313337.roa File: 3230332e39392e3131312e302f32342d3234203d3e203130313337.roa (raw, json) Hash identifier: mPZNOPsgfXa1c64eoZKp1e0U6o0A6Ehpqgp0nKGoNs4= Subject key identifier: 4A:37:87:18:6E:04:86:C1:E1:B2:78:BD:67:71:86:B1:5C:15:F4:F2 Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Certificate serial: 28B5450C061554BDEAE904E96B6B43DAF1E3B2F2 Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131312e302f32342d3234203d3e203130313337.roa Signing time: Thu 16 Apr 2026 09:03:58 +0000 ROA not before: Thu 16 Apr 2026 08:58:58 +0000 ROA not after: Thu 15 Apr 2027 09:03:58 +0000 asID: 10137 IP address blocks: 203.99.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 13:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:b5:45:0c:06:15:54:bd:ea:e9:04:e9:6b:6b:43:da:f1:e3:b2:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658 Validity Not Before: Apr 16 08:58:58 2026 GMT Not After : Apr 15 09:03:58 2027 GMT Subject: CN=4A3787186E0486C1E1B278BD677186B15C15F4F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:41:33:5b:75:1c:21:63:ee:73:44:99:42:cc: 04:ab:7d:52:96:17:5b:7a:e0:c8:26:68:ff:bf:20: 15:a2:fe:b8:c5:f9:36:6f:23:59:25:7e:3c:e3:b1: 78:26:ed:89:4e:74:d0:2f:de:08:35:ac:bd:10:81: 90:dd:66:c1:44:59:cd:34:01:78:f7:59:6b:4e:a3: be:c3:e8:40:ae:86:66:46:06:c1:7f:1c:c5:a6:6e: 90:2a:d4:b5:4e:07:59:96:30:2d:fe:60:62:27:68: 7b:1b:60:60:02:73:7c:37:d4:de:76:9d:d9:9b:61: a6:ce:c3:46:82:8e:32:84:21:a8:34:24:1a:61:f3: 0f:fb:fb:f7:00:21:d3:8b:7d:b1:14:74:80:26:b4: 4e:78:32:a0:8c:e0:51:43:fb:74:4d:b6:a0:2a:28: 12:dc:44:43:27:ff:a1:4a:e6:c8:66:4e:d9:b2:18: 27:86:5e:95:26:08:49:ed:59:5e:57:df:3a:e8:3e: 91:21:f1:ba:83:1a:d4:3c:00:94:70:9e:3e:a8:c9: da:08:63:54:df:b7:52:de:06:92:e8:65:a5:53:55: 6a:df:67:ac:30:0b:be:26:8b:df:ba:c9:ba:8b:fd: bd:1f:67:13:5e:65:17:59:8c:bc:b8:30:f7:1b:c5: 35:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:37:87:18:6E:04:86:C1:E1:B2:78:BD:67:71:86:B1:5C:15:F4:F2 X509v3 Authority Key Identifier: keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3131312e302f32342d3234203d3e203130313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.99.111.0/24 Signature Algorithm: sha256WithRSAEncryption 10:42:1a:b8:02:e6:dc:35:54:94:5b:66:b8:c7:0b:c4:62:80: 30:df:e4:59:58:1d:ea:88:f3:ae:dc:4e:af:fb:fb:cc:0b:88: c6:77:26:1f:1f:7d:86:7d:fb:91:9e:05:9d:c4:75:0b:1b:1f: 1a:65:db:e6:f5:e6:3e:3d:1a:39:5a:be:eb:4b:51:00:90:5c: 4d:4e:a1:8a:bc:48:57:eb:21:da:31:7d:49:44:cd:92:c2:b1: 28:3c:84:e1:6f:ba:6e:37:12:6f:bc:fe:e7:b8:cc:78:d0:0d: b0:2f:70:26:ec:34:30:80:2d:a7:0b:76:cb:f6:68:40:39:53: ba:54:f1:fa:18:66:9d:77:d6:ed:b3:f7:07:78:cd:72:50:a8: 74:05:8e:6c:34:30:2a:ef:b3:d2:b6:57:99:32:c8:fb:a4:13: 88:68:03:03:5e:95:d8:88:51:b3:7d:61:20:13:da:87:70:4e: 2d:39:60:80:9f:f0:4a:54:0b:b8:cb:c1:96:e1:89:ad:d2:91: db:cf:1b:52:50:33:56:25:45:71:c4:95:a2:82:cd:da:f1:b6: b1:cd:bf:44:a8:16:91:20:db:b5:58:70:d1:a8:20:f0:03:68: 68:bc:1a:e1:0a:37:cf:ad:df:61:37:dc:7c:34:ee:57:31:2d: 50:da:d4:18 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKLVFDAYVVL3q6QTpa2tD2vHjsvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEz RkJERjY1ODAeFw0yNjA0MTYwODU4NThaFw0yNzA0MTUwOTAzNThaMDMxMTAvBgNV BAMTKDRBMzc4NzE4NkUwNDg2QzFFMUIyNzhCRDY3NzE4NkIxNUMxNUY0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4QTNbdRwhY+5zRJlCzASrfVKW F1t64MgmaP+/IBWi/rjF+TZvI1klfjzjsXgm7YlOdNAv3gg1rL0QgZDdZsFEWc00 AXj3WWtOo77D6ECuhmZGBsF/HMWmbpAq1LVOB1mWMC3+YGInaHsbYGACc3w31N52 ndmbYabOw0aCjjKEIag0JBph8w/7+/cAIdOLfbEUdIAmtE54MqCM4FFD+3RNtqAq KBLcREMn/6FK5shmTtmyGCeGXpUmCEntWV5X3zroPpEh8bqDGtQ8AJRwnj6oydoI Y1Tft1LeBpLoZaVTVWrfZ6wwC74mi9+6ybqL/b0fZxNeZRdZjLy4MPcbxTWdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUSjeHGG4EhsHhsni9Z3GGsVwV9PIwHwYDVR0j BBgwFoAUybP/P7Bww7mVJjVldvEP+j+99lgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTU5ZGI3ZS05NGY2LTQwMDItOTllZi01ZTk2ZDhlMzdlNTAvMC9DOUIzRkYzRkIw NzBDM0I5OTUyNjM1NjU3NkYxMEZGQTNGQkRGNjU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlCM0ZGM0ZCMDcwQzNCOTk1MjYzNTY1NzZGMTBGRkEzRkJE RjY1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNTlkYjdlLTk0ZjYtNDAwMi05 OWVmLTVlOTZkOGUzN2U1MC8wLzMyMzAzMzJlMzkzOTJlMzEzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMtjbzANBgkqhkiG 9w0BAQsFAAOCAQEAEEIauALm3DVUlFtmuMcLxGKAMN/kWVgd6ojzrtxOr/v7zAuI xncmHx99hn37kZ4FncR1CxsfGmXb5vXmPj0aOVq+60tRAJBcTU6hirxIV+sh2jF9 SUTNksKxKDyE4W+6bjcSb7z+57jMeNANsC9wJuw0MIAtpwt2y/ZoQDlTulTx+hhm nXfW7bP3B3jNclCodAWObDQwKu+z0rZXmTLI+6QTiGgDA16V2IhRs31hIBPah3BO LTlggJ/wSlQLuMvBluGJrdKR288bUlAzViVFccSVooLN2vG2sc2/RKgWkSDbtVhw 0agg8ANoaLwa4Qo3z63fYTfcfDTuVzEtUNrUGA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:03:43 2026 by rpki-client