$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e36362e302f32342d3234203d3e203233363739.roa File: 3131302e3233322e36362e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: Z9K49c0xxu+BvVoWdsCQWIc4rDfwQrNPpaGxONQyYHA= Subject key identifier: D3:D0:E2:32:A7:B3:EE:4D:1D:2B:0B:82:95:34:14:50:2D:2B:7B:58 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 5C4AF9EF21AFA01B4A037B810EB9E0A257DA3DDA Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e36362e302f32342d3234203d3e203233363739.roa Signing time: Sat 12 Jul 2025 09:02:24 +0000 ROA not before: Sat 12 Jul 2025 08:57:24 +0000 ROA not after: Sat 11 Jul 2026 09:02:24 +0000 asID: 23679 IP address blocks: 110.232.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 10:30:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4a:f9:ef:21:af:a0:1b:4a:03:7b:81:0e:b9:e0:a2:57:da:3d:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 12 08:57:24 2025 GMT Not After : Jul 11 09:02:24 2026 GMT Subject: CN=D3D0E232A7B3EE4D1D2B0B82953414502D2B7B58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0d:84:d1:5c:a0:14:cf:4f:a7:8b:cc:d5:37: 42:4e:be:dd:1c:a6:93:2c:73:11:72:ba:0d:26:5c: a1:10:fc:8d:0b:e9:25:6b:55:f4:15:58:e6:27:cf: 77:1e:d7:2f:6e:96:0d:1c:45:4e:79:ec:66:40:97: 39:8b:43:bd:c4:8b:d0:76:5a:f3:c3:5e:47:8f:47: be:ba:bb:0b:f3:9e:a6:f5:68:ff:eb:cb:bf:cd:2e: 40:76:9a:c9:87:33:51:81:c1:09:78:91:88:d2:ac: 60:70:45:2a:a3:c1:fd:64:15:cc:14:96:18:dd:d6: a4:f3:55:b6:91:b2:4c:64:85:e9:f3:ab:84:e5:be: cc:2d:28:d4:ac:a1:3c:7e:87:16:ee:55:15:15:f1: fc:d8:58:73:c9:cf:25:2b:f1:b7:de:0b:0d:1a:bc: 57:e4:9b:eb:17:58:5d:f7:03:88:41:3f:15:dd:19: 39:ab:d5:b6:4b:39:fe:ae:d7:8f:e9:f5:22:d8:89: be:20:e1:57:75:60:ca:ef:8e:03:9d:38:31:79:0b: 08:47:6f:ac:e8:02:6d:d2:94:63:74:ab:7b:32:64: c2:8e:ae:a8:cf:16:04:5c:9c:fb:e4:b2:55:77:73: e0:89:e9:77:64:3e:5d:bc:f8:15:6e:1a:2c:f0:50: 99:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D0:E2:32:A7:B3:EE:4D:1D:2B:0B:82:95:34:14:50:2D:2B:7B:58 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e36362e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.66.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:a9:16:12:9a:ec:76:c4:45:04:1a:c4:78:8f:15:10:22:02: 82:71:9b:74:5c:65:04:15:ac:2e:4d:7d:31:81:ac:46:48:4a: 14:02:1b:43:d6:a2:0c:e6:43:bc:a7:b3:74:91:3f:4d:88:1b: 28:ee:9d:36:39:ec:ba:9e:eb:6d:9d:2b:52:1a:66:8b:69:82: e0:e8:94:82:1e:af:27:cd:5e:86:f7:03:6a:f3:63:0a:a7:c6: 3c:6e:77:d8:0b:5a:17:7e:4d:a6:f8:62:40:9f:57:c3:b4:34: 36:dd:62:1f:6b:43:d7:34:7c:32:50:9c:f4:a0:ac:aa:21:48: eb:ee:a9:cd:d9:a5:69:e3:18:cc:86:41:b7:da:41:10:73:5d: 59:e2:21:33:e0:54:da:3a:1c:9b:66:0a:9c:f2:2e:e8:00:47: dc:f4:87:d6:69:9d:74:71:28:ca:1b:28:dc:58:4e:d5:b6:1b: 46:e4:36:d4:53:db:06:62:d0:5a:ed:8d:40:5f:47:b0:89:8d: 1f:39:55:16:dc:a3:87:d3:26:97:57:ce:0a:5b:d9:96:c8:87: 9b:b4:47:3f:43:36:36:52:ab:67:2d:9a:4d:e3:7f:5e:eb:65: 68:58:1c:11:cb:f4:ea:91:2d:d1:38:06:27:a6:6d:c2:36:de: 21:fb:76:43 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXEr57yGvoBtKA3uBDrngolfaPdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MTIwODU3MjRaFw0yNjA3MTEwOTAyMjRaMDMxMTAvBgNV BAMTKEQzRDBFMjMyQTdCM0VFNEQxRDJCMEI4Mjk1MzQxNDUwMkQyQjdCNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCDYTRXKAUz0+ni8zVN0JOvt0c ppMscxFyug0mXKEQ/I0L6SVrVfQVWOYnz3ce1y9ulg0cRU557GZAlzmLQ73Ei9B2 WvPDXkePR766uwvznqb1aP/ry7/NLkB2msmHM1GBwQl4kYjSrGBwRSqjwf1kFcwU lhjd1qTzVbaRskxkhenzq4TlvswtKNSsoTx+hxbuVRUV8fzYWHPJzyUr8bfeCw0a vFfkm+sXWF33A4hBPxXdGTmr1bZLOf6u14/p9SLYib4g4Vd1YMrvjgOdODF5CwhH b6zoAm3SlGN0q3syZMKOrqjPFgRcnPvkslV3c+CJ6XdkPl28+BVuGizwUJm9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU09DiMqez7k0dKwuClTQUUC0re1gwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG7oQjANBgkqhkiG 9w0BAQsFAAOCAQEAm6kWEprsdsRFBBrEeI8VECICgnGbdFxlBBWsLk19MYGsRkhK FAIbQ9aiDOZDvKezdJE/TYgbKO6dNjnsup7rbZ0rUhpmi2mC4OiUgh6vJ81ehvcD avNjCqfGPG532AtaF35NpvhiQJ9Xw7Q0Nt1iH2tD1zR8MlCc9KCsqiFI6+6pzdml aeMYzIZBt9pBEHNdWeIhM+BU2jocm2YKnPIu6ABH3PSH1mmddHEoyhso3FhO1bYb RuQ21FPbBmLQWu2NQF9HsImNHzlVFtyjh9Mml1fOClvZlsiHm7RHP0M2NlKrZy2a TeN/XutlaFgcEcv06pEt0TgGJ6ZtwjbeIft2Qw== -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:41 2025 by rpki-client