$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37332e302f32342d3234203d3e20313338383431.roa File: 3131302e3233322e37332e302f32342d3234203d3e20313338383431.roa (raw, json) Hash identifier: oelEAMnbq65BLutx6hYbYB6I0IXxkWBdGU0gmgFob/o= Subject key identifier: 24:F7:54:22:F0:9C:23:AF:CE:5A:0B:6E:FE:94:40:41:FB:B1:94:E0 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 1859A8014328B97D67F1021470281928BCFE78F5 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37332e302f32342d3234203d3e20313338383431.roa Signing time: Fri 25 Jul 2025 06:01:30 +0000 ROA not before: Fri 25 Jul 2025 05:56:30 +0000 ROA not after: Fri 24 Jul 2026 06:01:30 +0000 asID: 138841 IP address blocks: 110.232.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:59:a8:01:43:28:b9:7d:67:f1:02:14:70:28:19:28:bc:fe:78:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 25 05:56:30 2025 GMT Not After : Jul 24 06:01:30 2026 GMT Subject: CN=24F75422F09C23AFCE5A0B6EFE944041FBB194E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:24:2e:ad:1c:cf:5a:72:13:e6:c6:36:8d:46: c6:6c:31:f6:4f:82:bd:5d:8a:c3:58:06:dc:07:61: ac:9b:02:58:2e:3d:14:b1:fb:30:4c:4f:fb:f7:1e: 78:cc:f2:2a:57:0b:2d:22:fc:00:38:91:99:af:68: c1:63:67:18:b4:dd:87:93:17:f7:1b:10:b0:b6:30: 78:d9:72:ac:4c:65:c2:25:14:b6:a2:01:56:e9:0f: aa:e0:10:cc:b8:56:82:c5:89:67:f6:85:f9:3b:de: 71:9a:6d:0d:0f:a4:65:8d:32:6f:15:fb:31:a7:e4: ce:a4:d9:70:25:bc:76:2c:c0:d0:23:d9:19:b9:ac: aa:31:38:1f:6f:ed:dc:5f:28:97:43:b8:50:cc:5a: 21:09:28:13:a2:3b:21:18:88:ea:f6:c1:cf:4c:ed: d3:47:04:a0:d0:f7:6d:3a:3d:3e:b0:be:1a:53:df: ce:36:f3:69:14:01:d2:42:55:bc:87:0e:18:c0:16: 27:cd:f2:f8:f5:b5:ff:4f:28:ba:25:71:20:94:03: 9c:fc:c6:e7:4e:d2:c1:a0:aa:43:c1:08:2a:07:2c: 9e:58:0e:3c:2c:ec:1f:87:02:73:b5:a6:64:d9:8e: 2e:f1:22:08:45:a3:18:e9:cc:90:7f:88:ad:01:46: a3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F7:54:22:F0:9C:23:AF:CE:5A:0B:6E:FE:94:40:41:FB:B1:94:E0 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37332e302f32342d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.73.0/24 Signature Algorithm: sha256WithRSAEncryption 60:35:26:b9:a6:90:3f:dc:d5:d9:49:db:74:5d:6c:c8:15:4e: 65:f2:bb:84:54:03:cb:f7:57:3e:e6:47:82:29:36:6b:46:ba: 7f:e5:7f:82:ce:28:a5:90:cf:1a:8a:0d:e2:ee:c8:82:ee:9f: 24:75:01:e3:9a:49:46:75:6d:45:36:c3:fc:39:96:7c:f8:f3: 67:2a:fd:17:67:31:b0:dd:fd:bd:63:73:bb:ed:91:fc:eb:4f: 9b:f1:2a:91:77:87:b2:a0:78:65:72:2c:73:31:7f:c6:8c:30: 98:95:60:3d:58:f1:69:95:c8:26:c6:a1:b0:36:43:b1:ea:72: 76:81:b0:4d:33:4a:a5:28:55:df:ef:b3:74:3b:c9:b2:8d:8e: 52:1d:c9:9e:93:d1:c2:57:aa:5b:e4:c9:f4:70:2f:b0:af:cb: dd:87:fc:4d:75:ca:9e:28:ef:ff:9e:89:36:bf:e0:7e:aa:3e: c5:c1:ef:33:50:44:27:a3:5c:c6:eb:12:ca:23:51:8f:12:0a: cd:f5:ec:ac:91:b3:1a:b6:17:36:3b:9a:52:4b:fe:40:7b:99: 49:c2:71:61:b1:a3:a0:c8:3e:85:f8:f6:e7:f8:1c:f6:df:1c: 77:9a:46:65:b2:67:ca:fd:e6:b9:75:14:e7:18:bc:0d:b3:99: 4f:bc:44:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGFmoAUMouX1n8QIUcCgZKLz+ePUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MjUwNTU2MzBaFw0yNjA3MjQwNjAxMzBaMDMxMTAvBgNV BAMTKDI0Rjc1NDIyRjA5QzIzQUZDRTVBMEI2RUZFOTQ0MDQxRkJCMTk0RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuJC6tHM9achPmxjaNRsZsMfZP gr1disNYBtwHYaybAlguPRSx+zBMT/v3HnjM8ipXCy0i/AA4kZmvaMFjZxi03YeT F/cbELC2MHjZcqxMZcIlFLaiAVbpD6rgEMy4VoLFiWf2hfk73nGabQ0PpGWNMm8V +zGn5M6k2XAlvHYswNAj2Rm5rKoxOB9v7dxfKJdDuFDMWiEJKBOiOyEYiOr2wc9M 7dNHBKDQ9206PT6wvhpT384282kUAdJCVbyHDhjAFifN8vj1tf9PKLolcSCUA5z8 xudO0sGgqkPBCCoHLJ5YDjws7B+HAnO1pmTZji7xIghFoxjpzJB/iK0BRqMLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJPdUIvCcI6/OWgtu/pRAQfuxlOAwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbuhJMA0GCSqG SIb3DQEBCwUAA4IBAQBgNSa5ppA/3NXZSdt0XWzIFU5l8ruEVAPL91c+5keCKTZr Rrp/5X+CziilkM8aig3i7siC7p8kdQHjmklGdW1FNsP8OZZ8+PNnKv0XZzGw3f29 Y3O77ZH860+b8SqRd4eyoHhlcixzMX/GjDCYlWA9WPFplcgmxqGwNkOx6nJ2gbBN M0qlKFXf77N0O8myjY5SHcmek9HCV6pb5Mn0cC+wr8vdh/xNdcqeKO//nok2v+B+ qj7Fwe8zUEQno1zG6xLKI1GPEgrN9eyskbMathc2O5pSS/5Ae5lJwnFhsaOgyD6F +Pbn+Bz23xx3mkZlsmfK/ea5dRTnGLwNs5lPvEST -----END CERTIFICATE-----Generated at Fri Jul 25 18:24:29 2025 by rpki-client