$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa File: 3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: Ge+FVlU5Y2+HiQBtNMtqOHHN42nqf1vkgNndJxV9KDE= Subject key identifier: 9E:DE:99:11:3C:44:3E:9F:90:B9:96:4B:1D:9F:AC:F6:24:5A:E4:0D Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 06FF6812B2DD40344C9405BB4704F4718893A5C3 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa Signing time: Fri 25 Jul 2025 06:01:31 +0000 ROA not before: Fri 25 Jul 2025 05:56:31 +0000 ROA not after: Fri 24 Jul 2026 06:01:31 +0000 asID: 138841 IP address blocks: 110.232.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 09:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ff:68:12:b2:dd:40:34:4c:94:05:bb:47:04:f4:71:88:93:a5:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 25 05:56:31 2025 GMT Not After : Jul 24 06:01:31 2026 GMT Subject: CN=9EDE99113C443E9F90B9964B1D9FACF6245AE40D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ba:f9:29:0f:68:06:93:99:0d:8d:87:b8:ea: 95:d7:6a:03:28:2c:99:e1:a3:7a:6f:5c:fd:fe:b6: 80:2b:01:03:da:f4:fb:f2:a3:66:b9:88:0f:44:b2: 0f:1f:ef:ad:37:e3:1b:74:df:d9:d8:e2:17:2b:5d: 07:c2:c2:1c:e9:99:4c:ea:6e:6d:9b:a0:34:18:7a: 01:5a:8a:1d:b6:8d:29:6e:e3:fc:99:d6:28:9d:e7: c8:ef:25:5f:66:bf:6e:e7:9f:bb:25:b4:4a:10:47: 5d:0d:a3:7a:55:be:87:7b:9e:09:0d:2b:58:32:0d: 42:a5:17:3e:8f:a4:d3:19:6d:87:ea:0e:1e:6b:16: 40:9e:7c:82:03:b4:5b:98:81:ac:e1:aa:eb:df:c8: a0:43:59:40:b7:4d:ef:18:02:19:ba:7d:72:39:50: 32:d2:67:5b:79:08:18:aa:ae:b2:5a:c2:9c:90:43: 80:74:c2:b8:7f:7e:18:05:d4:42:bd:e9:f5:a8:c4: e4:fa:71:1b:c7:07:a3:16:8d:c0:92:c7:02:29:97: 13:34:82:79:55:21:d5:0e:51:13:36:c2:b1:97:60: 95:e9:fb:48:81:72:8f:34:e8:19:20:03:1f:e7:7c: a4:24:ac:9f:2c:e6:4c:42:cf:5f:bd:ee:ba:98:69: 3f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:DE:99:11:3C:44:3E:9F:90:B9:96:4B:1D:9F:AC:F6:24:5A:E4:0D X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e37362e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.76.0/23 Signature Algorithm: sha256WithRSAEncryption a2:8e:ef:56:2a:7c:d8:0b:21:48:7c:f6:97:6e:e6:ae:5e:e4: aa:f9:e6:8c:af:82:28:5c:9f:94:1e:22:2f:7d:5d:c6:ad:35: 16:24:98:13:2e:68:5a:9c:f8:c3:b6:bd:c7:8e:39:33:8e:8b: 69:74:95:50:b7:79:ad:fa:06:d8:fe:7c:6b:0e:51:49:84:d3: 98:c1:64:a6:b8:87:5b:6a:1a:c2:c7:d8:87:e0:a4:c9:67:61: 52:78:7e:57:7c:ae:bf:d5:8a:ad:a6:7f:47:ad:0c:2a:aa:ab: 57:53:aa:b7:03:7b:e8:72:00:0d:d6:f8:53:9a:d8:2a:75:a8: 2c:41:b4:70:78:bc:e7:06:2e:63:9e:8e:49:b8:8e:22:2e:ea: e6:a8:6d:08:ca:74:4e:47:a0:6e:a0:4d:c9:15:7e:ed:fb:64: a4:b1:36:90:79:38:71:0c:a5:13:e3:dd:3b:86:49:ca:33:6d: a3:d6:ba:46:14:6d:e9:b7:c0:7e:ce:07:f7:bd:2e:42:36:93: 6e:b8:08:2f:d3:31:10:a1:43:1a:84:c0:86:a2:7b:70:5a:b1: 72:55:af:ee:dc:70:1c:f9:1d:59:fb:ca:4a:6b:22:36:4f:0e: d5:24:93:6d:dd:b9:dd:e9:27:3e:02:2d:0a:85:35:a9:a3:24: 94:a3:aa:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBv9oErLdQDRMlAW7RwT0cYiTpcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MjUwNTU2MzFaFw0yNjA3MjQwNjAxMzFaMDMxMTAvBgNV BAMTKDlFREU5OTExM0M0NDNFOUY5MEI5OTY0QjFEOUZBQ0Y2MjQ1QUU0MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPuvkpD2gGk5kNjYe46pXXagMo LJnho3pvXP3+toArAQPa9Pvyo2a5iA9Esg8f76034xt039nY4hcrXQfCwhzpmUzq bm2boDQYegFaih22jSlu4/yZ1iid58jvJV9mv27nn7sltEoQR10No3pVvod7ngkN K1gyDUKlFz6PpNMZbYfqDh5rFkCefIIDtFuYgazhquvfyKBDWUC3Te8YAhm6fXI5 UDLSZ1t5CBiqrrJawpyQQ4B0wrh/fhgF1EK96fWoxOT6cRvHB6MWjcCSxwIplxM0 gnlVIdUOURM2wrGXYJXp+0iBco806BkgAx/nfKQkrJ8s5kxCz1+97rqYaT8zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnt6ZETxEPp+QuZZLHZ+s9iRa5A0wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzNzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBbuhMMA0GCSqG SIb3DQEBCwUAA4IBAQCiju9WKnzYCyFIfPaXbuauXuSq+eaMr4IoXJ+UHiIvfV3G rTUWJJgTLmhanPjDtr3HjjkzjotpdJVQt3mt+gbY/nxrDlFJhNOYwWSmuIdbahrC x9iH4KTJZ2FSeH5XfK6/1Yqtpn9HrQwqqqtXU6q3A3vocgAN1vhTmtgqdagsQbRw eLznBi5jno5JuI4iLurmqG0IynROR6BuoE3JFX7t+2SksTaQeThxDKUT4907hknK M22j1rpGFG3pt8B+zgf3vS5CNpNuuAgv0zEQoUMahMCGontwWrFyVa/u3HAc+R1Z +8pKayI2Tw7VJJNt3bnd6Sc+Ai0KhTWpoySUo6rH -----END CERTIFICATE-----Generated at Fri Jul 25 18:26:23 2025 by rpki-client