$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38352e302f32342d3234203d3e20313430303331.roa File: 3131302e3233322e38352e302f32342d3234203d3e20313430303331.roa (raw, json) Hash identifier: fcwtVFrrqVf3VNrWzf7lxV2FIjTEYYjBhk6XUPZaau8= Subject key identifier: 30:00:B9:CB:FB:95:29:D2:8B:3C:0E:79:C1:10:22:CC:FD:A0:67:E0 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 7D3B477E584D6A6D7EEC178CD7E37594986A53CA Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38352e302f32342d3234203d3e20313430303331.roa Signing time: Fri 28 Feb 2025 04:58:52 +0000 ROA not before: Fri 28 Feb 2025 04:53:52 +0000 ROA not after: Fri 27 Feb 2026 04:58:52 +0000 asID: 140031 IP address blocks: 110.232.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:3b:47:7e:58:4d:6a:6d:7e:ec:17:8c:d7:e3:75:94:98:6a:53:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Feb 28 04:53:52 2025 GMT Not After : Feb 27 04:58:52 2026 GMT Subject: CN=3000B9CBFB9529D28B3C0E79C11022CCFDA067E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:80:b7:1f:92:49:80:6c:6d:6f:58:c0:9b:fd: 7d:6f:08:ff:be:6c:14:ae:b1:31:35:b4:e9:4b:f2: 33:bf:86:8d:20:8e:15:02:df:5f:fa:a9:25:c7:6c: 75:6d:60:1a:c2:9d:f4:93:41:e4:b0:e3:a5:fb:37: d6:ca:cd:c6:88:fa:b3:e6:c9:fc:01:d6:b7:13:9c: 24:44:28:2e:00:38:c0:03:e2:a3:34:a7:5e:12:fb: 0b:78:07:d5:ac:da:03:04:56:1d:f1:90:74:02:9e: 90:9e:c9:fa:8a:c1:13:fb:d3:f8:90:4c:ab:2d:74: 08:8c:0b:3a:ab:bd:f7:1a:97:5f:68:b3:71:79:78: cd:1c:d7:f3:ee:03:a4:b4:9c:10:76:0a:79:e4:c1: 7f:12:57:ba:67:a8:b8:ae:d5:67:d0:05:24:05:46: 49:95:ac:ef:26:61:7b:bc:2a:1d:4b:7b:c4:e0:08: f0:ab:f8:f2:66:ad:ff:74:c0:8b:05:de:3e:df:db: 43:50:8c:9f:70:79:f1:93:22:df:9c:9a:65:09:06: 68:1c:b1:c1:45:ba:91:0b:80:b0:58:9a:05:0f:f8: d5:ea:30:6e:07:44:7c:27:ca:58:8b:28:69:36:21: 91:09:41:53:9f:63:6a:e2:e4:52:68:c9:9f:bf:04: 6a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:00:B9:CB:FB:95:29:D2:8B:3C:0E:79:C1:10:22:CC:FD:A0:67:E0 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38352e302f32342d3234203d3e20313430303331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.85.0/24 Signature Algorithm: sha256WithRSAEncryption 84:e3:fe:1a:07:7a:32:28:da:82:aa:1b:c7:1f:fe:6a:88:74: 0a:5d:af:79:5c:04:78:ca:a4:d6:a5:0f:14:42:04:7e:d7:6b: a3:65:f9:0a:b7:26:ec:66:f0:ba:e3:6e:0a:47:59:80:c7:ea: 32:6f:cf:18:8b:f8:b0:31:8c:88:d5:45:09:a3:8d:d7:85:75: 6a:89:9b:0a:e4:03:f6:30:c3:9c:1b:ef:b0:50:f3:fc:e0:81: 45:b8:22:c8:cf:2c:f3:10:cb:7a:66:08:8b:61:35:72:b8:94: f5:b0:13:61:6c:5a:4a:65:39:b0:c5:64:96:6d:8c:00:40:47: d6:2b:d4:b1:12:32:28:aa:07:9d:03:f6:c3:6d:e3:3f:8e:1c: 52:58:a9:0f:cd:a8:a6:a2:85:32:14:e2:9f:ef:06:7d:2a:db: d1:ad:69:82:7a:2c:47:d9:4b:a3:31:a2:5e:1d:96:7c:25:d5: 02:c7:2d:6f:a4:df:09:ce:1b:c8:93:bb:a7:52:06:ca:fe:3d: 93:96:87:51:f8:5d:64:b0:81:ae:e9:cd:8d:de:1d:5b:68:c5: 88:88:78:44:ae:02:72:b7:c9:99:5c:0c:eb:46:21:08:8e:b2: a3:67:19:54:da:91:03:6d:27:6d:f9:49:9c:db:fc:3f:99:a8: 1f:75:c4:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfTtHflhNam1+7BeM1+N1lJhqU8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTAyMjgwNDUzNTJaFw0yNjAyMjcwNDU4NTJaMDMxMTAvBgNV BAMTKDMwMDBCOUNCRkI5NTI5RDI4QjNDMEU3OUMxMTAyMkNDRkRBMDY3RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKgLcfkkmAbG1vWMCb/X1vCP++ bBSusTE1tOlL8jO/ho0gjhUC31/6qSXHbHVtYBrCnfSTQeSw46X7N9bKzcaI+rPm yfwB1rcTnCREKC4AOMAD4qM0p14S+wt4B9Ws2gMEVh3xkHQCnpCeyfqKwRP70/iQ TKstdAiMCzqrvfcal19os3F5eM0c1/PuA6S0nBB2CnnkwX8SV7pnqLiu1WfQBSQF RkmVrO8mYXu8Kh1Le8TgCPCr+PJmrf90wIsF3j7f20NQjJ9wefGTIt+cmmUJBmgc scFFupELgLBYmgUP+NXqMG4HRHwnyliLKGk2IZEJQVOfY2ri5FJoyZ+/BGqnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMAC5y/uVKdKLPA55wRAizP2gZ+AwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzAzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbuhVMA0GCSqG SIb3DQEBCwUAA4IBAQCE4/4aB3oyKNqCqhvHH/5qiHQKXa95XAR4yqTWpQ8UQgR+ 12ujZfkKtybsZvC6424KR1mAx+oyb88Yi/iwMYyI1UUJo43XhXVqiZsK5AP2MMOc G++wUPP84IFFuCLIzyzzEMt6ZgiLYTVyuJT1sBNhbFpKZTmwxWSWbYwAQEfWK9Sx EjIoqgedA/bDbeM/jhxSWKkPzaimooUyFOKf7wZ9KtvRrWmCeixH2UujMaJeHZZ8 JdUCxy1vpN8JzhvIk7unUgbK/j2TlodR+F1ksIGu6c2N3h1baMWIiHhErgJyt8mZ XAzrRiEIjrKjZxlU2pEDbSdt+Umc2/w/magfdcRx -----END CERTIFICATE-----Generated at Sun Apr 6 11:13:12 2025 by rpki-client