$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38362e302f32332d3234203d3e203233363739.roa File: 3131302e3233322e38362e302f32332d3234203d3e203233363739.roa (raw, json) Hash identifier: Nt93vFiGqCLoISTeeJrbDnFdKolv8fe9mYh+Vkx1qFo= Subject key identifier: 5E:C7:14:EF:44:24:99:1F:11:9A:D9:48:CF:62:DC:E9:D7:10:CF:F2 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 50671FDADD78516CEAFA3AF3F4ABDB4F904455E3 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38362e302f32332d3234203d3e203233363739.roa Signing time: Fri 11 Jul 2025 11:02:22 +0000 ROA not before: Fri 11 Jul 2025 10:57:22 +0000 ROA not after: Fri 10 Jul 2026 11:02:22 +0000 asID: 23679 IP address blocks: 110.232.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 06:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:67:1f:da:dd:78:51:6c:ea:fa:3a:f3:f4:ab:db:4f:90:44:55:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 11 10:57:22 2025 GMT Not After : Jul 10 11:02:22 2026 GMT Subject: CN=5EC714EF4424991F119AD948CF62DCE9D710CFF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c6:51:1d:99:84:2b:47:16:17:34:f8:1f:15: 72:7b:93:9d:d6:dc:21:54:17:ab:c4:b3:ee:36:4c: bc:16:c0:08:0b:33:12:be:b6:41:a4:57:47:89:f3: eb:a6:d0:56:cb:85:d9:56:c4:01:e8:69:96:e7:fa: 01:a9:5a:b8:8f:bb:b9:92:ad:ec:d7:a7:cf:5b:49: 92:24:d3:97:31:22:7a:9d:ac:27:de:84:f8:ba:2e: b7:51:ff:d9:eb:19:71:1e:a4:90:99:3b:b2:be:27: 2b:68:1d:bb:ad:a0:e0:fb:23:0c:41:85:12:94:c7: 2e:ca:47:19:15:4d:f6:e4:5d:3e:3d:26:a0:51:b6: d8:cf:34:f6:1c:23:fc:96:80:f2:f6:90:d4:13:e3: 88:e4:1a:3d:ac:76:17:f6:6e:32:18:bf:98:42:1a: 7d:6a:33:71:da:67:04:99:6b:07:ac:3b:d2:6b:b1: 05:96:d1:78:96:5f:1b:df:c7:ff:f9:26:7b:40:83: 5a:15:af:2d:14:8e:36:6d:8f:63:42:af:0b:97:32: cc:a5:8a:e1:84:25:ce:9c:db:e9:0a:b2:c3:12:1a: 23:fe:3a:a2:b4:53:a7:d0:d8:b3:73:10:90:b1:85: de:71:e2:86:8e:8a:f5:13:33:d7:b3:83:1d:36:4f: b7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C7:14:EF:44:24:99:1F:11:9A:D9:48:CF:62:DC:E9:D7:10:CF:F2 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e38362e302f32332d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.86.0/23 Signature Algorithm: sha256WithRSAEncryption 49:0f:36:24:09:cf:69:9a:5f:05:94:b6:e7:ef:a7:47:27:56: e0:ac:ea:4c:b3:65:9d:6b:e7:f1:16:4c:1f:f7:aa:e1:81:1a: 52:1d:37:94:d8:ab:d8:a6:36:0f:f4:bf:b9:0f:c4:61:e4:df: c1:f1:eb:78:f5:40:b3:e2:17:02:eb:17:66:f2:5e:b3:9a:d0: 52:ef:6d:c9:34:51:d1:85:c2:1d:da:35:92:48:bd:ce:c3:ed: 52:0e:07:90:03:3b:d5:42:1f:50:a7:bf:07:d7:af:ca:ab:72: f3:94:ef:26:bf:21:92:ee:7f:60:b2:1a:fc:a4:c2:dc:7b:4d: 45:cf:2f:6d:82:ce:28:fa:8b:86:f9:f6:c1:7f:ed:51:e0:09: cc:c4:46:19:fe:43:22:16:62:96:35:3d:8a:a8:5b:1c:e1:c5: 36:5e:24:d7:c8:7b:35:af:57:77:00:12:0a:62:4e:a7:72:cb: 4a:3a:d5:4a:c1:8e:fc:45:0c:fc:ec:49:c2:c0:3c:5d:65:c3: b3:bc:c5:b9:56:a2:86:b8:06:58:2c:d5:58:5d:58:7d:ee:18: 84:9d:d5:58:c6:bb:bd:10:11:2d:14:d3:ee:bd:65:f9:15:a7: 88:c5:f6:14:d0:9e:b9:a2:0a:36:b4:be:cf:c6:12:0a:66:a8: df:70:51:52 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUGcf2t14UWzq+jrz9KvbT5BEVeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MTExMDU3MjJaFw0yNjA3MTAxMTAyMjJaMDMxMTAvBgNV BAMTKDVFQzcxNEVGNDQyNDk5MUYxMTlBRDk0OENGNjJEQ0U5RDcxMENGRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4xlEdmYQrRxYXNPgfFXJ7k53W 3CFUF6vEs+42TLwWwAgLMxK+tkGkV0eJ8+um0FbLhdlWxAHoaZbn+gGpWriPu7mS rezXp89bSZIk05cxInqdrCfehPi6LrdR/9nrGXEepJCZO7K+JytoHbutoOD7IwxB hRKUxy7KRxkVTfbkXT49JqBRttjPNPYcI/yWgPL2kNQT44jkGj2sdhf2bjIYv5hC Gn1qM3HaZwSZawesO9JrsQWW0XiWXxvfx//5JntAg1oVry0UjjZtj2NCrwuXMsyl iuGEJc6c2+kKssMSGiP+OqK0U6fQ2LNzEJCxhd5x4oaOivUTM9ezgx02T7fFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXscU70QkmR8RmtlIz2Lc6dcQz/IwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzODM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAW7oVjANBgkqhkiG 9w0BAQsFAAOCAQEASQ82JAnPaZpfBZS25++nRydW4KzqTLNlnWvn8RZMH/eq4YEa Uh03lNir2KY2D/S/uQ/EYeTfwfHrePVAs+IXAusXZvJes5rQUu9tyTRR0YXCHdo1 kki9zsPtUg4HkAM71UIfUKe/B9evyqty85TvJr8hku5/YLIa/KTC3HtNRc8vbYLO KPqLhvn2wX/tUeAJzMRGGf5DIhZiljU9iqhbHOHFNl4k18h7Na9XdwASCmJOp3LL SjrVSsGO/EUM/OxJwsA8XWXDs7zFuVaihrgGWCzVWF1Yfe4YhJ3VWMa7vRARLRTT 7r1l+RWniMX2FNCeuaIKNrS+z8YSCmao33BRUg== -----END CERTIFICATE-----Generated at Tue Nov 11 20:59:33 2025 by rpki-client