$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa File: 3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa (raw, json) Hash identifier: 7RRX67cuMOlcxx2Q/KseOzWBNNGNKW6IoSgifsHTY/Y= Subject key identifier: FF:49:18:CC:8D:42:14:42:62:5E:32:AE:4B:BC:71:B1:45:08:8B:57 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 2AD53B3637E83569F8C3BE3BD8142AF2A6EBFDFC Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa Signing time: Sat 12 Jul 2025 11:02:21 +0000 ROA not before: Sat 12 Jul 2025 10:57:21 +0000 ROA not after: Sat 11 Jul 2026 11:02:21 +0000 asID: 138841 IP address blocks: 202.162.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 06:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d5:3b:36:37:e8:35:69:f8:c3:be:3b:d8:14:2a:f2:a6:eb:fd:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jul 12 10:57:21 2025 GMT Not After : Jul 11 11:02:21 2026 GMT Subject: CN=FF4918CC8D421442625E32AE4BBC71B145088B57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:12:59:fa:63:e1:c1:b8:20:59:de:f5:cc:77: 4f:7f:f6:6f:ab:70:bc:70:c3:d5:80:9f:4c:b9:57: bf:ea:d6:b7:95:d1:b7:b6:d4:71:35:c5:cc:a9:fc: e3:42:2d:a0:6e:32:d2:b0:48:73:74:57:38:b8:12: 7d:6a:c5:17:33:8a:bc:a5:cb:55:54:95:a1:9b:d5: 91:bd:03:2d:84:15:6d:36:b9:02:7d:8e:f1:7d:99: 0b:96:df:bb:c2:b4:33:a1:36:57:7f:c8:12:cb:40: c7:1d:29:8c:cc:82:16:6c:16:8c:e1:b5:df:8c:18: ad:bb:4e:71:57:00:70:f0:60:78:70:f2:f7:d6:9f: b9:09:1c:d3:de:2e:21:69:10:ab:43:83:87:b9:40: fd:23:a0:1d:62:c7:54:b9:52:06:2a:c8:51:4d:23: cb:62:02:05:fc:23:e6:8e:8f:73:18:62:cc:c0:c8: cd:6c:db:59:cc:1d:96:c2:96:d2:61:59:e9:fc:b9: 4b:09:fe:f8:cd:7b:ba:f8:9c:31:d1:5b:5d:40:ac: 4c:98:22:38:c2:f6:13:f8:d5:05:a7:63:3e:3d:69: 4d:9c:fa:bb:98:43:1e:df:23:5e:0b:32:45:ce:73: 5c:f3:a1:98:db:6c:1b:9d:09:fc:46:87:d9:5a:e2: c4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:49:18:CC:8D:42:14:42:62:5E:32:AE:4B:BC:71:B1:45:08:8B:57 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230302e302f32332d3234203d3e20313338383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.162.200.0/23 Signature Algorithm: sha256WithRSAEncryption bc:da:6e:07:5b:35:64:d5:ae:a0:09:ff:0e:95:d2:1c:b7:0f: 0f:28:a2:80:e8:35:a0:e3:68:9c:88:43:98:98:f2:2b:2a:8b: 3d:03:1b:5d:84:c3:30:8d:e8:8a:0a:9b:97:64:1b:ae:84:b3: 6e:66:2a:70:ef:41:5a:fa:1e:4c:80:48:bf:a7:d9:53:74:a9: 15:59:08:f4:7a:7e:21:4a:55:53:eb:32:e0:d6:f1:d5:6a:f4: 7c:0f:8f:9f:92:58:b5:05:91:72:c6:37:49:be:36:e2:fd:ef: 73:d0:0f:f3:a3:7c:02:61:ff:5e:8c:52:99:0a:f1:eb:62:8b: 42:59:da:f7:90:ad:ef:ba:48:70:ca:1a:38:f4:a5:dc:cb:69: 88:83:b8:25:2a:69:2d:82:8d:54:16:bf:53:dd:42:86:6f:94: eb:cd:66:41:7a:51:73:ae:61:ae:ca:37:35:4e:ab:24:b9:6d: d2:9c:5d:3a:d7:03:d9:f2:bc:04:8f:fc:17:a8:35:6d:8b:81: 6c:74:d2:4a:f0:da:42:18:96:15:8b:65:57:72:8b:79:f5:c9: ca:f2:d2:98:d9:9c:60:45:33:2a:e6:cf:6f:e2:dc:6c:a7:b9: 51:38:f8:83:eb:7a:09:59:e0:d8:dd:59:cb:92:05:7e:dd:f7: 00:59:5f:5e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKtU7NjfoNWn4w7472BQq8qbr/fwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA3MTIxMDU3MjFaFw0yNjA3MTExMTAyMjFaMDMxMTAvBgNV BAMTKEZGNDkxOENDOEQ0MjE0NDI2MjVFMzJBRTRCQkM3MUIxNDUwODhCNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwEln6Y+HBuCBZ3vXMd09/9m+r cLxww9WAn0y5V7/q1reV0be21HE1xcyp/ONCLaBuMtKwSHN0Vzi4En1qxRcziryl y1VUlaGb1ZG9Ay2EFW02uQJ9jvF9mQuW37vCtDOhNld/yBLLQMcdKYzMghZsFozh td+MGK27TnFXAHDwYHhw8vfWn7kJHNPeLiFpEKtDg4e5QP0joB1ix1S5UgYqyFFN I8tiAgX8I+aOj3MYYszAyM1s21nMHZbCltJhWen8uUsJ/vjNe7r4nDHRW11ArEyY IjjC9hP41QWnYz49aU2c+ruYQx7fI14LMkXOc1zzoZjbbBudCfxGh9la4sTXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/0kYzI1CFEJiXjKuS7xxsUUIi1cwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKosgwDQYJ KoZIhvcNAQELBQADggEBALzabgdbNWTVrqAJ/w6V0hy3Dw8oooDoNaDjaJyIQ5iY 8isqiz0DG12EwzCN6IoKm5dkG66Es25mKnDvQVr6HkyASL+n2VN0qRVZCPR6fiFK VVPrMuDW8dVq9HwPj5+SWLUFkXLGN0m+NuL973PQD/OjfAJh/16MUpkK8etii0JZ 2veQre+6SHDKGjj0pdzLaYiDuCUqaS2CjVQWv1PdQoZvlOvNZkF6UXOuYa7KNzVO qyS5bdKcXTrXA9nyvASP/BeoNW2LgWx00krw2kIYlhWLZVdyi3n1ycry0pjZnGBF Myrmz2/i3GynuVE4+IPreglZ4NjdWcuSBX7d9wBZX14= -----END CERTIFICATE-----Generated at Tue Nov 11 23:21:02 2025 by rpki-client