$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39342e302f32342d3234203d3e20313532373830.roa File: 3131302e3233322e39342e302f32342d3234203d3e20313532373830.roa (raw, json) Hash identifier: Lqy0l8qFt5xhHOWt03da2yfEAzFQUgzWnfU5gwbQ6lw= Subject key identifier: 5B:56:72:10:29:DE:E3:1C:DF:34:E1:56:24:4F:D1:02:DC:68:0F:7F Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 68A37E57EC2418DE2924A422A06ECBA83E96EF0B Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39342e302f32342d3234203d3e20313532373830.roa Signing time: Wed 17 Sep 2025 08:30:13 +0000 ROA not before: Wed 17 Sep 2025 08:25:13 +0000 ROA not after: Wed 16 Sep 2026 08:30:13 +0000 asID: 152780 IP address blocks: 110.232.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a3:7e:57:ec:24:18:de:29:24:a4:22:a0:6e:cb:a8:3e:96:ef:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Sep 17 08:25:13 2025 GMT Not After : Sep 16 08:30:13 2026 GMT Subject: CN=5B56721029DEE31CDF34E156244FD102DC680F7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9f:70:b3:01:79:be:3e:98:41:e6:c8:a6:3e: ef:a6:49:41:1f:44:ef:3f:df:39:1c:e0:c1:53:33: 7d:ba:d0:6f:9c:b1:39:a8:15:50:6e:f2:cd:d3:86: f7:72:8d:81:67:bf:58:f3:79:6f:8b:41:b6:6b:a3: c9:01:15:05:2b:73:0a:f4:c1:1e:ec:bc:a3:f4:35: b5:5e:64:31:75:6d:e6:6a:4f:8f:73:d2:be:72:0c: 0f:78:7c:17:27:6d:b6:e0:f6:fb:f1:2c:df:9e:34: ad:0d:a3:f9:2b:86:87:96:0d:1d:7e:d9:8f:0f:58: 7a:e2:c2:a7:c5:87:67:26:66:73:7f:58:40:2f:73: 12:3b:b2:6d:42:85:88:66:ab:68:92:34:12:5f:25: 32:a5:e3:88:50:fb:c9:26:39:6b:bf:56:8c:43:86: 3d:a5:9a:89:f2:2f:25:79:c4:b9:db:76:aa:03:0f: 36:98:52:f2:39:9e:58:13:be:0c:5c:b3:cc:6c:73: 66:bb:c9:e9:9b:c9:53:4b:b0:cf:c4:91:ff:93:64: de:7b:0f:21:c5:eb:28:d0:69:f7:45:9d:5a:1c:02: af:f5:03:8f:2b:c3:aa:b1:f6:0a:80:9e:2b:f8:ff: a8:5c:d4:69:02:d1:01:4a:33:e8:c3:55:21:96:91: cd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:56:72:10:29:DE:E3:1C:DF:34:E1:56:24:4F:D1:02:DC:68:0F:7F X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3131302e3233322e39342e302f32342d3234203d3e20313532373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.232.94.0/24 Signature Algorithm: sha256WithRSAEncryption bb:a3:48:ca:8e:6d:a8:cb:75:1b:3c:32:11:fe:cc:24:94:18: 58:86:0c:04:3f:ae:b8:58:03:f3:c6:f5:ab:3a:57:fb:1a:fb: a1:77:5d:a3:b6:95:fc:c2:ef:f0:76:d1:bd:64:74:74:2d:c5: d2:d9:96:b4:eb:1e:db:43:ca:e7:4e:e4:e6:d6:02:21:15:6a: c0:a4:94:4a:80:5e:29:02:79:df:6b:dc:69:b3:b7:1e:90:8b: 85:78:25:ea:1f:91:ba:49:ef:c8:37:b1:b3:22:a8:c8:a2:06: 69:e2:85:c8:7b:5f:22:db:ff:e4:67:cc:61:89:33:d1:70:04: 96:c8:c4:0a:cc:6b:d2:cb:74:e5:bd:c9:62:54:6c:a7:ea:5b: ba:9f:69:2c:6b:95:c1:f3:94:52:c8:db:45:eb:7f:83:54:06: 41:17:51:28:b3:2c:d6:c6:0b:1f:ce:c2:d5:23:98:3c:4d:d9: ca:e2:a1:de:d9:0d:e5:6e:84:11:b8:8d:50:8e:f9:f5:78:04: aa:49:51:61:77:e9:6b:b1:3f:57:2e:a2:30:d6:fa:7b:dd:bf: be:33:c2:96:6d:fb:7a:09:62:be:a3:f2:e0:4b:c1:1d:d7:99: 31:bd:de:d4:4b:f9:30:84:dd:7b:84:2b:2e:02:1f:c8:67:d4: d6:7f:c4:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaKN+V+wkGN4pJKQioG7LqD6W7wswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTA5MTcwODI1MTNaFw0yNjA5MTYwODMwMTNaMDMxMTAvBgNV BAMTKDVCNTY3MjEwMjlERUUzMUNERjM0RTE1NjI0NEZEMTAyREM2ODBGN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjn3CzAXm+PphB5simPu+mSUEf RO8/3zkc4MFTM3260G+csTmoFVBu8s3ThvdyjYFnv1jzeW+LQbZro8kBFQUrcwr0 wR7svKP0NbVeZDF1beZqT49z0r5yDA94fBcnbbbg9vvxLN+eNK0No/krhoeWDR1+ 2Y8PWHriwqfFh2cmZnN/WEAvcxI7sm1ChYhmq2iSNBJfJTKl44hQ+8kmOWu/VoxD hj2lmonyLyV5xLnbdqoDDzaYUvI5nlgTvgxcs8xsc2a7yembyVNLsM/Ekf+TZN57 DyHF6yjQafdFnVocAq/1A48rw6qx9gqAniv4/6hc1GkC0QFKM+jDVSGWkc3PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW1ZyECne4xzfNOFWJE/RAtxoD38wHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMxMzEzMDJlMzIzMzMyMmUzOTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbuheMA0GCSqG SIb3DQEBCwUAA4IBAQC7o0jKjm2oy3UbPDIR/swklBhYhgwEP664WAPzxvWrOlf7 Gvuhd12jtpX8wu/wdtG9ZHR0LcXS2Za06x7bQ8rnTuTm1gIhFWrApJRKgF4pAnnf a9xps7cekIuFeCXqH5G6Se/IN7GzIqjIogZp4oXIe18i2//kZ8xhiTPRcASWyMQK zGvSy3TlvcliVGyn6lu6n2ksa5XB85RSyNtF63+DVAZBF1EosyzWxgsfzsLVI5g8 TdnK4qHe2Q3lboQRuI1Qjvn1eASqSVFhd+lrsT9XLqIw1vp73b++M8KWbft6CWK+ o/LgS8Ed15kxvd7US/kwhN17hCsuAh/IZ9TWf8Sk -----END CERTIFICATE-----Generated at Mon Oct 20 14:26:36 2025 by rpki-client