$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55652.roa File: AS55652.roa (raw, json) Hash identifier: xauY5L7Hp7UicETfgcLuLoyGjhhIvZqARKqQYGv8ShQ= Subject key identifier: BF:64:A0:75:A5:8D:AB:9D:9E:42:48:1D:2E:60:00:AC:37:76:1B:E0 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4FE317335C8A72870BFCEA6FE93E2D0188FA15C0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55652.roa Signing time: Thu 14 Aug 2025 03:00:00 +0000 ROA not before: Thu 14 Aug 2025 02:55:00 +0000 ROA not after: Thu 13 Aug 2026 03:00:00 +0000 asID: 55652 IP address blocks: 103.24.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 07:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e3:17:33:5c:8a:72:87:0b:fc:ea:6f:e9:3e:2d:01:88:fa:15:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 14 02:55:00 2025 GMT Not After : Aug 13 03:00:00 2026 GMT Subject: CN=BF64A075A58DAB9D9E42481D2E6000AC37761BE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:65:dd:f5:c4:e6:fb:d9:9d:ec:51:9b:6d:20: 8b:86:d0:6c:31:63:7a:04:06:34:bf:0c:be:8a:4e: 8e:89:70:18:b9:d5:c0:fd:5b:2d:14:3f:78:ff:a9: 9c:fc:ab:df:d1:90:6c:ac:8e:60:1b:65:db:a7:51: 6f:8b:66:bc:f4:9a:82:ef:ea:1b:b0:52:a0:ca:34: 02:44:b3:05:4a:75:91:83:12:b7:17:8f:73:52:46: 95:69:4a:7c:11:c9:1b:03:f7:18:c6:cf:7c:e2:fc: 20:42:af:50:be:7c:62:c7:c5:45:f5:2f:d1:d2:42: a4:7a:7f:8d:63:46:9d:b8:a8:a9:b6:74:eb:91:79: 5f:0f:06:06:50:3a:52:af:84:95:f4:0d:d8:7d:44: 54:b0:8d:e1:57:41:6e:3f:5c:3e:c9:a3:08:f3:71: f3:88:79:a4:c3:f6:24:4d:df:c6:5d:fa:07:b5:b7: 44:ac:e8:33:4c:ef:38:d8:f9:62:43:a1:10:44:0c: 94:59:08:ff:31:ad:c1:0c:80:bc:47:2f:81:92:a8: 09:b0:65:af:d5:2c:a3:a9:67:97:fe:e2:08:8d:39: 84:45:b5:34:05:78:48:65:97:e4:bc:41:ff:f7:7d: 14:b1:26:ac:bf:75:1f:0e:3a:c6:22:58:60:ff:3a: 8b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:64:A0:75:A5:8D:AB:9D:9E:42:48:1D:2E:60:00:AC:37:76:1B:E0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55652.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.196.0/23 Signature Algorithm: sha256WithRSAEncryption 25:84:5e:19:73:70:21:95:ae:e8:bc:2b:54:8b:78:01:19:be: 9c:43:2a:4e:87:eb:84:76:b5:74:54:4e:91:f9:44:0b:32:ea: 03:c9:4c:b6:0e:5b:8a:4e:35:48:a6:75:39:75:4a:60:6b:06: 27:97:ce:9a:9d:a0:d3:ca:90:f9:cf:91:7c:c6:64:2e:f1:1c: 2f:d5:76:82:2c:68:77:e6:08:c3:57:49:00:16:48:55:4f:fd: 3d:70:75:12:ea:72:f9:2a:b6:46:9e:3f:a3:46:03:38:45:5d: 86:44:ba:0b:ab:9b:ff:b5:4c:07:ec:d9:1b:9b:ec:03:88:b0: 24:b4:37:e0:04:77:9b:ee:0e:79:01:07:bc:03:89:3f:1e:b2: 09:f9:f5:a2:9c:d8:fa:b0:f1:28:b5:50:4f:98:ed:58:51:b0: 87:ed:64:2e:14:44:5c:94:57:6d:79:d2:d7:4c:b4:92:a4:49: ad:0d:6e:76:4c:b9:72:aa:4a:ab:a7:ec:cd:19:55:84:38:0d: c2:c5:7d:2d:a5:1a:b8:92:38:90:a6:c7:48:9d:0e:b3:8f:ab: af:7e:38:e0:43:0a:cd:60:a6:87:07:7b:b0:2e:21:61:1e:33: 5a:13:e1:70:07:1c:9c:f8:6d:e0:a6:28:cf:e3:6f:66:6c:df: f1:31:39:1a -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUT+MXM1yKcocL/Opv6T4tAYj6FcAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxNDAyNTUwMFoX DTI2MDgxMzAzMDAwMFowMzExMC8GA1UEAxMoQkY2NEEwNzVBNThEQUI5RDlFNDI0 ODFEMkU2MDAwQUMzNzc2MUJFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOVl3fXE5vvZnexRm20gi4bQbDFjegQGNL8MvopOjolwGLnVwP1bLRQ/eP+p nPyr39GQbKyOYBtl26dRb4tmvPSagu/qG7BSoMo0AkSzBUp1kYMStxePc1JGlWlK fBHJGwP3GMbPfOL8IEKvUL58YsfFRfUv0dJCpHp/jWNGnbioqbZ065F5Xw8GBlA6 Uq+ElfQN2H1EVLCN4VdBbj9cPsmjCPNx84h5pMP2JE3fxl36B7W3RKzoM0zvONj5 YkOhEEQMlFkI/zGtwQyAvEcvgZKoCbBlr9Uso6lnl/7iCI05hEW1NAV4SGWX5LxB //d9FLEmrL91Hw46xiJYYP86iwcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBS/ZKB1 pY2rnZ5CSB0uYACsN3Yb4DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU1NjUyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxjEMA0GCSqGSIb3DQEBCwUAA4IBAQAlhF4Zc3Ahla7ovCtUi3gB Gb6cQypOh+uEdrV0VE6R+UQLMuoDyUy2DluKTjVIpnU5dUpgawYnl86anaDTypD5 z5F8xmQu8Rwv1XaCLGh35gjDV0kAFkhVT/09cHUS6nL5KrZGnj+jRgM4RV2GRLoL q5v/tUwH7Nkbm+wDiLAktDfgBHeb7g55AQe8A4k/HrIJ+fWinNj6sPEotVBPmO1Y UbCH7WQuFERclFdtedLXTLSSpEmtDW52TLlyqkqrp+zNGVWEOA3CxX0tpRq4kjiQ psdInQ6zj6uvfjjgQwrNYKaHB3uwLiFhHjNaE+FwBxyc+G3gpijP429mbN/xMTka -----END CERTIFICATE-----Generated at Sat Aug 23 08:54:26 2025 by rpki-client