$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234322e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234322e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: D991UEHbv0mT0xjDcSLCu5iaTm6ib67YwDcjKkL5vPw= Subject key identifier: 4D:D9:5D:7D:C9:81:77:A7:4D:A9:7B:94:71:83:F7:19:C2:55:1C:39 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 53DE2EF8B27B3EFD3B7AF89C569741293EB1715A Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234322e302f32342d3234203d3e20313331373435.roa Signing time: Tue 15 Jul 2025 04:02:20 +0000 ROA not before: Tue 15 Jul 2025 03:57:20 +0000 ROA not after: Tue 14 Jul 2026 04:02:20 +0000 asID: 131745 IP address blocks: 210.247.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 18:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:de:2e:f8:b2:7b:3e:fd:3b:7a:f8:9c:56:97:41:29:3e:b1:71:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jul 15 03:57:20 2025 GMT Not After : Jul 14 04:02:20 2026 GMT Subject: CN=4DD95D7DC98177A74DA97B947183F719C2551C39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:10:e9:81:e5:83:7b:51:f4:52:bf:81:13:3d: 4a:c9:6b:2e:20:48:ec:e9:e4:54:68:e4:c7:37:a2: ae:60:0c:3e:ee:b4:16:c0:42:f8:24:65:f1:55:10: 68:7c:99:e5:19:3e:21:3a:d9:8a:b6:0b:78:dc:a1: 80:8b:6c:d8:c0:b3:7c:60:a1:ef:70:41:de:ff:9c: 2f:1b:42:3c:89:33:91:46:b7:85:85:de:e7:25:a0: a0:9f:7d:a0:6d:b8:ca:ca:7d:1b:23:97:31:b1:c0: da:ba:87:f0:45:9b:7a:c1:00:76:a7:20:aa:ee:20: 1d:c9:a8:1f:07:89:bf:75:11:08:c3:be:36:71:d2: 49:db:6a:ec:7c:7b:01:67:b1:aa:82:ac:e8:a4:d8: 80:d1:06:60:8a:02:cb:12:cc:dd:53:83:1c:0a:94: 7d:a0:1d:33:5f:f3:80:f8:87:ee:f7:66:e7:da:51: f9:79:be:61:04:e0:f4:81:f8:2c:dd:84:7e:42:6d: eb:ba:5d:10:a2:ec:ca:ec:b9:3e:7d:84:03:83:11: 83:db:9d:c3:b1:87:20:15:b7:95:de:97:c5:f9:bd: ef:c0:b7:ad:78:91:42:fd:88:73:2f:db:cc:79:98: ca:b7:1a:ba:20:26:32:90:cd:20:6c:1e:c1:ba:b9: 0d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D9:5D:7D:C9:81:77:A7:4D:A9:7B:94:71:83:F7:19:C2:55:1C:39 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234322e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.242.0/24 Signature Algorithm: sha256WithRSAEncryption 69:3c:45:b0:fd:c5:46:9c:1b:bf:71:49:53:27:38:9e:63:76: 4e:89:64:ef:57:d0:5d:9e:47:aa:33:5c:0c:22:74:1a:8f:0e: 21:84:0d:7e:93:ac:fa:3e:9e:cb:61:b7:de:d3:80:9e:9a:a9: 76:96:27:78:c8:78:90:51:a2:41:38:09:5b:b5:6d:d1:b1:a2: 2d:02:17:bd:ed:c7:4b:d6:b2:0a:9d:de:d1:d6:92:b5:da:a5: fa:8e:de:01:d0:78:b3:f9:83:78:b5:73:9c:0e:db:35:ae:0f: 0f:a8:e1:29:22:da:3e:f6:df:ed:53:90:7d:7c:ad:ee:de:d6: fd:b6:b8:a9:6c:82:3b:70:11:e9:65:94:bf:0c:a8:fe:d7:03: 1e:2d:19:25:74:6d:f3:cc:c6:24:2b:09:39:68:80:99:a3:73: 2b:58:21:4a:50:cf:ab:61:fc:03:49:25:cc:28:d4:fd:95:2d: 9f:3b:fe:0b:8b:95:b3:6a:c8:d5:e4:ce:ab:9e:5c:a7:e4:da: 50:b3:fa:8e:b3:99:52:07:76:cd:bf:16:65:07:04:20:4c:a5: 5f:58:dc:56:68:2d:2c:44:3d:a3:e2:cb:86:4b:c4:fd:50:72: d1:76:45:17:cb:0f:56:f1:5d:f2:b4:e3:c7:6c:e9:6e:ce:b6: ca:53:98:77 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU94u+LJ7Pv07evicVpdBKT6xcVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA3MTUwMzU3MjBaFw0yNjA3MTQwNDAyMjBaMDMxMTAvBgNV BAMTKDRERDk1RDdEQzk4MTc3QTc0REE5N0I5NDcxODNGNzE5QzI1NTFDMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2EOmB5YN7UfRSv4ETPUrJay4g SOzp5FRo5Mc3oq5gDD7utBbAQvgkZfFVEGh8meUZPiE62Yq2C3jcoYCLbNjAs3xg oe9wQd7/nC8bQjyJM5FGt4WF3ucloKCffaBtuMrKfRsjlzGxwNq6h/BFm3rBAHan IKruIB3JqB8Hib91EQjDvjZx0knbaux8ewFnsaqCrOik2IDRBmCKAssSzN1TgxwK lH2gHTNf84D4h+73ZufaUfl5vmEE4PSB+CzdhH5Cbeu6XRCi7MrsuT59hAODEYPb ncOxhyAVt5Xel8X5ve/At614kUL9iHMv28x5mMq3GrogJjKQzSBsHsG6uQ0PAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTdldfcmBd6dNqXuUcYP3GcJVHDkwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/IwDQYJ KoZIhvcNAQELBQADggEBAGk8RbD9xUacG79xSVMnOJ5jdk6JZO9X0F2eR6ozXAwi dBqPDiGEDX6TrPo+nstht97TgJ6aqXaWJ3jIeJBRokE4CVu1bdGxoi0CF73tx0vW sgqd3tHWkrXapfqO3gHQeLP5g3i1c5wO2zWuDw+o4Ski2j723+1TkH18re7e1v22 uKlsgjtwEelllL8MqP7XAx4tGSV0bfPMxiQrCTlogJmjcytYIUpQz6th/ANJJcwo 1P2VLZ87/guLlbNqyNXkzqueXKfk2lCz+o6zmVIHds2/FmUHBCBMpV9Y3FZoLSxE PaPiy4ZLxP1QctF2RRfLD1bxXfK048ds6W7OtspTmHc= -----END CERTIFICATE-----Generated at Mon Jul 21 23:44:57 2025 by rpki-client