$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: 6Xt6BmWqNlJ2rgGnrh/8HdtB+svaXm043WhGiQr8wxY= Subject key identifier: 4F:D0:7E:BB:6F:49:AC:A2:3A:F9:8A:17:D3:CD:B0:96:95:25:56:58 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 60DA3583E566FE4F10653D3820F14F70988BDFA7 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 02:02:38 +0000 ROA not before: Mon 02 Jun 2025 01:57:38 +0000 ROA not after: Mon 01 Jun 2026 02:02:38 +0000 asID: 131745 IP address blocks: 210.247.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:da:35:83:e5:66:fe:4f:10:65:3d:38:20:f1:4f:70:98:8b:df:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jun 2 01:57:38 2025 GMT Not After : Jun 1 02:02:38 2026 GMT Subject: CN=4FD07EBB6F49ACA23AF98A17D3CDB09695255658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ef:95:d0:ef:de:6b:00:40:6b:51:5a:75:ae: 97:3e:f6:92:0e:64:3f:db:7a:a4:75:8e:38:25:11: b3:09:ca:2d:a1:71:36:c5:ac:cb:45:10:0b:bf:4d: 01:d5:21:a0:8c:66:9f:46:69:bd:22:b4:7a:93:7a: cc:c5:60:49:73:b7:0e:40:cc:66:14:43:d2:b0:ce: 4d:16:20:21:43:de:9c:79:a0:37:00:f5:24:9d:7f: a9:c3:61:e6:14:a1:d1:6b:a9:4e:b6:24:56:67:bf: ac:12:6b:2e:89:63:66:62:7b:02:bf:f3:1c:ad:87: 92:09:ea:65:91:7d:af:bb:16:95:d4:5c:be:48:2b: f8:e6:5d:3a:26:05:03:a8:01:b9:9e:c8:b9:a3:da: a9:c6:37:fd:14:59:e5:d3:5d:7f:30:7b:5e:89:d6: f0:f2:85:16:92:7b:f0:9e:5d:b6:69:33:ce:9f:81: 19:69:f1:69:d4:aa:ae:9e:e7:91:7a:c5:99:ab:cd: ef:5f:69:04:da:72:81:e6:09:2e:92:5b:31:b8:1a: a5:f0:d3:24:ff:02:f0:97:76:a0:e7:f3:bf:31:a9: cc:71:b9:50:bb:3e:e5:fc:77:02:b8:63:6f:33:f2: 0f:d9:46:eb:42:3c:58:80:b9:83:34:e1:cd:9a:29: c0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D0:7E:BB:6F:49:AC:A2:3A:F9:8A:17:D3:CD:B0:96:95:25:56:58 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.240.0/24 Signature Algorithm: sha256WithRSAEncryption ba:67:01:14:e3:db:54:77:2b:a3:ed:4c:65:00:58:8b:8e:4f: 42:d4:54:8f:9d:23:9a:b3:c5:1a:1a:53:c1:25:36:20:9e:68: 87:98:8d:84:eb:f4:1b:99:1b:eb:6c:9c:d0:29:7a:03:f8:6e: c3:11:53:68:56:2a:4b:d8:ec:5f:08:ce:2b:b1:f9:f0:d3:0e: cc:3a:41:86:b4:91:a7:88:3f:62:67:34:db:d7:2f:1c:33:08: ff:21:bc:65:07:d3:d2:61:62:3a:a2:b2:3f:ad:ea:c6:ae:ef: bf:86:9f:55:cd:4a:f6:4f:7a:b1:a3:dd:34:c5:d4:bf:ad:02: 2b:a3:f9:dc:e5:df:da:45:27:06:58:17:7e:cd:37:b2:92:d2: 9b:95:b7:7a:e0:69:a3:65:b6:0b:9b:7a:8c:b1:6a:76:bb:bf: 2f:99:dc:e1:85:c0:c3:c0:ad:6d:27:0c:4d:c0:9f:dd:e3:3c: 2f:06:7c:d6:bb:31:ce:15:f9:c9:b7:8d:23:d6:da:69:d8:11: d8:e3:a9:d0:66:48:10:a4:19:19:e4:c1:64:7d:3d:c5:7e:30: 2e:87:8f:e8:b5:f2:c7:df:a5:25:b3:a2:fb:3c:86:68:d3:db: 07:6d:db:55:8b:4c:aa:99:26:31:d0:06:bf:80:93:78:37:1f: a5:68:bc:76 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYNo1g+Vm/k8QZT04IPFPcJiL36cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA2MDIwMTU3MzhaFw0yNjA2MDEwMjAyMzhaMDMxMTAvBgNV BAMTKDRGRDA3RUJCNkY0OUFDQTIzQUY5OEExN0QzQ0RCMDk2OTUyNTU2NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR75XQ795rAEBrUVp1rpc+9pIO ZD/beqR1jjglEbMJyi2hcTbFrMtFEAu/TQHVIaCMZp9Gab0itHqTeszFYElztw5A zGYUQ9Kwzk0WICFD3px5oDcA9SSdf6nDYeYUodFrqU62JFZnv6wSay6JY2ZiewK/ 8xyth5IJ6mWRfa+7FpXUXL5IK/jmXTomBQOoAbmeyLmj2qnGN/0UWeXTXX8we16J 1vDyhRaSe/CeXbZpM86fgRlp8WnUqq6e55F6xZmrze9faQTacoHmCS6SWzG4GqXw 0yT/AvCXdqDn878xqcxxuVC7PuX8dwK4Y28z8g/ZRutCPFiAuYM04c2aKcBDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUT9B+u29JrKI6+YoX082wlpUlVlgwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/AwDQYJ KoZIhvcNAQELBQADggEBALpnARTj21R3K6PtTGUAWIuOT0LUVI+dI5qzxRoaU8El NiCeaIeYjYTr9BuZG+tsnNApegP4bsMRU2hWKkvY7F8Iziux+fDTDsw6QYa0kaeI P2JnNNvXLxwzCP8hvGUH09JhYjqisj+t6sau77+Gn1XNSvZPerGj3TTF1L+tAiuj +dzl39pFJwZYF37NN7KS0puVt3rgaaNltgubeoyxana7vy+Z3OGFwMPArW0nDE3A n93jPC8GfNa7Mc4V+cm3jSPW2mnYEdjjqdBmSBCkGRnkwWR9PcV+MC6Hj+i18sff pSWzovs8hmjT2wdt21WLTKqZJjHQBr+Ak3g3H6VovHY= -----END CERTIFICATE-----Generated at Thu Jun 5 19:21:12 2025 by rpki-client