$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: kHHBOgtxtA2O4NSmNMgW2PeMrc26bvv8HtnzwONr0bg= Subject key identifier: AC:D6:90:54:B8:23:99:52:57:5D:0B:DE:98:9C:27:51:5B:11:40:7A Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 285E8E16B95C35D6EA3B2638013C9372731870FE Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 02:02:39 +0000 ROA not before: Mon 02 Jun 2025 01:57:39 +0000 ROA not after: Mon 01 Jun 2026 02:02:39 +0000 asID: 131745 IP address blocks: 210.247.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:5e:8e:16:b9:5c:35:d6:ea:3b:26:38:01:3c:93:72:73:18:70:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jun 2 01:57:39 2025 GMT Not After : Jun 1 02:02:39 2026 GMT Subject: CN=ACD69054B8239952575D0BDE989C27515B11407A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a0:df:53:a8:ab:07:15:c1:2f:cc:6f:9f:54: 6c:19:a1:88:ae:bf:db:c7:02:c4:7b:93:bd:f2:55: 92:74:fa:f7:3f:cf:da:d2:7b:71:33:83:29:5c:69: 56:b0:75:61:c9:fa:86:b7:68:31:82:45:3c:69:81: d4:2a:c7:90:cf:04:33:d7:1f:35:18:84:dd:22:f2: 80:c4:29:68:b7:54:a7:fd:b1:ce:97:a6:47:29:e8: 31:09:89:5d:2e:a5:99:00:1d:e5:d9:15:ff:1c:65: e8:d7:c7:bf:22:a8:c7:a1:42:3e:2b:ed:5f:9f:c1: 3f:31:75:d4:d4:41:97:4f:d5:4d:35:87:13:b3:35: 75:6a:5d:c4:00:12:e4:eb:d8:ab:aa:e9:f6:e2:f9: e5:1a:a8:0d:c7:89:84:9a:b5:54:65:18:dc:c2:a5: 1c:f8:47:08:74:1c:6f:46:05:d9:f2:08:24:27:46: 06:c9:5e:2c:03:ae:28:17:70:2e:18:74:4f:93:ca: 52:75:ab:49:55:d7:56:49:cb:38:79:1f:f5:d4:03: 66:71:34:10:5c:f5:56:24:48:c0:76:b2:95:bc:d8: fc:f7:72:53:ee:50:a9:da:69:4a:8d:2b:14:66:7b: b3:8a:70:27:e1:15:3d:58:38:d6:2d:7b:e0:40:95: 8c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D6:90:54:B8:23:99:52:57:5D:0B:DE:98:9C:27:51:5B:11:40:7A X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.245.0/24 Signature Algorithm: sha256WithRSAEncryption 73:35:e7:32:39:93:77:af:80:df:01:75:96:96:c9:79:fd:13: 8d:07:0b:ce:70:ac:62:ba:c6:a7:af:e3:f2:4c:2d:04:25:9e: e5:1e:9f:ac:81:16:7e:6d:de:3d:bc:b2:77:41:19:d7:f5:19: 1e:dc:fe:c2:da:70:51:47:84:f8:1a:0e:62:b6:71:16:21:7e: cc:fd:bc:62:63:7a:1f:e0:f0:30:c0:21:7d:aa:1b:53:e1:85: a2:ca:2d:b5:5f:4e:28:bc:77:1b:eb:94:2a:01:61:ef:16:e9: 67:18:eb:34:66:c7:21:c6:d1:56:d1:8a:9d:8a:8b:90:f6:d7: 04:8b:ce:32:10:1f:d2:cc:56:b7:eb:f3:d4:6c:c2:e9:23:6d: 93:ae:54:39:9e:e1:23:df:5d:58:bc:e7:73:7e:d9:19:a1:cf: 9c:c8:db:dc:4d:ed:d3:c4:e7:b2:dc:f7:d5:c3:f7:23:bc:30: a4:f5:d1:ff:dd:e8:31:08:05:27:e0:6f:5c:3f:8f:df:38:d2: 7a:2b:87:5c:df:a0:f2:4b:84:8d:8f:c6:b4:c7:a5:4d:40:38: 2e:e9:08:ec:c5:f4:ef:49:65:44:74:29:74:f3:d0:dd:70:c6: 09:bb:48:28:e0:c6:5c:37:04:27:1f:32:5d:b1:46:93:e1:2e: ec:e9:e3:3b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKF6OFrlcNdbqOyY4ATyTcnMYcP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA2MDIwMTU3MzlaFw0yNjA2MDEwMjAyMzlaMDMxMTAvBgNV BAMTKEFDRDY5MDU0QjgyMzk5NTI1NzVEMEJERTk4OUMyNzUxNUIxMTQwN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuoN9TqKsHFcEvzG+fVGwZoYiu v9vHAsR7k73yVZJ0+vc/z9rSe3EzgylcaVawdWHJ+oa3aDGCRTxpgdQqx5DPBDPX HzUYhN0i8oDEKWi3VKf9sc6Xpkcp6DEJiV0upZkAHeXZFf8cZejXx78iqMehQj4r 7V+fwT8xddTUQZdP1U01hxOzNXVqXcQAEuTr2Kuq6fbi+eUaqA3HiYSatVRlGNzC pRz4Rwh0HG9GBdnyCCQnRgbJXiwDrigXcC4YdE+TylJ1q0lV11ZJyzh5H/XUA2Zx NBBc9VYkSMB2spW82Pz3clPuUKnaaUqNKxRme7OKcCfhFT1YONYte+BAlYzTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrNaQVLgjmVJXXQvemJwnUVsRQHowHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/UwDQYJ KoZIhvcNAQELBQADggEBAHM15zI5k3evgN8BdZaWyXn9E40HC85wrGK6xqev4/JM LQQlnuUen6yBFn5t3j28sndBGdf1GR7c/sLacFFHhPgaDmK2cRYhfsz9vGJjeh/g 8DDAIX2qG1PhhaLKLbVfTii8dxvrlCoBYe8W6WcY6zRmxyHG0VbRip2Ki5D21wSL zjIQH9LMVrfr89RswukjbZOuVDme4SPfXVi853N+2Rmhz5zI29xN7dPE57Lc99XD 9yO8MKT10f/d6DEIBSfgb1w/j9840norh1zfoPJLhI2PxrTHpU1AOC7pCOzF9O9J ZUR0KXTz0N1wxgm7SCjgxlw3BCcfMl2xRpPhLuzp4zs= -----END CERTIFICATE-----Generated at Thu Jun 5 19:21:10 2025 by rpki-client