$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: exFF47IhXFNrUrw6HPUoTvZWZdOLZc/bApdp77HMNNg= Subject key identifier: 57:0A:A5:2C:FF:7C:C9:16:3C:D6:22:52:14:CF:77:13:9F:C5:C1:5C Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 6798C403CC63DD50A2FCCBDADEB34B98F136362D Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 02:02:38 +0000 ROA not before: Mon 02 Jun 2025 01:57:38 +0000 ROA not after: Mon 01 Jun 2026 02:02:38 +0000 asID: 131745 IP address blocks: 210.247.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 01:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:98:c4:03:cc:63:dd:50:a2:fc:cb:da:de:b3:4b:98:f1:36:36:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jun 2 01:57:38 2025 GMT Not After : Jun 1 02:02:38 2026 GMT Subject: CN=570AA52CFF7CC9163CD6225214CF77139FC5C15C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:13:93:8e:88:61:97:8d:10:0a:54:a2:24:75: de:88:8c:8d:48:24:ce:0e:90:f4:75:d6:33:8b:e5: b0:ec:97:01:e2:ca:71:ad:2b:72:d6:f9:45:6d:5d: bc:99:3b:f1:b1:d8:76:ea:61:75:fd:6c:72:04:3d: d5:cc:54:e0:7c:76:2f:ef:eb:ae:cb:8b:8c:7d:61: a7:8a:64:6b:5c:b2:1c:25:41:16:36:65:8e:c9:49: ef:8a:3b:90:a0:c5:c5:f7:34:7d:0c:f6:1f:91:f8: 51:57:fe:7a:f2:51:df:d8:84:16:63:94:fd:a3:a6: 91:c3:54:c4:04:fa:74:c1:37:3b:7a:00:c5:c8:0d: 17:9c:5c:5d:53:87:7b:8b:1c:99:56:15:08:e3:84: 2e:48:7c:d5:26:1e:61:ad:85:d4:66:16:15:77:e7: e8:5b:6b:8e:f9:5f:a5:4f:94:a2:24:7a:b9:87:a0: 71:e0:31:37:ce:f2:58:15:00:ef:06:7e:0e:d4:99: 86:fe:83:71:01:78:32:17:3b:b6:9b:6f:6a:dd:f2: 19:e6:67:ab:f0:2b:06:99:d5:ef:48:2e:9c:60:e3: e2:d9:11:3a:6f:20:9b:31:ea:6b:ef:22:c4:9d:c8: 07:bf:67:ad:cb:c4:ec:af:7a:3b:d9:f7:e7:e9:1f: a2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:0A:A5:2C:FF:7C:C9:16:3C:D6:22:52:14:CF:77:13:9F:C5:C1:5C X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.247.0/24 Signature Algorithm: sha256WithRSAEncryption 26:da:1a:8d:87:79:47:f7:2f:6a:e8:07:7d:8e:f7:53:26:ef: f6:73:d7:09:64:5f:65:4d:91:ac:d9:db:7d:b6:ce:2c:12:9e: fe:b6:40:7a:9b:85:60:8a:9a:98:2b:45:5b:8d:b7:4b:8e:7e: 44:73:b3:2c:33:cb:ab:9b:d9:c5:41:0d:84:24:02:80:8f:55: 5e:89:39:7a:a6:54:51:6d:4a:85:2c:b5:f4:c2:2d:85:06:f1: 76:9c:74:60:c4:d5:aa:bc:76:79:71:0c:e8:87:99:46:00:3e: d8:92:61:f2:01:0d:29:3f:4d:42:20:27:87:7d:c5:5a:35:a5: d3:7a:2f:9a:60:6f:ff:cd:9a:48:32:ba:7d:e0:9b:7f:eb:09: ea:38:d6:7f:6a:b3:02:18:00:b2:c9:7c:97:7d:97:a0:1a:83: 36:51:90:35:2b:0c:e0:f8:51:b7:8a:4d:a9:ce:e0:50:0a:ed: 07:3d:7f:77:d0:5d:1f:59:e9:df:b6:c5:0a:4a:d0:64:3a:b8: 23:05:af:c5:58:9e:67:3d:92:95:66:3d:ff:9f:6b:f0:35:a2: 9f:60:0a:eb:79:bb:18:77:77:29:16:ff:5a:54:2b:03:03:f8: b8:a3:70:38:0a:58:1f:31:a6:64:0f:fe:ba:a8:0a:9a:bd:69: 42:ae:50:c4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ5jEA8xj3VCi/Mva3rNLmPE2Ni0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA2MDIwMTU3MzhaFw0yNjA2MDEwMjAyMzhaMDMxMTAvBgNV BAMTKDU3MEFBNTJDRkY3Q0M5MTYzQ0Q2MjI1MjE0Q0Y3NzEzOUZDNUMxNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNE5OOiGGXjRAKVKIkdd6IjI1I JM4OkPR11jOL5bDslwHiynGtK3LW+UVtXbyZO/Gx2HbqYXX9bHIEPdXMVOB8di/v 667Li4x9YaeKZGtcshwlQRY2ZY7JSe+KO5CgxcX3NH0M9h+R+FFX/nryUd/YhBZj lP2jppHDVMQE+nTBNzt6AMXIDRecXF1Th3uLHJlWFQjjhC5IfNUmHmGthdRmFhV3 5+hba475X6VPlKIkermHoHHgMTfO8lgVAO8Gfg7UmYb+g3EBeDIXO7abb2rd8hnm Z6vwKwaZ1e9ILpxg4+LZETpvIJsx6mvvIsSdyAe/Z63LxOyvejvZ9+fpH6J1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVwqlLP98yRY81iJSFM93E5/FwVwwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/cwDQYJ KoZIhvcNAQELBQADggEBACbaGo2HeUf3L2roB32O91Mm7/Zz1wlkX2VNkazZ2322 ziwSnv62QHqbhWCKmpgrRVuNt0uOfkRzsywzy6ub2cVBDYQkAoCPVV6JOXqmVFFt SoUstfTCLYUG8XacdGDE1aq8dnlxDOiHmUYAPtiSYfIBDSk/TUIgJ4d9xVo1pdN6 L5pgb//Nmkgyun3gm3/rCeo41n9qswIYALLJfJd9l6AagzZRkDUrDOD4UbeKTanO 4FAK7Qc9f3fQXR9Z6d+2xQpK0GQ6uCMFr8VYnmc9kpVmPf+fa/A1op9gCut5uxh3 dykW/1pUKwMD+LijcDgKWB8xpmQP/rqoCpq9aUKuUMQ= -----END CERTIFICATE-----Generated at Fri Oct 24 22:32:36 2025 by rpki-client