$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234382e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234382e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: fEAII0Y1Y5OrJRrreDOapy9Xzh9eNqz/FB7+aD7tXRA= Subject key identifier: D0:4C:D0:2B:62:2B:D9:54:DF:8E:DB:B1:9D:C5:B2:79:A5:C7:CA:AC Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 560A368FE7A9B4D35719AF7CD68BC61E7F90D1BC Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234382e302f32342d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 02:02:38 +0000 ROA not before: Mon 02 Jun 2025 01:57:38 +0000 ROA not after: Mon 01 Jun 2026 02:02:38 +0000 asID: 131745 IP address blocks: 210.247.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:0a:36:8f:e7:a9:b4:d3:57:19:af:7c:d6:8b:c6:1e:7f:90:d1:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jun 2 01:57:38 2025 GMT Not After : Jun 1 02:02:38 2026 GMT Subject: CN=D04CD02B622BD954DF8EDBB19DC5B279A5C7CAAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d5:bf:1e:6b:3c:b6:99:73:6f:6f:fa:31:a2: 84:3d:1f:01:a7:f5:6a:05:64:4d:38:04:15:c7:b8: db:83:45:21:3c:d8:e5:87:40:47:be:c5:58:cd:d7: 41:6b:39:b0:55:c9:20:18:c2:da:9c:41:21:55:92: 75:f0:41:ec:be:0d:a3:54:9e:d4:f2:71:53:c5:94: f8:a8:2a:4a:64:01:9d:4e:af:0c:64:79:44:e6:ea: c0:8e:13:3d:52:c7:88:c5:88:65:63:40:17:5f:63: b5:a3:b6:6e:57:f3:fd:d2:d0:d6:e7:d6:b4:b7:c1: 16:0b:6e:c3:f3:32:1b:cb:90:9a:5b:fd:50:c1:65: 74:d3:e7:ea:65:81:65:24:1c:70:22:f3:12:83:b1: 71:a6:1f:ec:e3:bd:aa:f5:80:d1:95:7e:a6:55:23: 80:a4:07:6b:ef:fb:8b:0a:54:fd:26:13:da:31:78: c9:6a:cf:a7:c4:b6:b9:fc:ce:e1:9a:73:c9:aa:14: 39:13:ab:7a:df:2a:88:95:e4:7e:60:5a:00:40:fe: 8e:30:87:b0:99:3e:73:4c:89:37:1b:19:7c:62:27: 03:b5:51:52:6f:4c:f6:4e:64:14:c8:40:aa:6d:79: ce:c0:51:dd:6c:93:df:81:0a:02:c2:db:b7:80:5d: 28:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4C:D0:2B:62:2B:D9:54:DF:8E:DB:B1:9D:C5:B2:79:A5:C7:CA:AC X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234382e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.248.0/24 Signature Algorithm: sha256WithRSAEncryption a2:d1:29:0f:8a:30:35:c2:f3:d8:b4:d3:9f:22:84:22:13:30: 43:b7:df:54:b0:f9:df:74:4c:35:27:e2:0a:88:d3:c5:19:f1: 8b:7f:89:d6:56:90:98:12:ee:08:f0:60:40:de:9f:39:62:c3: 58:59:20:3b:7f:6f:77:ba:d0:33:7d:91:a1:7a:3d:a1:c0:8b: 81:76:68:76:3b:21:4a:c4:f4:5f:68:89:c3:ef:a8:08:da:c7: be:92:8f:b8:79:52:d0:8b:21:6e:1e:1c:e3:34:67:8d:ae:d4: ff:7e:c1:4a:bc:11:1f:1e:db:29:82:3a:58:dc:1b:6a:20:87: 0a:f8:20:44:ac:97:de:a9:cb:09:7e:e9:85:20:7f:f9:a5:0c: b3:63:e0:79:45:2d:88:96:8b:ba:95:67:8b:4e:07:bb:36:d3: 63:e3:e7:dc:0d:63:26:ad:03:e2:99:03:a2:ea:dc:9e:bd:04: 4c:97:b7:83:78:e1:f4:85:71:a9:8d:5d:e1:e4:b6:d5:f1:7b: e3:97:f4:3b:58:83:1b:84:4f:e4:89:f1:40:7c:01:6a:d7:60: f9:fc:46:70:1d:59:99:12:ff:45:68:c7:74:a1:38:8a:c4:dc: f8:d8:70:41:8a:8b:8b:3e:df:f3:ed:61:a7:a1:e2:6d:9a:ff: 19:9d:ee:a0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVgo2j+eptNNXGa981ovGHn+Q0bwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA2MDIwMTU3MzhaFw0yNjA2MDEwMjAyMzhaMDMxMTAvBgNV BAMTKEQwNENEMDJCNjIyQkQ5NTRERjhFREJCMTlEQzVCMjc5QTVDN0NBQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk1b8eazy2mXNvb/oxooQ9HwGn 9WoFZE04BBXHuNuDRSE82OWHQEe+xVjN10FrObBVySAYwtqcQSFVknXwQey+DaNU ntTycVPFlPioKkpkAZ1OrwxkeUTm6sCOEz1Sx4jFiGVjQBdfY7Wjtm5X8/3S0Nbn 1rS3wRYLbsPzMhvLkJpb/VDBZXTT5+plgWUkHHAi8xKDsXGmH+zjvar1gNGVfqZV I4CkB2vv+4sKVP0mE9oxeMlqz6fEtrn8zuGac8mqFDkTq3rfKoiV5H5gWgBA/o4w h7CZPnNMiTcbGXxiJwO1UVJvTPZOZBTIQKptec7AUd1sk9+BCgLC27eAXSjfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0EzQK2Ir2VTfjtuxncWyeaXHyqwwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/gwDQYJ KoZIhvcNAQELBQADggEBAKLRKQ+KMDXC89i0058ihCITMEO331Sw+d90TDUn4gqI 08UZ8Yt/idZWkJgS7gjwYEDenzliw1hZIDt/b3e60DN9kaF6PaHAi4F2aHY7IUrE 9F9oicPvqAjax76Sj7h5UtCLIW4eHOM0Z42u1P9+wUq8ER8e2ymCOljcG2oghwr4 IESsl96pywl+6YUgf/mlDLNj4HlFLYiWi7qVZ4tOB7s202Pj59wNYyatA+KZA6Lq 3J69BEyXt4N44fSFcamNXeHkttXxe+OX9DtYgxuET+SJ8UB8AWrXYPn8RnAdWZkS /0Vox3ShOIrE3PjYcEGKi4s+3/PtYaeh4m2a/xmd7qA= -----END CERTIFICATE-----Generated at Thu Jun 5 19:21:11 2025 by rpki-client