$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: 4G4aZfFUqaHECTTNNiBKb2BiuB7CRoLOY6G0O5P5Xsk= Subject key identifier: 9D:70:AB:B5:C6:7B:6B:37:D0:5F:3D:90:9D:70:34:4C:0C:58:DC:DC Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 0F879E5CDD3E23F72AB82D906B9B1239CDB65580 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 02:02:37 +0000 ROA not before: Mon 02 Jun 2025 01:57:37 +0000 ROA not after: Mon 01 Jun 2026 02:02:37 +0000 asID: 131745 IP address blocks: 210.247.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:87:9e:5c:dd:3e:23:f7:2a:b8:2d:90:6b:9b:12:39:cd:b6:55:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jun 2 01:57:37 2025 GMT Not After : Jun 1 02:02:37 2026 GMT Subject: CN=9D70ABB5C67B6B37D05F3D909D70344C0C58DCDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:5e:26:7c:1a:35:c9:6e:17:3c:6a:2b:7e: c0:61:94:64:25:40:69:fc:81:c0:72:df:d8:36:cc: 6e:fb:01:c4:c7:8b:a6:f7:4b:f2:51:a4:df:47:58: db:73:79:41:06:5c:14:08:6c:ff:67:eb:b3:34:44: 18:97:a7:b9:5c:87:94:37:94:7d:79:8e:73:cd:26: b7:35:b4:bc:a8:90:bf:8a:58:5f:df:8d:4c:4c:b2: cc:72:74:95:68:e9:36:1a:91:ae:b5:a5:9f:d2:90: 73:1a:59:db:17:52:f0:40:e3:f4:f2:dd:db:5d:d1: 5f:2a:99:36:cb:50:56:e8:9f:1c:83:7a:0d:09:59: 28:71:33:2b:7d:91:b0:ce:ea:c9:d6:c6:25:ed:29: 83:dc:71:b4:c3:53:ca:be:f9:a0:fb:42:66:dc:e8: 9e:fd:18:ab:f9:f0:18:9f:db:aa:08:8a:d7:f8:d9: 73:eb:ce:0e:5f:4e:95:cf:d9:9e:0f:aa:81:63:fc: 97:72:c4:1a:fc:a5:4f:89:be:25:7a:47:50:aa:f0: e8:00:76:c3:eb:87:f1:42:ff:e7:67:c2:9b:3b:5d: b6:eb:34:ee:af:6e:e1:60:83:f5:28:9b:47:33:02: 33:ab:67:59:5c:21:5d:78:ca:6e:2d:eb:ab:08:64: 61:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:70:AB:B5:C6:7B:6B:37:D0:5F:3D:90:9D:70:34:4C:0C:58:DC:DC X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.249.0/24 Signature Algorithm: sha256WithRSAEncryption 71:ab:3d:9e:46:35:d6:05:ae:64:92:b9:b3:46:50:13:ae:8e: 91:9a:10:a7:27:49:cd:b0:8a:1f:d3:40:0c:3d:c6:64:f5:2e: d4:23:39:6a:8c:ef:d2:a2:14:5e:bf:d0:40:b9:cb:af:cd:d9: b5:40:1d:15:33:51:03:62:ac:ae:fd:f9:f2:66:68:8d:c3:58: 49:f2:2b:d6:c4:0c:31:c9:93:68:c8:89:4b:c0:34:9a:61:da: d2:db:b1:5d:cb:09:1b:37:38:41:74:56:14:e0:34:db:82:11: c6:58:fc:76:ca:5f:48:5b:a8:98:92:fd:35:09:b5:57:b8:2e: e4:9b:46:35:67:a4:eb:51:dd:70:c9:85:fe:c4:c0:37:78:5b: b2:59:b0:99:c0:55:ae:15:59:59:7a:27:76:47:48:2e:27:02: d3:81:d5:11:b9:9b:d3:ec:0a:a7:3e:d5:a9:3b:de:f0:52:4b: e7:62:7d:32:89:2d:f0:ef:4a:44:75:2c:6c:c8:8c:f2:c7:fc: a2:d6:79:dd:35:3d:b5:67:d7:66:f4:1c:67:c9:9a:41:ab:f9: 12:10:ca:a4:16:7b:03:a6:3c:fb:99:d9:ca:e7:be:4e:35:e1: 71:d0:8e:f3:c0:6e:86:89:39:f6:6a:f6:b6:90:82:0f:9d:2c: 10:07:b7:be -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUD4eeXN0+I/cquC2Qa5sSOc22VYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA2MDIwMTU3MzdaFw0yNjA2MDEwMjAyMzdaMDMxMTAvBgNV BAMTKDlENzBBQkI1QzY3QjZCMzdEMDVGM0Q5MDlENzAzNDRDMEM1OERDREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOWl4mfBo1yW4XPGorfsBhlGQl QGn8gcBy39g2zG77AcTHi6b3S/JRpN9HWNtzeUEGXBQIbP9n67M0RBiXp7lch5Q3 lH15jnPNJrc1tLyokL+KWF/fjUxMssxydJVo6TYaka61pZ/SkHMaWdsXUvBA4/Ty 3dtd0V8qmTbLUFbonxyDeg0JWShxMyt9kbDO6snWxiXtKYPccbTDU8q++aD7Qmbc 6J79GKv58Bif26oIitf42XPrzg5fTpXP2Z4PqoFj/JdyxBr8pU+JviV6R1Cq8OgA dsPrh/FC/+dnwps7XbbrNO6vbuFgg/Uom0czAjOrZ1lcIV14ym4t66sIZGE7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnXCrtcZ7azfQXz2QnXA0TAxY3NwwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/kwDQYJ KoZIhvcNAQELBQADggEBAHGrPZ5GNdYFrmSSubNGUBOujpGaEKcnSc2wih/TQAw9 xmT1LtQjOWqM79KiFF6/0EC5y6/N2bVAHRUzUQNirK79+fJmaI3DWEnyK9bEDDHJ k2jIiUvANJph2tLbsV3LCRs3OEF0VhTgNNuCEcZY/HbKX0hbqJiS/TUJtVe4LuSb RjVnpOtR3XDJhf7EwDd4W7JZsJnAVa4VWVl6J3ZHSC4nAtOB1RG5m9PsCqc+1ak7 3vBSS+difTKJLfDvSkR1LGzIjPLH/KLWed01PbVn12b0HGfJmkGr+RIQyqQWewOm PPuZ2crnvk414XHQjvPAboaJOfZq9raQgg+dLBAHt74= -----END CERTIFICATE-----Generated at Thu Jun 5 19:20:57 2025 by rpki-client