$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: UaBtRg3Pe7eF6qAh+L1uU3ib10+G/2GiDGDbWzNrJJQ= Subject key identifier: 7E:E4:7D:EC:0B:6E:5C:D9:F3:5C:36:67:71:7D:32:16:B9:FD:FA:05 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 53B53F7209DA3922C5491C5199D5BDE89B6C45AE Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 02:02:38 +0000 ROA not before: Mon 02 Jun 2025 01:57:38 +0000 ROA not after: Mon 01 Jun 2026 02:02:38 +0000 asID: 131745 IP address blocks: 210.247.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 01:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b5:3f:72:09:da:39:22:c5:49:1c:51:99:d5:bd:e8:9b:6c:45:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jun 2 01:57:38 2025 GMT Not After : Jun 1 02:02:38 2026 GMT Subject: CN=7EE47DEC0B6E5CD9F35C3667717D3216B9FDFA05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ea:dd:5c:35:93:a2:a4:ae:a9:02:73:c3:50: ac:48:b8:44:ef:f4:f4:cf:d3:e1:12:17:e3:69:70: cb:73:a6:de:86:fc:4f:03:7a:3d:d2:cf:56:25:82: 44:c4:f1:e6:9b:a8:05:0d:86:d6:fd:81:24:29:d5: 71:f3:88:f1:1b:a3:25:07:18:70:1b:ae:1c:fe:c5: 8e:e4:07:f9:bd:4e:73:ae:84:72:3a:e2:64:d8:87: 0a:6a:35:8d:7f:6a:42:dc:8a:de:9e:a9:aa:7c:e5: f6:75:66:37:bb:5b:3f:cd:54:0b:73:52:28:b6:a5: b4:fc:8f:ca:25:96:cd:18:73:de:b9:fa:e4:d0:70: a5:b4:cc:83:00:47:9d:d4:88:2d:7a:12:a7:31:c3: fb:ba:a8:84:ab:eb:e7:a0:a1:26:44:c8:f3:c5:15: ca:af:34:ba:42:88:f3:1a:9e:ac:80:61:71:9e:48: df:00:d1:b4:24:d7:ad:7d:c2:2f:f1:d7:a7:b3:48: ad:c6:66:48:5c:31:8e:8f:9e:47:bc:ef:0f:f2:b3: 1d:3d:42:9e:98:2c:40:b2:62:ae:ea:24:1b:30:66: 2a:59:bc:84:96:ba:a7:e3:3b:8d:43:88:7e:f5:d1: b1:13:d3:e9:f5:37:1a:5a:77:18:68:82:4b:0b:24: ce:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E4:7D:EC:0B:6E:5C:D9:F3:5C:36:67:71:7D:32:16:B9:FD:FA:05 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235302e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.250.0/24 Signature Algorithm: sha256WithRSAEncryption 19:de:7d:e7:bc:3f:63:db:b2:0d:84:94:b8:65:e3:41:c8:07: bd:e5:5b:d2:98:b1:bc:e4:22:38:18:99:95:ca:56:69:0a:2e: 89:69:26:43:34:bb:a7:25:c9:5a:a3:11:b0:63:37:26:16:08: 30:2d:f2:d7:2b:58:72:c0:18:99:db:39:5b:89:0a:17:61:51: df:be:8b:c7:c4:4b:7d:d8:1a:eb:b0:a3:bf:dc:16:a1:af:69: d4:0b:e1:e5:ec:22:d7:d4:6e:fc:41:46:72:14:7e:a2:09:67: ba:4e:d6:f3:89:c5:4f:b2:92:4e:fc:a1:b3:71:8b:ba:7a:4a: 37:3c:06:a4:8f:61:d2:dd:98:d9:76:4c:42:f4:64:87:c5:b8: f9:5a:cc:ae:03:60:be:10:d6:7b:23:56:9d:07:83:62:be:55: 4f:8e:9e:5e:d7:6b:d5:0a:97:92:c7:33:62:34:9a:22:ed:66: 68:cc:d5:d8:23:4c:33:b0:8d:f4:2e:9f:70:ad:25:45:c5:81: fd:e1:35:b2:40:a1:13:60:1e:f0:f8:ce:0a:7d:b4:06:2e:77: e8:2c:cb:64:a0:bf:92:72:c5:2b:7c:91:5b:3b:a9:d7:10:8a: ec:dc:83:4c:f6:0f:6a:51:7d:4a:50:7b:38:65:2e:f2:52:05: 6b:52:a1:21 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUU7U/cgnaOSLFSRxRmdW96JtsRa4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA2MDIwMTU3MzhaFw0yNjA2MDEwMjAyMzhaMDMxMTAvBgNV BAMTKDdFRTQ3REVDMEI2RTVDRDlGMzVDMzY2NzcxN0QzMjE2QjlGREZBMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi6t1cNZOipK6pAnPDUKxIuETv 9PTP0+ESF+NpcMtzpt6G/E8Dej3Sz1YlgkTE8eabqAUNhtb9gSQp1XHziPEboyUH GHAbrhz+xY7kB/m9TnOuhHI64mTYhwpqNY1/akLcit6eqap85fZ1Zje7Wz/NVAtz Uii2pbT8j8olls0Yc965+uTQcKW0zIMAR53UiC16Eqcxw/u6qISr6+egoSZEyPPF FcqvNLpCiPManqyAYXGeSN8A0bQk1619wi/x16ezSK3GZkhcMY6Pnke87w/ysx09 Qp6YLECyYq7qJBswZipZvISWuqfjO41DiH710bET0+n1NxpadxhogksLJM6bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfuR97AtuXNnzXDZncX0yFrn9+gUwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/owDQYJ KoZIhvcNAQELBQADggEBABnefee8P2Pbsg2ElLhl40HIB73lW9KYsbzkIjgYmZXK VmkKLolpJkM0u6clyVqjEbBjNyYWCDAt8tcrWHLAGJnbOVuJChdhUd++i8fES33Y Guuwo7/cFqGvadQL4eXsItfUbvxBRnIUfqIJZ7pO1vOJxU+ykk78obNxi7p6Sjc8 BqSPYdLdmNl2TEL0ZIfFuPlazK4DYL4Q1nsjVp0Hg2K+VU+Onl7Xa9UKl5LHM2I0 miLtZmjM1dgjTDOwjfQun3CtJUXFgf3hNbJAoRNgHvD4zgp9tAYud+gsy2Sgv5Jy xSt8kVs7qdcQiuzcg0z2D2pRfUpQezhlLvJSBWtSoSE= -----END CERTIFICATE-----Generated at Fri Oct 24 22:32:36 2025 by rpki-client