$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235312e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235312e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: P6u7QjpJVBQpJpJ2dL4GKUXqC1XLtlIwog/7NL3QJe0= Subject key identifier: 0A:C3:15:F3:E6:CE:D2:ED:B7:1A:55:D9:4A:ED:3C:60:68:47:44:F8 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 62F95C3F45711AC8ED0DCC4022F22E49DE3860BB Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235312e302f32342d3234203d3e20313331373435.roa Signing time: Mon 02 Jun 2025 02:02:39 +0000 ROA not before: Mon 02 Jun 2025 01:57:39 +0000 ROA not after: Mon 01 Jun 2026 02:02:39 +0000 asID: 131745 IP address blocks: 210.247.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:f9:5c:3f:45:71:1a:c8:ed:0d:cc:40:22:f2:2e:49:de:38:60:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Jun 2 01:57:39 2025 GMT Not After : Jun 1 02:02:39 2026 GMT Subject: CN=0AC315F3E6CED2EDB71A55D94AED3C60684744F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:a7:01:48:7c:35:cc:e4:dc:43:4a:b9:24: ca:78:24:2e:e8:f8:43:41:a7:4a:fd:26:01:0a:9a: a1:16:44:44:cd:2e:48:a6:bd:a7:86:89:2b:b8:28: 51:47:68:1f:21:46:b7:dd:0b:a9:29:48:b2:1d:32: 0b:fb:56:30:e1:82:04:4a:ca:28:f4:ec:79:c0:53: 7b:e2:64:47:43:3a:c5:38:75:ab:44:83:1d:bd:46: f9:1d:7d:ae:d6:20:4d:4c:0e:3e:e5:68:b3:a6:df: 95:11:c8:44:9d:e5:f8:5d:7b:d5:5f:df:c0:80:88: 0b:38:4b:79:be:eb:72:54:c0:37:79:3f:c7:bb:da: 1a:cc:a4:5a:03:c4:c6:0b:3c:b0:95:bb:32:91:b3: 77:50:a4:84:f0:2b:79:2e:80:5d:3a:f2:ba:5b:1a: d2:27:74:63:73:c5:4b:7d:23:e2:3c:67:84:d1:65: dc:29:63:cc:c1:38:51:3b:ba:d8:c7:ab:f7:9f:22: 9c:0f:cc:28:82:aa:a8:76:ef:aa:1c:b0:fe:45:bc: e3:83:29:ab:93:3e:9a:fb:cd:ac:d4:6f:bf:a5:d6: 15:3f:fa:6a:c4:09:95:4a:ef:b2:8a:7b:4a:e1:f4: e8:71:8a:cf:17:5c:ea:15:38:e4:f1:04:06:aa:32: 8f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C3:15:F3:E6:CE:D2:ED:B7:1A:55:D9:4A:ED:3C:60:68:47:44:F8 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235312e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.251.0/24 Signature Algorithm: sha256WithRSAEncryption 77:dd:21:89:15:03:28:8b:d0:d3:c4:a6:b5:1c:db:81:df:f1: 4a:ae:89:50:ab:15:a1:e0:a4:6b:d0:ff:03:fa:d1:12:a3:39: 1c:35:93:a6:a8:38:bd:9d:26:c3:03:07:b1:3f:81:58:e8:e7: 99:08:af:9a:e6:36:a8:4d:b1:f2:3e:a7:5c:b9:db:90:6c:1f: 00:83:c5:a1:8b:11:d5:c2:39:a9:d9:96:92:e5:a6:24:76:a9: a2:5b:10:d2:f8:26:67:c6:d0:35:f4:9c:f5:e3:2c:c7:08:16: d0:83:fb:66:94:6b:59:01:4a:30:92:be:90:8a:fb:95:66:6b: 10:1a:00:39:0d:51:2b:15:e6:20:20:44:9c:77:3b:1d:c8:9e: 3c:8e:bd:b6:60:c3:cb:89:af:25:64:46:77:1e:43:b7:bf:a5: 7c:db:55:0d:20:91:69:f3:fa:9d:bf:b0:9d:9e:80:56:72:07: f2:10:50:5c:6e:42:b2:65:ff:c7:c6:90:33:0d:13:86:0f:11: 80:1f:c7:ca:6b:1e:10:8f:f0:f9:c7:21:37:64:6b:60:05:e6: 40:16:6a:4e:e2:08:1b:c1:72:93:4d:44:d8:2e:25:24:cf:cf: 1a:2f:6f:1e:00:1f:95:2c:41:d7:36:05:00:b6:83:fa:49:f1: a9:27:a9:56 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYvlcP0VxGsjtDcxAIvIuSd44YLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA2MDIwMTU3MzlaFw0yNjA2MDEwMjAyMzlaMDMxMTAvBgNV BAMTKDBBQzMxNUYzRTZDRUQyRURCNzFBNTVEOTRBRUQzQzYwNjg0NzQ0RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIR6cBSHw1zOTcQ0q5JMp4JC7o +ENBp0r9JgEKmqEWRETNLkimvaeGiSu4KFFHaB8hRrfdC6kpSLIdMgv7VjDhggRK yij07HnAU3viZEdDOsU4datEgx29Rvkdfa7WIE1MDj7laLOm35URyESd5fhde9Vf 38CAiAs4S3m+63JUwDd5P8e72hrMpFoDxMYLPLCVuzKRs3dQpITwK3kugF068rpb GtIndGNzxUt9I+I8Z4TRZdwpY8zBOFE7utjHq/efIpwPzCiCqqh276ocsP5FvOOD KauTPpr7zazUb7+l1hU/+mrECZVK77KKe0rh9Ohxis8XXOoVOOTxBAaqMo9DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCsMV8+bO0u23GlXZSu08YGhHRPgwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/swDQYJ KoZIhvcNAQELBQADggEBAHfdIYkVAyiL0NPEprUc24Hf8UquiVCrFaHgpGvQ/wP6 0RKjORw1k6aoOL2dJsMDB7E/gVjo55kIr5rmNqhNsfI+p1y525BsHwCDxaGLEdXC OanZlpLlpiR2qaJbENL4JmfG0DX0nPXjLMcIFtCD+2aUa1kBSjCSvpCK+5VmaxAa ADkNUSsV5iAgRJx3Ox3InjyOvbZgw8uJryVkRnceQ7e/pXzbVQ0gkWnz+p2/sJ2e gFZyB/IQUFxuQrJl/8fGkDMNE4YPEYAfx8prHhCP8PnHITdka2AF5kAWak7iCBvB cpNNRNguJSTPzxovbx4AH5UsQdc2BQC2g/pJ8aknqVY= -----END CERTIFICATE-----Generated at Thu Jun 5 19:19:32 2025 by rpki-client