$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: SDQ6xpzFoeg0lTwEJkVJ2YC5ntC/O8NvcqwJeEYUXmo= Subject key identifier: FB:E2:8E:15:14:B6:D0:8A:56:A6:9F:A0:15:26:B0:CB:D4:CF:7D:A4 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 2D6451C7DAC66796A1C7B1B05B72AC00ED41A5FC Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa Signing time: Tue 26 Aug 2025 02:00:01 +0000 ROA not before: Tue 26 Aug 2025 01:55:01 +0000 ROA not after: Tue 25 Aug 2026 02:00:01 +0000 asID: 131745 IP address blocks: 210.247.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Sep 2025 06:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:64:51:c7:da:c6:67:96:a1:c7:b1:b0:5b:72:ac:00:ed:41:a5:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Aug 26 01:55:01 2025 GMT Not After : Aug 25 02:00:01 2026 GMT Subject: CN=FBE28E1514B6D08A56A69FA01526B0CBD4CF7DA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d4:ff:b2:e4:c4:13:4a:cd:87:bf:90:2f:33: ee:1a:f6:84:17:19:ff:19:a0:86:8e:61:70:37:e3: c3:a8:3d:e0:ba:3a:d0:fc:04:98:ec:76:fd:6e:a5: 99:4c:f3:56:d8:a0:d3:3a:53:07:99:73:23:98:08: 3e:e8:ab:00:b5:f8:0a:df:d3:ee:2a:d8:85:47:f9: 1e:5e:60:cd:f5:a9:83:07:d5:f2:41:ca:ce:f5:1f: 5d:88:f4:38:da:5c:e8:32:11:39:a8:73:76:64:03: 79:a5:5d:25:8c:ec:61:a6:a5:de:86:66:33:8b:a7: fe:6e:51:06:e9:fb:62:32:b9:f5:ae:e1:82:1a:d8: 6f:8e:3d:ca:1b:63:c7:25:3b:17:ea:fe:e6:6f:4a: 55:0e:77:5d:85:d6:1d:fb:1e:67:af:c9:3e:a4:df: da:de:a8:00:74:a7:19:91:0c:e1:58:9c:81:41:d1: 90:3d:7a:fd:7d:c1:16:86:88:4e:23:a2:ff:08:0d: 41:af:5f:74:b7:5c:ea:12:ec:e1:c8:52:6c:2f:8b: 94:8c:b0:4c:03:c2:0b:40:7e:4e:d5:8d:ba:ba:92: 11:ab:75:84:20:7b:35:84:ca:b3:0e:fe:46:bf:87: 8c:06:bb:8a:3e:8a:81:53:b3:a6:75:76:6c:50:df: 5e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E2:8E:15:14:B6:D0:8A:56:A6:9F:A0:15:26:B0:CB:D4:CF:7D:A4 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.253.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:70:86:ff:67:08:c3:f3:4f:03:62:4a:7b:12:ab:7d:c8:bb: 19:f0:c1:b7:10:c8:94:61:4d:9c:a5:fa:7b:65:6b:8d:34:02: a3:05:d8:13:48:97:b2:da:f6:7a:7c:dd:79:fa:46:3b:96:f6: d2:bf:09:c4:c4:1f:d3:8e:c2:72:e0:eb:af:9f:dd:15:e9:b8: a2:82:93:01:5f:99:84:1c:d1:ea:d8:43:68:15:1b:3d:71:7f: 04:ae:3f:bf:0e:06:3d:aa:ee:a1:e2:b7:c6:44:0f:ad:c5:93: cb:93:42:4d:ff:32:37:3c:78:65:f3:47:ed:7b:70:48:cf:b2: b6:2b:cf:26:70:59:45:a1:11:26:6d:97:ef:1a:d3:59:94:cd: e7:06:1d:92:b2:49:84:0c:10:df:64:5f:2d:29:46:86:fd:74: 31:c3:ed:ea:c4:e0:f9:6f:41:35:6f:36:d4:36:84:9d:a7:33: 79:1b:ac:70:ec:46:2b:db:e9:7a:80:db:a5:6a:99:f4:52:95: 5a:eb:9f:67:19:bf:c2:16:25:46:e2:35:4f:f9:80:d1:1e:29: 0c:4e:9d:db:4b:1a:29:66:f4:1d:88:cf:8d:33:e0:b4:fb:57: ca:40:c6:b3:24:08:5e:88:70:36:d9:03:9b:34:32:b2:d7:ca: b3:47:17:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULWRRx9rGZ5ahx7GwW3KsAO1BpfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA4MjYwMTU1MDFaFw0yNjA4MjUwMjAwMDFaMDMxMTAvBgNV BAMTKEZCRTI4RTE1MTRCNkQwOEE1NkE2OUZBMDE1MjZCMENCRDRDRjdEQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo1P+y5MQTSs2Hv5AvM+4a9oQX Gf8ZoIaOYXA348OoPeC6OtD8BJjsdv1upZlM81bYoNM6UweZcyOYCD7oqwC1+Arf 0+4q2IVH+R5eYM31qYMH1fJBys71H12I9DjaXOgyETmoc3ZkA3mlXSWM7GGmpd6G ZjOLp/5uUQbp+2IyufWu4YIa2G+OPcobY8clOxfq/uZvSlUOd12F1h37HmevyT6k 39reqAB0pxmRDOFYnIFB0ZA9ev19wRaGiE4jov8IDUGvX3S3XOoS7OHIUmwvi5SM sEwDwgtAfk7Vjbq6khGrdYQgezWEyrMO/ka/h4wGu4o+ioFTs6Z1dmxQ315lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU++KOFRS20IpWpp+gFSawy9TPfaQwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/0wDQYJ KoZIhvcNAQELBQADggEBAG5whv9nCMPzTwNiSnsSq33IuxnwwbcQyJRhTZyl+ntl a400AqMF2BNIl7La9np83Xn6RjuW9tK/CcTEH9OOwnLg66+f3RXpuKKCkwFfmYQc 0erYQ2gVGz1xfwSuP78OBj2q7qHit8ZED63Fk8uTQk3/Mjc8eGXzR+17cEjPsrYr zyZwWUWhESZtl+8a01mUzecGHZKySYQMEN9kXy0pRob9dDHD7erE4PlvQTVvNtQ2 hJ2nM3kbrHDsRivb6XqA26VqmfRSlVrrn2cZv8IWJUbiNU/5gNEeKQxOndtLGilm 9B2Iz40z4LT7V8pAxrMkCF6IcDbZA5s0MrLXyrNHFyo= -----END CERTIFICATE-----Generated at Thu Sep 18 10:25:58 2025 by rpki-client