$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: 8bH62zhwf0kgF3amh047ZVAlbr2i3orRPBn9qkRCMJk= Subject key identifier: 43:07:79:9E:D4:BA:B3:AA:43:4D:EE:3F:C8:6C:22:1A:B8:74:51:D8 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 2F367FA8309289318CD6B1AA3DEA89321CD26799 Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa Signing time: Tue 26 Aug 2025 04:02:29 +0000 ROA not before: Tue 26 Aug 2025 03:57:29 +0000 ROA not after: Tue 25 Aug 2026 04:02:29 +0000 asID: 131745 IP address blocks: 210.247.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 14:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:36:7f:a8:30:92:89:31:8c:d6:b1:aa:3d:ea:89:32:1c:d2:67:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Aug 26 03:57:29 2025 GMT Not After : Aug 25 04:02:29 2026 GMT Subject: CN=4307799ED4BAB3AA434DEE3FC86C221AB87451D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:cb:90:e1:3e:56:61:59:02:aa:fa:76:d9:42: 08:bf:f9:d7:d3:c5:78:08:43:c3:20:8f:6f:f4:ef: 42:6b:7c:98:9e:e3:0f:15:5d:84:37:3c:17:a0:78: 3b:85:48:da:bd:98:b2:e4:7a:8f:4c:c9:b5:b5:ce: bd:65:27:00:e1:24:63:f2:a1:c5:9e:8f:02:3f:9a: 11:34:c8:71:09:db:51:8a:75:45:9c:ba:a8:65:14: 40:83:64:eb:fd:19:a1:c7:ef:8d:3d:0b:19:0d:2a: 9e:1b:80:00:85:7c:8c:bd:9b:e5:4a:a5:e1:42:bf: cb:54:2c:be:5b:d1:23:7d:7e:43:da:30:fc:5d:d9: a8:f8:33:b7:72:c1:61:1b:ee:a2:a6:8b:78:a8:54: c6:64:f0:af:d1:ea:8b:7d:18:e5:42:38:ce:76:3b: 61:b9:fc:29:75:62:4f:ae:d1:ee:94:a5:ae:10:d4: 46:c0:bf:2f:48:34:c5:c7:52:45:47:36:4e:b8:4e: 95:5c:bf:ae:0e:e3:56:74:22:b1:72:88:4a:63:19: a4:63:ca:87:35:62:9b:4d:4d:fe:a8:23:84:a1:e5: 1e:42:16:03:d1:3e:a2:fa:75:d8:3d:e7:07:94:5d: a4:4c:6c:fa:3d:db:a9:7f:91:47:7b:1b:1d:ab:df: 3c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:07:79:9E:D4:BA:B3:AA:43:4D:EE:3F:C8:6C:22:1A:B8:74:51:D8 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.254.0/24 Signature Algorithm: sha256WithRSAEncryption 26:64:89:3a:80:e7:09:6a:09:c7:c8:3d:31:30:8c:10:1d:21: 44:25:0d:c7:d0:d9:ca:b0:5e:25:2e:b1:c6:c7:d4:8f:cc:22: cd:26:fd:00:e1:ae:88:d6:b0:18:18:dc:af:f8:ea:cb:26:a0: c4:35:e7:e5:73:af:ac:1a:a3:ca:74:30:76:ab:81:e9:ad:29: 03:fb:fb:70:e6:7f:f9:85:d6:46:6d:4c:5f:e3:0d:c7:5a:68: d3:7a:92:36:15:a1:38:10:1e:83:e6:69:c5:23:7a:f5:ee:7e: 58:89:bd:ef:78:23:79:ad:49:7c:18:09:a5:8a:9c:b8:2f:5e: d7:97:2b:ea:50:91:d6:45:68:c9:c5:63:d3:66:a9:3e:b5:6e: 63:56:a5:96:41:d0:63:9e:e2:6c:af:7c:80:c7:f9:c2:d2:a4: cd:36:e4:c4:09:e8:98:8e:20:c8:93:a2:37:10:21:4e:04:7c: a2:4f:6f:87:18:83:90:cd:e9:e6:02:6a:4a:fa:c8:02:83:1b: fa:f6:5e:d8:a6:7a:b4:bf:21:8d:76:80:5e:66:c9:71:ea:ab: 52:d8:78:cd:9f:ca:6a:6c:da:c0:72:bf:64:a9:bb:22:06:b6: c0:db:d6:51:6f:92:f1:9f:64:40:df:61:b9:33:c9:23:50:03: c2:ef:b2:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULzZ/qDCSiTGM1rGqPeqJMhzSZ5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA4MjYwMzU3MjlaFw0yNjA4MjUwNDAyMjlaMDMxMTAvBgNV BAMTKDQzMDc3OTlFRDRCQUIzQUE0MzRERUUzRkM4NkMyMjFBQjg3NDUxRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjy5DhPlZhWQKq+nbZQgi/+dfT xXgIQ8Mgj2/070JrfJie4w8VXYQ3PBegeDuFSNq9mLLkeo9MybW1zr1lJwDhJGPy ocWejwI/mhE0yHEJ21GKdUWcuqhlFECDZOv9GaHH7409CxkNKp4bgACFfIy9m+VK peFCv8tULL5b0SN9fkPaMPxd2aj4M7dywWEb7qKmi3ioVMZk8K/R6ot9GOVCOM52 O2G5/Cl1Yk+u0e6Upa4Q1EbAvy9INMXHUkVHNk64TpVcv64O41Z0IrFyiEpjGaRj yoc1YptNTf6oI4Sh5R5CFgPRPqL6ddg95weUXaRMbPo926l/kUd7Gx2r3zyFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQwd5ntS6s6pDTe4/yGwiGrh0UdgwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/4wDQYJ KoZIhvcNAQELBQADggEBACZkiTqA5wlqCcfIPTEwjBAdIUQlDcfQ2cqwXiUuscbH 1I/MIs0m/QDhrojWsBgY3K/46ssmoMQ15+Vzr6wao8p0MHargemtKQP7+3Dmf/mF 1kZtTF/jDcdaaNN6kjYVoTgQHoPmacUjevXufliJve94I3mtSXwYCaWKnLgvXteX K+pQkdZFaMnFY9NmqT61bmNWpZZB0GOe4myvfIDH+cLSpM025MQJ6JiOIMiTojcQ IU4EfKJPb4cYg5DN6eYCakr6yAKDG/r2XtimerS/IY12gF5myXHqq1LYeM2fymps 2sByv2SpuyIGtsDb1lFvkvGfZEDfYbkzySNQA8LvsmI= -----END CERTIFICATE-----Generated at Sun Sep 7 15:48:45 2025 by rpki-client