$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: RS4Z5hPliFofbuZy6siMGSvvq53kTGe3aDopkAMtX7s= Subject key identifier: 5D:E2:63:E3:1B:C3:BD:83:7B:B4:AC:11:86:2B:80:F6:02:C2:A8:53 Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Certificate serial: 32F2B38567892F2B61262E280F3460F5A8622E1B Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa Signing time: Tue 26 Aug 2025 04:02:29 +0000 ROA not before: Tue 26 Aug 2025 03:57:29 +0000 ROA not after: Tue 25 Aug 2026 04:02:29 +0000 asID: 131745 IP address blocks: 210.247.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 14:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:f2:b3:85:67:89:2f:2b:61:26:2e:28:0f:34:60:f5:a8:62:2e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F Validity Not Before: Aug 26 03:57:29 2025 GMT Not After : Aug 25 04:02:29 2026 GMT Subject: CN=5DE263E31BC3BD837BB4AC11862B80F602C2A853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:00:eb:1c:26:f0:5e:f7:56:38:b2:00:3d:d5: e3:3e:30:4e:7d:ec:d5:ed:8f:76:1a:b3:0d:32:fb: f3:ba:80:78:bd:24:be:0a:17:31:cc:37:68:af:a8: 33:70:64:68:01:45:39:d6:a4:76:a9:e7:2d:2e:d0: e7:7d:a6:d3:c0:96:bd:52:20:73:65:6f:7a:9f:e0: e5:82:a5:31:4f:2c:4e:bd:52:9e:ad:b3:7a:48:53: af:54:54:a6:6c:2a:b4:c6:d7:79:fe:6a:b1:83:74: 48:81:d9:35:31:8b:4a:10:43:08:ed:54:63:e9:ac: 5e:ce:a1:28:25:8d:d8:6d:48:62:c7:d3:cd:7d:d0: 16:a6:aa:bb:8c:f5:d1:5c:99:80:8e:0f:c9:ee:8b: b6:fc:09:bb:e9:03:92:92:71:62:95:6b:91:ba:f7: 45:b5:6c:6b:ff:8d:5f:c2:42:2d:2b:55:50:e0:9f: 2a:a5:20:3f:a0:f3:62:c3:7f:5e:69:62:36:a7:4c: a5:4f:1b:1f:7e:89:0c:85:71:9d:c7:6a:48:40:70: ca:52:43:99:14:ba:93:62:46:a9:ec:2c:b8:c8:4f: 92:d2:12:ea:a2:18:b6:b5:a2:0e:05:e8:f6:7d:4d: e0:52:52:54:05:28:86:6b:60:83:50:49:9e:05:34: bd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E2:63:E3:1B:C3:BD:83:7B:B4:AC:11:86:2B:80:F6:02:C2:A8:53 X509v3 Authority Key Identifier: keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.255.0/24 Signature Algorithm: sha256WithRSAEncryption 47:04:4e:37:67:ec:ec:c9:b5:01:8c:83:48:3d:5a:7e:3f:eb: 6d:61:e4:b6:f2:f5:9b:c1:f5:5e:83:0e:fa:cf:b5:93:79:8a: be:d0:be:f0:e0:87:f7:27:29:df:76:ad:41:e5:c3:bc:15:a2: 81:d7:0d:a1:23:1e:0e:55:b7:5d:b7:57:46:2e:3a:de:de:46: ff:bd:a8:52:fa:c5:ea:ab:c7:cc:00:f5:30:09:fe:3c:d1:1d: 29:e3:24:b2:15:32:b1:77:8b:7a:d2:d9:ef:b4:b3:8d:73:b2: 2f:d8:5e:fd:e3:69:94:f3:a8:63:21:3a:a4:d4:28:d0:4b:27: 2b:18:5f:aa:bf:9d:05:32:26:94:e7:13:a8:50:29:c6:3d:df: 0d:4a:1f:3c:ca:66:c9:29:81:fc:63:db:c5:fb:bd:c7:c3:66: aa:78:86:01:7a:bd:b8:9a:e5:26:39:da:ff:89:4c:20:55:8d: 48:64:6d:d8:94:3a:2c:dc:48:26:c2:a4:dc:21:6d:6a:9e:3e: c7:cb:be:13:86:82:91:12:f6:11:7a:ca:f5:b5:84:8c:81:15: 24:27:9c:6a:6f:e7:c9:71:ca:ff:ea:45:2a:21:5a:ed:1a:46: 4a:3b:fd:14:21:c6:45:93:fa:69:06:89:f9:16:ba:b4:1e:e6: 44:ef:99:9d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMvKzhWeJLythJi4oDzRg9ahiLhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJD QUI5NjEwRjAeFw0yNTA4MjYwMzU3MjlaFw0yNjA4MjUwNDAyMjlaMDMxMTAvBgNV BAMTKDVERTI2M0UzMUJDM0JEODM3QkI0QUMxMTg2MkI4MEY2MDJDMkE4NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKAOscJvBe91Y4sgA91eM+ME59 7NXtj3Yasw0y+/O6gHi9JL4KFzHMN2ivqDNwZGgBRTnWpHap5y0u0Od9ptPAlr1S IHNlb3qf4OWCpTFPLE69Up6ts3pIU69UVKZsKrTG13n+arGDdEiB2TUxi0oQQwjt VGPprF7OoSgljdhtSGLH08190BamqruM9dFcmYCOD8nui7b8CbvpA5KScWKVa5G6 90W1bGv/jV/CQi0rVVDgnyqlID+g82LDf15pYjanTKVPGx9+iQyFcZ3HakhAcMpS Q5kUupNiRqnsLLjIT5LSEuqiGLa1og4F6PZ9TeBSUlQFKIZrYINQSZ4FNL3NAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXeJj4xvDvYN7tKwRhiuA9gLCqFMwHwYDVR0j BBgwFoAUiv67UdAMjgaq6oQuDAz/wsq5YQ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NjEyNDMyOS1lYzIwLTQ0NjAtYWMzMS05YzM2Y2Y5NGYzZmIvMC84QUZFQkI1MUQw MEM4RTA2QUFFQTg0MkUwQzBDRkZDMkNBQjk2MTBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEFGRUJCNTFEMDBDOEUwNkFBRUE4NDJFMEMwQ0ZGQzJDQUI5 NjEwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/8wDQYJ KoZIhvcNAQELBQADggEBAEcETjdn7OzJtQGMg0g9Wn4/621h5Lby9ZvB9V6DDvrP tZN5ir7QvvDgh/cnKd92rUHlw7wVooHXDaEjHg5Vt123V0YuOt7eRv+9qFL6xeqr x8wA9TAJ/jzRHSnjJLIVMrF3i3rS2e+0s41zsi/YXv3jaZTzqGMhOqTUKNBLJysY X6q/nQUyJpTnE6hQKcY93w1KHzzKZskpgfxj28X7vcfDZqp4hgF6vbia5SY52v+J TCBVjUhkbdiUOizcSCbCpNwhbWqePsfLvhOGgpES9hF6yvW1hIyBFSQnnGpv58lx yv/qRSohWu0aRko7/RQhxkWT+mkGifkWurQe5kTvmZ0= -----END CERTIFICATE-----Generated at Sun Sep 7 15:47:55 2025 by rpki-client