$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: pA4m3YcDohtyW2KH722N1KPWI/anmYo+9ayJjEcxchg= Subject key identifier: 61:A5:69:F1:8F:37:3F:F7:24:48:2B:C7:60:E3:68:B1:8A:D3:A6:1C Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 52B51E885C6C427C363178A3947589C5CA05887C Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:12 +0000 ROA not before: Sun 03 May 2026 02:48:12 +0000 ROA not after: Sun 02 May 2027 02:53:12 +0000 asID: 131745 IP address blocks: 210.247.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b5:1e:88:5c:6c:42:7c:36:31:78:a3:94:75:89:c5:ca:05:88:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:12 2026 GMT Not After : May 2 02:53:12 2027 GMT Subject: CN=61A569F18F373FF724482BC760E368B18AD3A61C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:88:4c:7d:f9:8e:2e:2c:84:1e:72:de:40:64: 5e:11:ab:33:e9:c2:95:77:aa:36:ab:ed:1f:d6:70: 8a:83:04:0f:21:5b:03:02:28:cd:45:8d:71:b5:b7: af:7c:fb:66:34:91:7e:60:6d:5f:90:c4:d4:ff:3b: df:bc:f5:8a:4b:cd:b6:4e:2a:60:91:87:e6:b6:26: ec:aa:d6:91:a2:9c:07:45:12:33:34:7d:95:8b:17: f5:b3:22:de:61:59:3f:f9:55:c6:d8:5e:7a:38:49: 7b:c6:2f:9a:86:61:a8:6c:f1:44:6c:bf:c7:af:7e: 49:af:32:70:0e:e6:55:57:0c:cc:05:b8:1a:1c:49: 18:c9:36:e7:df:62:7e:97:f6:5d:7e:10:01:f5:ae: 4c:ac:1e:28:5a:30:09:95:f2:9f:ac:10:21:2b:41: a1:0f:7c:be:f2:7a:45:dd:5f:60:fa:8a:28:8c:ee: 20:9f:dd:a8:20:d1:25:2a:3d:fa:d0:1c:69:cb:46: 20:66:b3:cd:f8:41:6a:5e:4c:1a:fe:e3:31:57:16: 4c:96:67:55:c0:a7:9a:35:26:b9:cd:a7:70:b1:c7: 93:eb:0f:87:06:a7:11:b2:cb:69:74:49:86:52:f8: c3:a0:cd:b7:02:15:34:e2:67:0c:2b:17:98:db:69: 58:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:A5:69:F1:8F:37:3F:F7:24:48:2B:C7:60:E3:68:B1:8A:D3:A6:1C X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234302e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.240.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:5a:fd:97:64:1d:a3:19:90:9f:f9:a1:ed:69:41:5a:4c:d3: a4:b7:24:c2:31:18:d5:09:d6:b8:69:3a:83:b7:08:cb:1a:80: 27:dc:93:dc:ca:96:e3:f0:af:1c:f5:e1:6a:46:a2:6e:4b:df: 76:21:1d:81:cd:0e:2e:c4:69:de:bf:c9:8c:ac:3a:c6:1f:38: 88:31:66:44:90:92:79:2f:58:9c:7b:16:1e:19:5c:2e:d7:6a: 52:be:03:cf:b7:53:7b:01:94:52:3c:ba:d0:35:16:a4:43:1c: ec:8b:65:c2:b5:a9:32:7b:8c:25:be:2b:11:91:e4:01:66:f2: 77:f4:f2:0d:71:83:f3:cf:e8:b5:e5:07:4d:f6:70:ae:50:07: 89:4c:25:a9:48:de:7d:01:6d:e2:86:1c:44:08:a8:dd:a6:b2: a8:2e:65:5d:01:5b:b0:b1:40:db:cb:21:a5:a6:cd:bf:05:6e: 41:76:9d:70:d3:4d:85:ae:1d:d8:36:fd:03:96:21:47:b4:76: a3:d3:f8:22:1c:3e:77:0f:be:25:a1:d1:fc:77:ee:ae:de:6c: ef:a8:82:21:ea:09:9d:f3:5f:25:39:2f:c3:84:60:c2:44:46: d0:c5:c6:c3:9d:fc:42:d0:8c:67:5a:83:28:94:1a:f0:09:3c: 39:05:ce:99 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUrUeiFxsQnw2MXijlHWJxcoFiHwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MTJaFw0yNzA1MDIwMjUzMTJaMDMxMTAvBgNV BAMTKDYxQTU2OUYxOEYzNzNGRjcyNDQ4MkJDNzYwRTM2OEIxOEFEM0E2MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiiEx9+Y4uLIQect5AZF4RqzPp wpV3qjar7R/WcIqDBA8hWwMCKM1FjXG1t698+2Y0kX5gbV+QxNT/O9+89YpLzbZO KmCRh+a2Juyq1pGinAdFEjM0fZWLF/WzIt5hWT/5VcbYXno4SXvGL5qGYahs8URs v8evfkmvMnAO5lVXDMwFuBocSRjJNuffYn6X9l1+EAH1rkysHihaMAmV8p+sECEr QaEPfL7yekXdX2D6iiiM7iCf3agg0SUqPfrQHGnLRiBms834QWpeTBr+4zFXFkyW Z1XAp5o1JrnNp3Cxx5PrD4cGpxGyy2l0SYZS+MOgzbcCFTTiZwwrF5jbaVi9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYaVp8Y83P/ckSCvHYONosYrTphwwHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/AwDQYJ KoZIhvcNAQELBQADggEBAAta/ZdkHaMZkJ/5oe1pQVpM06S3JMIxGNUJ1rhpOoO3 CMsagCfck9zKluPwrxz14WpGom5L33YhHYHNDi7Ead6/yYysOsYfOIgxZkSQknkv WJx7Fh4ZXC7XalK+A8+3U3sBlFI8utA1FqRDHOyLZcK1qTJ7jCW+KxGR5AFm8nf0 8g1xg/PP6LXlB032cK5QB4lMJalI3n0BbeKGHEQIqN2msqguZV0BW7CxQNvLIaWm zb8FbkF2nXDTTYWuHdg2/QOWIUe0dqPT+CIcPncPviWh0fx37q7ebO+ogiHqCZ3z XyU5L8OEYMJERtDFxsOd/ELQjGdagyiUGvAJPDkFzpk= -----END CERTIFICATE-----Generated at Wed May 13 11:50:49 2026 by rpki-client