$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: YdojAte0DabKD9U31MLajmNX2Ade2ItCQ0uOXVTExGw= Subject key identifier: D8:7B:3B:75:E0:0A:7B:0F:DA:4A:4C:E3:69:CD:16:BA:5B:79:01:05 Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 61D9D2C9FDFD67F0F2171AB998FE803509DE4195 Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:10 +0000 ROA not before: Sun 03 May 2026 02:48:10 +0000 ROA not after: Sun 02 May 2027 02:53:10 +0000 asID: 131745 IP address blocks: 210.247.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d9:d2:c9:fd:fd:67:f0:f2:17:1a:b9:98:fe:80:35:09:de:41:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:10 2026 GMT Not After : May 2 02:53:10 2027 GMT Subject: CN=D87B3B75E00A7B0FDA4A4CE369CD16BA5B790105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e2:dd:d9:7d:27:68:ff:20:c0:63:ed:54:c5: 1f:68:f0:fb:5b:ce:1c:5a:7b:b8:dd:8f:8d:90:c3: d3:a7:aa:34:fc:57:88:ac:23:c0:84:1d:61:20:54: 9c:7c:e6:c1:fa:8b:89:ce:e5:f4:66:fd:0d:ea:2d: c8:28:10:0d:7d:c9:68:77:6a:c6:b1:fc:dd:48:07: 0c:bc:f0:54:6c:48:1a:95:5e:d6:e0:be:45:8a:83: c1:7a:eb:e9:1a:48:27:68:dc:ee:69:03:f7:2b:40: ef:83:b7:be:b1:60:a2:1d:16:4a:e4:62:53:36:12: 37:10:ba:97:0a:5a:8f:d4:e5:ad:73:15:4d:4b:88: 99:84:58:df:00:e1:e2:c1:7d:db:bd:20:21:7d:37: 77:9e:19:83:54:80:70:b4:12:67:39:b8:b0:54:5f: 2a:75:14:4c:1f:4d:5d:a4:fd:0e:e2:4e:53:74:53: 59:56:60:c9:aa:0b:7d:61:79:d3:46:e9:19:99:f7: d6:7f:a6:3f:6e:7b:b5:72:17:be:7a:b8:ce:de:b4: 4d:c1:c1:66:ed:99:5b:f5:b5:cd:e6:2a:4b:20:19: 7d:e5:83:a9:39:0b:94:73:34:63:bd:6b:df:8a:a6: 21:9b:d6:91:5b:c8:21:01:99:37:3c:05:a8:83:32: d4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:7B:3B:75:E0:0A:7B:0F:DA:4A:4C:E3:69:CD:16:BA:5B:79:01:05 X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.245.0/24 Signature Algorithm: sha256WithRSAEncryption c3:53:b3:e2:90:47:86:ea:16:3b:b2:d7:d7:4b:5a:36:ca:6c: f0:39:f2:d5:59:8c:3f:fd:2b:e4:86:04:5f:ce:62:8c:61:d2: 62:c8:7b:9b:93:d0:50:8b:ee:c5:ef:de:40:12:4f:d1:7b:d0: bb:4b:4b:b2:aa:72:ad:34:8d:98:dd:a7:9c:79:3e:00:ad:d8: df:45:44:97:54:34:cc:90:dc:d3:47:17:ea:63:99:9a:f0:80: 18:f0:d8:56:a1:ab:02:18:f9:ee:7d:52:b1:04:c8:6e:65:57: 24:37:ef:29:fa:07:aa:0d:66:41:b3:b9:b7:11:21:4b:a0:1d: 53:72:70:38:e1:2c:99:eb:9f:09:db:86:1b:b3:00:88:d3:2e: ad:7e:5b:1a:88:35:22:b2:7a:38:42:f4:76:4e:c0:62:24:32: e5:73:78:ef:0d:4f:72:30:db:81:33:f6:a9:4e:88:af:2e:0d: 9e:d5:0e:e4:14:7b:2e:a3:6f:1f:e3:92:94:6c:a9:ff:5e:fa: 32:b9:f3:7f:c1:8f:ba:87:38:35:b6:15:82:c2:ce:41:a8:21: 67:05:2c:58:28:9c:ca:52:74:6d:8a:cb:cb:67:a9:ac:8d:15: c2:dd:0c:fa:c7:53:95:58:e8:6c:3a:f9:0e:34:28:2a:6f:5e: f8:d3:c0:b2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYdnSyf39Z/DyFxq5mP6ANQneQZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MTBaFw0yNzA1MDIwMjUzMTBaMDMxMTAvBgNV BAMTKEQ4N0IzQjc1RTAwQTdCMEZEQTRBNENFMzY5Q0QxNkJBNUI3OTAxMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD4t3ZfSdo/yDAY+1UxR9o8Ptb zhxae7jdj42Qw9OnqjT8V4isI8CEHWEgVJx85sH6i4nO5fRm/Q3qLcgoEA19yWh3 asax/N1IBwy88FRsSBqVXtbgvkWKg8F66+kaSCdo3O5pA/crQO+Dt76xYKIdFkrk YlM2EjcQupcKWo/U5a1zFU1LiJmEWN8A4eLBfdu9ICF9N3eeGYNUgHC0Emc5uLBU Xyp1FEwfTV2k/Q7iTlN0U1lWYMmqC31hedNG6RmZ99Z/pj9ue7VyF756uM7etE3B wWbtmVv1tc3mKksgGX3lg6k5C5RzNGO9a9+KpiGb1pFbyCEBmTc8BaiDMtRdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2Hs7deAKew/aSkzjac0Wult5AQUwHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/UwDQYJ KoZIhvcNAQELBQADggEBAMNTs+KQR4bqFjuy19dLWjbKbPA58tVZjD/9K+SGBF/O Yoxh0mLIe5uT0FCL7sXv3kAST9F70LtLS7Kqcq00jZjdp5x5PgCt2N9FRJdUNMyQ 3NNHF+pjmZrwgBjw2FahqwIY+e59UrEEyG5lVyQ37yn6B6oNZkGzubcRIUugHVNy cDjhLJnrnwnbhhuzAIjTLq1+WxqINSKyejhC9HZOwGIkMuVzeO8NT3Iw24Ez9qlO iK8uDZ7VDuQUey6jbx/jkpRsqf9e+jK583/Bj7qHODW2FYLCzkGoIWcFLFgonMpS dG2Ky8tnqayNFcLdDPrHU5VY6Gw6+Q40KCpvXvjTwLI= -----END CERTIFICATE-----Generated at Wed May 13 12:41:58 2026 by rpki-client