$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: JAv/L1Ca/rOAR83XrzqT+QKIkZeHE06/YMr97eIGL/8= Subject key identifier: 4E:47:E6:7F:25:35:05:E1:C8:2D:2A:74:07:5E:D0:DF:3D:2B:88:DC Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 0F8D5B3F29991128D15F17D607A2C6819D6E6C75 Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:10 +0000 ROA not before: Sun 03 May 2026 02:48:10 +0000 ROA not after: Sun 02 May 2027 02:53:10 +0000 asID: 131745 IP address blocks: 210.247.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8d:5b:3f:29:99:11:28:d1:5f:17:d6:07:a2:c6:81:9d:6e:6c:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:10 2026 GMT Not After : May 2 02:53:10 2027 GMT Subject: CN=4E47E67F253505E1C82D2A74075ED0DF3D2B88DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:02:dd:6f:23:75:43:49:32:34:bf:9c:94:04: 9f:1e:e2:af:00:91:d6:3e:8f:3a:f5:46:6e:74:bc: 4c:b9:3e:96:13:b3:02:87:57:f5:e8:0d:4e:fe:60: 97:21:c7:84:87:ef:20:12:09:a1:93:14:b0:6f:07: 94:54:e9:d7:b3:d5:3a:b9:d7:b0:4b:86:ef:87:05: 90:66:16:15:ac:ef:0c:95:34:3e:dd:04:81:33:39: 78:16:ee:c3:5a:44:b7:10:f9:4a:d6:cf:a7:7d:ad: b8:d7:97:d7:1d:66:46:75:9f:e9:ab:29:60:8e:99: f0:7d:31:c4:74:5d:91:a1:4d:da:4e:f0:b0:66:bd: 93:a9:01:89:b7:f4:2c:dd:72:ee:b2:ba:60:63:29: 7b:11:5e:73:6b:6b:a2:03:e8:60:e8:91:01:06:17: c4:20:07:b6:49:66:5e:c0:85:4d:3c:af:8b:1d:d2: 89:5c:dd:5f:c5:9d:6d:d2:6f:76:38:a1:9c:42:81: cb:8f:ef:bc:a3:94:b8:b2:5f:ec:41:38:ad:f1:f4: 5a:db:9f:62:d5:f3:02:56:3c:cc:12:38:44:6c:03: 85:41:3b:84:2e:d6:2a:03:c9:75:5e:ba:cc:ae:cc: 06:b2:5b:b8:53:2a:1c:fb:d6:69:01:6b:e9:fa:6e: 99:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:47:E6:7F:25:35:05:E1:C8:2D:2A:74:07:5E:D0:DF:3D:2B:88:DC X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234372e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.247.0/24 Signature Algorithm: sha256WithRSAEncryption 07:11:97:93:c2:b9:35:d8:44:29:8d:7a:e0:b4:2e:d7:c9:9b: a2:fd:28:44:4e:43:f6:5b:b3:ce:0c:30:0e:ad:ea:90:d2:7e: 7e:ae:eb:1e:df:f9:99:01:ce:14:0a:63:02:89:3f:5d:fa:06: bc:ab:a6:20:ba:56:c2:25:14:f4:33:63:8f:84:a4:51:a5:aa: 06:37:fa:93:56:21:0d:12:6b:e3:28:d5:34:36:a1:da:e5:b6: f1:bc:9b:af:20:5e:34:02:cc:5d:2c:a1:a7:19:0c:42:28:1e: 43:b6:c3:64:85:c8:14:32:26:42:a1:7a:14:83:92:a3:22:42: e3:ed:c2:fd:85:54:78:2f:c4:10:f7:de:4c:58:3a:43:ae:48: bd:fe:ab:6a:14:10:64:34:c3:af:f6:cb:c9:44:17:26:12:56: 4f:1a:9f:e7:17:8a:e5:4a:5f:ea:0d:81:ca:d6:8b:0c:00:e6: 06:02:ac:e1:5f:76:dc:05:3a:8c:75:28:7c:8e:49:47:91:59: f2:75:d8:ba:6d:0f:39:ba:d7:f6:2e:a9:f5:1b:fb:ba:b9:57: 57:f1:75:09:29:78:6c:3e:1b:40:3f:d3:e9:14:69:97:90:5e: e8:95:d7:35:57:91:dd:3e:76:b9:e9:0d:52:9d:bf:11:47:a4: 7a:04:11:17 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUD41bPymZESjRXxfWB6LGgZ1ubHUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MTBaFw0yNzA1MDIwMjUzMTBaMDMxMTAvBgNV BAMTKDRFNDdFNjdGMjUzNTA1RTFDODJEMkE3NDA3NUVEMERGM0QyQjg4REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkAt1vI3VDSTI0v5yUBJ8e4q8A kdY+jzr1Rm50vEy5PpYTswKHV/XoDU7+YJchx4SH7yASCaGTFLBvB5RU6dez1Tq5 17BLhu+HBZBmFhWs7wyVND7dBIEzOXgW7sNaRLcQ+UrWz6d9rbjXl9cdZkZ1n+mr KWCOmfB9McR0XZGhTdpO8LBmvZOpAYm39Czdcu6yumBjKXsRXnNra6ID6GDokQEG F8QgB7ZJZl7AhU08r4sd0olc3V/FnW3Sb3Y4oZxCgcuP77yjlLiyX+xBOK3x9Frb n2LV8wJWPMwSOERsA4VBO4Qu1ioDyXVeusyuzAayW7hTKhz71mkBa+n6bplxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTkfmfyU1BeHILSp0B17Q3z0riNwwHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/cwDQYJ KoZIhvcNAQELBQADggEBAAcRl5PCuTXYRCmNeuC0LtfJm6L9KEROQ/Zbs84MMA6t 6pDSfn6u6x7f+ZkBzhQKYwKJP136BryrpiC6VsIlFPQzY4+EpFGlqgY3+pNWIQ0S a+Mo1TQ2odrltvG8m68gXjQCzF0soacZDEIoHkO2w2SFyBQyJkKhehSDkqMiQuPt wv2FVHgvxBD33kxYOkOuSL3+q2oUEGQ0w6/2y8lEFyYSVk8an+cXiuVKX+oNgcrW iwwA5gYCrOFfdtwFOox1KHyOSUeRWfJ12LptDzm61/YuqfUb+7q5V1fxdQkpeGw+ G0A/0+kUaZeQXuiV1zVXkd0+drnpDVKdvxFHpHoEERc= -----END CERTIFICATE-----Generated at Wed May 13 11:59:45 2026 by rpki-client