$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: kk/YLt9sOibq+Ehirb8Tv+ujtGYKVYXNjuOikBMvvf4= Subject key identifier: 44:B1:F5:17:5A:B4:25:A4:93:B6:22:B3:1D:B4:27:43:3C:A7:0A:BB Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 3EB86B2DDFE287CAF3D371260C2014B3BDEABCFE Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:09 +0000 ROA not before: Sun 03 May 2026 02:48:09 +0000 ROA not after: Sun 02 May 2027 02:53:09 +0000 asID: 131745 IP address blocks: 210.247.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b8:6b:2d:df:e2:87:ca:f3:d3:71:26:0c:20:14:b3:bd:ea:bc:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:09 2026 GMT Not After : May 2 02:53:09 2027 GMT Subject: CN=44B1F5175AB425A493B622B31DB427433CA70ABB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:71:9c:34:f0:a4:32:ed:1b:bc:13:66:41:48: 85:b9:af:e9:6d:f4:98:ca:61:d3:f4:6b:8e:b9:9d: e8:45:d6:3d:d2:86:bb:36:37:82:01:30:b5:0a:ec: ea:08:67:b6:6b:ef:da:0c:83:fb:03:09:d3:3a:e8: 77:6e:c0:be:c1:dd:8e:18:ae:8d:93:92:ba:d9:5e: eb:a2:bf:ff:19:43:b2:0d:86:0c:34:1a:fe:dc:c6: 9c:24:78:d0:96:4b:82:78:f3:0e:b2:84:58:95:fc: 9d:85:f4:49:da:4f:8b:39:74:42:6d:9b:70:06:ac: 20:c0:08:35:44:60:bc:52:92:db:1f:c9:0e:6d:43: f3:88:3d:4f:9d:8d:5f:55:df:6b:74:21:1a:b6:65: 5b:65:ec:b5:36:3c:23:ad:dc:c9:1b:45:a6:13:d9: c4:17:0c:43:2e:53:6b:54:5a:c2:d6:19:6d:0e:b3: 18:d7:4e:c4:37:91:66:a6:f4:3a:20:38:b2:80:8e: 09:37:f2:e1:cd:ef:69:5e:c8:62:bc:db:2c:10:1b: 4e:88:74:74:d0:75:fa:f6:b4:cd:d0:ca:5e:df:47: 8c:f3:3a:ff:b0:f4:4b:b9:0a:57:46:3f:39:af:fe: 8d:a3:46:97:52:f3:35:4a:64:aa:f6:04:58:6d:c9: f2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B1:F5:17:5A:B4:25:A4:93:B6:22:B3:1D:B4:27:43:3C:A7:0A:BB X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234392e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.249.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:5c:2e:57:48:c8:04:e7:97:18:e9:31:aa:a0:f0:c7:9e:1e: 4b:14:ef:6e:82:e4:aa:23:b9:5f:b1:e6:34:88:12:78:85:af: 30:97:d0:ea:af:91:54:e1:33:d7:90:3c:1b:9b:04:5d:24:ab: 24:b2:36:33:a3:12:ca:52:d0:50:a0:34:7c:57:00:23:31:77: 72:c5:15:f6:13:a6:8c:81:a6:d5:78:86:8e:4f:64:a0:e2:47: 87:45:7d:f9:d5:76:ee:f9:42:a9:76:d5:76:39:3f:e9:e4:ff: 34:2a:6e:55:15:8e:56:96:47:e8:99:c0:71:77:79:f7:ce:75: 49:02:68:46:bd:db:25:62:0c:96:1e:da:cf:3b:9a:83:63:45: 56:eb:13:0d:91:41:40:18:b2:68:7d:52:83:0c:2a:f0:94:71: a7:67:ed:a8:5e:73:a1:0c:41:bc:f2:dc:1b:08:94:e1:77:ec: d3:34:92:93:d9:23:79:16:f0:18:00:e6:1d:9b:78:ab:34:20: 58:32:06:57:c4:55:33:51:cf:e6:5f:44:29:ea:40:4a:19:8a: 8c:ac:1c:0c:76:e6:c2:ec:c7:1e:14:e2:73:ad:17:ac:f9:b8: 27:4d:e6:69:37:43:eb:ba:3b:6c:e5:e9:35:80:4b:33:b2:55: 63:3d:49:e5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPrhrLd/ih8rz03EmDCAUs73qvP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MDlaFw0yNzA1MDIwMjUzMDlaMDMxMTAvBgNV BAMTKDQ0QjFGNTE3NUFCNDI1QTQ5M0I2MjJCMzFEQjQyNzQzM0NBNzBBQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzcZw08KQy7Ru8E2ZBSIW5r+lt 9JjKYdP0a465nehF1j3Shrs2N4IBMLUK7OoIZ7Zr79oMg/sDCdM66HduwL7B3Y4Y ro2TkrrZXuuiv/8ZQ7INhgw0Gv7cxpwkeNCWS4J48w6yhFiV/J2F9EnaT4s5dEJt m3AGrCDACDVEYLxSktsfyQ5tQ/OIPU+djV9V32t0IRq2ZVtl7LU2PCOt3MkbRaYT 2cQXDEMuU2tUWsLWGW0OsxjXTsQ3kWam9DogOLKAjgk38uHN72leyGK82ywQG06I dHTQdfr2tM3Qyl7fR4zzOv+w9Eu5CldGPzmv/o2jRpdS8zVKZKr2BFhtyfKLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURLH1F1q0JaSTtiKzHbQnQzynCrswHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/kwDQYJ KoZIhvcNAQELBQADggEBAH9cLldIyATnlxjpMaqg8MeeHksU726C5KojuV+x5jSI EniFrzCX0OqvkVThM9eQPBubBF0kqySyNjOjEspS0FCgNHxXACMxd3LFFfYTpoyB ptV4ho5PZKDiR4dFffnVdu75Qql21XY5P+nk/zQqblUVjlaWR+iZwHF3effOdUkC aEa92yViDJYe2s87moNjRVbrEw2RQUAYsmh9UoMMKvCUcadn7ahec6EMQbzy3BsI lOF37NM0kpPZI3kW8BgA5h2beKs0IFgyBlfEVTNRz+ZfRCnqQEoZioysHAx25sLs xx4U4nOtF6z5uCdN5mk3Q+u6O2zl6TWASzOyVWM9SeU= -----END CERTIFICATE-----Generated at Wed May 13 14:13:55 2026 by rpki-client