$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: Yk4mIGPQKduAZWFcwjNTu/2gsTuXAS4f5Gm0DqPPeQM= Subject key identifier: 37:53:05:CB:E3:B2:84:39:71:66:5F:A7:E9:93:C0:C3:5C:E1:7F:8B Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 7606E1BC99FD09C6C26D5444106C91F227F46EA0 Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:10 +0000 ROA not before: Sun 03 May 2026 02:48:10 +0000 ROA not after: Sun 02 May 2027 02:53:10 +0000 asID: 131745 IP address blocks: 210.247.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:06:e1:bc:99:fd:09:c6:c2:6d:54:44:10:6c:91:f2:27:f4:6e:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:10 2026 GMT Not After : May 2 02:53:10 2027 GMT Subject: CN=375305CBE3B2843971665FA7E993C0C35CE17F8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:18:1f:99:cc:96:4a:2f:d6:54:26:77:a4:2a: 61:28:a2:e3:7b:62:5b:02:86:80:47:49:d4:22:36: fb:83:75:a6:52:ff:a7:7a:26:d7:70:0c:db:e5:17: 5b:a1:2f:98:e0:8c:25:10:f5:01:1d:a0:8f:95:90: ac:cc:ec:29:ca:d1:b0:16:a8:e6:6b:dd:58:ce:40: d1:f8:65:7c:5e:e5:56:e4:42:2e:2d:9a:4b:94:04: e1:79:5e:c6:31:6a:95:f5:ca:8f:3f:5e:f3:c9:00: 95:97:2b:47:71:c2:95:d1:69:3a:77:86:a4:3c:48: 70:56:89:39:e6:56:e6:3b:f2:a6:2c:42:2a:d6:85: 81:99:f3:f2:2e:6e:c8:f7:41:5d:14:fb:b7:21:de: e0:81:8c:c6:d1:06:2b:77:cb:03:94:88:aa:82:36: e4:53:8e:31:f1:7d:ff:02:c1:64:cf:4a:30:4f:7c: d5:32:8b:26:9f:3a:ba:5e:97:04:80:8d:61:44:e1: 96:4d:08:95:e7:7d:ec:63:ea:d3:a1:ec:e6:cc:df: 38:2c:7b:53:6c:2c:ec:b2:36:c8:57:6a:18:bb:51: aa:31:1e:9b:82:f4:b5:60:e5:f6:11:ed:d3:40:14: 71:8c:ae:82:83:76:99:72:c6:4c:66:38:a1:0f:89: 5e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:53:05:CB:E3:B2:84:39:71:66:5F:A7:E9:93:C0:C3:5C:E1:7F:8B X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.252.0/24 Signature Algorithm: sha256WithRSAEncryption 90:22:c3:a7:54:2f:69:9f:d8:6a:57:df:61:13:c3:2a:10:37: 22:f4:2f:61:65:e2:58:56:0b:b3:e6:3e:d5:82:4b:26:1b:d0: f2:8f:42:c5:5b:b2:36:e7:a7:3d:e8:39:16:6d:af:76:1d:f7: cf:31:f6:78:7e:37:5f:4b:b6:ae:73:37:38:81:51:78:2f:2e: 17:75:62:18:ea:ef:6d:25:f1:12:cc:dd:33:1a:5f:5c:ab:29: 5f:2b:22:4c:27:36:55:db:f8:5c:99:b2:00:11:56:70:fe:d9: 0f:01:b3:0a:c9:60:27:5f:6b:08:b3:c2:f9:9f:d8:a4:25:36: f8:35:a0:bd:48:fb:aa:a1:64:08:42:75:20:70:14:80:8d:ce: d5:6a:6f:34:68:d5:9b:2a:e7:c1:95:ba:06:53:d8:09:96:98: 78:e8:42:3d:65:0d:32:aa:c2:96:6a:ff:39:5a:41:72:2b:58: f0:97:75:bf:b0:34:db:b0:ac:0b:0f:81:34:b3:3d:1f:92:d4: 15:3c:4a:85:a7:25:98:6b:c4:14:0f:20:52:ed:c3:29:63:e6: 54:ed:38:5e:da:31:d7:83:46:9f:0d:24:90:44:96:b4:5a:ac: 6a:16:e9:60:5b:78:3c:8a:ff:b1:a3:3a:ff:42:09:5f:87:34: 98:f4:fa:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdgbhvJn9CcbCbVREEGyR8if0bqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MTBaFw0yNzA1MDIwMjUzMTBaMDMxMTAvBgNV BAMTKDM3NTMwNUNCRTNCMjg0Mzk3MTY2NUZBN0U5OTNDMEMzNUNFMTdGOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaGB+ZzJZKL9ZUJnekKmEoouN7 YlsChoBHSdQiNvuDdaZS/6d6JtdwDNvlF1uhL5jgjCUQ9QEdoI+VkKzM7CnK0bAW qOZr3VjOQNH4ZXxe5VbkQi4tmkuUBOF5XsYxapX1yo8/XvPJAJWXK0dxwpXRaTp3 hqQ8SHBWiTnmVuY78qYsQirWhYGZ8/Iubsj3QV0U+7ch3uCBjMbRBit3ywOUiKqC NuRTjjHxff8CwWTPSjBPfNUyiyafOrpelwSAjWFE4ZZNCJXnfexj6tOh7ObM3zgs e1NsLOyyNshXahi7UaoxHpuC9LVg5fYR7dNAFHGMroKDdplyxkxmOKEPiV6bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUN1MFy+OyhDlxZl+n6ZPAw1zhf4swHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/wwDQYJ KoZIhvcNAQELBQADggEBAJAiw6dUL2mf2GpX32ETwyoQNyL0L2Fl4lhWC7PmPtWC SyYb0PKPQsVbsjbnpz3oORZtr3Yd988x9nh+N19Ltq5zNziBUXgvLhd1Yhjq720l 8RLM3TMaX1yrKV8rIkwnNlXb+FyZsgARVnD+2Q8BswrJYCdfawizwvmf2KQlNvg1 oL1I+6qhZAhCdSBwFICNztVqbzRo1Zsq58GVugZT2AmWmHjoQj1lDTKqwpZq/zla QXIrWPCXdb+wNNuwrAsPgTSzPR+S1BU8SoWnJZhrxBQPIFLtwylj5lTtOF7aMdeD Rp8NJJBElrRarGoW6WBbeDyK/7GjOv9CCV+HNJj0+sc= -----END CERTIFICATE-----Generated at Wed May 13 12:05:56 2026 by rpki-client