$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: zZnfuS7x4B3IbMWwGHUKAscPUAhTdq47Ud12yvcyTws= Subject key identifier: 59:61:57:D6:74:3B:F8:1E:9D:B7:A7:8D:C9:3D:48:A9:B1:95:5F:6B Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 1D16DE38AA9C88F77508ED9C7C77BB4770DD916A Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:12 +0000 ROA not before: Sun 03 May 2026 02:48:12 +0000 ROA not after: Sun 02 May 2027 02:53:12 +0000 asID: 131745 IP address blocks: 210.247.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:16:de:38:aa:9c:88:f7:75:08:ed:9c:7c:77:bb:47:70:dd:91:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:12 2026 GMT Not After : May 2 02:53:12 2027 GMT Subject: CN=596157D6743BF81E9DB7A78DC93D48A9B1955F6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:55:cb:ab:29:3e:4b:ed:90:af:3d:b3:b8:90: da:47:1d:0e:f9:b9:83:b3:eb:25:78:86:ad:71:c6: 17:9b:03:31:45:7e:2a:5a:f5:da:8c:77:e7:01:b9: f3:ab:1b:22:8f:64:de:dd:f8:f6:e8:dd:40:72:a7: d5:a2:e5:29:09:1e:29:7f:51:49:db:20:e5:52:0b: b6:05:1b:c2:01:99:84:4d:3f:08:af:69:17:3c:9a: f8:51:4d:01:a2:be:10:9b:dd:35:83:0d:d5:96:c0: 95:3d:00:86:a5:32:25:f8:09:09:fc:be:ce:6d:4d: 6f:c3:ed:e7:59:92:98:4e:15:85:6d:cd:32:8d:33: ae:0c:4d:76:aa:f1:98:30:95:dc:55:b8:43:49:32: c8:e7:c3:4d:b9:de:12:ce:cc:a4:99:08:cd:45:e5: bc:08:6e:fd:ed:51:cb:5d:f0:df:e9:e2:35:8c:bf: 2d:e4:16:79:36:61:11:4b:71:91:15:de:ae:4e:53: ac:fb:77:1c:c8:cf:14:b1:1c:1a:18:96:ec:97:2c: 94:53:47:92:3f:91:e1:3d:ec:70:d5:83:6d:b3:ec: 53:7b:e5:ef:1b:21:f1:b9:c7:44:30:02:fc:e3:ef: 5e:dc:80:e7:58:f0:b0:63:35:23:a6:01:2e:b4:9e: 83:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:61:57:D6:74:3B:F8:1E:9D:B7:A7:8D:C9:3D:48:A9:B1:95:5F:6B X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235332e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.253.0/24 Signature Algorithm: sha256WithRSAEncryption ca:a6:8a:ee:b5:c3:31:b0:2c:55:d2:73:1b:85:ec:8f:21:74: ae:ad:10:d9:bc:56:3b:9d:cd:4f:e1:45:4b:c3:d3:0c:b0:d6: f0:dd:e3:c2:d2:7d:c5:60:2f:c4:52:1f:ee:36:0f:99:66:e8: 96:25:c5:64:a3:1d:ff:e6:32:bc:3d:ba:a5:ee:d1:ad:e3:2f: 71:15:0f:27:52:f6:71:9b:9b:91:56:de:2c:53:7d:bf:c3:cb: 85:59:28:d3:ee:46:18:2e:f6:8f:65:dc:21:bd:d1:0f:9e:b7: 1d:28:0a:95:b7:2a:4c:26:06:be:12:eb:11:a9:7a:8a:4d:ed: 08:07:84:cc:3c:bb:a4:43:ea:81:27:7f:b3:2f:55:cc:b1:c5: 37:15:9b:07:fd:d0:7a:f3:ab:7e:f2:61:39:0f:0a:20:3e:aa: 46:4f:08:62:7d:54:75:12:ef:b9:5a:c9:be:ef:b9:70:42:26: 22:02:28:51:9f:b5:de:99:ee:03:58:62:2f:be:18:13:9a:b4: 95:ea:4e:5f:99:a5:64:21:30:f3:90:36:75:69:34:c2:df:63: ef:b6:29:70:6e:02:7c:f5:b2:f3:d8:69:c0:53:3c:62:50:3a: 27:a8:27:82:27:e3:35:cd:8c:b7:57:99:09:ff:da:05:79:47: a1:3d:cb:bd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHRbeOKqciPd1CO2cfHe7R3DdkWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MTJaFw0yNzA1MDIwMjUzMTJaMDMxMTAvBgNV BAMTKDU5NjE1N0Q2NzQzQkY4MUU5REI3QTc4REM5M0Q0OEE5QjE5NTVGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHVcurKT5L7ZCvPbO4kNpHHQ75 uYOz6yV4hq1xxhebAzFFfipa9dqMd+cBufOrGyKPZN7d+Pbo3UByp9Wi5SkJHil/ UUnbIOVSC7YFG8IBmYRNPwivaRc8mvhRTQGivhCb3TWDDdWWwJU9AIalMiX4CQn8 vs5tTW/D7edZkphOFYVtzTKNM64MTXaq8ZgwldxVuENJMsjnw0253hLOzKSZCM1F 5bwIbv3tUctd8N/p4jWMvy3kFnk2YRFLcZEV3q5OU6z7dxzIzxSxHBoYluyXLJRT R5I/keE97HDVg22z7FN75e8bIfG5x0QwAvzj717cgOdY8LBjNSOmAS60noPzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWWFX1nQ7+B6dt6eNyT1IqbGVX2swHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/0wDQYJ KoZIhvcNAQELBQADggEBAMqmiu61wzGwLFXScxuF7I8hdK6tENm8VjudzU/hRUvD 0wyw1vDd48LSfcVgL8RSH+42D5lm6JYlxWSjHf/mMrw9uqXu0a3jL3EVDydS9nGb m5FW3ixTfb/Dy4VZKNPuRhgu9o9l3CG90Q+etx0oCpW3KkwmBr4S6xGpeopN7QgH hMw8u6RD6oEnf7MvVcyxxTcVmwf90Hrzq37yYTkPCiA+qkZPCGJ9VHUS77layb7v uXBCJiICKFGftd6Z7gNYYi++GBOatJXqTl+ZpWQhMPOQNnVpNMLfY++2KXBuAnz1 svPYacBTPGJQOieoJ4In4zXNjLdXmQn/2gV5R6E9y70= -----END CERTIFICATE-----Generated at Wed May 13 11:52:52 2026 by rpki-client