$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: NON+2mKqUMP5nxNEYTSRYXBctaTyrQBZDGBl/+tv7Iw= Subject key identifier: 31:F9:94:E6:52:5C:15:36:90:D3:B3:11:52:C0:06:EA:8D:64:2C:DF Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 6C9DC3D139ADABDF22EE654526E6058ACEFA52E0 Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:08 +0000 ROA not before: Sun 03 May 2026 02:48:08 +0000 ROA not after: Sun 02 May 2027 02:53:08 +0000 asID: 131745 IP address blocks: 210.247.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:9d:c3:d1:39:ad:ab:df:22:ee:65:45:26:e6:05:8a:ce:fa:52:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:08 2026 GMT Not After : May 2 02:53:08 2027 GMT Subject: CN=31F994E6525C153690D3B31152C006EA8D642CDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e7:d1:76:6c:34:31:10:34:1e:98:45:09:65: 46:16:6d:0a:bd:a8:0a:4e:12:ba:06:12:70:0e:e8: 99:4b:ba:a1:28:ab:d7:b2:19:97:77:e8:09:06:ea: 87:81:ee:2d:5f:da:7e:76:9f:af:81:e8:27:c3:15: af:38:dc:8a:03:27:bf:36:17:b8:92:df:54:df:2b: c5:a9:2d:ec:db:eb:ee:68:1a:3f:88:7d:da:a7:0a: 0e:98:cb:1d:1b:73:64:4c:86:d1:b7:dd:98:b0:03: 8e:e0:b6:99:36:9c:e4:27:5b:f6:22:4a:75:f4:a0: 04:db:56:2a:ba:54:aa:82:6c:73:42:32:54:f8:f5: f6:a5:00:ea:30:43:14:fc:37:a4:a9:ff:e8:11:c4: bc:2f:aa:23:94:ad:25:f2:9f:d3:d2:ae:9e:28:90: d7:6c:5e:3c:f0:c4:0e:e7:c6:38:5c:8e:88:7d:40: 12:e4:a9:40:dc:93:7a:1b:f6:da:5a:58:9b:59:7c: 59:ea:2c:74:cb:6f:ed:aa:a1:18:a5:38:c3:b9:17: 11:f6:f9:c5:f3:15:1e:9e:02:e4:cd:67:1e:b4:47: 05:18:fd:e2:0c:8f:7c:7a:cd:31:56:cc:4b:2d:bf: c6:89:6c:23:1e:0e:db:5e:13:ff:4e:eb:5f:d7:01: 9a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F9:94:E6:52:5C:15:36:90:D3:B3:11:52:C0:06:EA:8D:64:2C:DF X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235342e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.254.0/24 Signature Algorithm: sha256WithRSAEncryption 74:96:ae:a4:da:09:a5:19:1e:cf:5a:22:f1:4b:33:a6:47:ae: cb:20:bd:b0:c3:b5:23:86:bb:7e:4d:4d:23:ea:ad:76:0f:5a: 6b:88:f8:2b:79:13:c8:f2:8e:3e:00:bf:44:db:4e:ba:0d:58: 3e:94:ad:62:e9:8e:9a:67:ef:f9:c5:93:5f:a8:e8:df:da:e4: 6d:56:65:f6:49:15:c4:0f:d9:f4:54:17:89:f1:e0:d9:da:71: d4:2e:f3:c6:5f:ab:d4:f1:2f:f9:ec:9a:63:fd:e0:7a:e6:8e: a8:1b:ca:2f:9a:55:3b:8e:39:f6:82:7f:2f:e6:f4:a1:5b:2f: 81:01:3e:db:ef:b9:15:8f:3f:b4:cd:2c:76:ab:ac:72:18:77: 11:b5:42:77:75:bb:d2:ab:35:8a:f6:33:bb:fe:f6:24:f1:ec: e3:f7:08:19:d1:8b:1f:6f:44:ea:bf:99:a2:6d:28:e2:94:0d: 66:ab:76:a7:b0:77:dc:46:02:a0:cb:87:63:18:e3:4f:56:0e: 20:28:e7:17:06:60:41:66:a3:5c:16:fd:b2:fb:71:39:34:52: c4:3e:a6:72:b8:21:c9:0f:3e:3e:69:4c:f5:ac:bf:42:54:8f: 55:32:0d:6b:04:0b:2f:29:2f:91:a6:c2:7e:b4:28:6a:b6:fd: 99:0b:ef:b6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbJ3D0Tmtq98i7mVFJuYFis76UuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MDhaFw0yNzA1MDIwMjUzMDhaMDMxMTAvBgNV BAMTKDMxRjk5NEU2NTI1QzE1MzY5MEQzQjMxMTUyQzAwNkVBOEQ2NDJDREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+59F2bDQxEDQemEUJZUYWbQq9 qApOEroGEnAO6JlLuqEoq9eyGZd36AkG6oeB7i1f2n52n6+B6CfDFa843IoDJ782 F7iS31TfK8WpLezb6+5oGj+IfdqnCg6Yyx0bc2RMhtG33ZiwA47gtpk2nOQnW/Yi SnX0oATbViq6VKqCbHNCMlT49falAOowQxT8N6Sp/+gRxLwvqiOUrSXyn9PSrp4o kNdsXjzwxA7nxjhcjoh9QBLkqUDck3ob9tpaWJtZfFnqLHTLb+2qoRilOMO5FxH2 +cXzFR6eAuTNZx60RwUY/eIMj3x6zTFWzEstv8aJbCMeDtteE/9O61/XAZq3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMfmU5lJcFTaQ07MRUsAG6o1kLN8wHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/4wDQYJ KoZIhvcNAQELBQADggEBAHSWrqTaCaUZHs9aIvFLM6ZHrssgvbDDtSOGu35NTSPq rXYPWmuI+Ct5E8jyjj4Av0TbTroNWD6UrWLpjppn7/nFk1+o6N/a5G1WZfZJFcQP 2fRUF4nx4NnacdQu88Zfq9TxL/nsmmP94Hrmjqgbyi+aVTuOOfaCfy/m9KFbL4EB PtvvuRWPP7TNLHarrHIYdxG1Qnd1u9KrNYr2M7v+9iTx7OP3CBnRix9vROq/maJt KOKUDWardqewd9xGAqDLh2MY409WDiAo5xcGYEFmo1wW/bL7cTk0UsQ+pnK4IckP Pj5pTPWsv0JUj1UyDWsECy8pL5Gmwn60KGq2/ZkL77Y= -----END CERTIFICATE-----Generated at Wed May 13 11:49:22 2026 by rpki-client