$ rpki-client -vvf rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa File: 3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa (raw, json) Hash identifier: mhO206C5MCEo68TF6ww7+81+IS3YTnFs3GIVpnP+S28= Subject key identifier: 99:86:0B:01:19:80:49:F0:11:D6:95:CC:CC:75:70:93:97:BC:E3:07 Certificate issuer: /CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Certificate serial: 6C4D2F10A48AC1D2A86049B1126453BF3534B760 Authority key identifier: 20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa Signing time: Sun 03 May 2026 02:53:13 +0000 ROA not before: Sun 03 May 2026 02:48:13 +0000 ROA not after: Sun 02 May 2027 02:53:13 +0000 asID: 131745 IP address blocks: 210.247.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:27:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:4d:2f:10:a4:8a:c1:d2:a8:60:49:b1:12:64:53:bf:35:34:b7:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=207EA811568CF1DB9A757936B650F6F68EBB08B5 Validity Not Before: May 3 02:48:13 2026 GMT Not After : May 2 02:53:13 2027 GMT Subject: CN=99860B01198049F011D695CCCC75709397BCE307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:7b:fb:8f:93:35:5d:0f:02:aa:6f:6a:8c:5a: 31:68:84:69:b4:f3:1c:9b:2f:05:b8:01:ac:69:c1: ec:a2:e3:7e:d7:a5:4f:c0:d0:e1:f9:0a:cf:96:61: 35:74:e8:1d:36:72:d5:f8:cd:3d:74:b6:18:6c:1d: 52:5c:51:ab:b0:09:cf:b2:55:6e:5b:5d:8b:34:b6: 4f:25:77:50:b6:86:9a:7b:42:48:b9:1c:5c:ac:42: 5d:7e:c9:c2:be:6f:6d:53:50:1c:4c:97:a7:b4:33: 98:28:3f:be:ae:59:0a:9c:ce:1e:13:ab:ed:9c:36: 03:d7:f3:f4:da:f6:07:60:b8:eb:d2:e0:49:db:ef: 99:f3:2b:31:c7:00:b1:b1:e4:b8:10:e6:49:73:ce: 8e:0c:7c:56:53:76:86:d5:cd:0f:f4:13:a6:65:64: 96:f8:7e:d5:78:b1:54:37:5c:13:65:2a:38:8c:04: e1:53:24:c7:62:42:88:6a:df:70:9c:41:1f:72:1c: f5:dc:47:bf:35:3d:1c:00:80:5d:ae:23:91:2a:4b: 43:54:30:e1:c8:d6:0c:7b:2e:7b:3d:3d:0f:e4:60: a5:df:15:75:95:bc:11:cc:6b:72:0b:fc:74:ec:d0: c1:17:81:fc:c0:ce:da:cd:10:ea:0f:b8:0a:ca:34: 93:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:86:0B:01:19:80:49:F0:11:D6:95:CC:CC:75:70:93:97:BC:E3:07 X509v3 Authority Key Identifier: keyid:20:7E:A8:11:56:8C:F1:DB:9A:75:79:36:B6:50:F6:F6:8E:BB:08:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/207EA811568CF1DB9A757936B650F6F68EBB08B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/207EA811568CF1DB9A757936B650F6F68EBB08B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235352e302f32342d3234203d3e20313331373435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.247.255.0/24 Signature Algorithm: sha256WithRSAEncryption 62:b2:44:64:c3:0d:40:c2:e4:a9:dd:da:2a:9c:fb:09:7c:e7: 46:42:6b:43:b5:08:e0:f3:10:49:e9:b9:5d:ba:77:1e:25:d5: a5:81:f7:06:f2:a9:b5:7f:e6:81:1b:fa:93:cf:16:e9:04:25: 49:55:06:1b:12:1c:9b:fc:94:93:03:76:76:b0:84:48:82:aa: ee:53:ac:29:d7:b7:e9:30:97:d1:34:64:2d:0b:c5:e4:48:4f: 1b:81:17:b6:8a:19:23:d9:aa:d4:2a:7b:4a:aa:35:6a:d4:7e: 19:4e:e5:9c:86:c4:b1:5e:96:0d:04:e7:6c:fb:60:4b:c9:fc: c2:d6:12:6b:aa:df:12:b4:bb:f1:f6:f0:2f:40:fe:75:ab:70: c9:ec:75:77:2a:c1:a4:d3:34:e4:92:62:86:0d:a6:c8:59:ba: 78:ec:61:57:4f:0f:3e:13:69:37:6d:2b:89:45:4e:b9:20:a7: 9f:6a:97:00:59:a8:11:da:4c:a7:ae:d8:45:49:7c:19:54:43: bb:f5:43:2e:7f:a5:e5:dc:e5:a4:60:f6:c8:f6:4b:30:e3:6f: 3e:75:f2:ec:c7:7e:d0:c6:f4:8c:3a:5a:00:1d:82:c9:66:c7: a8:96:07:89:6e:1d:03:23:ad:0c:db:62:08:36:1e:9e:e8:10: 52:2b:ce:1f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbE0vEKSKwdKoYEmxEmRTvzU0t2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA3RUE4MTE1NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4 RUJCMDhCNTAeFw0yNjA1MDMwMjQ4MTNaFw0yNzA1MDIwMjUzMTNaMDMxMTAvBgNV BAMTKDk5ODYwQjAxMTk4MDQ5RjAxMUQ2OTVDQ0NDNzU3MDkzOTdCQ0UzMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0e/uPkzVdDwKqb2qMWjFohGm0 8xybLwW4Aaxpweyi437XpU/A0OH5Cs+WYTV06B02ctX4zT10thhsHVJcUauwCc+y VW5bXYs0tk8ld1C2hpp7Qki5HFysQl1+ycK+b21TUBxMl6e0M5goP76uWQqczh4T q+2cNgPX8/Ta9gdguOvS4Enb75nzKzHHALGx5LgQ5klzzo4MfFZTdobVzQ/0E6Zl ZJb4ftV4sVQ3XBNlKjiMBOFTJMdiQohq33CcQR9yHPXcR781PRwAgF2uI5EqS0NU MOHI1gx7Lns9PQ/kYKXfFXWVvBHMa3IL/HTs0MEXgfzAztrNEOoPuArKNJOtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmYYLARmASfAR1pXMzHVwk5e84wcwHwYDVR0j BBgwFoAUIH6oEVaM8duadXk2tlD29o67CLUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTYxMjQzMjktZWMyMC00NDYwLWFjMzEtOWMzNmNmOTRmM2ZiLzAvMjA3RUE4MTE1 NjhDRjFEQjlBNzU3OTM2QjY1MEY2RjY4RUJCMDhCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDdFQTgxMTU2OENGMURCOUE3NTc5MzZCNjUwRjZGNjhFQkIw OEI1LmNlcjCBpwYIKwYBBQUHAQsEgZowgZcwgZQGCCsGAQUFBzALhoGHcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzk2MTI0MzI5LWVjMjAtNDQ2MC1h YzMxLTljMzZjZjk0ZjNmYi8wLzMyMzEzMDJlMzIzNDM3MmUzMjM1MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzM0MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADS9/8wDQYJ KoZIhvcNAQELBQADggEBAGKyRGTDDUDC5Knd2iqc+wl850ZCa0O1CODzEEnpuV26 dx4l1aWB9wbyqbV/5oEb+pPPFukEJUlVBhsSHJv8lJMDdnawhEiCqu5TrCnXt+kw l9E0ZC0LxeRITxuBF7aKGSPZqtQqe0qqNWrUfhlO5ZyGxLFelg0E52z7YEvJ/MLW Emuq3xK0u/H28C9A/nWrcMnsdXcqwaTTNOSSYoYNpshZunjsYVdPDz4TaTdtK4lF Trkgp59qlwBZqBHaTKeu2EVJfBlUQ7v1Qy5/peXc5aRg9sj2SzDjbz518uzHftDG 9Iw6WgAdgslmx6iWB4luHQMjrQzbYgg2Hp7oEFIrzh8= -----END CERTIFICATE-----Generated at Wed May 13 11:59:28 2026 by rpki-client