$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32302d3234203d3e203137363731.roa File: 3230322e34372e36342e302f32302d3234203d3e203137363731.roa (raw, json) Hash identifier: tg3UIG09Wo3EEzwQJd10bUf8AnsaftlMddaMBtkevr8= Subject key identifier: CA:EC:01:F0:49:80:52:ED:8B:24:3B:38:6B:25:C2:40:55:BE:F9:5F Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 20174BE77E9331595FAC4C56B6470D838773A650 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32302d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:07 +0000 ROA not before: Sun 03 May 2026 02:45:07 +0000 ROA not after: Sun 02 May 2027 02:50:07 +0000 asID: 17671 IP address blocks: 202.47.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:17:4b:e7:7e:93:31:59:5f:ac:4c:56:b6:47:0d:83:87:73:a6:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:07 2026 GMT Not After : May 2 02:50:07 2027 GMT Subject: CN=CAEC01F0498052ED8B243B386B25C24055BEF95F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e7:93:54:d7:e1:0b:79:8a:55:f9:64:92:7f: ce:75:aa:3d:35:1b:03:dd:ea:1b:33:06:76:49:2d: aa:ad:d3:f8:5d:c3:e4:9f:29:d6:3b:70:ea:c8:a7: 31:c5:d1:27:ac:ec:16:40:70:cc:c5:0c:43:52:85: 20:36:3e:b6:19:21:c8:71:93:fa:bb:4c:d0:a2:cb: f5:61:4a:3e:0b:b6:9e:5a:2a:a9:6f:6b:d8:7b:ef: 65:0f:3b:37:7a:3a:38:fb:67:65:6c:7c:3e:7a:fe: a1:79:47:a5:0f:24:39:ab:8f:e8:fc:fc:fd:e1:23: 5a:e9:07:6c:c1:e6:66:81:e0:ea:7d:4e:48:ec:5a: d4:a2:37:e4:29:f9:6f:7b:a1:1d:3c:f5:c4:44:52: 86:03:21:88:89:4c:4e:12:5a:d4:83:80:0b:3f:72: 2e:e3:5e:0b:70:a0:f1:9e:b6:ff:2c:3d:93:c8:67: 08:f3:35:81:b7:5f:a4:72:84:34:b0:4f:c6:fd:bd: 6a:dc:e3:a2:75:41:51:e9:98:6a:2c:44:ae:10:74: 47:7a:10:d1:15:a3:95:ce:fd:e2:6d:cc:f7:7b:8c: df:ec:2b:7b:da:aa:2d:6f:b0:a1:d9:39:29:df:7a: 98:4f:76:48:6c:b5:2a:f6:a7:04:2a:dd:7d:ac:12: 95:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EC:01:F0:49:80:52:ED:8B:24:3B:38:6B:25:C2:40:55:BE:F9:5F X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36342e302f32302d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.64.0/20 Signature Algorithm: sha256WithRSAEncryption 6c:31:e9:87:10:68:ac:52:9a:bd:ac:d5:11:70:25:df:00:af: 8c:e1:81:d9:a4:1a:22:0b:ef:99:d1:cd:83:16:dc:eb:18:37: f5:0e:b9:55:0b:d5:8e:c8:87:08:90:c8:6f:33:b6:4d:35:22: 7f:2f:2b:a9:7d:a0:e6:a6:84:d0:11:17:de:19:ba:9c:a0:c4: 56:93:ed:d2:c6:51:33:74:66:81:a0:0c:f3:85:27:ce:b7:d6: 16:77:d9:0a:7d:ae:96:6f:ff:83:4a:8f:12:81:e5:3d:07:19: e5:19:11:94:e8:7f:21:81:93:0a:b8:49:3e:08:5c:d8:e4:54: a8:83:34:55:2b:e7:81:aa:14:78:8c:92:48:a8:84:97:70:57: ca:b2:39:1b:5d:66:47:51:ed:46:39:f9:e4:76:4b:1f:55:28: f4:cc:1a:95:4b:cd:a7:84:2d:f1:21:b6:cf:44:92:a8:6c:65: a0:43:06:aa:71:c4:1a:d0:94:01:91:2c:a0:ca:e6:cb:1e:67: 10:90:81:74:9d:a1:9a:bf:c1:84:94:b6:0f:88:e8:ec:c6:a7: 9d:50:c8:12:e7:75:77:eb:ff:19:81:31:63:e3:ee:88:c0:16: 76:9a:ca:82:58:6e:bb:92:b8:e0:25:82:4e:c5:67:cb:47:76: 0a:65:c9:d9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUIBdL536TMVlfrExWtkcNg4dzplAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MDdaFw0yNzA1MDIwMjUwMDdaMDMxMTAvBgNV BAMTKENBRUMwMUYwNDk4MDUyRUQ4QjI0M0IzODZCMjVDMjQwNTVCRUY5NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR55NU1+ELeYpV+WSSf851qj01 GwPd6hszBnZJLaqt0/hdw+SfKdY7cOrIpzHF0Ses7BZAcMzFDENShSA2PrYZIchx k/q7TNCiy/VhSj4Ltp5aKqlva9h772UPOzd6Ojj7Z2VsfD56/qF5R6UPJDmrj+j8 /P3hI1rpB2zB5maB4Op9TkjsWtSiN+Qp+W97oR089cREUoYDIYiJTE4SWtSDgAs/ ci7jXgtwoPGetv8sPZPIZwjzNYG3X6RyhDSwT8b9vWrc46J1QVHpmGosRK4QdEd6 ENEVo5XO/eJtzPd7jN/sK3vaqi1vsKHZOSnfephPdkhstSr2pwQq3X2sEpWtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUyuwB8EmAUu2LJDs4ayXCQFW++V8wHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNDJlMzAyZjMyMzAy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATKL0AwDQYJKoZIhvcN AQELBQADggEBAGwx6YcQaKxSmr2s1RFwJd8Ar4zhgdmkGiIL75nRzYMW3OsYN/UO uVUL1Y7IhwiQyG8ztk01In8vK6l9oOamhNARF94ZupygxFaT7dLGUTN0ZoGgDPOF J8631hZ32Qp9rpZv/4NKjxKB5T0HGeUZEZTofyGBkwq4ST4IXNjkVKiDNFUr54Gq FHiMkkiohJdwV8qyORtdZkdR7UY5+eR2Sx9VKPTMGpVLzaeELfEhts9EkqhsZaBD BqpxxBrQlAGRLKDK5sseZxCQgXSdoZq/wYSUtg+I6OzGp51QyBLndXfr/xmBMWPj 7ojAFnaayoJYbruSuOAlgk7FZ8tHdgplydk= -----END CERTIFICATE-----Generated at Wed May 13 05:51:19 2026 by rpki-client