$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e20313431303833.roa File: 3230322e34372e36352e302f32342d3234203d3e20313431303833.roa (raw, json) Hash identifier: maPP4Ky+BqtvY5PDuuVIDrPKdKZlMJIHeVkgc00ovPU= Subject key identifier: 65:C1:A2:E1:06:56:A1:35:14:B8:A3:9A:0E:EB:FF:A0:AB:39:87:CF Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 707F3DDC94F690F0ECFE1014A20B63FDED22A97B Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e20313431303833.roa Signing time: Sun 03 May 2026 02:50:22 +0000 ROA not before: Sun 03 May 2026 02:45:22 +0000 ROA not after: Sun 02 May 2027 02:50:22 +0000 asID: 141083 IP address blocks: 202.47.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:7f:3d:dc:94:f6:90:f0:ec:fe:10:14:a2:0b:63:fd:ed:22:a9:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:22 2026 GMT Not After : May 2 02:50:22 2027 GMT Subject: CN=65C1A2E10656A13514B8A39A0EEBFFA0AB3987CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f9:c7:2e:91:37:17:a3:e0:7f:4c:3c:73:bd: 86:78:19:62:f8:9e:29:76:87:8c:19:29:ff:60:46: 0c:98:e0:37:62:bc:3f:1a:dc:55:28:90:4f:76:a4: 41:eb:18:d3:07:4d:f0:6d:1a:ef:cd:08:2b:22:43: 24:d9:4f:b8:76:94:09:64:18:7f:da:2c:0c:ce:66: bf:58:e5:51:c6:81:41:39:32:9f:61:ba:08:51:c9: b4:6a:ab:5c:af:87:d8:e8:17:01:8e:2b:6d:90:96: d4:ec:c4:f8:33:7e:9a:7c:bf:e0:66:60:b7:ad:df: 20:77:aa:47:81:07:1c:9c:44:16:8e:26:82:cf:29: de:e6:be:b2:8b:6c:b8:08:52:ad:43:41:ed:66:ff: 71:3c:ea:55:53:a9:ee:f0:89:97:b2:d4:ff:a3:a5: cf:32:5e:f3:39:af:c1:ea:6f:2a:a8:4b:56:ea:cc: 7f:5c:e7:8b:80:73:c1:12:b3:c6:da:66:22:d4:a4: ed:33:d4:45:34:ea:d4:c3:65:dd:ad:7d:5c:4b:1d: 7a:03:18:3a:16:ed:0d:f1:75:04:57:3a:21:e3:2a: ab:f6:44:25:ae:b7:34:10:3d:57:5b:ee:1c:a9:9e: 97:57:54:33:17:09:38:13:4e:d0:aa:b0:fe:28:2b: 0a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C1:A2:E1:06:56:A1:35:14:B8:A3:9A:0E:EB:FF:A0:AB:39:87:CF X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e20313431303833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.65.0/24 Signature Algorithm: sha256WithRSAEncryption ba:00:7b:3e:78:8f:e9:84:17:8b:fe:30:d1:1d:15:c4:4e:a9: c6:ff:c4:e9:10:54:56:56:15:15:fc:57:ec:84:e9:04:08:1a: b6:d2:8b:e6:84:3f:73:e1:76:6a:d3:5e:b1:a9:89:18:b0:46: 10:61:20:bf:a8:ae:aa:5c:d1:6a:9e:3b:77:aa:8a:84:c4:e3: 39:b5:8f:5a:89:12:ab:3d:6e:01:77:0a:55:29:b9:24:70:ad: 08:9d:2d:d6:31:b9:3a:be:82:c4:87:03:02:ad:a7:76:e9:d7: 69:96:ad:4a:7d:d8:12:b5:23:18:70:6a:29:8c:8a:04:28:df: 28:64:64:90:5d:c9:f0:97:b4:7f:8b:f7:68:cc:be:41:11:fd: ac:12:a4:e2:3f:7c:cb:c6:33:dd:e3:60:ca:de:47:71:86:7c: 66:eb:04:cb:a1:6b:13:bc:04:5f:2f:4d:57:c8:3d:b1:d3:e6: 02:e6:ce:33:cb:89:58:6e:df:3c:41:83:09:8c:aa:3f:21:c6: 41:21:3a:77:ac:d5:09:d8:e6:e2:a2:ae:b4:be:c8:32:0a:20: e1:05:0c:78:0e:78:dd:47:0b:58:c0:c3:d1:d0:c9:9e:85:d7: 35:71:41:6f:11:97:43:cc:d6:94:90:de:ca:89:b0:a0:ef:b6: 0c:39:05:a6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcH893JT2kPDs/hAUogtj/e0iqXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MjJaFw0yNzA1MDIwMjUwMjJaMDMxMTAvBgNV BAMTKDY1QzFBMkUxMDY1NkExMzUxNEI4QTM5QTBFRUJGRkEwQUIzOTg3Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi+ccukTcXo+B/TDxzvYZ4GWL4 nil2h4wZKf9gRgyY4DdivD8a3FUokE92pEHrGNMHTfBtGu/NCCsiQyTZT7h2lAlk GH/aLAzOZr9Y5VHGgUE5Mp9hughRybRqq1yvh9joFwGOK22QltTsxPgzfpp8v+Bm YLet3yB3qkeBBxycRBaOJoLPKd7mvrKLbLgIUq1DQe1m/3E86lVTqe7wiZey1P+j pc8yXvM5r8HqbyqoS1bqzH9c54uAc8ESs8baZiLUpO0z1EU06tTDZd2tfVxLHXoD GDoW7Q3xdQRXOiHjKqv2RCWutzQQPVdb7hypnpdXVDMXCTgTTtCqsP4oKwphAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZcGi4QZWoTUUuKOaDuv/oKs5h88wHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTMwMzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovQTANBgkqhkiG 9w0BAQsFAAOCAQEAugB7PniP6YQXi/4w0R0VxE6pxv/E6RBUVlYVFfxX7ITpBAga ttKL5oQ/c+F2atNesamJGLBGEGEgv6iuqlzRap47d6qKhMTjObWPWokSqz1uAXcK VSm5JHCtCJ0t1jG5Or6CxIcDAq2ndunXaZatSn3YErUjGHBqKYyKBCjfKGRkkF3J 8Je0f4v3aMy+QRH9rBKk4j98y8Yz3eNgyt5HcYZ8ZusEy6FrE7wEXy9NV8g9sdPm AubOM8uJWG7fPEGDCYyqPyHGQSE6d6zVCdjm4qKutL7IMgog4QUMeA543UcLWMDD 0dDJnoXXNXFBbxGXQ8zWlJDeyomwoO+2DDkFpg== -----END CERTIFICATE-----Generated at Wed May 13 02:50:27 2026 by rpki-client