$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36352e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: K3zThlUV/TDlE8zQJ853ZIY0sch1+NAs4x2yKHynais= Subject key identifier: B3:B4:98:AA:10:29:00:C5:17:73:B2:7B:4C:66:41:69:D2:E1:3F:1E Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 58C7C2C05C14471901C2E9DEEA3D5F6A18943FDD Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:09 +0000 ROA not before: Sun 03 May 2026 02:45:09 +0000 ROA not after: Sun 02 May 2027 02:50:09 +0000 asID: 17671 IP address blocks: 202.47.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c7:c2:c0:5c:14:47:19:01:c2:e9:de:ea:3d:5f:6a:18:94:3f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:09 2026 GMT Not After : May 2 02:50:09 2027 GMT Subject: CN=B3B498AA102900C51773B27B4C664169D2E13F1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bd:0c:41:f1:eb:03:e9:93:b0:2b:14:91:91: 8e:1b:da:af:4a:1c:2f:13:b3:4c:ed:a5:f1:6d:97: 1c:f9:a0:21:4f:17:3c:29:20:05:c0:34:3b:ab:51: 0b:28:8a:d1:ce:64:21:86:64:a4:3e:a9:2c:cc:92: e5:38:d1:2a:26:90:58:d9:7c:1d:6d:e4:d8:5f:55: b3:ba:a0:4e:49:1a:ba:5e:13:cd:6f:41:a4:c7:33: dc:64:35:a2:95:99:74:c0:43:9a:27:6c:4a:f6:7d: 61:72:03:86:b5:df:b8:b3:15:46:4d:ff:bf:f7:48: 7b:f5:0f:19:c1:1e:fe:39:5b:74:d4:fb:e0:c6:03: c9:0e:2b:c9:25:ad:b8:7c:20:61:6a:bf:c1:1c:a7: d7:35:e9:96:fa:3d:e1:bb:a3:b0:50:29:f2:03:95: 9c:37:a4:92:8b:1a:5e:90:6f:e2:d3:20:76:2e:b6: 1a:7f:0d:0e:9f:d8:79:4f:44:5a:af:cd:ed:46:e3: 75:24:f7:12:51:57:26:30:d7:2d:80:05:fb:50:93: 2b:36:ce:3e:a2:a0:70:a3:c4:64:09:5b:07:ca:82: 34:71:80:05:0c:ce:46:f3:72:f9:00:0f:20:9f:85: a4:3b:2c:5a:3b:18:b0:72:85:92:17:c6:f3:a6:b7: ee:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B4:98:AA:10:29:00:C5:17:73:B2:7B:4C:66:41:69:D2:E1:3F:1E X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36352e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.65.0/24 Signature Algorithm: sha256WithRSAEncryption 24:a3:93:08:c6:63:b1:5c:72:84:e9:cc:6f:8c:c6:2b:1e:8e: c0:a5:de:f7:22:d1:bb:f2:f2:25:72:6f:7e:a3:42:ad:3a:1b: 0a:76:c3:6e:6a:1b:a1:74:69:0a:1e:81:c9:82:0b:70:6c:52: 65:dc:2d:ca:09:a9:09:83:b4:7a:fa:12:76:7f:60:8f:6a:c7: 45:1a:59:52:fc:bc:64:ac:34:5f:f5:13:14:39:bd:1c:f1:47: b2:ea:42:63:51:10:99:9e:55:e6:3a:6d:ac:49:05:2e:b1:ac: 9a:1c:6e:96:53:2b:eb:20:f7:8e:0c:57:5c:ec:19:d8:62:4a: b4:0b:17:0b:51:8f:53:ab:24:8e:0b:d4:f0:9d:1f:4c:dc:85: 2a:30:f9:db:c4:16:9e:2d:55:4f:9e:59:3a:87:ac:b0:d9:ca: 09:1d:13:6d:9d:31:23:fb:55:fe:7c:51:1f:e3:3c:14:64:a1: b2:af:a7:63:74:32:d3:07:07:36:b1:20:e1:75:1a:65:e9:74: b5:b2:ec:b6:b0:7c:98:6e:de:7c:a7:04:dc:56:5c:ea:9f:bc: 91:74:85:8b:ea:f9:d8:09:34:0e:66:c2:80:1f:6b:a0:59:92: 61:1b:dc:63:d6:15:52:61:b5:33:2f:de:44:a1:d3:db:ef:a7: b7:55:33:31 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWMfCwFwURxkBwune6j1fahiUP90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MDlaFw0yNzA1MDIwMjUwMDlaMDMxMTAvBgNV BAMTKEIzQjQ5OEFBMTAyOTAwQzUxNzczQjI3QjRDNjY0MTY5RDJFMTNGMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8vQxB8esD6ZOwKxSRkY4b2q9K HC8Ts0ztpfFtlxz5oCFPFzwpIAXANDurUQsoitHOZCGGZKQ+qSzMkuU40SomkFjZ fB1t5NhfVbO6oE5JGrpeE81vQaTHM9xkNaKVmXTAQ5onbEr2fWFyA4a137izFUZN /7/3SHv1DxnBHv45W3TU++DGA8kOK8klrbh8IGFqv8Ecp9c16Zb6PeG7o7BQKfID lZw3pJKLGl6Qb+LTIHYuthp/DQ6f2HlPRFqvze1G43Uk9xJRVyYw1y2ABftQkys2 zj6ioHCjxGQJWwfKgjRxgAUMzkbzcvkADyCfhaQ7LFo7GLByhZIXxvOmt+7nAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUs7SYqhApAMUXc7J7TGZBadLhPx4wHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0EwDQYJKoZIhvcN AQELBQADggEBACSjkwjGY7FccoTpzG+MxisejsCl3vci0bvy8iVyb36jQq06Gwp2 w25qG6F0aQoegcmCC3BsUmXcLcoJqQmDtHr6EnZ/YI9qx0UaWVL8vGSsNF/1ExQ5 vRzxR7LqQmNREJmeVeY6baxJBS6xrJocbpZTK+sg944MV1zsGdhiSrQLFwtRj1Or JI4L1PCdH0zchSow+dvEFp4tVU+eWTqHrLDZygkdE22dMSP7Vf58UR/jPBRkobKv p2N0MtMHBzaxIOF1GmXpdLWy7LawfJhu3nynBNxWXOqfvJF0hYvq+dgJNA5mwoAf a6BZkmEb3GPWFVJhtTMv3kSh09vvp7dVMzE= -----END CERTIFICATE-----Generated at Wed May 13 05:51:16 2026 by rpki-client