$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa File: 3230322e34372e36362e302f32342d3234203d3e20313338313036.roa (raw, json) Hash identifier: ux3hkxSGIJcoFjv4y4veI9D+o2A5cnZ4cFeq9DXrLLU= Subject key identifier: 7B:CF:04:B2:B6:96:E0:00:F5:08:C1:74:A7:2E:FE:10:47:59:3F:A5 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 0D7CF1486ADFBBABF0C4E9163683689D68843ED6 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa Signing time: Sun 03 May 2026 02:50:05 +0000 ROA not before: Sun 03 May 2026 02:45:05 +0000 ROA not after: Sun 02 May 2027 02:50:05 +0000 asID: 138106 IP address blocks: 202.47.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:7c:f1:48:6a:df:bb:ab:f0:c4:e9:16:36:83:68:9d:68:84:3e:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:05 2026 GMT Not After : May 2 02:50:05 2027 GMT Subject: CN=7BCF04B2B696E000F508C174A72EFE1047593FA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ef:24:bd:e3:91:60:55:51:7a:ab:23:e9:c6: 58:72:08:ba:13:46:d3:26:3f:4c:04:63:ad:5f:81: 5a:71:f2:3f:05:85:16:71:37:03:2e:9c:e9:0e:ca: b3:b4:c9:e2:60:bb:a9:2d:d6:9b:3d:61:48:fa:8f: 2a:2c:b6:94:19:6c:ee:ca:7a:1a:60:03:54:02:2c: fa:84:ef:08:c5:1e:d0:f7:66:80:ca:01:b4:b1:fc: e9:7e:ad:c8:25:65:ae:65:84:16:a5:ab:26:ec:6e: f5:a6:10:d0:7e:8a:7e:49:68:b8:a4:94:80:b5:7e: 46:c0:31:28:92:a8:f5:42:29:9f:f9:0d:81:3d:93: 2d:08:7f:14:a3:00:83:6e:a4:b2:04:dc:f0:2e:6d: 07:b1:29:fe:6d:6f:15:fb:e5:c4:ae:f5:b3:5a:48: 43:ae:6a:8d:8c:15:30:d3:57:82:03:32:82:1b:96: 81:cc:4e:0a:d6:bf:2f:e8:ed:99:6c:ae:0f:7d:60: 27:b4:64:25:8b:63:26:4d:61:d6:a2:03:c5:63:b3: 9a:9d:6d:20:f7:ff:d8:5b:47:42:20:4f:30:89:f1: 05:a5:02:f7:ae:73:86:0b:e7:b7:5f:ce:81:80:ad: dd:9d:35:03:05:06:9e:a6:5b:72:84:3c:cd:53:2a: 7e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CF:04:B2:B6:96:E0:00:F5:08:C1:74:A7:2E:FE:10:47:59:3F:A5 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36362e302f32342d3234203d3e20313338313036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.66.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:3a:52:c8:48:28:81:db:3d:3c:ab:8d:e4:41:ba:16:87:ad: 6b:f4:d8:6d:f8:01:04:85:9e:9f:7b:e4:46:dd:66:e5:75:da: 83:f7:56:b2:81:06:ac:09:81:76:a1:5a:71:a8:64:0a:de:7d: 3b:4c:f8:bb:ea:0a:76:9d:1a:8a:83:f9:f0:85:81:ea:07:ee: e8:6f:eb:78:f4:1d:4b:0a:97:96:57:a4:0a:45:08:91:1d:e5: 7e:c4:31:e8:4d:43:cd:d6:67:f1:e1:bd:7b:32:08:8c:72:49: d6:cb:be:de:a9:9e:7d:4c:14:d0:da:ec:34:e3:e6:12:77:66: 8e:71:15:11:61:3c:0c:9b:92:b8:ae:d0:7d:63:73:8c:eb:2e: 2d:88:df:db:37:b9:33:ab:28:91:10:34:67:f9:0a:2c:78:7b: d9:c4:8c:d0:d0:53:c1:ec:f8:67:72:12:be:71:45:22:34:4b: da:de:c2:9a:eb:14:93:3f:1e:a2:79:b3:49:aa:12:eb:80:fa: 35:ef:be:53:80:f0:41:02:3b:bb:e9:30:ae:30:a3:c4:a4:04: 16:1c:ce:e6:5f:84:6e:56:ea:8f:98:f1:47:00:52:17:dc:ce: 0b:ab:35:91:93:65:19:7b:9f:07:a3:0f:69:1c:1b:60:0a:67: b5:ed:e4:94 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUDXzxSGrfu6vwxOkWNoNonWiEPtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MDVaFw0yNzA1MDIwMjUwMDVaMDMxMTAvBgNV BAMTKDdCQ0YwNEIyQjY5NkUwMDBGNTA4QzE3NEE3MkVGRTEwNDc1OTNGQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX7yS945FgVVF6qyPpxlhyCLoT RtMmP0wEY61fgVpx8j8FhRZxNwMunOkOyrO0yeJgu6kt1ps9YUj6jyostpQZbO7K ehpgA1QCLPqE7wjFHtD3ZoDKAbSx/Ol+rcglZa5lhBalqybsbvWmENB+in5JaLik lIC1fkbAMSiSqPVCKZ/5DYE9ky0IfxSjAINupLIE3PAubQexKf5tbxX75cSu9bNa SEOuao2MFTDTV4IDMoIbloHMTgrWvy/o7Zlsrg99YCe0ZCWLYyZNYdaiA8Vjs5qd bSD3/9hbR0IgTzCJ8QWlAveuc4YL57dfzoGArd2dNQMFBp6mW3KEPM1TKn6DAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUe88EsraW4AD1CMF0py7+EEdZP6UwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODMxMzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovQjANBgkqhkiG 9w0BAQsFAAOCAQEADzpSyEgogds9PKuN5EG6Foeta/TYbfgBBIWen3vkRt1m5XXa g/dWsoEGrAmBdqFacahkCt59O0z4u+oKdp0aioP58IWB6gfu6G/rePQdSwqXllek CkUIkR3lfsQx6E1DzdZn8eG9ezIIjHJJ1su+3qmefUwU0NrsNOPmEndmjnEVEWE8 DJuSuK7QfWNzjOsuLYjf2ze5M6sokRA0Z/kKLHh72cSM0NBTwez4Z3ISvnFFIjRL 2t7CmusUkz8eonmzSaoS64D6Ne++U4DwQQI7u+kwrjCjxKQEFhzO5l+Eblbqj5jx RwBSF9zOC6s1kZNlGXufB6MPaRwbYApnte3klA== -----END CERTIFICATE-----Generated at Wed May 13 02:26:24 2026 by rpki-client