$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa File: 3230322e34372e36382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: E7+g1m4CpHppV9E5N1GDdln9MjGGU/GTALVyrsqtyvE= Subject key identifier: D3:22:5D:FE:BB:DC:D2:BD:56:26:90:D4:D0:E8:BF:5D:20:D3:1A:75 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 109321A5558852D96482AE2946FA9EF875F2BC3D Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:20 +0000 ROA not before: Sun 03 May 2026 02:45:20 +0000 ROA not after: Sun 02 May 2027 02:50:20 +0000 asID: 17671 IP address blocks: 202.47.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:93:21:a5:55:88:52:d9:64:82:ae:29:46:fa:9e:f8:75:f2:bc:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:20 2026 GMT Not After : May 2 02:50:20 2027 GMT Subject: CN=D3225DFEBBDCD2BD562690D4D0E8BF5D20D31A75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:0d:dd:b9:32:5c:96:28:41:37:99:13:3f:21: c9:c3:d1:1e:bd:73:88:d3:17:54:fe:89:a5:f8:31: 22:e6:86:0b:9a:d3:96:51:c5:af:1a:3d:91:f4:65: 94:51:0b:e7:78:ae:d9:21:8d:e0:df:77:96:80:45: 8e:f2:e5:d7:bc:a6:11:47:72:29:e7:9a:a1:28:20: 4f:ca:7d:d6:78:5e:f2:f5:a4:5e:50:ce:3d:d0:bd: c3:59:33:59:05:2c:0c:29:70:8e:19:8f:34:08:b8: 56:16:40:fa:81:4b:2e:8b:d9:2c:c5:fa:8b:6d:cd: 12:7e:bf:25:d2:26:4e:bb:a0:8a:9c:ca:56:24:1d: 16:f6:20:f4:20:3d:e1:25:f7:55:99:56:d1:50:f5: 62:0e:c3:a5:e2:d4:84:f0:ab:6e:3d:fa:4e:11:6f: fe:5f:c5:fb:ec:f7:88:4b:19:cd:6e:c6:e9:22:03: 49:8f:8b:44:ec:5f:86:e0:90:01:2d:48:b5:1e:ac: c6:da:e2:0d:ec:0c:ce:b7:58:ce:e3:b1:e4:08:8f: 73:0b:45:a8:0e:d3:f6:86:6e:bb:40:84:01:05:3d: 25:79:cf:67:f6:df:ec:df:e4:eb:40:24:79:f4:55: af:9d:21:22:69:0d:07:d1:5c:f0:c6:75:a7:bb:75: 05:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:22:5D:FE:BB:DC:D2:BD:56:26:90:D4:D0:E8:BF:5D:20:D3:1A:75 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e36382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.68.0/24 Signature Algorithm: sha256WithRSAEncryption b0:13:2d:e6:49:ca:de:99:ab:98:aa:38:ad:4c:65:ec:b9:98: 47:c3:ef:3e:8f:cf:64:7b:06:c1:3c:89:30:73:eb:ba:d2:67: 56:b0:8c:f6:ba:ea:ad:67:49:52:28:75:87:84:33:02:b9:91: 51:e2:52:e2:8d:28:c6:78:dd:f1:ad:04:5e:1b:a8:48:8c:af: 54:6e:bf:68:f0:74:80:1b:77:c7:3b:38:db:d7:13:ca:4a:6e: 74:4d:ec:41:0d:14:93:d9:b7:b7:4b:55:c6:e0:ed:cf:8f:77: 8c:c4:aa:25:50:4b:70:6c:57:fb:9a:f0:13:b0:27:05:ec:b5: 46:27:e3:fb:9e:9d:41:88:8c:2f:2d:a7:6d:40:9c:5e:6c:fc: 5e:5f:9e:70:44:d5:8f:2f:c4:40:1b:aa:bc:8b:9c:d3:26:61: 3a:1c:8f:d7:49:81:33:8e:e6:c8:9b:c6:3c:50:6c:8d:cf:c0: a9:83:8a:05:7a:6c:4b:48:eb:b5:b1:a7:ec:73:2a:55:f5:86: 9a:94:34:ae:12:d2:cc:fc:79:f5:dd:7b:85:ab:ea:f0:73:ad: 69:3e:f2:3d:0c:c2:c7:dd:70:69:59:10:a9:e5:14:ca:bb:1d: e2:0d:50:f7:1a:ee:e2:1f:68:b6:6e:c0:05:ce:99:51:4d:c8: 64:fd:fb:32 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEJMhpVWIUtlkgq4pRvqe+HXyvD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MjBaFw0yNzA1MDIwMjUwMjBaMDMxMTAvBgNV BAMTKEQzMjI1REZFQkJEQ0QyQkQ1NjI2OTBENEQwRThCRjVEMjBEMzFBNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGDd25MlyWKEE3mRM/IcnD0R69 c4jTF1T+iaX4MSLmhgua05ZRxa8aPZH0ZZRRC+d4rtkhjeDfd5aARY7y5de8phFH cinnmqEoIE/KfdZ4XvL1pF5Qzj3QvcNZM1kFLAwpcI4ZjzQIuFYWQPqBSy6L2SzF +ottzRJ+vyXSJk67oIqcylYkHRb2IPQgPeEl91WZVtFQ9WIOw6Xi1ITwq249+k4R b/5fxfvs94hLGc1uxukiA0mPi0TsX4bgkAEtSLUerMba4g3sDM63WM7jseQIj3ML RagO0/aGbrtAhAEFPSV5z2f23+zf5OtAJHn0Va+dISJpDQfRXPDGdae7dQUpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0yJd/rvc0r1WJpDU0Oi/XSDTGnUwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0QwDQYJKoZIhvcN AQELBQADggEBALATLeZJyt6Zq5iqOK1MZey5mEfD7z6Pz2R7BsE8iTBz67rSZ1aw jPa66q1nSVIodYeEMwK5kVHiUuKNKMZ43fGtBF4bqEiMr1Ruv2jwdIAbd8c7ONvX E8pKbnRN7EENFJPZt7dLVcbg7c+Pd4zEqiVQS3BsV/ua8BOwJwXstUYn4/uenUGI jC8tp21AnF5s/F5fnnBE1Y8vxEAbqryLnNMmYTocj9dJgTOO5sibxjxQbI3PwKmD igV6bEtI67Wxp+xzKlX1hpqUNK4S0sz8efXde4Wr6vBzrWk+8j0MwsfdcGlZEKnl FMq7HeINUPca7uIfaLZuwAXOmVFNyGT9+zI= -----END CERTIFICATE-----Generated at Wed May 13 05:51:15 2026 by rpki-client