$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37322e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37322e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: znGd44sm+aCHLvx/AB21s4eUuDdHFUt9ClUmqIfDRhI= Subject key identifier: 16:23:0D:43:BA:5B:A9:AA:2E:4F:46:0D:48:E0:08:74:CF:54:0D:D9 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 5B1E8EDFD390CC80B235E52949A5694BE94BC8DA Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37322e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:18 +0000 ROA not before: Sun 03 May 2026 02:45:18 +0000 ROA not after: Sun 02 May 2027 02:50:18 +0000 asID: 17671 IP address blocks: 202.47.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1e:8e:df:d3:90:cc:80:b2:35:e5:29:49:a5:69:4b:e9:4b:c8:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:18 2026 GMT Not After : May 2 02:50:18 2027 GMT Subject: CN=16230D43BA5BA9AA2E4F460D48E00874CF540DD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:05:7a:7a:54:c5:28:7e:f7:e0:01:a9:45:3a: 13:60:26:ea:9d:73:62:fa:d1:be:68:fc:74:f8:e0: 07:a0:c5:12:1c:5e:83:59:fd:5f:54:6e:2b:3f:d8: e2:d4:d3:0c:f7:93:98:4e:3e:d9:7a:d5:57:5c:26: ab:87:8e:2d:c7:a1:d4:28:37:45:3b:b2:7c:c4:1e: 64:8a:36:16:c9:d3:8f:41:29:5e:5a:81:2a:7b:02: 01:88:a1:54:14:6d:aa:ee:79:0e:8f:1e:9e:69:ec: e0:6c:b0:f9:c3:04:fd:9c:86:b9:b3:11:c7:46:18: d1:5d:6a:fe:cf:c2:c1:2d:b3:0e:ca:87:af:1a:12: 2f:0a:ce:19:24:af:3f:3b:fd:b6:57:ee:37:30:74: ca:36:3c:c8:2a:96:33:0b:c2:30:f5:54:e4:ad:28: 60:fd:f1:7e:e3:fc:ce:e9:79:4a:8a:3e:81:3e:7a: e1:90:da:bc:88:e8:3f:f8:0e:d1:59:ce:1c:86:08: 11:58:44:30:07:27:f8:f5:1b:3f:4a:5e:06:a5:8e: 82:88:d7:a0:bc:f9:40:5a:2c:e3:a5:8e:66:00:51: a7:dc:97:e5:a3:32:aa:8c:f2:a7:d8:f9:fe:16:c0: f8:d3:fd:77:b2:b6:78:aa:55:68:3f:5d:c7:49:41: b3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:23:0D:43:BA:5B:A9:AA:2E:4F:46:0D:48:E0:08:74:CF:54:0D:D9 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37322e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.72.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:1d:8f:ae:f5:e9:d2:9e:0e:10:60:04:81:99:7d:a2:a5:71: 54:69:3a:53:42:29:ed:bd:ad:ca:f0:5d:57:53:c2:39:ea:be: 71:13:a7:42:72:66:46:79:99:65:43:1a:ec:06:52:ef:cc:32: d8:08:ab:b0:42:45:05:f5:06:86:3d:d7:53:31:f8:4b:75:9f: db:57:24:f1:ab:29:23:ee:96:40:de:3d:14:43:01:1a:1b:0b: c9:c6:b9:a4:bb:2c:fd:87:4e:c5:57:f1:52:62:c9:f7:76:4e: 52:12:bd:0b:56:2f:b3:5c:c9:39:11:31:00:2f:53:fa:37:53: 44:8a:1b:dd:64:55:99:4d:50:02:72:24:01:63:68:5c:0a:65: 3f:fc:a4:3e:13:10:3a:6b:ac:2b:2b:4a:2f:77:43:18:ff:5d: 78:dc:00:15:cf:20:0f:ed:fc:4a:e3:54:c6:6a:e4:9e:ff:e0: cb:8e:0e:cb:1b:1a:2c:69:47:fa:24:bf:fe:65:da:ae:12:9f: 20:b2:ff:49:b8:06:10:59:4d:68:c2:aa:c2:14:52:cf:72:c0: 36:e7:78:d0:53:fe:61:fc:6d:15:c7:a1:8e:33:23:f6:2b:41: b8:ac:51:16:c4:17:77:75:73:fb:e6:ff:38:82:d4:cd:b0:24: ae:ff:5d:85 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWx6O39OQzICyNeUpSaVpS+lLyNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MThaFw0yNzA1MDIwMjUwMThaMDMxMTAvBgNV BAMTKDE2MjMwRDQzQkE1QkE5QUEyRTRGNDYwRDQ4RTAwODc0Q0Y1NDBERDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbBXp6VMUofvfgAalFOhNgJuqd c2L60b5o/HT44AegxRIcXoNZ/V9Ubis/2OLU0wz3k5hOPtl61VdcJquHji3HodQo N0U7snzEHmSKNhbJ049BKV5agSp7AgGIoVQUbarueQ6PHp5p7OBssPnDBP2chrmz EcdGGNFdav7PwsEtsw7Kh68aEi8Kzhkkrz87/bZX7jcwdMo2PMgqljMLwjD1VOSt KGD98X7j/M7peUqKPoE+euGQ2ryI6D/4DtFZzhyGCBFYRDAHJ/j1Gz9KXgaljoKI 16C8+UBaLOOljmYAUafcl+WjMqqM8qfY+f4WwPjT/XeytniqVWg/XcdJQbMHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUFiMNQ7pbqaouT0YNSOAIdM9UDdkwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0gwDQYJKoZIhvcN AQELBQADggEBAC4dj6716dKeDhBgBIGZfaKlcVRpOlNCKe29rcrwXVdTwjnqvnET p0JyZkZ5mWVDGuwGUu/MMtgIq7BCRQX1BoY911Mx+Et1n9tXJPGrKSPulkDePRRD ARobC8nGuaS7LP2HTsVX8VJiyfd2TlISvQtWL7NcyTkRMQAvU/o3U0SKG91kVZlN UAJyJAFjaFwKZT/8pD4TEDprrCsrSi93Qxj/XXjcABXPIA/t/ErjVMZq5J7/4MuO DssbGixpR/okv/5l2q4SnyCy/0m4BhBZTWjCqsIUUs9ywDbneNBT/mH8bRXHoY4z I/YrQbisURbEF3d1c/vm/ziC1M2wJK7/XYU= -----END CERTIFICATE-----Generated at Wed May 13 05:51:12 2026 by rpki-client