$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37332e302f32342d3234203d3e20313338303936.roa File: 3230322e34372e37332e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: C9ea/8YVOoCmBh24inj/xmn0Moxj8Yf3JRLmQhdmOTI= Subject key identifier: 06:5C:20:08:71:93:DA:08:90:D1:67:75:03:3C:F9:04:59:DF:D2:D3 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 08FCDB760C042A0264A476DC7E0E4DB0FAFEAF18 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37332e302f32342d3234203d3e20313338303936.roa Signing time: Sun 03 May 2026 02:50:06 +0000 ROA not before: Sun 03 May 2026 02:45:06 +0000 ROA not after: Sun 02 May 2027 02:50:06 +0000 asID: 138096 IP address blocks: 202.47.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:fc:db:76:0c:04:2a:02:64:a4:76:dc:7e:0e:4d:b0:fa:fe:af:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:06 2026 GMT Not After : May 2 02:50:06 2027 GMT Subject: CN=065C20087193DA0890D16775033CF90459DFD2D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9a:37:da:51:81:75:a3:9d:8a:4d:bc:49:7c: 08:b3:24:97:04:03:bc:02:86:31:eb:82:f9:c3:97: d0:7e:f5:22:aa:13:13:d4:48:f6:5c:7c:9e:c8:75: df:ad:fa:20:e3:8f:40:8e:ff:30:29:af:25:41:4d: c7:e8:c6:3a:61:82:7c:e8:e9:23:ec:a5:49:5e:58: 55:cc:81:a7:d6:e2:74:a1:9c:3d:f7:77:ad:ed:13: d9:82:86:8e:32:c6:a9:f5:8a:63:8d:9e:35:c9:da: 05:34:a3:50:cd:70:ac:72:cb:f2:f0:0b:93:9c:45: 16:dd:f4:49:bf:25:31:01:71:5a:57:3b:6f:f0:95: 61:f1:ba:26:76:da:c9:02:8a:88:4b:46:25:2a:fd: e5:35:8f:3e:5a:65:46:64:48:6b:45:f5:de:e2:53: 4f:97:92:d5:8b:6c:33:ad:48:7f:22:87:f1:fc:7b: cc:37:f2:02:1b:9a:26:d7:64:77:ea:70:3a:8b:9a: 27:2a:f8:6e:5a:1c:f9:bf:27:6c:63:ac:cd:a3:bf: cf:72:c9:f3:ae:d1:fc:ea:62:55:5d:15:7b:3f:f1: ad:0c:d1:be:15:6a:c8:b9:79:76:47:08:d6:a7:8c: e6:a8:7c:08:e2:33:fd:e7:2e:82:0a:5d:60:2c:a1: 08:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5C:20:08:71:93:DA:08:90:D1:67:75:03:3C:F9:04:59:DF:D2:D3 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37332e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.73.0/24 Signature Algorithm: sha256WithRSAEncryption a6:a9:fb:4c:4e:43:a1:f7:bc:95:62:99:e5:e9:15:7d:a6:2a: 7e:a4:e8:fb:dc:c5:80:60:a5:d8:59:db:fe:79:45:13:2c:2f: 2b:3d:b2:95:91:9e:a1:4a:38:76:bc:bb:f6:8c:a1:4f:ad:e7: 3c:9a:c1:ae:69:e3:1e:fe:02:0f:59:22:af:02:01:74:59:26: 23:cc:25:37:48:3f:f7:23:5a:96:81:c8:76:9a:3d:56:ad:f5: ad:f7:54:d1:0b:30:37:92:dd:4d:93:ff:14:29:bf:81:4f:50: 73:35:dc:65:b2:d7:71:02:07:3f:2c:7b:83:cd:47:89:95:8b: 4b:f4:4f:9b:7f:7d:2b:43:f5:68:a9:2c:66:14:7f:ee:e9:5b: 24:63:34:01:4f:28:c5:91:97:11:62:9d:43:a4:5f:fe:ae:c1: 00:35:ee:31:52:b9:ad:a7:93:59:39:08:3b:37:4a:1f:f1:c2: f8:42:40:04:c9:ac:14:b4:ff:5f:27:04:2c:36:da:51:f1:6a: f6:b2:2d:7f:2c:ba:93:24:2f:95:b8:8e:e1:d2:45:08:27:9b: e7:1c:3d:d9:f9:ad:d8:ea:25:0a:ea:25:57:b7:5b:2c:48:93: e8:39:91:70:c2:ba:2b:21:dc:e8:83:aa:03:96:04:e4:62:02: 66:58:7c:b1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCPzbdgwEKgJkpHbcfg5NsPr+rxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MDZaFw0yNzA1MDIwMjUwMDZaMDMxMTAvBgNV BAMTKDA2NUMyMDA4NzE5M0RBMDg5MEQxNjc3NTAzM0NGOTA0NTlERkQyRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5mjfaUYF1o52KTbxJfAizJJcE A7wChjHrgvnDl9B+9SKqExPUSPZcfJ7Idd+t+iDjj0CO/zApryVBTcfoxjphgnzo 6SPspUleWFXMgafW4nShnD33d63tE9mCho4yxqn1imONnjXJ2gU0o1DNcKxyy/Lw C5OcRRbd9Em/JTEBcVpXO2/wlWHxuiZ22skCiohLRiUq/eU1jz5aZUZkSGtF9d7i U0+XktWLbDOtSH8ih/H8e8w38gIbmibXZHfqcDqLmicq+G5aHPm/J2xjrM2jv89y yfOu0fzqYlVdFXs/8a0M0b4Vasi5eXZHCNanjOaofAjiM/3nLoIKXWAsoQgJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBlwgCHGT2giQ0Wd1Azz5BFnf0tMwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODMwMzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMovSTANBgkqhkiG 9w0BAQsFAAOCAQEApqn7TE5Dofe8lWKZ5ekVfaYqfqTo+9zFgGCl2Fnb/nlFEywv Kz2ylZGeoUo4dry79oyhT63nPJrBrmnjHv4CD1kirwIBdFkmI8wlN0g/9yNaloHI dpo9Vq31rfdU0QswN5LdTZP/FCm/gU9QczXcZbLXcQIHPyx7g81HiZWLS/RPm399 K0P1aKksZhR/7ulbJGM0AU8oxZGXEWKdQ6Rf/q7BADXuMVK5raeTWTkIOzdKH/HC +EJABMmsFLT/XycELDbaUfFq9rItfyy6kyQvlbiO4dJFCCeb5xw92fmt2OolCuol V7dbLEiT6DmRcMK6KyHc6IOqA5YE5GICZlh8sQ== -----END CERTIFICATE-----Generated at Wed May 13 03:56:41 2026 by rpki-client