$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37352e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37352e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: yKBQUmO5wYroeIhvfOCM0EvXYQFfkvSoEPjp1yyMOmE= Subject key identifier: 10:8B:01:3E:C0:5C:A6:6F:3C:BA:F8:47:C2:57:1D:DE:C4:74:7C:4A Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 1B283ECC2412ABECC0B99089690CDAF1A565114A Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37352e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:19 +0000 ROA not before: Sun 03 May 2026 02:45:19 +0000 ROA not after: Sun 02 May 2027 02:50:19 +0000 asID: 17671 IP address blocks: 202.47.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:28:3e:cc:24:12:ab:ec:c0:b9:90:89:69:0c:da:f1:a5:65:11:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:19 2026 GMT Not After : May 2 02:50:19 2027 GMT Subject: CN=108B013EC05CA66F3CBAF847C2571DDEC4747C4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b0:3d:81:f6:d5:1b:bc:61:72:b3:66:9e:3a: 2f:3d:42:b6:75:5d:9e:55:2b:45:12:4c:ff:9b:9b: 7a:1e:64:e2:84:5b:4b:5a:46:1a:ba:96:de:eb:d4: d8:02:8b:d5:10:67:a0:b8:37:04:99:c4:e1:2d:2c: 9f:06:76:5f:6a:d8:44:3e:ae:36:77:b6:0c:42:57: 42:79:85:0e:44:29:df:03:a0:df:3f:a9:7a:5d:b5: 2d:2f:2c:c7:73:37:ba:14:94:f5:30:7d:6b:3f:c1: 13:e9:aa:bf:69:dd:bb:38:61:7e:4e:63:7e:bb:0f: 3c:df:11:25:25:ad:c5:4b:34:e7:ea:fb:13:bb:98: f3:97:92:e2:7e:23:ea:1f:3a:7b:02:c2:e1:fc:76: c5:6f:6f:95:f0:49:1b:7e:1c:e6:4f:6c:1a:5c:5e: bb:5c:a4:ea:83:63:36:3f:6b:50:f3:8f:20:cc:83: 90:6f:6b:1b:a2:42:d7:f5:d1:ec:ef:c4:02:c2:85: 1e:4d:ba:86:88:76:6c:0e:e9:c7:23:8e:ce:ec:bd: d8:7a:2d:8d:04:3c:a7:71:da:77:b2:39:cf:87:20: 6f:1d:23:cd:68:03:bc:6d:51:67:cf:cc:a6:bc:bd: ec:1f:4d:3b:9e:76:80:b8:d5:99:1c:46:a3:91:be: e5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8B:01:3E:C0:5C:A6:6F:3C:BA:F8:47:C2:57:1D:DE:C4:74:7C:4A X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37352e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.75.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:eb:ca:e9:44:95:6b:7a:8b:25:a1:e5:62:a8:38:41:6f:82: 37:11:3c:0f:57:dd:f8:e6:d5:90:4a:45:48:b4:28:a3:d8:58: c8:e8:95:a2:ed:3a:e4:b3:69:7a:f1:73:4d:88:40:e9:2d:db: a5:9b:97:90:f1:7b:11:ae:bd:46:c5:cc:7e:cb:c9:42:fe:96: 49:e3:ec:f7:18:8d:04:5b:f1:21:e1:df:5e:f0:40:53:ac:61: 4a:7f:5a:fd:52:9f:94:18:65:bd:55:e6:47:c5:b7:29:94:96: 54:11:a5:63:2b:f6:59:e7:7c:f4:c5:5e:57:55:07:1c:3e:36: f9:e4:4d:55:b5:45:98:96:f5:7b:77:7a:74:95:9a:3a:37:e6: ac:04:02:41:8c:d0:ca:6b:80:43:e5:84:05:bd:23:16:df:20: 52:01:b4:30:ef:16:36:f1:93:3d:92:cd:f5:1a:47:28:ba:9b: 8b:7c:e6:85:c8:18:f1:e8:8a:e9:95:05:f5:ff:d1:3e:47:5d: 34:f1:86:07:0a:99:7c:1f:a9:38:00:f2:9b:1c:a9:b8:d7:da: d0:c6:66:82:6c:49:0e:2a:4f:f6:44:a2:8d:ab:84:20:ff:05: 6d:4d:c4:75:d1:2b:18:6f:01:4c:d1:b0:db:3b:18:16:07:32: 20:a4:d9:07 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUGyg+zCQSq+zAuZCJaQza8aVlEUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTlaFw0yNzA1MDIwMjUwMTlaMDMxMTAvBgNV BAMTKDEwOEIwMTNFQzA1Q0E2NkYzQ0JBRjg0N0MyNTcxRERFQzQ3NDdDNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5sD2B9tUbvGFys2aeOi89QrZ1 XZ5VK0USTP+bm3oeZOKEW0taRhq6lt7r1NgCi9UQZ6C4NwSZxOEtLJ8Gdl9q2EQ+ rjZ3tgxCV0J5hQ5EKd8DoN8/qXpdtS0vLMdzN7oUlPUwfWs/wRPpqr9p3bs4YX5O Y367DzzfESUlrcVLNOfq+xO7mPOXkuJ+I+ofOnsCwuH8dsVvb5XwSRt+HOZPbBpc XrtcpOqDYzY/a1DzjyDMg5BvaxuiQtf10ezvxALChR5NuoaIdmwO6ccjjs7svdh6 LY0EPKdx2neyOc+HIG8dI81oA7xtUWfPzKa8vewfTTuedoC41ZkcRqORvuWxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUEIsBPsBcpm88uvhHwlcd3sR0fEowHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL0swDQYJKoZIhvcN AQELBQADggEBADvryulElWt6iyWh5WKoOEFvgjcRPA9X3fjm1ZBKRUi0KKPYWMjo laLtOuSzaXrxc02IQOkt26Wbl5DxexGuvUbFzH7LyUL+lknj7PcYjQRb8SHh317w QFOsYUp/Wv1Sn5QYZb1V5kfFtymUllQRpWMr9lnnfPTFXldVBxw+NvnkTVW1RZiW 9Xt3enSVmjo35qwEAkGM0MprgEPlhAW9IxbfIFIBtDDvFjbxkz2SzfUaRyi6m4t8 5oXIGPHoiumVBfX/0T5HXTTxhgcKmXwfqTgA8pscqbjX2tDGZoJsSQ4qT/ZEoo2r hCD/BW1NxHXRKxhvAUzRsNs7GBYHMiCk2Qc= -----END CERTIFICATE-----Generated at Wed May 13 05:51:16 2026 by rpki-client