$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37382e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: SUyEX1bfVLhOD681M3/IUI8LoFasT1Siiht3ML8l4WA= Subject key identifier: 65:F4:82:FD:34:F5:1F:67:43:02:CD:4D:85:15:F5:7A:AF:62:1F:7F Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 73BA76FF0B7EA8185384CE3CF943F8674F35C564 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37382e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:12 +0000 ROA not before: Sun 03 May 2026 02:45:12 +0000 ROA not after: Sun 02 May 2027 02:50:12 +0000 asID: 17671 IP address blocks: 202.47.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ba:76:ff:0b:7e:a8:18:53:84:ce:3c:f9:43:f8:67:4f:35:c5:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:12 2026 GMT Not After : May 2 02:50:12 2027 GMT Subject: CN=65F482FD34F51F674302CD4D8515F57AAF621F7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fe:de:38:90:b4:73:6d:5c:15:70:06:c0:6f: 7e:d2:4a:cc:5f:be:3c:2a:61:56:6d:c4:cd:1c:e6: b3:e5:fb:8b:6b:b1:af:07:c4:20:51:bd:32:de:18: e3:81:cb:89:c6:77:44:a5:5e:0f:c1:73:e6:d2:6e: b4:ab:3f:bb:be:53:c2:17:9e:d2:13:85:5b:f1:b9: d4:4e:32:e8:f1:30:4c:d4:f8:48:df:50:b1:e5:58: 48:be:3b:50:ff:0e:9b:65:82:b0:d3:cf:23:15:58: 81:72:dd:5c:75:cf:74:57:6f:c7:2c:a5:37:1b:e9: 0c:b5:95:7a:9d:b2:be:c5:97:99:a4:df:fd:13:30: 27:01:70:fe:f7:ec:ed:86:4d:21:ff:61:a0:95:fd: 9d:1c:8c:1d:3f:85:9f:1f:de:f9:b8:8b:11:58:cc: 43:bf:71:55:df:5b:2b:64:81:e5:76:ad:30:dd:19: 1e:24:4c:3f:3c:1a:19:b8:66:b5:1e:09:dd:d2:70: 6d:f2:0f:38:65:2d:6f:f2:37:22:76:a3:39:f6:8a: 95:3c:d8:99:4a:d4:36:2e:1c:13:52:94:88:e3:d8: e9:43:9e:fa:9d:a4:51:64:0c:3f:39:e0:3c:1e:bd: 09:36:33:c6:be:53:ae:80:6a:49:68:8c:fb:32:05: c1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F4:82:FD:34:F5:1F:67:43:02:CD:4D:85:15:F5:7A:AF:62:1F:7F X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.78.0/24 Signature Algorithm: sha256WithRSAEncryption 72:25:9f:bd:3a:f9:1d:37:00:16:e6:f5:5b:4f:54:59:77:28: 2a:36:4d:ed:80:27:48:ff:0f:22:a2:ec:db:a9:51:8e:08:40: d1:da:f5:72:3b:28:0b:38:a6:df:45:2a:ce:db:69:d5:60:4e: b5:8b:e7:ec:c1:bf:6e:14:01:4e:57:b3:6b:2b:0f:9c:21:ce: 41:99:d6:0d:67:ca:b7:39:40:54:97:36:4c:a2:d1:79:57:39: 20:32:84:99:67:53:29:a6:43:70:9c:59:68:98:33:33:01:22: 05:7d:0a:d7:87:cd:ff:67:fe:63:30:f3:7d:f4:39:d9:49:a4: a0:8a:a9:7d:a3:ed:af:67:36:5c:46:b7:a3:27:14:96:2b:b9: 31:6a:6e:3f:cb:d1:c1:0f:41:be:55:1b:9c:a9:8a:49:57:16: 61:7d:e3:8a:d6:3e:0b:c1:a0:09:be:75:c6:37:ea:d6:30:f1: 47:ca:91:99:e8:5b:df:d4:65:9e:ac:6a:a0:eb:4f:83:47:d9: ea:24:a8:04:3e:f0:7e:9b:0f:3a:bf:52:b5:26:b4:8e:70:f3: 95:b1:f1:1c:c6:16:d0:d2:78:3b:48:fc:f8:c4:df:58:e0:cd: 5a:16:e2:0a:0a:ed:55:5e:2b:28:a6:51:c8:df:31:7c:9d:ab: a6:40:25:6f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUc7p2/wt+qBhThM48+UP4Z081xWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTJaFw0yNzA1MDIwMjUwMTJaMDMxMTAvBgNV BAMTKDY1RjQ4MkZEMzRGNTFGNjc0MzAyQ0Q0RDg1MTVGNTdBQUY2MjFGN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi/t44kLRzbVwVcAbAb37SSsxf vjwqYVZtxM0c5rPl+4trsa8HxCBRvTLeGOOBy4nGd0SlXg/Bc+bSbrSrP7u+U8IX ntIThVvxudROMujxMEzU+EjfULHlWEi+O1D/DptlgrDTzyMVWIFy3Vx1z3RXb8cs pTcb6Qy1lXqdsr7Fl5mk3/0TMCcBcP737O2GTSH/YaCV/Z0cjB0/hZ8f3vm4ixFY zEO/cVXfWytkgeV2rTDdGR4kTD88Ghm4ZrUeCd3ScG3yDzhlLW/yNyJ2ozn2ipU8 2JlK1DYuHBNSlIjj2OlDnvqdpFFkDD854DwevQk2M8a+U66AaklojPsyBcGnAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZfSC/TT1H2dDAs1NhRX1eq9iH38wHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL04wDQYJKoZIhvcN AQELBQADggEBAHIln706+R03ABbm9VtPVFl3KCo2Te2AJ0j/DyKi7NupUY4IQNHa 9XI7KAs4pt9FKs7badVgTrWL5+zBv24UAU5Xs2srD5whzkGZ1g1nyrc5QFSXNkyi 0XlXOSAyhJlnUymmQ3CcWWiYMzMBIgV9CteHzf9n/mMw8330OdlJpKCKqX2j7a9n NlxGt6MnFJYruTFqbj/L0cEPQb5VG5ypiklXFmF944rWPgvBoAm+dcY36tYw8UfK kZnoW9/UZZ6saqDrT4NH2eokqAQ+8H6bDzq/UrUmtI5w85Wx8RzGFtDSeDtI/PjE 31jgzVoW4goK7VVeKyimUcjfMXydq6ZAJW8= -----END CERTIFICATE-----Generated at Wed May 13 05:51:14 2026 by rpki-client