$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa File: 3230322e34372e37392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: XwfOkF71WVziy/K58M1b2UAO5tgH+6XzYzfmUBfK5UQ= Subject key identifier: 20:22:E2:DD:E6:CF:78:CD:95:79:B0:AE:04:ED:49:E1:5C:62:A7:59 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 754D3E5A966FE94A73B8053457C13133E747FDF7 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:13 +0000 ROA not before: Sun 03 May 2026 02:45:13 +0000 ROA not after: Sun 02 May 2027 02:50:13 +0000 asID: 17671 IP address blocks: 202.47.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4d:3e:5a:96:6f:e9:4a:73:b8:05:34:57:c1:31:33:e7:47:fd:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:13 2026 GMT Not After : May 2 02:50:13 2027 GMT Subject: CN=2022E2DDE6CF78CD9579B0AE04ED49E15C62A759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cf:ef:8d:c0:48:ff:24:b9:43:f1:73:18:4b: 23:aa:fd:e5:d2:6f:a8:eb:35:8a:62:4d:f2:17:60: bf:69:55:6f:32:78:e1:8d:fe:3c:f9:f2:97:9e:b3: 69:45:fc:60:fb:f0:71:29:9b:5a:cc:be:e3:e4:e7: 7d:52:0a:37:50:74:f9:7e:ff:3d:65:49:7c:a9:94: 1b:1f:94:fc:f3:3f:c9:f3:23:fc:05:7f:9a:57:b5: c6:84:29:bc:f5:07:60:f7:0b:78:51:63:bb:09:7b: 99:12:17:01:84:d8:54:09:00:3f:44:83:b1:e8:ac: b4:44:57:51:14:03:1c:36:29:b1:e8:cb:f3:58:1a: af:70:f7:37:06:2e:5d:8f:02:a6:8d:19:9c:3e:06: 6c:0c:a8:1d:3a:9b:3b:ee:76:22:1e:e6:f9:bb:7f: a3:0e:62:e3:8a:66:30:b7:06:04:9c:a0:c4:8d:64: 3d:3d:c2:b8:c3:e7:7e:3e:f9:a1:88:37:83:96:06: 23:95:b6:3a:e8:43:20:b7:8a:73:e7:90:9b:e1:be: 1f:a2:07:60:38:26:71:f0:7c:9c:a4:ac:f0:5a:8f: 13:62:64:56:25:7e:bc:38:44:7c:50:7c:b3:22:e2: 19:11:5d:d7:5c:19:80:8d:dc:d5:07:07:78:06:a8: e3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:22:E2:DD:E6:CF:78:CD:95:79:B0:AE:04:ED:49:E1:5C:62:A7:59 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e34372e37392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.79.0/24 Signature Algorithm: sha256WithRSAEncryption ae:23:38:5a:f2:91:21:af:28:f6:b6:de:e2:89:0f:97:db:42: f1:17:a1:d6:55:37:0d:89:29:8a:62:7c:25:d7:70:36:80:7f: c5:21:8f:6a:8b:4a:3c:35:fa:23:6b:3d:56:6f:78:bc:ce:5c: 22:c9:2e:cb:c1:7b:a9:3f:d2:7f:9e:7f:94:1f:1c:b8:f6:2e: 39:6c:bb:6c:a1:3f:38:6d:ae:be:a4:60:5b:58:63:33:34:9c: 3f:c6:77:f2:a7:36:29:a8:5e:29:2e:9d:ad:b2:77:ee:f9:18: 9d:58:09:c5:84:61:44:47:9e:8c:8a:83:7c:22:bc:ec:d2:f1: 86:19:a4:92:98:c9:b6:2d:6c:84:c7:55:f2:36:33:e7:e0:d1: 96:c6:85:b0:d9:1c:d7:bb:4e:01:c2:48:b1:37:83:a9:0b:cb: d4:69:a6:1b:28:77:06:fd:d0:b7:a1:05:84:04:a1:ed:4a:e1: 2a:36:6e:82:79:70:8f:8b:e7:98:5e:5a:bf:51:9a:ac:61:3e: ed:7e:af:b4:1a:fd:09:ca:e7:d1:79:ca:d7:f3:2b:ed:60:dc: 55:b6:c7:e4:1e:e7:04:58:76:1a:70:91:88:87:93:d7:e3:3e: 5b:97:c6:c9:af:ad:57:ea:a0:3f:df:c2:fe:ae:ea:58:43:8a: 5b:27:ef:3e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdU0+WpZv6UpzuAU0V8ExM+dH/fcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTNaFw0yNzA1MDIwMjUwMTNaMDMxMTAvBgNV BAMTKDIwMjJFMkRERTZDRjc4Q0Q5NTc5QjBBRTA0RUQ0OUUxNUM2MkE3NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7z++NwEj/JLlD8XMYSyOq/eXS b6jrNYpiTfIXYL9pVW8yeOGN/jz58pees2lF/GD78HEpm1rMvuPk531SCjdQdPl+ /z1lSXyplBsflPzzP8nzI/wFf5pXtcaEKbz1B2D3C3hRY7sJe5kSFwGE2FQJAD9E g7HorLREV1EUAxw2KbHoy/NYGq9w9zcGLl2PAqaNGZw+BmwMqB06mzvudiIe5vm7 f6MOYuOKZjC3BgScoMSNZD09wrjD534++aGIN4OWBiOVtjroQyC3inPnkJvhvh+i B2A4JnHwfJykrPBajxNiZFYlfrw4RHxQfLMi4hkRXddcGYCN3NUHB3gGqOOPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUICLi3ebPeM2VebCuBO1J4Vxip1kwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzQzNzJlMzczOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKL08wDQYJKoZIhvcN AQELBQADggEBAK4jOFrykSGvKPa23uKJD5fbQvEXodZVNw2JKYpifCXXcDaAf8Uh j2qLSjw1+iNrPVZveLzOXCLJLsvBe6k/0n+ef5QfHLj2Ljlsu2yhPzhtrr6kYFtY YzM0nD/Gd/KnNimoXikuna2yd+75GJ1YCcWEYURHnoyKg3wivOzS8YYZpJKYybYt bITHVfI2M+fg0ZbGhbDZHNe7TgHCSLE3g6kLy9Rpphsodwb90LehBYQEoe1K4So2 boJ5cI+L55heWr9RmqxhPu1+r7Qa/QnK59F5ytfzK+1g3FW2x+Qe5wRYdhpwkYiH k9fjPluXxsmvrVfqoD/fwv6u6lhDilsn7z4= -----END CERTIFICATE-----Generated at Wed May 13 05:51:14 2026 by rpki-client