$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e31302e302f32342d3234203d3e203137363731.roa File: 3230322e35322e31302e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 953oiAtZRznRkSPg2O1wR63JbEzYWPzi2Q8Z4HUBV2Y= Subject key identifier: 04:28:80:EC:33:6B:72:89:8C:69:B3:FC:04:58:E8:1E:F6:33:71:4E Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 05D9A80E2F6D5478013D1B3AB1B3617D63506061 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e31302e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:09 +0000 ROA not before: Sun 03 May 2026 02:45:09 +0000 ROA not after: Sun 02 May 2027 02:50:09 +0000 asID: 17671 IP address blocks: 202.52.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d9:a8:0e:2f:6d:54:78:01:3d:1b:3a:b1:b3:61:7d:63:50:60:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:09 2026 GMT Not After : May 2 02:50:09 2027 GMT Subject: CN=042880EC336B72898C69B3FC0458E81EF633714E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b6:a5:ba:56:83:ba:ad:ee:db:e1:2e:ae:0e: 74:82:34:09:58:81:24:12:8d:09:d3:c5:64:ed:80: d6:4d:bd:4b:00:9e:08:b6:b1:79:58:27:f3:f8:1f: eb:14:ee:84:af:9b:62:4b:f4:8f:f1:cf:01:70:db: 58:78:17:8c:43:63:6b:0f:6f:2e:54:30:57:6e:b3: dc:b5:86:83:df:a0:46:dd:c6:f5:33:df:3f:78:e0: fa:9c:2f:56:11:6e:4e:0d:2a:7e:d7:3a:ec:8c:8b: cc:05:5f:ef:26:d8:89:fa:f2:60:37:f5:6b:e9:e2: 9b:56:f2:c9:d0:ca:74:9f:eb:c4:d9:fa:b1:6a:e6: 85:c1:36:53:12:21:fe:4e:d1:66:e5:c8:21:1b:2c: 44:04:3a:ec:4b:66:e7:b3:a7:07:a6:6b:32:69:4a: 5c:b8:13:89:ea:e9:cc:b6:a7:aa:3e:9b:12:a0:47: c8:ab:c7:1d:6c:95:92:51:f5:11:5a:c4:18:4c:88: 85:69:da:7c:87:70:f9:53:ae:1f:20:9b:6d:bd:23: cb:77:85:46:03:ba:97:62:06:ef:2c:33:54:43:12: 68:b1:5b:90:73:63:d6:85:04:c7:2a:98:8c:70:9c: bf:20:a8:3e:cf:1e:28:07:a3:76:d8:cf:4c:ee:7c: 97:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:28:80:EC:33:6B:72:89:8C:69:B3:FC:04:58:E8:1E:F6:33:71:4E X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e31302e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.10.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:ab:54:f9:71:7b:a0:52:7f:bf:59:07:7b:62:fa:6f:ec:57: ff:5a:e6:35:f3:88:19:e2:86:48:07:06:ab:17:4c:c1:49:dd: d6:3b:93:fa:5c:40:c9:65:c1:8d:8b:2a:f2:7f:39:e2:e7:8a: 4a:7f:af:de:9e:07:a7:2a:8a:6f:de:af:35:89:8a:38:0a:40: 8b:09:4f:9f:35:40:45:85:bf:d4:d4:7e:35:00:37:73:7f:a8: 68:7f:2f:ef:61:25:35:c9:29:a1:70:78:5a:20:30:92:e4:d0: e2:96:52:b8:c9:55:d9:3b:19:e6:c7:23:ee:a6:93:6f:e0:c2: b4:05:f7:e1:d0:01:3a:58:d6:58:00:3a:f0:34:9f:c7:14:71: db:28:85:d7:50:82:14:68:72:3f:ec:75:bf:9e:06:54:2d:8a: 8d:46:a7:9d:3b:46:45:7a:19:b9:37:3a:85:0a:d5:4d:9f:7b: 84:7d:3e:cf:f2:48:ce:cf:8b:7c:4d:4b:08:54:a2:78:49:f4: 93:1c:dd:b8:50:dc:0d:71:88:ff:1c:71:73:78:e9:12:dc:c6: 23:49:5f:16:8f:a0:ee:e1:32:da:bc:ea:0e:a4:d9:01:f8:26: 86:5e:00:d2:0f:2b:b3:aa:53:ab:69:82:e0:d6:9d:2c:2a:76: a3:6e:3f:c2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBdmoDi9tVHgBPRs6sbNhfWNQYGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MDlaFw0yNzA1MDIwMjUwMDlaMDMxMTAvBgNV BAMTKDA0Mjg4MEVDMzM2QjcyODk4QzY5QjNGQzA0NThFODFFRjYzMzcxNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvtqW6VoO6re7b4S6uDnSCNAlY gSQSjQnTxWTtgNZNvUsAngi2sXlYJ/P4H+sU7oSvm2JL9I/xzwFw21h4F4xDY2sP by5UMFdus9y1hoPfoEbdxvUz3z944PqcL1YRbk4NKn7XOuyMi8wFX+8m2In68mA3 9Wvp4ptW8snQynSf68TZ+rFq5oXBNlMSIf5O0WblyCEbLEQEOuxLZuezpwemazJp Sly4E4nq6cy2p6o+mxKgR8irxx1slZJR9RFaxBhMiIVp2nyHcPlTrh8gm229I8t3 hUYDupdiBu8sM1RDEmixW5BzY9aFBMcqmIxwnL8gqD7PHigHo3bYz0zufJdbAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBCiA7DNrcomMabP8BFjoHvYzcU4wHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBoQYIKwYBBQUHAQsEgZQwgZEwgY4GCCsGAQUFBzALhoGBcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzMjJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKNAowDQYJKoZIhvcN AQELBQADggEBAA2rVPlxe6BSf79ZB3ti+m/sV/9a5jXziBnihkgHBqsXTMFJ3dY7 k/pcQMllwY2LKvJ/OeLnikp/r96eB6cqim/erzWJijgKQIsJT581QEWFv9TUfjUA N3N/qGh/L+9hJTXJKaFweFogMJLk0OKWUrjJVdk7GebHI+6mk2/gwrQF9+HQATpY 1lgAOvA0n8cUcdsohddQghRocj/sdb+eBlQtio1Gp507RkV6Gbk3OoUK1U2fe4R9 Ps/ySM7Pi3xNSwhUonhJ9JMc3bhQ3A1xiP8ccXN46RLcxiNJXxaPoO7hMtq86g6k 2QH4JoZeANIPK7OqU6tpguDWnSwqdqNuP8I= -----END CERTIFICATE-----Generated at Wed May 13 05:51:13 2026 by rpki-client