$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa File: 3230322e35322e382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: WmzZvJGOmtAPOYM1V7mAeizBRC6aVP3Ba7V5rJ+hTa0= Subject key identifier: 30:D3:D6:2D:26:69:61:D2:12:F1:6F:3C:FF:E3:32:D1:9F:AD:30:A1 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 548E26BD590283AEAE3DFA1B3F777AA62CDF262A Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:10 +0000 ROA not before: Sun 03 May 2026 02:45:10 +0000 ROA not after: Sun 02 May 2027 02:50:10 +0000 asID: 17671 IP address blocks: 202.52.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:8e:26:bd:59:02:83:ae:ae:3d:fa:1b:3f:77:7a:a6:2c:df:26:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:10 2026 GMT Not After : May 2 02:50:10 2027 GMT Subject: CN=30D3D62D266961D212F16F3CFFE332D19FAD30A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ac:a6:57:4a:0b:dc:e3:51:34:93:62:fb:43: b7:0f:e3:dd:d5:39:54:bb:3a:dc:ef:a9:cd:27:95: aa:69:7a:f7:5c:88:b2:3e:9a:a3:65:17:27:84:30: 7d:0a:e3:3e:0b:1a:45:5a:50:48:3f:2a:c8:cc:19: 61:69:4f:7b:ed:e8:32:e4:16:74:32:eb:5b:08:8a: 8d:69:82:98:f2:0c:f5:aa:e3:0e:05:9e:0b:c9:5f: d5:bf:bd:9a:e8:58:b9:b2:5d:48:6a:6b:ae:e6:62: 9b:f6:55:34:7b:8a:3d:a5:95:9b:4c:2f:1c:c2:47: 28:af:97:7b:c2:2a:0d:c0:4b:96:31:c3:2c:1d:87: 45:7f:d8:ef:9c:dc:57:a7:de:35:74:96:da:27:01: 8a:61:5c:37:4a:47:b3:0b:9a:f0:37:97:bf:3a:c8: ea:08:59:2e:62:04:de:8d:d3:d5:74:7c:62:e7:45: 9f:73:03:3c:b8:2e:1c:b9:2f:c6:e3:a9:95:66:9f: dc:af:0c:25:c9:1c:ef:4b:d2:0e:2a:e7:29:55:b4: 3c:9d:1b:4a:8e:77:fa:77:47:04:21:7b:29:f7:69: 73:38:21:77:70:4c:5a:20:f1:43:f8:8f:46:b8:f0: c8:37:93:c3:5c:10:1f:b9:72:d6:4c:09:f2:0a:07: e8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D3:D6:2D:26:69:61:D2:12:F1:6F:3C:FF:E3:32:D1:9F:AD:30:A1 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35322e382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.52.8.0/24 Signature Algorithm: sha256WithRSAEncryption 66:38:eb:55:61:c1:35:ef:19:56:af:5f:f7:e2:39:44:40:14: 43:eb:67:50:63:10:bc:87:e1:7e:a7:87:14:5e:9b:71:e4:a7: d2:8e:92:44:b5:c3:d9:09:8e:0c:2c:b3:73:94:ed:bf:56:80: 51:aa:13:63:f1:2a:46:ff:70:d8:a9:61:fb:a8:33:ab:87:30: 15:26:5b:87:09:43:4f:7e:aa:0d:c2:35:09:8e:7e:22:6e:52: b7:59:95:a7:c2:eb:23:36:6b:b0:38:3c:73:a4:b2:33:94:1b: 77:02:ba:1d:68:81:5a:a3:2f:5a:34:47:ce:d2:c5:e0:b6:be: af:f0:74:2a:d3:1b:b1:38:75:49:cf:a0:9c:42:c8:46:43:21: 19:e6:9f:3d:f7:34:f2:79:bc:d1:cc:f4:07:71:f0:33:b4:03: 6d:cc:76:b5:12:80:3c:d4:89:fe:2c:aa:4e:a4:42:5b:63:50: e6:c3:3d:86:3c:68:1c:74:ab:cf:a5:72:f2:75:28:4e:69:af: 61:69:b3:60:84:1c:da:6f:50:f8:6f:0a:9f:a7:0b:03:6a:6d: 0a:db:64:7c:5c:b2:53:5a:92:df:70:93:be:5e:c0:96:59:d9: 2f:d4:e7:91:66:31:a9:a5:90:88:97:af:cc:6f:a7:39:ac:5a: e5:8f:d3:62 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUVI4mvVkCg66uPfobP3d6pizfJiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTBaFw0yNzA1MDIwMjUwMTBaMDMxMTAvBgNV BAMTKDMwRDNENjJEMjY2OTYxRDIxMkYxNkYzQ0ZGRTMzMkQxOUZBRDMwQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrrKZXSgvc41E0k2L7Q7cP493V OVS7Otzvqc0nlappevdciLI+mqNlFyeEMH0K4z4LGkVaUEg/KsjMGWFpT3vt6DLk FnQy61sIio1pgpjyDPWq4w4FngvJX9W/vZroWLmyXUhqa67mYpv2VTR7ij2llZtM LxzCRyivl3vCKg3AS5Yxwywdh0V/2O+c3Fen3jV0ltonAYphXDdKR7MLmvA3l786 yOoIWS5iBN6N09V0fGLnRZ9zAzy4Lhy5L8bjqZVmn9yvDCXJHO9L0g4q5ylVtDyd G0qOd/p3RwQheyn3aXM4IXdwTFog8UP4j0a48Mg3k8NcEB+5ctZMCfIKB+g1AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUMNPWLSZpYdIS8W88/+My0Z+tMKEwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOGNlYmYxMTYtZmUyYS00OTFiLWFh YzgtMjIwZWFkMGI1NGUyLzAvMzIzMDMyMmUzNTMyMmUzODJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMxMzczNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKNAgwDQYJKoZIhvcNAQEL BQADggEBAGY461VhwTXvGVavX/fiOURAFEPrZ1BjELyH4X6nhxRem3Hkp9KOkkS1 w9kJjgwss3OU7b9WgFGqE2PxKkb/cNipYfuoM6uHMBUmW4cJQ09+qg3CNQmOfiJu UrdZlafC6yM2a7A4PHOksjOUG3cCuh1ogVqjL1o0R87SxeC2vq/wdCrTG7E4dUnP oJxCyEZDIRnmnz33NPJ5vNHM9Adx8DO0A23MdrUSgDzUif4sqk6kQltjUObDPYY8 aBx0q8+lcvJ1KE5pr2Fps2CEHNpvUPhvCp+nCwNqbQrbZHxcslNakt9wk75ewJZZ 2S/U55FmMamlkIiXr8xvpzmsWuWP02I= -----END CERTIFICATE-----Generated at Wed May 13 05:51:14 2026 by rpki-client