$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231362e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: c9pO0B3YFIXS5ALTrN5zdsDlHUJCmgjI3tKWVmjagI4= Subject key identifier: 54:89:BF:5F:E6:5A:11:C5:E4:B9:52:1B:C4:F5:2A:A1:E2:13:AB:23 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 313B427881485555C4AB575478FCE80AFDCBA877 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:20 +0000 ROA not before: Sun 03 May 2026 02:45:20 +0000 ROA not after: Sun 02 May 2027 02:50:20 +0000 asID: 17671 IP address blocks: 202.58.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:3b:42:78:81:48:55:55:c4:ab:57:54:78:fc:e8:0a:fd:cb:a8:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:20 2026 GMT Not After : May 2 02:50:20 2027 GMT Subject: CN=5489BF5FE65A11C5E4B9521BC4F52AA1E213AB23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5a:69:e1:77:25:6a:eb:f3:3e:78:d2:44:8b: 95:bf:96:27:4e:2a:27:75:fe:6e:eb:a8:ee:66:92: b6:e2:d2:45:cb:66:cb:03:c6:e4:66:f7:d6:70:eb: 20:6f:3a:25:59:b1:2f:e4:36:cd:b1:2e:d8:6c:8a: 5a:38:41:40:23:97:08:1c:e1:01:2c:ba:d9:d8:86: 96:b3:8b:66:54:2a:f9:a5:5c:e4:58:36:6b:28:54: 14:ac:40:59:8d:b3:32:ad:6b:3e:21:25:b0:4f:71: 2e:e1:46:7a:75:ec:ef:9e:ea:5e:c1:f6:b9:39:31: 21:83:49:03:d6:23:7d:dc:2a:63:b5:ef:48:05:0e: 9a:fe:d9:4c:e1:57:34:d9:fa:cb:fe:84:16:c5:d5: 8d:23:42:a3:f1:02:3e:71:bd:79:f3:34:20:f6:ef: cd:e4:c7:23:e6:62:29:d0:14:99:5f:d7:d5:09:74: 55:a5:f3:28:0a:d1:5a:95:27:27:b7:38:30:ae:aa: e0:b7:25:5f:4d:68:e6:f6:d4:43:a2:da:47:53:00: 81:cf:a1:b2:6f:58:f0:15:97:84:71:68:b9:66:6c: f2:0d:ca:1a:ec:3f:97:77:12:fd:fb:02:46:d9:0d: 64:59:f7:d2:06:81:4a:43:a4:2e:e7:38:2c:d9:53: f9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:89:BF:5F:E6:5A:11:C5:E4:B9:52:1B:C4:F5:2A:A1:E2:13:AB:23 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.216.0/24 Signature Algorithm: sha256WithRSAEncryption 57:ab:d5:b7:cc:d9:f8:7c:80:0c:ec:f7:f8:10:2d:cf:20:df: cd:72:ee:8b:64:64:d3:89:1f:46:81:e9:e7:8e:31:85:b5:88: 07:32:28:14:14:89:59:a5:7c:3f:fd:5b:c3:05:66:7c:66:26: 38:01:c8:9b:0e:42:d0:19:a3:36:10:6f:df:1f:68:30:c4:7a: 13:52:c3:e2:10:be:b9:73:50:19:a3:a2:9b:b4:94:43:64:ea: 8f:82:55:e5:dc:c9:c3:8c:ac:f8:0e:a8:de:c4:28:a5:44:ee: a6:91:f7:6f:4c:67:ab:b9:31:4b:41:78:59:5f:38:85:93:f0: 76:c4:61:ee:20:b5:a0:e8:67:04:91:f4:ab:fb:25:5d:22:ea: de:07:96:11:d5:4d:f4:07:e5:36:f8:91:62:38:dd:f8:31:57: eb:b0:f3:85:b3:f3:1a:0b:d5:d6:f6:de:eb:3b:b3:65:e7:00: 6d:8e:8b:f5:bd:38:9f:82:9d:f4:c3:e1:93:6b:c0:0a:97:5e: f7:de:b3:1a:bb:69:56:cb:b9:91:7f:27:78:5a:bf:e2:13:59: d2:a8:ad:3d:3a:e8:0e:a3:a6:ac:9b:3f:56:36:86:48:06:ee: f0:06:89:1f:57:70:a1:af:19:76:99:9e:5f:07:27:96:39:39: 51:d8:73:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMTtCeIFIVVXEq1dUePzoCv3LqHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MjBaFw0yNzA1MDIwMjUwMjBaMDMxMTAvBgNV BAMTKDU0ODlCRjVGRTY1QTExQzVFNEI5NTIxQkM0RjUyQUExRTIxM0FCMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpWmnhdyVq6/M+eNJEi5W/lidO Kid1/m7rqO5mkrbi0kXLZssDxuRm99Zw6yBvOiVZsS/kNs2xLthsilo4QUAjlwgc 4QEsutnYhpazi2ZUKvmlXORYNmsoVBSsQFmNszKtaz4hJbBPcS7hRnp17O+e6l7B 9rk5MSGDSQPWI33cKmO170gFDpr+2UzhVzTZ+sv+hBbF1Y0jQqPxAj5xvXnzNCD2 783kxyPmYinQFJlf19UJdFWl8ygK0VqVJye3ODCuquC3JV9NaOb21EOi2kdTAIHP obJvWPAVl4RxaLlmbPINyhrsP5d3Ev37AkbZDWRZ99IGgUpDpC7nOCzZU/n7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVIm/X+ZaEcXkuVIbxPUqoeITqyMwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62DANBgkqhkiG 9w0BAQsFAAOCAQEAV6vVt8zZ+HyADOz3+BAtzyDfzXLui2Rk04kfRoHp544xhbWI BzIoFBSJWaV8P/1bwwVmfGYmOAHImw5C0BmjNhBv3x9oMMR6E1LD4hC+uXNQGaOi m7SUQ2Tqj4JV5dzJw4ys+A6o3sQopUTuppH3b0xnq7kxS0F4WV84hZPwdsRh7iC1 oOhnBJH0q/slXSLq3geWEdVN9AflNviRYjjd+DFX67DzhbPzGgvV1vbe6zuzZecA bY6L9b04n4Kd9MPhk2vACpde996zGrtpVsu5kX8neFq/4hNZ0qitPTroDqOmrJs/ VjaGSAbu8AaJH1dwoa8ZdpmeXwcnljk5Udhzhw== -----END CERTIFICATE-----Generated at Wed May 13 05:51:10 2026 by rpki-client