$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231372e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: HjsXbmBQ1/ZzOC4+kZmYfxdtrEll9rDNIr7rpybDUDQ= Subject key identifier: 4D:6A:89:48:21:7D:09:E5:E2:35:B7:F9:AF:38:62:AE:06:3B:87:96 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 25076F2C5DB257B7E46DEDB0568D5E013FC53BFF Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:17 +0000 ROA not before: Sun 03 May 2026 02:45:17 +0000 ROA not after: Sun 02 May 2027 02:50:17 +0000 asID: 17671 IP address blocks: 202.58.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:07:6f:2c:5d:b2:57:b7:e4:6d:ed:b0:56:8d:5e:01:3f:c5:3b:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:17 2026 GMT Not After : May 2 02:50:17 2027 GMT Subject: CN=4D6A8948217D09E5E235B7F9AF3862AE063B8796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:bf:21:a5:e1:41:f6:ea:45:c3:97:ec:45:a7: b6:4c:84:42:14:2c:f7:9c:4f:1e:5e:ec:76:f8:e6: 9c:dd:89:b7:92:eb:a8:9e:3f:b4:9a:91:28:19:4c: c5:27:cf:63:bc:89:ba:d7:33:15:90:1c:00:ee:21: 41:e0:b5:48:67:31:52:4b:b1:e4:91:df:ef:a0:a7: bb:3b:f5:41:3b:89:ba:ea:dc:d2:98:8c:67:30:2f: 2a:9e:60:c2:10:40:1e:21:75:f6:36:40:ba:89:40: 75:29:4a:85:ea:3f:bb:d4:9f:ce:16:4d:21:9b:a0: 8f:7b:42:0d:61:b0:77:36:dc:f3:81:59:ae:e8:0f: 2c:bf:ff:84:86:2e:90:40:9f:d5:6b:97:74:b4:0a: 4a:76:cc:dc:85:83:26:19:41:9d:1d:e7:64:d8:95: 62:56:ed:89:2c:96:1a:9a:d5:0c:16:24:fa:dd:d9: aa:99:06:28:a2:92:09:df:2c:78:4d:6f:22:8e:02: 9c:a6:17:57:5e:f0:7a:b8:4d:47:70:9f:4b:02:b4: 01:3a:9f:58:ba:e6:ec:54:32:27:7e:31:ad:62:0a: 83:cf:41:df:34:d1:a6:ff:40:7f:86:6d:46:f5:e2: 8f:a9:df:33:25:4b:b5:ec:84:12:28:6a:43:18:cd: e8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6A:89:48:21:7D:09:E5:E2:35:B7:F9:AF:38:62:AE:06:3B:87:96 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231372e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.217.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:bf:e8:cc:73:be:36:76:6f:c4:ef:3b:1b:43:d8:69:5b:2a: 76:fd:79:77:ba:67:51:43:4f:fe:76:6d:b6:18:a5:22:67:2d: 1e:58:3e:36:44:90:ba:0c:90:9c:44:34:26:d0:5a:a5:99:e6: 77:bf:be:55:46:8c:89:0b:11:5b:4a:86:d6:e0:c4:79:78:eb: b3:2e:cc:80:26:dc:64:18:9b:51:c7:43:36:02:bb:49:ae:f3: 6f:bb:48:50:2a:fd:a7:da:e4:cc:04:6e:c8:78:67:29:d0:39: 6b:e1:b8:1b:3c:7d:44:55:60:c4:65:d2:8b:ef:0c:e1:84:44: 70:f6:c0:dd:a6:8a:a6:e6:71:21:22:64:78:62:0b:08:68:da: c1:0b:94:b7:8f:1d:7e:33:5d:9e:48:5e:4f:fd:85:05:da:7d: 5f:58:c5:28:d8:f5:50:38:26:1f:9b:f5:28:70:66:e8:6a:1c: 23:56:6b:66:d0:6c:08:89:62:9e:f1:72:02:b8:cb:21:cf:fb: 1f:2b:72:c8:ad:bd:85:27:67:84:b6:aa:65:f7:28:18:ff:8d: 60:9b:d1:f6:e6:25:71:44:2d:30:09:a7:dd:6b:27:ac:5a:56: 5d:fc:00:14:9e:d8:c4:78:f9:a6:a4:43:92:ae:a8:61:7d:db: 3d:ff:25:8d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJQdvLF2yV7fkbe2wVo1eAT/FO/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTdaFw0yNzA1MDIwMjUwMTdaMDMxMTAvBgNV BAMTKDRENkE4OTQ4MjE3RDA5RTVFMjM1QjdGOUFGMzg2MkFFMDYzQjg3OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnvyGl4UH26kXDl+xFp7ZMhEIU LPecTx5e7Hb45pzdibeS66ieP7SakSgZTMUnz2O8ibrXMxWQHADuIUHgtUhnMVJL seSR3++gp7s79UE7ibrq3NKYjGcwLyqeYMIQQB4hdfY2QLqJQHUpSoXqP7vUn84W TSGboI97Qg1hsHc23POBWa7oDyy//4SGLpBAn9Vrl3S0Ckp2zNyFgyYZQZ0d52TY lWJW7Ykslhqa1QwWJPrd2aqZBiiikgnfLHhNbyKOApymF1de8Hq4TUdwn0sCtAE6 n1i65uxUMid+Ma1iCoPPQd800ab/QH+GbUb14o+p3zMlS7XshBIoakMYzeiRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUTWqJSCF9CeXiNbf5rzhirgY7h5YwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62TANBgkqhkiG 9w0BAQsFAAOCAQEAn7/ozHO+NnZvxO87G0PYaVsqdv15d7pnUUNP/nZtthilImct Hlg+NkSQugyQnEQ0JtBapZnmd7++VUaMiQsRW0qG1uDEeXjrsy7MgCbcZBibUcdD NgK7Sa7zb7tIUCr9p9rkzARuyHhnKdA5a+G4Gzx9RFVgxGXSi+8M4YREcPbA3aaK puZxISJkeGILCGjawQuUt48dfjNdnkheT/2FBdp9X1jFKNj1UDgmH5v1KHBm6Goc I1ZrZtBsCIlinvFyArjLIc/7HytyyK29hSdnhLaqZfcoGP+NYJvR9uYlcUQtMAmn 3WsnrFpWXfwAFJ7YxHj5pqRDkq6oYX3bPf8ljQ== -----END CERTIFICATE-----Generated at Wed May 13 05:51:10 2026 by rpki-client