$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231382e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: zXw/bo9PuLxu004rLWoj8G58WgiwFHCGLWPkBvR6IVc= Subject key identifier: 24:04:2C:0A:BB:AE:7D:89:73:2B:42:28:3B:0C:3E:48:73:68:AF:63 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 66B19ABB2DBA95918339F4F40C1952D0AC96D09C Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:07 +0000 ROA not before: Sun 03 May 2026 02:45:07 +0000 ROA not after: Sun 02 May 2027 02:50:07 +0000 asID: 17671 IP address blocks: 202.58.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b1:9a:bb:2d:ba:95:91:83:39:f4:f4:0c:19:52:d0:ac:96:d0:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:07 2026 GMT Not After : May 2 02:50:07 2027 GMT Subject: CN=24042C0ABBAE7D89732B42283B0C3E487368AF63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7c:b3:0d:42:73:ad:f3:b3:62:2a:73:3e:67: 07:ea:79:32:64:c9:94:20:04:c7:a4:ad:0e:6f:8a: 77:c4:30:46:f8:61:39:45:d4:34:29:94:4f:05:4e: 1f:35:62:37:40:7c:fb:4e:63:1f:99:9c:0b:c8:2f: bb:7c:ac:2e:6f:4c:0c:cc:6e:39:ec:44:2e:ba:df: 86:b5:66:8b:e7:01:3f:8e:af:1f:a3:d2:59:18:8d: 0d:1f:0d:ab:7e:7e:cb:7b:58:f8:42:fd:f0:03:30: 6e:39:bf:c2:08:eb:86:e3:1e:a5:03:df:51:cc:de: c2:35:c8:64:30:b1:ad:af:18:26:a2:75:5d:3b:14: 9c:9d:9a:a0:c2:a3:66:06:a9:03:90:30:c3:b7:15: e8:e7:2e:76:d6:c2:5e:1f:a3:cb:7a:48:70:40:ca: b8:68:f9:11:66:59:d9:6b:30:75:06:31:bd:9b:7f: ee:ab:4d:46:b0:b4:97:03:c5:e8:59:1a:b3:5b:64: f0:1d:2b:cf:12:b1:e0:63:71:b8:9c:10:bd:72:f7: 8b:e4:28:9f:35:6d:9c:d4:c5:f6:81:98:64:a9:e3: a7:48:f2:70:ee:40:86:4b:e6:bd:f3:80:d2:0b:a7: 25:aa:3f:2d:3b:3b:7f:35:16:58:29:b5:0e:55:4b: 08:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:04:2C:0A:BB:AE:7D:89:73:2B:42:28:3B:0C:3E:48:73:68:AF:63 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231382e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.218.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:3d:31:52:19:b8:43:66:25:e3:c0:52:36:24:36:ce:38:50: 0a:5a:4a:42:38:8e:10:9a:72:c7:51:4d:c5:a5:8b:ce:3f:2e: 6c:76:ab:37:38:75:bd:c9:3c:bd:e9:dc:41:76:fd:0a:d5:ee: 06:7a:eb:3a:9b:cb:33:2e:84:f0:4c:b5:b0:9d:50:f6:3b:78: d5:d5:cb:88:bd:36:ae:24:fd:57:f8:bd:af:f4:6f:b2:e4:0d: 25:12:16:5e:f0:54:e5:11:65:bc:19:a6:a3:72:85:e2:a4:89: 68:b4:33:54:09:f0:35:3e:1e:0c:4e:4c:84:a5:b1:ef:57:0b: 5d:fd:20:3b:c7:99:e3:ae:ce:6d:6a:d4:1f:f9:27:4d:bd:7b: 35:3e:de:29:e8:a7:19:71:c1:ee:0c:92:19:50:70:4c:31:08: 02:87:e6:76:b9:da:8e:55:40:3c:7f:dc:55:56:86:ee:e8:66: 3f:a2:e3:04:66:af:af:92:47:6c:16:f6:fc:1b:ce:cf:d0:16: ee:f1:d3:fe:aa:85:c8:c8:86:2b:3f:c6:37:64:da:02:91:9c: cf:8a:d4:e2:8d:f3:bc:fd:f5:ba:a0:97:32:38:e9:ad:6c:ea: 88:63:fd:ef:d9:d9:b1:47:92:bf:26:01:79:59:67:90:a6:e3: 02:30:86:31 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZrGauy26lZGDOfT0DBlS0KyW0JwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MDdaFw0yNzA1MDIwMjUwMDdaMDMxMTAvBgNV BAMTKDI0MDQyQzBBQkJBRTdEODk3MzJCNDIyODNCMEMzRTQ4NzM2OEFGNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzfLMNQnOt87NiKnM+ZwfqeTJk yZQgBMekrQ5vinfEMEb4YTlF1DQplE8FTh81YjdAfPtOYx+ZnAvIL7t8rC5vTAzM bjnsRC6634a1ZovnAT+Orx+j0lkYjQ0fDat+fst7WPhC/fADMG45v8II64bjHqUD 31HM3sI1yGQwsa2vGCaidV07FJydmqDCo2YGqQOQMMO3FejnLnbWwl4fo8t6SHBA yrho+RFmWdlrMHUGMb2bf+6rTUawtJcDxehZGrNbZPAdK88SseBjcbicEL1y94vk KJ81bZzUxfaBmGSp46dI8nDuQIZL5r3zgNILpyWqPy07O381FlgptQ5VSwhPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJAQsCruufYlzK0IoOww+SHNor2MwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62jANBgkqhkiG 9w0BAQsFAAOCAQEAjj0xUhm4Q2Yl48BSNiQ2zjhQClpKQjiOEJpyx1FNxaWLzj8u bHarNzh1vck8vencQXb9CtXuBnrrOpvLMy6E8Ey1sJ1Q9jt41dXLiL02riT9V/i9 r/RvsuQNJRIWXvBU5RFlvBmmo3KF4qSJaLQzVAnwNT4eDE5MhKWx71cLXf0gO8eZ 467ObWrUH/knTb17NT7eKeinGXHB7gySGVBwTDEIAofmdrnajlVAPH/cVVaG7uhm P6LjBGavr5JHbBb2/BvOz9AW7vHT/qqFyMiGKz/GN2TaApGcz4rU4o3zvP31uqCX MjjprWzqiGP979nZsUeSvyYBeVlnkKbjAjCGMQ== -----END CERTIFICATE-----Generated at Wed May 13 05:51:11 2026 by rpki-client