$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3231392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 8W0oi5xRZ27UVWN+WZgFJQdVpUzNmorFPhqKUp61QmY= Subject key identifier: 90:75:9A:75:F5:C6:56:05:06:57:0F:A9:F1:33:DC:E7:27:77:56:95 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 26B7ECCD7DCF35E8425847B27936988C3FFF7D35 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:23 +0000 ROA not before: Sun 03 May 2026 02:45:23 +0000 ROA not after: Sun 02 May 2027 02:50:23 +0000 asID: 17671 IP address blocks: 202.58.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:b7:ec:cd:7d:cf:35:e8:42:58:47:b2:79:36:98:8c:3f:ff:7d:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:23 2026 GMT Not After : May 2 02:50:23 2027 GMT Subject: CN=90759A75F5C6560506570FA9F133DCE727775695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:97:f2:3e:42:66:64:64:b0:b4:78:bb:59:fa: bd:eb:a8:c3:7e:d5:8d:8d:65:54:6e:67:ae:ae:1c: 44:b4:fc:aa:59:c4:72:3b:72:e2:13:94:d5:39:e7: 55:f6:66:8d:c3:7c:54:59:60:4f:2b:8c:2f:d3:f0: 62:c5:26:59:45:51:a4:31:2d:69:b3:ae:f0:21:54: 69:fc:2f:b5:b3:1a:f4:a3:2c:19:f5:8d:83:0c:13: f2:a4:8a:65:a7:10:c9:0e:10:7e:1a:f9:af:ec:6b: 6c:e3:5f:d6:cc:21:e3:20:cc:69:7c:42:4a:01:2c: 9d:ee:33:fa:e4:2e:80:1f:a1:4c:49:fc:c7:31:55: f8:dc:31:6d:9e:ef:bd:45:1c:db:43:3e:29:bd:86: 6b:6c:00:6a:a8:06:87:14:11:e5:de:b9:ff:8a:56: f0:d6:2f:38:4f:df:31:da:a7:4e:5f:2d:79:4e:4a: d8:6f:2d:7f:17:fb:a2:ea:b1:ea:f4:06:f9:a9:09: 3d:cc:98:1d:28:e6:c3:56:ac:33:e5:01:c5:2e:3d: e6:78:5e:61:06:c9:45:93:b2:1d:14:49:cd:bc:bb: 02:a0:22:db:71:9f:f8:64:93:08:2c:5f:f1:00:e9: 70:ab:a6:83:c2:c3:77:b2:eb:1c:f5:24:aa:fb:62: 72:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:75:9A:75:F5:C6:56:05:06:57:0F:A9:F1:33:DC:E7:27:77:56:95 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.219.0/24 Signature Algorithm: sha256WithRSAEncryption 39:49:e3:e7:db:52:b1:76:f1:3e:af:69:c4:8a:6d:da:a9:59: 1b:4b:14:08:39:24:b0:5c:a0:53:5f:53:18:83:34:58:9a:30: e6:5b:e3:35:40:ae:52:d8:37:e7:e1:4a:52:27:48:2a:33:16: c4:d2:70:58:c9:e0:b6:16:39:e6:ac:97:1a:1f:f7:d8:f5:7d: ac:e5:8f:83:9d:9c:2d:76:ab:cc:ff:a5:6c:19:9b:fd:88:1f: f0:83:99:6e:09:1f:f6:9b:e3:70:bb:48:e9:48:3b:99:cd:1b: c3:98:63:b9:4e:3e:d6:49:e5:07:2a:71:90:a0:29:f7:a2:bf: 62:48:c6:28:5b:48:af:49:4d:c0:1c:2c:91:0e:4e:78:25:20: dc:fa:90:f3:9f:b4:c0:69:7c:65:b2:9c:c1:90:37:a2:a2:29: 89:0b:5a:b9:1b:fe:76:a9:e4:70:ec:b6:3d:9d:1b:1b:19:b3: a5:73:22:f8:b1:6e:e9:1f:12:ec:3b:05:3a:8a:3a:b9:96:bb: 99:10:57:7d:fd:74:40:f2:de:f4:70:1e:eb:72:c6:23:f2:90: b0:59:6b:dd:ba:84:99:89:b1:5c:e7:42:41:2b:5f:0b:fc:0b: 7b:42:a5:b8:8f:fe:54:5f:c4:36:b7:bf:f8:6f:c3:d0:47:44: db:7d:7f:f7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJrfszX3PNehCWEeyeTaYjD//fTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MjNaFw0yNzA1MDIwMjUwMjNaMDMxMTAvBgNV BAMTKDkwNzU5QTc1RjVDNjU2MDUwNjU3MEZBOUYxMzNEQ0U3Mjc3NzU2OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCil/I+QmZkZLC0eLtZ+r3rqMN+ 1Y2NZVRuZ66uHES0/KpZxHI7cuITlNU551X2Zo3DfFRZYE8rjC/T8GLFJllFUaQx LWmzrvAhVGn8L7WzGvSjLBn1jYMME/KkimWnEMkOEH4a+a/sa2zjX9bMIeMgzGl8 QkoBLJ3uM/rkLoAfoUxJ/McxVfjcMW2e771FHNtDPim9hmtsAGqoBocUEeXeuf+K VvDWLzhP3zHap05fLXlOSthvLX8X+6Lqser0BvmpCT3MmB0o5sNWrDPlAcUuPeZ4 XmEGyUWTsh0USc28uwKgIttxn/hkkwgsX/EA6XCrpoPCw3ey6xz1JKr7YnKxAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUkHWadfXGVgUGVw+p8TPc5yd3VpUwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo62zANBgkqhkiG 9w0BAQsFAAOCAQEAOUnj59tSsXbxPq9pxIpt2qlZG0sUCDkksFygU19TGIM0WJow 5lvjNUCuUtg35+FKUidIKjMWxNJwWMngthY55qyXGh/32PV9rOWPg52cLXarzP+l bBmb/Ygf8IOZbgkf9pvjcLtI6Ug7mc0bw5hjuU4+1knlBypxkKAp96K/YkjGKFtI r0lNwBwskQ5OeCUg3PqQ85+0wGl8ZbKcwZA3oqIpiQtauRv+dqnkcOy2PZ0bGxmz pXMi+LFu6R8S7DsFOoo6uZa7mRBXff10QPLe9HAe63LGI/KQsFlr3bqEmYmxXOdC QStfC/wLe0KluI/+VF/ENre/+G/D0EdE231/9w== -----END CERTIFICATE-----Generated at Wed May 13 05:51:10 2026 by rpki-client