$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232302e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: VzAYLLNOPkrIeL63YdgYbOm9E2pVzFotbDRfxkQMU4k= Subject key identifier: 78:15:4A:A2:2A:6F:94:01:08:84:4C:0A:5E:F9:67:52:3C:12:9F:3E Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 14BDF9456B05DF89E637F99E4932F976F76E7545 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:21 +0000 ROA not before: Sun 03 May 2026 02:45:21 +0000 ROA not after: Sun 02 May 2027 02:50:21 +0000 asID: 17671 IP address blocks: 202.58.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:bd:f9:45:6b:05:df:89:e6:37:f9:9e:49:32:f9:76:f7:6e:75:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:21 2026 GMT Not After : May 2 02:50:21 2027 GMT Subject: CN=78154AA22A6F940108844C0A5EF967523C129F3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:cb:64:43:5b:87:11:0f:16:f2:ab:56:e4:e4: 74:d8:e6:d0:0c:32:35:9f:e8:9c:16:70:3b:9f:c3: f9:c7:6d:60:08:7c:01:fb:20:bf:3e:a4:f4:3b:aa: 76:42:fb:26:6e:ff:2d:75:ee:19:41:c5:f2:36:27: 7e:eb:bb:79:60:96:50:48:93:3d:4d:b3:b4:10:ee: 22:69:89:19:04:ee:5c:71:4b:55:e6:8a:1f:d3:0f: 22:fa:b5:18:68:74:51:3a:61:26:19:16:4d:21:b8: 1c:d4:d4:92:6d:af:33:2c:91:3d:8f:9c:34:56:33: 7e:d7:62:a1:bf:1e:04:e7:43:14:d7:d6:04:99:a8: ac:de:fc:7f:34:3e:36:54:85:87:a5:59:e6:43:98: 59:7e:73:3d:2d:e1:55:e4:63:30:8a:20:f3:e0:7e: 7f:84:36:8c:6c:55:30:ce:93:89:41:80:0f:87:1e: 1a:f6:d7:00:7a:66:56:01:47:06:4d:7a:c4:10:44: 53:71:cd:b0:53:84:43:a1:ce:c9:aa:8b:bf:a8:79: b1:f9:2f:39:2a:84:43:d7:15:92:46:48:5c:15:a4: a3:b9:7c:40:d2:33:a8:80:72:4f:d1:8b:89:53:91: 21:d7:47:1f:3d:a7:5c:02:f8:c8:4d:5b:0b:59:d7: 70:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:15:4A:A2:2A:6F:94:01:08:84:4C:0A:5E:F9:67:52:3C:12:9F:3E X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232302e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.220.0/24 Signature Algorithm: sha256WithRSAEncryption 84:53:2d:34:12:11:e1:4e:fb:d4:3c:b5:39:c6:d6:7b:7d:4e: 69:7b:f2:85:a9:d0:32:38:7f:62:2b:45:81:7d:f2:fb:cc:0e: b6:71:c0:ef:ce:58:c3:bd:6e:5b:b5:c9:64:bf:37:ec:a5:f2: 08:f0:78:80:c8:cd:08:8e:39:f3:88:b3:14:64:27:35:22:c3: 51:98:21:e8:48:fc:7c:c9:f0:4d:f6:90:df:d8:2d:a4:4a:02: 32:ff:1a:70:ee:a3:66:d8:bb:0c:2c:5f:db:77:ab:97:5a:87: f5:00:f5:ba:04:18:4e:9b:47:55:a0:d5:a8:1d:e3:78:4e:87: 89:fb:78:ac:ae:4c:a5:87:80:3e:55:fe:d5:d9:ca:cb:d8:05: f5:3b:a2:0d:a6:60:71:46:ee:f5:8c:e6:7e:ca:38:6f:03:78: 47:38:48:0a:ca:8c:7d:71:6a:17:06:7a:f1:13:a8:6c:8a:3a: 08:5c:c1:b4:3b:16:c2:b9:91:87:e5:9f:7e:df:c5:0f:9c:29: ce:92:be:f2:b8:d9:41:b2:d8:e3:5d:97:f9:ec:3d:56:7c:6f: c4:14:87:93:a4:5c:e0:08:7e:f5:54:49:fd:a2:d2:35:e9:01: f1:dd:f5:dd:d7:cd:2c:f4:77:28:bf:55:27:31:eb:45:a6:67: e4:84:10:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFL35RWsF34nmN/meSTL5dvdudUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MjFaFw0yNzA1MDIwMjUwMjFaMDMxMTAvBgNV BAMTKDc4MTU0QUEyMkE2Rjk0MDEwODg0NEMwQTVFRjk2NzUyM0MxMjlGM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCay2RDW4cRDxbyq1bk5HTY5tAM MjWf6JwWcDufw/nHbWAIfAH7IL8+pPQ7qnZC+yZu/y117hlBxfI2J37ru3lgllBI kz1Ns7QQ7iJpiRkE7lxxS1Xmih/TDyL6tRhodFE6YSYZFk0huBzU1JJtrzMskT2P nDRWM37XYqG/HgTnQxTX1gSZqKze/H80PjZUhYelWeZDmFl+cz0t4VXkYzCKIPPg fn+ENoxsVTDOk4lBgA+HHhr21wB6ZlYBRwZNesQQRFNxzbBThEOhzsmqi7+oebH5 LzkqhEPXFZJGSFwVpKO5fEDSM6iAck/Ri4lTkSHXRx89p1wC+MhNWwtZ13DZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeBVKoipvlAEIhEwKXvlnUjwSnz4wHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63DANBgkqhkiG 9w0BAQsFAAOCAQEAhFMtNBIR4U771Dy1OcbWe31OaXvyhanQMjh/YitFgX3y+8wO tnHA785Yw71uW7XJZL837KXyCPB4gMjNCI4584izFGQnNSLDUZgh6Ej8fMnwTfaQ 39gtpEoCMv8acO6jZti7DCxf23erl1qH9QD1ugQYTptHVaDVqB3jeE6Hift4rK5M pYeAPlX+1dnKy9gF9TuiDaZgcUbu9Yzmfso4bwN4RzhICsqMfXFqFwZ68ROobIo6 CFzBtDsWwrmRh+Wfft/FD5wpzpK+8rjZQbLY412X+ew9VnxvxBSHk6Rc4Ah+9VRJ /aLSNekB8d313dfNLPR3KL9VJzHrRaZn5IQQEw== -----END CERTIFICATE-----Generated at Wed May 13 05:51:12 2026 by rpki-client