$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232312e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: 1K4awJfeHArSOr1o2JTHhpTHSQCb6zikD9dUU4a1y4E= Subject key identifier: 05:49:0A:EC:61:D4:01:41:83:EB:97:3C:64:CD:B0:39:19:A4:F0:AA Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 3C87E0150770511182945F0BDAC7B896B5B4288C Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:15 +0000 ROA not before: Sun 03 May 2026 02:45:15 +0000 ROA not after: Sun 02 May 2027 02:50:15 +0000 asID: 17671 IP address blocks: 202.58.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:87:e0:15:07:70:51:11:82:94:5f:0b:da:c7:b8:96:b5:b4:28:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:15 2026 GMT Not After : May 2 02:50:15 2027 GMT Subject: CN=05490AEC61D4014183EB973C64CDB03919A4F0AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1c:47:f3:3a:ad:98:c1:d8:07:c5:e7:e8:a3: e9:6c:bb:1b:47:0b:c9:6f:be:c6:9c:4f:6e:8d:8a: 89:b4:f9:e7:46:63:2f:b1:80:ad:fd:ef:61:e7:ad: 74:15:b9:4e:25:62:bc:9d:9c:e8:54:9a:02:53:20: 64:79:28:28:6c:ef:92:c0:d6:13:11:d1:95:dd:ea: 01:84:70:c9:7d:8b:98:8b:06:dd:5a:ce:ae:21:62: bd:a6:6a:38:33:0b:44:e6:d3:7f:a3:6c:e9:de:69: 28:0e:2f:3b:33:35:2e:eb:32:26:79:54:cf:db:73: 05:57:43:48:b6:38:8d:c8:5c:87:6f:77:2c:95:b3: 25:69:6b:a2:36:6c:41:46:e9:47:aa:c0:84:55:91: df:4d:21:8c:94:61:1e:e9:93:e2:47:1d:77:cf:9d: 1c:5e:a2:e8:b1:db:34:84:f4:72:19:5c:9a:38:5b: f1:0b:b5:6b:f3:cf:dc:1d:22:36:d8:c8:49:65:aa: 25:d1:23:ca:b5:61:88:25:82:20:aa:f9:03:dc:e9: 5d:0e:f4:a0:60:a7:86:dd:5e:23:7b:6c:5a:3f:77: 67:7a:1b:71:9e:6d:01:7e:6d:2e:ef:f0:37:0e:c1: 57:0a:5a:73:79:86:a7:ee:14:e1:ef:2f:02:04:38: 10:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:49:0A:EC:61:D4:01:41:83:EB:97:3C:64:CD:B0:39:19:A4:F0:AA X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232312e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.221.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:1b:ae:0c:77:41:77:08:99:ac:a2:97:21:23:3b:b8:d4:78: cd:c4:13:ad:2f:12:9f:c9:64:54:c9:21:78:4d:46:0f:29:a5: e5:85:fd:dd:0f:73:09:34:63:7d:09:2c:ca:3b:51:02:3e:85: d1:ea:ef:83:f8:8a:0e:be:dc:37:9e:e0:f5:29:a4:6a:89:23: 5d:6f:df:1f:b8:9f:31:83:b3:77:f6:65:e3:3a:56:47:01:6a: 71:f9:39:55:44:8b:d8:35:87:23:ec:4e:1f:ab:86:9a:6f:39: f4:d6:fd:d0:47:16:93:a9:54:ff:c3:ce:6b:a0:20:f8:6c:f4: 48:f6:24:fc:a5:f7:4b:43:f7:67:fd:e1:ce:6c:0b:ea:d8:d1: f8:fd:42:e4:e2:20:34:d1:16:e1:85:73:8a:7d:9d:d0:2c:d3: b5:7b:19:b6:3f:8a:30:ac:78:2f:8d:64:e3:e2:08:fd:dd:6c: 32:7b:68:a6:a3:a5:a6:9f:57:95:f9:9c:09:5f:bb:ea:1d:58: 08:4b:6f:00:4b:07:e0:ab:02:16:31:a7:0b:a0:87:17:8f:a2: 84:a8:5b:b2:f8:39:0d:73:d5:0b:63:40:92:fc:b9:e6:d6:95: e8:8a:91:86:4f:73:10:03:6a:92:14:f6:9f:b3:77:0c:ae:4a: 9a:39:37:cf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPIfgFQdwURGClF8L2se4lrW0KIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MTVaFw0yNzA1MDIwMjUwMTVaMDMxMTAvBgNV BAMTKDA1NDkwQUVDNjFENDAxNDE4M0VCOTczQzY0Q0RCMDM5MTlBNEYwQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbHEfzOq2YwdgHxefoo+lsuxtH C8lvvsacT26Niom0+edGYy+xgK3972HnrXQVuU4lYrydnOhUmgJTIGR5KChs75LA 1hMR0ZXd6gGEcMl9i5iLBt1azq4hYr2majgzC0Tm03+jbOneaSgOLzszNS7rMiZ5 VM/bcwVXQ0i2OI3IXIdvdyyVsyVpa6I2bEFG6UeqwIRVkd9NIYyUYR7pk+JHHXfP nRxeouix2zSE9HIZXJo4W/ELtWvzz9wdIjbYyEllqiXRI8q1YYglgiCq+QPc6V0O 9KBgp4bdXiN7bFo/d2d6G3GebQF+bS7v8DcOwVcKWnN5hqfuFOHvLwIEOBBnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBUkK7GHUAUGD65c8ZM2wORmk8KowHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63TANBgkqhkiG 9w0BAQsFAAOCAQEAnRuuDHdBdwiZrKKXISM7uNR4zcQTrS8Sn8lkVMkheE1GDyml 5YX93Q9zCTRjfQksyjtRAj6F0ervg/iKDr7cN57g9SmkaokjXW/fH7ifMYOzd/Zl 4zpWRwFqcfk5VUSL2DWHI+xOH6uGmm859Nb90EcWk6lU/8POa6Ag+Gz0SPYk/KX3 S0P3Z/3hzmwL6tjR+P1C5OIgNNEW4YVzin2d0CzTtXsZtj+KMKx4L41k4+II/d1s MntopqOlpp9XlfmcCV+76h1YCEtvAEsH4KsCFjGnC6CHF4+ihKhbsvg5DXPVC2NA kvy55taV6IqRhk9zEANqkhT2n7N3DK5Kmjk3zw== -----END CERTIFICATE-----Generated at Wed May 13 05:51:11 2026 by rpki-client