$ rpki-client -vvf rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa File: 3230322e35382e3232322e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: hEiCinU2g1jcVNnXh2rR9yRu/19Phl/RX9WIiWw+kPc= Subject key identifier: 84:9D:EB:C5:76:40:99:02:73:45:FE:7F:0B:BA:02:C3:33:0C:F7:14 Certificate issuer: /CN=CA547F005E84823E6A8A471723C17168E8E44644 Certificate serial: 10E21E21ECB3619B2CC2CE0F9064C2EFC3205763 Authority key identifier: CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa Signing time: Sun 03 May 2026 02:50:18 +0000 ROA not before: Sun 03 May 2026 02:45:18 +0000 ROA not after: Sun 02 May 2027 02:50:18 +0000 asID: 17671 IP address blocks: 202.58.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:e2:1e:21:ec:b3:61:9b:2c:c2:ce:0f:90:64:c2:ef:c3:20:57:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA547F005E84823E6A8A471723C17168E8E44644 Validity Not Before: May 3 02:45:18 2026 GMT Not After : May 2 02:50:18 2027 GMT Subject: CN=849DEBC5764099027345FE7F0BBA02C3330CF714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f9:a5:b8:b8:39:78:8b:8b:50:dd:5c:fb:ca: db:d5:cd:bd:b2:80:5e:e4:00:37:8d:1f:58:dc:c1: 61:80:4b:d3:9f:3a:44:a9:2e:ef:10:70:97:ce:80: 0e:1f:43:1f:2f:9d:3c:10:2b:ef:63:ed:51:e8:22: 7c:1b:a3:93:27:73:79:19:b0:df:f3:96:82:96:54: 0d:b9:aa:d6:8a:c4:ee:63:50:ea:c5:f0:52:c9:e7: 9d:8d:1c:89:52:7f:6a:05:58:53:50:70:c8:76:02: 06:f5:06:f8:c6:30:f9:c2:cf:1b:14:8a:b8:7d:68: b3:d1:eb:cf:e8:ab:56:b6:97:4d:82:78:c2:96:78: 57:13:2f:c0:97:76:66:64:21:b0:4c:d7:68:e9:03: 03:f4:4d:e6:b2:7f:d1:7b:af:41:9d:80:df:cc:b9: 72:b9:f9:b1:32:30:0c:e1:99:6a:e8:be:7f:d7:a5: b8:e2:c1:aa:3f:97:f8:06:9d:11:4c:71:99:24:00: 18:64:11:f8:87:44:9d:65:05:6a:1b:85:65:5f:a9: 69:e1:fd:f8:02:d0:d7:e2:0a:68:7e:f3:78:80:96: 4a:17:a5:4f:1f:33:90:ca:4b:c2:90:d0:c6:cd:6a: 4b:3d:84:4e:c1:50:33:f1:43:91:14:bc:0a:1a:97: 98:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:9D:EB:C5:76:40:99:02:73:45:FE:7F:0B:BA:02:C3:33:0C:F7:14 X509v3 Authority Key Identifier: keyid:CA:54:7F:00:5E:84:82:3E:6A:8A:47:17:23:C1:71:68:E8:E4:46:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/CA547F005E84823E6A8A471723C17168E8E44644.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA547F005E84823E6A8A471723C17168E8E44644.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3232322e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.58.222.0/24 Signature Algorithm: sha256WithRSAEncryption 34:fe:3d:7f:1b:e0:6a:9d:0c:1e:57:44:7c:80:3e:77:e5:f6: b5:ce:79:bf:55:13:38:55:00:94:b0:06:bf:19:33:61:93:fc: 15:8e:84:e8:5a:cd:20:d6:38:35:23:02:06:1d:39:32:e5:8e: c3:b1:39:fe:f4:23:dc:96:d8:c9:b6:7b:52:d2:64:53:28:43: 1e:af:d4:d0:b1:da:68:1e:bb:99:9f:94:4e:d5:c6:64:15:52: db:64:c4:c2:61:da:ef:69:12:0c:b7:ed:22:35:4e:1c:c6:f1: 39:5d:e2:a9:aa:b5:6e:68:e7:b0:19:34:24:9b:2b:f4:b6:59: bd:6b:60:99:ef:1a:f7:1a:6d:f8:a8:db:3a:42:8f:5e:4f:c7: cf:2f:23:f0:d7:fd:fc:8f:56:92:52:53:ae:dc:81:aa:4c:7a: f8:f8:61:07:69:31:de:6a:7c:25:ee:30:d3:7b:03:cb:22:88: 3b:ec:fe:97:31:72:64:59:94:5d:ac:2d:6e:62:92:40:7d:b3: df:34:b1:6f:cc:8c:3e:4f:45:2a:fc:26:3e:18:48:93:f9:4e: 94:b1:be:1a:0c:99:88:d1:61:fc:6b:11:a5:5f:cc:19:89:f7: e1:b4:32:e1:eb:89:33:04:b8:8e:99:c5:ec:33:e3:23:8d:12: 51:a9:6f:6b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEOIeIeyzYZssws4PkGTC78MgV2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1NDdGMDA1RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhF OEU0NDY0NDAeFw0yNjA1MDMwMjQ1MThaFw0yNzA1MDIwMjUwMThaMDMxMTAvBgNV BAMTKDg0OURFQkM1NzY0MDk5MDI3MzQ1RkU3RjBCQkEwMkMzMzMwQ0Y3MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3+aW4uDl4i4tQ3Vz7ytvVzb2y gF7kADeNH1jcwWGAS9OfOkSpLu8QcJfOgA4fQx8vnTwQK+9j7VHoInwbo5Mnc3kZ sN/zloKWVA25qtaKxO5jUOrF8FLJ552NHIlSf2oFWFNQcMh2Agb1BvjGMPnCzxsU irh9aLPR68/oq1a2l02CeMKWeFcTL8CXdmZkIbBM12jpAwP0Teayf9F7r0GdgN/M uXK5+bEyMAzhmWrovn/Xpbjiwao/l/gGnRFMcZkkABhkEfiHRJ1lBWobhWVfqWnh /fgC0NfiCmh+83iAlkoXpU8fM5DKS8KQ0MbNaks9hE7BUDPxQ5EUvAoal5hXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhJ3rxXZAmQJzRf5/C7oCwzMM9xQwHwYDVR0j BBgwFoAUylR/AF6Egj5qikcXI8FxaOjkRkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGNlYmYxMTYtZmUyYS00OTFiLWFhYzgtMjIwZWFkMGI1NGUyLzAvQ0E1NDdGMDA1 RTg0ODIzRTZBOEE0NzE3MjNDMTcxNjhFOEU0NDY0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTU0N0YwMDVFODQ4MjNFNkE4QTQ3MTcyM0MxNzE2OEU4RTQ0 NjQ0LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMyMzAzMjJlMzUzODJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo63jANBgkqhkiG 9w0BAQsFAAOCAQEANP49fxvgap0MHldEfIA+d+X2tc55v1UTOFUAlLAGvxkzYZP8 FY6E6FrNINY4NSMCBh05MuWOw7E5/vQj3JbYybZ7UtJkUyhDHq/U0LHaaB67mZ+U TtXGZBVS22TEwmHa72kSDLftIjVOHMbxOV3iqaq1bmjnsBk0JJsr9LZZvWtgme8a 9xpt+KjbOkKPXk/Hzy8j8Nf9/I9WklJTrtyBqkx6+PhhB2kx3mp8Je4w03sDyyKI O+z+lzFyZFmUXawtbmKSQH2z3zSxb8yMPk9FKvwmPhhIk/lOlLG+GgyZiNFh/GsR pV/MGYn34bQy4euJMwS4jpnF7DPjI40SUalvaw== -----END CERTIFICATE-----Generated at Wed May 13 05:51:10 2026 by rpki-client