$ rpki-client -vvf rpki-rsync.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa File: 3230322e35312e3139382e302f32342d3234203d3e203130323230.roa (raw, json) Hash identifier: 1TpHsmaA1JQZU+qQGSvG+moVShwWiM39h2j2sMJO5Wk= Subject key identifier: 0C:C9:D4:FF:61:AF:F9:8D:CC:FF:B1:52:75:BC:FC:C4:B1:CC:B1:B8 Certificate issuer: /CN=47C0520954E7036D01276256DF53723219F2EDC8 Certificate serial: 22920B7D22C0840FB4F57514F7DF19A439B9EB83 Authority key identifier: 47:C0:52:09:54:E7:03:6D:01:27:62:56:DF:53:72:32:19:F2:ED:C8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/47C0520954E7036D01276256DF53723219F2EDC8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa Signing time: Sun 03 May 2026 03:15:51 +0000 ROA not before: Sun 03 May 2026 03:10:51 +0000 ROA not after: Sun 02 May 2027 03:15:51 +0000 asID: 10220 IP address blocks: 202.51.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/47C0520954E7036D01276256DF53723219F2EDC8.crl rsync://rpki-rsync.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/47C0520954E7036D01276256DF53723219F2EDC8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/47C0520954E7036D01276256DF53723219F2EDC8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:92:0b:7d:22:c0:84:0f:b4:f5:75:14:f7:df:19:a4:39:b9:eb:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47C0520954E7036D01276256DF53723219F2EDC8 Validity Not Before: May 3 03:10:51 2026 GMT Not After : May 2 03:15:51 2027 GMT Subject: CN=0CC9D4FF61AFF98DCCFFB15275BCFCC4B1CCB1B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4c:49:b0:56:14:81:b0:a8:f0:e7:be:b5:d7: ad:b8:ce:a9:09:8a:28:4c:05:bf:7c:39:57:75:8f: 27:1d:bd:13:52:0f:e8:6b:32:c6:42:ce:ad:be:c0: 27:d1:71:91:cf:ef:31:15:81:71:48:72:96:01:04: a3:8e:38:cf:6d:9b:7e:44:39:da:83:b6:90:14:aa: 5d:62:d6:52:1f:c2:2f:9a:97:62:46:a9:5c:fc:2d: da:d7:46:17:0c:76:2d:3c:35:cf:6b:0e:e4:5e:af: fe:b9:4c:3b:2d:89:40:dd:86:d2:4d:93:a9:0a:2b: cb:4c:ee:c7:a2:2c:d9:61:df:92:83:7c:88:86:1d: 28:4f:33:ec:ca:22:3a:85:e5:4d:0a:7a:01:79:12: 5c:f6:07:e6:17:dc:80:d2:28:27:1d:33:ec:f5:53: 17:47:46:b0:70:21:1f:10:2a:80:df:ae:e3:28:fc: 86:f5:ca:e9:14:ae:57:7c:d6:51:37:34:56:b4:70: f0:14:05:a9:57:98:eb:13:22:f1:54:34:4c:29:62: b5:24:f3:25:55:15:04:93:43:97:b1:88:b6:8b:b5: 2a:79:f9:04:73:4d:36:0b:02:f0:c9:2d:f6:8d:99: 92:f0:be:dd:cd:24:69:a5:bd:8a:4c:37:4d:3a:2e: 10:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C9:D4:FF:61:AF:F9:8D:CC:FF:B1:52:75:BC:FC:C4:B1:CC:B1:B8 X509v3 Authority Key Identifier: keyid:47:C0:52:09:54:E7:03:6D:01:27:62:56:DF:53:72:32:19:F2:ED:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/47C0520954E7036D01276256DF53723219F2EDC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/47C0520954E7036D01276256DF53723219F2EDC8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ed70cc37-1fa6-4fa0-a88c-408aed28d9aa/0/3230322e35312e3139382e302f32342d3234203d3e203130323230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.51.198.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:32:36:96:fd:ca:5c:05:ed:f6:59:2a:49:f3:11:2f:03:c2: 3b:2d:7a:1f:d3:eb:4c:78:61:d2:51:57:44:e1:37:3e:fc:bc: 4f:35:79:1b:0c:7f:b8:cd:88:21:5a:b7:9c:90:42:ac:88:c7: 2f:7f:d9:f1:48:71:a7:ed:d0:2d:b7:93:00:aa:07:60:33:02: db:a4:a8:d8:9e:f6:ed:89:56:12:08:98:5e:a6:04:66:88:0f: a7:2b:54:9b:3d:e8:ee:ed:58:95:19:32:bb:d5:5c:22:68:29: 19:96:8f:f0:07:d7:04:f8:3d:b7:c8:08:40:34:0b:58:96:c8: da:85:6e:5e:70:b9:26:18:69:59:5e:6b:9c:d4:a9:29:23:04: 0f:0d:fa:46:28:5e:7e:f9:63:49:5b:53:de:c5:c9:09:33:6e: 06:61:d2:d2:26:2d:80:4d:b0:ff:15:25:6a:6c:b3:3f:6a:1d: 22:ce:f1:3b:75:04:d2:a3:f1:a7:9f:a6:df:7c:1b:cb:44:c1: 3f:09:8b:3b:a5:0b:12:4d:87:44:a4:59:5e:06:49:aa:69:4f: 72:28:4e:5a:cd:32:2a:8d:67:7b:cd:2a:ee:37:c7:e1:1d:a9: 82:3d:ee:2a:e6:a3:50:0f:0d:9d:a5:ae:85:e8:3f:58:9a:e8: ef:a9:82:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIpILfSLAhA+09XUU998ZpDm564MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdDMDUyMDk1NEU3MDM2RDAxMjc2MjU2REY1MzcyMzIx OUYyRURDODAeFw0yNjA1MDMwMzEwNTFaFw0yNzA1MDIwMzE1NTFaMDMxMTAvBgNV BAMTKDBDQzlENEZGNjFBRkY5OERDQ0ZGQjE1Mjc1QkNGQ0M0QjFDQ0IxQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWTEmwVhSBsKjw57611624zqkJ iihMBb98OVd1jycdvRNSD+hrMsZCzq2+wCfRcZHP7zEVgXFIcpYBBKOOOM9tm35E OdqDtpAUql1i1lIfwi+al2JGqVz8LdrXRhcMdi08Nc9rDuRer/65TDstiUDdhtJN k6kKK8tM7seiLNlh35KDfIiGHShPM+zKIjqF5U0KegF5Elz2B+YX3IDSKCcdM+z1 UxdHRrBwIR8QKoDfruMo/Ib1yukUrld81lE3NFa0cPAUBalXmOsTIvFUNEwpYrUk 8yVVFQSTQ5exiLaLtSp5+QRzTTYLAvDJLfaNmZLwvt3NJGmlvYpMN006LhDdAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDMnU/2Gv+Y3M/7FSdbz8xLHMsbgwHwYDVR0j BBgwFoAUR8BSCVTnA20BJ2JW31NyMhny7cgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWQ3MGNjMzctMWZhNi00ZmEwLWE4OGMtNDA4YWVkMjhkOWFhLzAvNDdDMDUyMDk1 NEU3MDM2RDAxMjc2MjU2REY1MzcyMzIxOUYyRURDOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80N0MwNTIwOTU0RTcwMzZEMDEyNzYyNTZERjUzNzIzMjE5RjJF REM4LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2VkNzBjYzM3LTFmYTYtNGZhMC1h ODhjLTQwOGFlZDI4ZDlhYS8wLzMyMzAzMjJlMzUzMTJlMzEzOTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMyMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMozxjANBgkqhkiG 9w0BAQsFAAOCAQEAWzI2lv3KXAXt9lkqSfMRLwPCOy16H9PrTHhh0lFXROE3Pvy8 TzV5Gwx/uM2IIVq3nJBCrIjHL3/Z8Uhxp+3QLbeTAKoHYDMC26So2J727YlWEgiY XqYEZogPpytUmz3o7u1YlRkyu9VcImgpGZaP8AfXBPg9t8gIQDQLWJbI2oVuXnC5 JhhpWV5rnNSpKSMEDw36RihefvljSVtT3sXJCTNuBmHS0iYtgE2w/xUlamyzP2od Is7xO3UE0qPxp5+m33wby0TBPwmLO6ULEk2HRKRZXgZJqmlPcihOWs0yKo1ne80q 7jfH4R2pgj3uKuajUA8NnaWuheg/WJro76mCOQ== -----END CERTIFICATE-----Generated at Wed May 13 06:26:07 2026 by rpki-client