$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32342e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: f1VfutGWK+MmJIOFReGmSZ7CZFeUlYEkRNGpDfRCgtg= Subject key identifier: BF:5B:6A:B3:3B:C3:75:01:5E:3C:89:AD:43:3E:37:6E:AB:16:85:10 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 5C9F3D5A431E003CE59B50BE3EF92BD3581CEFFC Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa Signing time: Sun 16 Jun 2024 05:00:00 +0000 ROA not before: Sun 16 Jun 2024 04:55:00 +0000 ROA not after: Sun 15 Jun 2025 05:00:00 +0000 asID: 24528 IP address blocks: 202.91.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:9f:3d:5a:43:1e:00:3c:e5:9b:50:be:3e:f9:2b:d3:58:1c:ef:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jun 16 04:55:00 2024 GMT Not After : Jun 15 05:00:00 2025 GMT Subject: CN=BF5B6AB33BC375015E3C89AD433E376EAB168510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d4:13:09:c5:c6:e5:02:02:a6:e9:34:c7:a8: 46:19:3f:2f:d1:9e:52:89:c2:21:ec:08:56:16:95: 0e:9b:91:d8:d4:30:ac:ed:5d:46:b7:9b:8f:3c:83: 15:0a:1a:ab:19:c4:71:d3:80:a4:0e:f0:e4:3c:80: ec:92:6c:97:b4:61:dd:c7:c4:7e:2b:75:9c:31:74: 68:4f:67:93:71:47:39:38:a0:ea:15:f5:1d:7e:c0: 00:d1:d2:48:04:5f:c8:59:e1:51:2a:a3:84:d9:c3: 08:57:e1:d4:bc:d1:fd:f1:48:fc:9f:fd:bc:f7:f7: 6f:24:2d:c9:57:c2:28:85:33:b5:7e:45:51:81:d7: 21:a1:f9:69:36:91:14:7b:33:1c:18:c1:a0:e2:61: 8d:b1:6d:cb:72:c6:50:a1:13:15:48:5a:cc:9c:70: 74:60:09:40:88:48:f6:41:ef:4a:9e:cb:8b:7d:25: 46:bd:16:64:ca:19:49:22:7c:a4:aa:1f:f8:1c:16: 73:db:53:d9:ab:54:bc:ed:3a:af:c4:e7:91:18:13: b1:1f:9d:51:e1:ff:63:a0:af:26:cb:33:a3:f6:04: 7c:65:73:56:a6:2a:a8:00:bb:cf:94:e8:e1:77:95: 19:18:e9:8c:54:08:3d:66:d4:80:bb:b0:be:51:b0: ef:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5B:6A:B3:3B:C3:75:01:5E:3C:89:AD:43:3E:37:6E:AB:16:85:10 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.24.0/24 Signature Algorithm: sha256WithRSAEncryption ce:05:6b:b9:a6:41:06:23:29:71:97:75:c8:80:08:b2:eb:64: 28:83:2b:6a:66:9a:63:9f:ca:cd:22:d8:b1:9c:ef:07:4b:75: 00:c7:10:16:96:6c:bf:0b:b3:35:3b:30:12:3a:ef:8b:62:76: ea:11:d2:d6:db:c7:44:bd:f9:c8:9a:95:29:30:4f:61:7e:ba: 08:77:8a:cb:2b:0a:ec:02:ab:59:83:e2:ac:1e:1c:9d:5d:e8: bb:a5:0f:e9:fa:de:da:c1:16:9c:38:74:98:e9:ec:71:9a:a7: 43:13:06:d8:b0:6d:ba:86:25:03:a0:88:a4:bc:c9:ec:45:3c: 88:78:1f:ac:bc:16:ae:85:69:0a:ad:7f:99:09:b8:a7:32:21: e3:be:fc:34:dd:cd:4d:63:96:a0:2a:0d:fa:20:5a:6d:91:5a: 66:ba:d6:01:75:62:1d:72:a0:70:99:15:49:b6:d6:f8:ca:ab: a5:0b:18:f5:f9:67:76:2c:89:f5:e8:67:36:76:57:2f:c9:d3: 1d:ef:f3:1c:6c:12:ff:93:df:3b:44:78:f6:47:8a:e7:02:7f: 22:85:a5:1f:9c:09:19:94:ee:ee:91:85:f0:9e:98:aa:97:59: ff:39:c6:90:f8:b7:6d:2c:5d:d9:5b:1c:a3:29:9f:76:89:c3: 0f:7f:2c:6d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXJ89WkMeADzlm1C+Pvkr01gc7/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNDA2MTYwNDU1MDBaFw0yNTA2MTUwNTAwMDBaMDMxMTAvBgNV BAMTKEJGNUI2QUIzM0JDMzc1MDE1RTNDODlBRDQzM0UzNzZFQUIxNjg1MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq1BMJxcblAgKm6TTHqEYZPy/R nlKJwiHsCFYWlQ6bkdjUMKztXUa3m488gxUKGqsZxHHTgKQO8OQ8gOySbJe0Yd3H xH4rdZwxdGhPZ5NxRzk4oOoV9R1+wADR0kgEX8hZ4VEqo4TZwwhX4dS80f3xSPyf /bz3928kLclXwiiFM7V+RVGB1yGh+Wk2kRR7MxwYwaDiYY2xbctyxlChExVIWsyc cHRgCUCISPZB70qey4t9JUa9FmTKGUkifKSqH/gcFnPbU9mrVLztOq/E55EYE7Ef nVHh/2OgrybLM6P2BHxlc1amKqgAu8+U6OF3lRkY6YxUCD1m1IC7sL5RsO/vAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUv1tqszvDdQFePImtQz43bqsWhRAwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxgwDQYJKoZIhvcN AQELBQADggEBAM4Fa7mmQQYjKXGXdciACLLrZCiDK2pmmmOfys0i2LGc7wdLdQDH EBaWbL8LszU7MBI674tiduoR0tbbx0S9+cialSkwT2F+ugh3issrCuwCq1mD4qwe HJ1d6LulD+n63trBFpw4dJjp7HGap0MTBtiwbbqGJQOgiKS8yexFPIh4H6y8Fq6F aQqtf5kJuKcyIeO+/DTdzU1jlqAqDfogWm2RWma61gF1Yh1yoHCZFUm21vjKq6UL GPX5Z3YsifXoZzZ2Vy/J0x3v8xxsEv+T3ztEePZHiucCfyKFpR+cCRmU7u6RhfCe mKqXWf85xpD4t20sXdlbHKMpn3aJww9/LG0= -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org