$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32342e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: nikRTC901Bllan4GreFOs5fithEDsAsxTQDrjRSiako= Subject key identifier: F8:F1:F2:C0:47:4F:E9:DB:EE:04:6F:FE:14:3B:1B:E2:DC:B0:6A:51 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 66DA3C982837FC9F55F2FA140F5A21A5F8829B9D Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa Signing time: Sun 18 May 2025 05:00:00 +0000 ROA not before: Sun 18 May 2025 04:55:00 +0000 ROA not after: Sun 17 May 2026 05:00:00 +0000 asID: 24528 IP address blocks: 202.91.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:da:3c:98:28:37:fc:9f:55:f2:fa:14:0f:5a:21:a5:f8:82:9b:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 04:55:00 2025 GMT Not After : May 17 05:00:00 2026 GMT Subject: CN=F8F1F2C0474FE9DBEE046FFE143B1BE2DCB06A51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7a:73:b4:a0:49:35:0b:cc:3e:1b:13:ba:f1: e2:d5:e2:77:6b:6e:09:05:41:c6:4c:a9:ca:32:0a: 64:42:df:e6:26:1d:b3:b9:ca:20:64:6f:c7:f6:ed: 19:2b:8b:9e:f5:33:6b:fc:8c:0a:93:5c:0b:de:db: 14:ec:6e:56:11:d6:54:f4:c1:3f:4a:ad:da:5c:8b: 8d:a4:07:2f:15:2c:9c:61:4b:9c:4f:bf:74:92:18: 8f:c8:45:63:e0:be:6e:c8:d2:90:9e:34:b6:67:6c: 0c:d2:dd:f6:0a:b2:6a:10:77:af:97:f1:ed:d0:66: 58:ba:2d:f5:7d:f7:71:c8:7e:90:b7:39:86:4b:37: 05:06:8e:65:37:31:23:3b:54:2b:fc:fb:b4:ad:f1: 59:80:e0:83:6f:56:56:d4:24:53:e9:f5:f5:bb:aa: 75:28:9f:48:fd:61:b6:b6:0b:e5:24:87:57:ad:8d: 1d:30:de:6c:e9:db:fa:3f:cd:18:a7:cc:95:ee:7b: e1:0a:9e:ed:03:8a:bc:a9:ae:aa:93:34:7f:e0:5b: f2:12:6d:20:98:fb:a6:93:ff:2d:2d:4a:63:cc:42: 67:e1:04:b3:a1:c4:e9:fe:eb:db:4f:6b:8a:6a:a5: 03:ac:e1:69:db:fd:e2:a7:42:f3:5a:00:4a:21:12: 83:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F1:F2:C0:47:4F:E9:DB:EE:04:6F:FE:14:3B:1B:E2:DC:B0:6A:51 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32342e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.24.0/24 Signature Algorithm: sha256WithRSAEncryption 35:a4:97:21:d5:0d:9f:8e:27:46:51:32:b4:70:f6:67:45:3b: 36:ae:eb:4b:61:2d:29:5e:63:f8:69:90:dc:84:19:26:49:50: b5:cd:a9:e5:c0:fc:2f:c9:7b:6d:96:9a:aa:71:18:85:02:b7: 86:ae:19:fc:67:08:23:f0:a6:1c:0d:51:60:49:38:ea:00:aa: b8:7e:9e:69:d3:86:4b:e6:2e:1b:93:d1:5b:6d:5b:55:6b:e2: 3f:f5:c1:ed:2a:cc:84:0d:57:9d:44:b5:bd:9e:13:2e:0f:55: 2f:01:b1:35:e6:a4:03:12:ac:5a:f8:7d:35:14:88:bf:d6:c3: 4e:73:4f:7e:53:90:32:0b:eb:02:1a:2c:c9:f2:7c:47:92:8c: b1:e1:7f:ab:d5:c3:ed:e8:9b:5c:17:b2:16:f3:4d:cc:d0:a2: 96:1b:fb:c2:57:a7:99:47:54:bf:7e:f4:d8:ee:8b:fb:6a:87: be:ce:2d:8a:ed:72:8b:a6:6e:f9:56:84:b5:b9:5b:0b:99:f9: d0:d3:f2:8d:0e:f2:d7:14:a0:56:7c:ad:5e:17:76:38:c8:b8: 01:26:bc:32:5e:c2:dc:32:58:0d:34:a9:9e:af:0d:d0:75:84: e8:44:f2:b3:7b:e4:06:bd:3a:20:25:4f:37:22:38:e9:35:06: 82:f8:8e:e2 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZto8mCg3/J9V8voUD1ohpfiCm50wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNDU1MDBaFw0yNjA1MTcwNTAwMDBaMDMxMTAvBgNV BAMTKEY4RjFGMkMwNDc0RkU5REJFRTA0NkZGRTE0M0IxQkUyRENCMDZBNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqenO0oEk1C8w+GxO68eLV4ndr bgkFQcZMqcoyCmRC3+YmHbO5yiBkb8f27Rkri571M2v8jAqTXAve2xTsblYR1lT0 wT9Krdpci42kBy8VLJxhS5xPv3SSGI/IRWPgvm7I0pCeNLZnbAzS3fYKsmoQd6+X 8e3QZli6LfV993HIfpC3OYZLNwUGjmU3MSM7VCv8+7St8VmA4INvVlbUJFPp9fW7 qnUon0j9Yba2C+Ukh1etjR0w3mzp2/o/zRinzJXue+EKnu0DiryprqqTNH/gW/IS bSCY+6aT/y0tSmPMQmfhBLOhxOn+69tPa4pqpQOs4Wnb/eKnQvNaAEohEoOVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+PHywEdP6dvuBG/+FDsb4tywalEwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxgwDQYJKoZIhvcN AQELBQADggEBADWklyHVDZ+OJ0ZRMrRw9mdFOzau60thLSleY/hpkNyEGSZJULXN qeXA/C/Je22WmqpxGIUCt4auGfxnCCPwphwNUWBJOOoAqrh+nmnThkvmLhuT0Vtt W1Vr4j/1we0qzIQNV51Etb2eEy4PVS8BsTXmpAMSrFr4fTUUiL/Ww05zT35TkDIL 6wIaLMnyfEeSjLHhf6vVw+3om1wXshbzTczQopYb+8JXp5lHVL9+9Njui/tqh77O LYrtcoumbvlWhLW5WwuZ+dDT8o0O8tcUoFZ8rV4XdjjIuAEmvDJewtwyWA00qZ6v DdB1hOhE8rN75Aa9OiAlTzciOOk1BoL4juI= -----END CERTIFICATE-----Generated at Sat Jun 7 23:13:41 2025 by rpki-client