$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32352e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32352e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: 0kVf8GpXZpL1PMSPUzRz/oXDktaONvVx68WdNeLShWA= Subject key identifier: 85:64:13:C9:EA:76:69:3B:A4:38:4F:7C:EA:22:D1:0F:B2:FC:C3:67 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 2ADF4669AADA0DA888AB47D36E1F56B85C9AC4C4 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32352e302f32342d3234203d3e203234353238.roa Signing time: Sun 16 Jun 2024 06:00:00 +0000 ROA not before: Sun 16 Jun 2024 05:55:00 +0000 ROA not after: Sun 15 Jun 2025 06:00:00 +0000 asID: 24528 IP address blocks: 202.91.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:df:46:69:aa:da:0d:a8:88:ab:47:d3:6e:1f:56:b8:5c:9a:c4:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jun 16 05:55:00 2024 GMT Not After : Jun 15 06:00:00 2025 GMT Subject: CN=856413C9EA76693BA4384F7CEA22D10FB2FCC367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:9a:c4:28:82:74:b2:49:a5:5a:5e:a0:77:b6: 79:de:5a:a7:ec:50:0d:8b:01:01:1d:d6:a8:55:3e: 37:f2:dd:14:84:c6:04:78:cc:42:0d:20:71:1a:f6: ce:78:2c:ca:15:90:b6:f1:f3:63:57:52:a3:91:e4: d4:83:62:a7:d2:6e:cb:f5:65:27:96:2a:29:34:eb: ef:4a:71:fc:ca:24:dd:8f:0d:a4:ad:f3:81:fd:78: ff:bb:7e:c9:9a:6a:91:04:07:af:3f:67:ac:7f:cb: 64:4d:f0:c9:a4:41:a5:40:31:5f:13:72:f0:5a:f5: 51:6c:c3:62:a3:89:b8:29:21:10:bb:17:31:48:3a: 83:c0:42:e1:ba:f6:14:a2:c7:f2:b1:43:98:f3:c6: ba:c3:9f:68:16:93:f2:65:9e:f1:41:78:c7:90:9a: 13:95:83:5b:6e:ed:7b:93:b0:8a:4a:28:5a:a2:3d: f1:6b:92:e7:72:77:91:53:21:be:52:a6:6f:2d:1c: b3:b5:40:89:7b:dc:53:e3:4c:f6:75:5c:f2:18:cb: ab:63:da:36:10:f6:7c:6b:84:2b:65:51:11:df:58: e9:de:27:30:17:57:19:4e:39:62:a0:2b:08:c9:b5: 9c:c4:05:26:56:b2:d7:fb:53:7f:b7:05:ab:de:5b: d7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:64:13:C9:EA:76:69:3B:A4:38:4F:7C:EA:22:D1:0F:B2:FC:C3:67 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32352e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.25.0/24 Signature Algorithm: sha256WithRSAEncryption 74:00:fe:d9:10:42:51:37:9e:08:b3:fb:03:4d:2d:d8:02:a3: 7c:58:2f:29:43:e3:aa:ab:56:ff:fb:c6:40:1b:33:8a:ba:62: da:f5:9b:72:24:67:f1:1b:b8:de:d8:7a:43:5d:41:7d:e1:97: f7:2f:1c:0b:15:85:a3:9e:8c:b6:67:74:18:3e:22:33:f1:dd: 88:34:04:6d:5c:ff:2e:df:a4:18:d2:c5:7e:dc:0b:25:49:84: 85:11:99:03:e0:36:a5:ae:6e:46:89:ff:02:fa:e0:4c:20:f7: ac:4d:99:a7:3d:b4:c6:57:80:ad:8a:9d:3c:74:0e:4b:74:ff: 5d:94:d9:2e:cc:c4:e4:ac:69:5e:c0:2e:0a:b1:a4:45:90:26: c5:1e:fd:49:91:ff:52:02:e7:88:48:7f:a6:fb:35:0d:97:5c: 98:cd:43:bd:38:69:31:43:e8:90:73:ef:3a:bd:42:e8:dd:30: 59:72:8a:a8:27:90:b9:a7:49:e1:bd:e4:a1:20:cd:5e:60:8e: 62:1a:1d:20:19:e5:a2:fa:b1:c9:12:6a:0e:00:a9:0a:bf:56: 89:bb:57:86:cc:1e:6d:93:8a:c8:e5:9a:48:15:0d:d9:ff:91: f1:91:18:ea:b6:0f:b6:91:d0:27:c5:00:43:b6:04:ed:5a:a6: 9b:27:a7:e3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKt9GaaraDaiIq0fTbh9WuFyaxMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNDA2MTYwNTU1MDBaFw0yNTA2MTUwNjAwMDBaMDMxMTAvBgNV BAMTKDg1NjQxM0M5RUE3NjY5M0JBNDM4NEY3Q0VBMjJEMTBGQjJGQ0MzNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrmsQognSySaVaXqB3tnneWqfs UA2LAQEd1qhVPjfy3RSExgR4zEINIHEa9s54LMoVkLbx82NXUqOR5NSDYqfSbsv1 ZSeWKik06+9KcfzKJN2PDaSt84H9eP+7fsmaapEEB68/Z6x/y2RN8MmkQaVAMV8T cvBa9VFsw2KjibgpIRC7FzFIOoPAQuG69hSix/KxQ5jzxrrDn2gWk/JlnvFBeMeQ mhOVg1tu7XuTsIpKKFqiPfFrkudyd5FTIb5Spm8tHLO1QIl73FPjTPZ1XPIYy6tj 2jYQ9nxrhCtlURHfWOneJzAXVxlOOWKgKwjJtZzEBSZWstf7U3+3BaveW9c5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhWQTyep2aTukOE986iLRD7L8w2cwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxkwDQYJKoZIhvcN AQELBQADggEBAHQA/tkQQlE3ngiz+wNNLdgCo3xYLylD46qrVv/7xkAbM4q6Ytr1 m3IkZ/EbuN7YekNdQX3hl/cvHAsVhaOejLZndBg+IjPx3Yg0BG1c/y7fpBjSxX7c CyVJhIURmQPgNqWubkaJ/wL64Ewg96xNmac9tMZXgK2KnTx0Dkt0/12U2S7MxOSs aV7ALgqxpEWQJsUe/UmR/1IC54hIf6b7NQ2XXJjNQ704aTFD6JBz7zq9QujdMFly iqgnkLmnSeG95KEgzV5gjmIaHSAZ5aL6sckSag4AqQq/Vom7V4bMHm2TisjlmkgV Ddn/kfGRGOq2D7aR0CfFAEO2BO1appsnp+M= -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org