$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32352e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32352e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: f+5HOc/sgnjP7t42vcbumcmwD5c7eyke5qlw/e0UPsk= Subject key identifier: A2:47:70:92:4D:B8:82:20:02:76:68:90:36:D7:ED:A1:A7:40:6F:10 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 0BB715461DD6335E4E9582FAC492D9D3AE9AEAF6 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32352e302f32342d3234203d3e203234353238.roa Signing time: Sun 18 May 2025 06:00:00 +0000 ROA not before: Sun 18 May 2025 05:55:00 +0000 ROA not after: Sun 17 May 2026 06:00:00 +0000 asID: 24528 IP address blocks: 202.91.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b7:15:46:1d:d6:33:5e:4e:95:82:fa:c4:92:d9:d3:ae:9a:ea:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 05:55:00 2025 GMT Not After : May 17 06:00:00 2026 GMT Subject: CN=A24770924DB882200276689036D7EDA1A7406F10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a9:5b:6e:44:d5:a7:15:47:9a:64:de:4c:92: 66:40:e9:40:40:e7:08:56:32:7f:e5:65:79:89:7f: f1:27:30:2d:e3:46:fd:4e:08:f2:dc:b0:e6:26:27: 84:0a:25:54:d1:ad:81:26:9d:f0:27:d9:81:e7:60: 3b:50:08:34:12:94:d4:ab:61:94:3f:5b:a7:82:94: 81:2f:d4:ab:40:0e:a0:51:2a:8f:6c:5b:80:1d:dc: 1b:e2:ab:f3:e6:93:80:38:20:3b:01:25:71:a6:39: a1:8c:a0:83:0b:9e:69:34:da:b7:e7:4e:e1:69:f3: 77:1c:55:96:13:58:df:23:b4:11:33:60:70:66:77: 14:c0:98:83:d2:4f:f2:90:6a:f2:be:33:50:c0:a7: 98:bb:6a:b0:90:fe:63:ca:ee:96:cb:72:13:ea:80: 9d:e9:2e:38:eb:0b:2f:17:bf:01:9c:03:61:78:35: 54:e1:d0:b3:e7:02:da:7d:a2:0f:08:21:cb:82:8d: de:2f:99:9a:8d:83:94:3f:a3:e0:5c:aa:e3:0a:19: d2:f9:76:fe:2b:90:28:80:54:8a:3f:49:3d:f6:b3: f3:c7:2e:6a:37:61:cd:8c:8f:63:eb:69:41:0f:31: 19:fb:1f:6e:9d:71:f7:f2:b8:0c:88:01:9c:1f:8d: ea:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:47:70:92:4D:B8:82:20:02:76:68:90:36:D7:ED:A1:A7:40:6F:10 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32352e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.25.0/24 Signature Algorithm: sha256WithRSAEncryption 17:f4:5b:fb:95:f1:23:31:4c:ad:2a:c1:38:ed:c6:1c:5d:e9: b8:17:2c:6b:86:78:0b:6c:ed:67:ac:87:9e:e8:cb:bd:86:a2: 40:b0:75:97:1b:9c:58:0f:ec:2a:c3:de:af:f0:1c:c5:93:d8: 0e:66:df:4b:92:0a:3a:ae:01:0c:df:6c:4a:89:22:fd:06:cf: e3:41:e0:d3:97:3c:62:47:87:26:11:17:0d:f3:5e:da:00:34: af:3e:13:89:ad:a1:e3:bf:4c:8a:b0:cc:91:b3:1e:b9:5f:e3: 8b:44:27:79:cb:f2:e8:bb:59:20:ff:50:4c:97:f4:de:be:07: be:9c:46:26:8f:2b:3c:c8:bf:1d:5e:ca:be:9e:ee:19:7b:e3: 22:b6:cb:6f:8b:71:bc:17:cf:c1:05:51:9d:91:e3:34:db:1b: 6e:2a:37:58:77:b4:b1:b2:10:ec:64:3d:7c:7c:8a:f6:68:2a: 26:ff:8d:70:e4:d8:59:55:d3:02:de:5b:01:b3:b9:2e:5a:e1: 75:c2:75:5d:1d:b3:33:82:9a:23:e1:8f:39:41:42:a3:19:74: 84:7d:fb:2f:bd:b6:be:67:78:3f:61:64:d8:39:27:b3:38:d3: 3e:a3:37:37:1b:89:e5:f0:91:97:6f:ad:8b:1e:73:68:8a:4a: a6:3a:aa:40 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUC7cVRh3WM15OlYL6xJLZ066a6vYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNTU1MDBaFw0yNjA1MTcwNjAwMDBaMDMxMTAvBgNV BAMTKEEyNDc3MDkyNERCODgyMjAwMjc2Njg5MDM2RDdFREExQTc0MDZGMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeqVtuRNWnFUeaZN5MkmZA6UBA 5whWMn/lZXmJf/EnMC3jRv1OCPLcsOYmJ4QKJVTRrYEmnfAn2YHnYDtQCDQSlNSr YZQ/W6eClIEv1KtADqBRKo9sW4Ad3Bviq/Pmk4A4IDsBJXGmOaGMoIMLnmk02rfn TuFp83ccVZYTWN8jtBEzYHBmdxTAmIPST/KQavK+M1DAp5i7arCQ/mPK7pbLchPq gJ3pLjjrCy8XvwGcA2F4NVTh0LPnAtp9og8IIcuCjd4vmZqNg5Q/o+BcquMKGdL5 dv4rkCiAVIo/ST32s/PHLmo3Yc2Mj2PraUEPMRn7H26dcffyuAyIAZwfjepHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUokdwkk24giACdmiQNtftoadAbxAwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxkwDQYJKoZIhvcN AQELBQADggEBABf0W/uV8SMxTK0qwTjtxhxd6bgXLGuGeAts7Wesh57oy72GokCw dZcbnFgP7CrD3q/wHMWT2A5m30uSCjquAQzfbEqJIv0Gz+NB4NOXPGJHhyYRFw3z XtoANK8+E4mtoeO/TIqwzJGzHrlf44tEJ3nL8ui7WSD/UEyX9N6+B76cRiaPKzzI vx1eyr6e7hl74yK2y2+LcbwXz8EFUZ2R4zTbG24qN1h3tLGyEOxkPXx8ivZoKib/ jXDk2FlV0wLeWwGzuS5a4XXCdV0dszOCmiPhjzlBQqMZdIR9+y+9tr5neD9hZNg5 J7M40z6jNzcbieXwkZdvrYsec2iKSqY6qkA= -----END CERTIFICATE-----Generated at Sat Jun 7 14:45:30 2025 by rpki-client