$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32362e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32362e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: 6Gn2L5Gc0xaArWW6fS4YuSQAyW4Nw2vh1NIUwUVsqyA= Subject key identifier: 89:28:48:AD:BF:12:75:7A:E3:62:47:8E:5D:7A:AF:38:63:CA:A0:53 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 65661EA483054C005E74A4472A5455FF9A571EB2 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32362e302f32342d3234203d3e203234353238.roa Signing time: Sun 18 May 2025 05:00:00 +0000 ROA not before: Sun 18 May 2025 04:55:00 +0000 ROA not after: Sun 17 May 2026 05:00:00 +0000 asID: 24528 IP address blocks: 202.91.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:66:1e:a4:83:05:4c:00:5e:74:a4:47:2a:54:55:ff:9a:57:1e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 04:55:00 2025 GMT Not After : May 17 05:00:00 2026 GMT Subject: CN=892848ADBF12757AE362478E5D7AAF3863CAA053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:fe:13:48:cc:34:23:40:96:a5:e5:ab:69:d4: 6e:3f:8e:d0:0c:aa:3b:66:7a:70:ad:b4:74:45:8a: 3f:98:ae:60:e7:7c:18:c8:01:cf:00:3d:cd:b5:0f: 8d:b2:b8:b1:de:d3:36:70:5b:b3:cb:4e:25:81:f7: 26:85:03:c5:47:01:8f:fc:ba:26:b7:88:88:85:c0: b0:c5:ac:ff:e9:a3:25:cd:ca:e5:b1:1c:10:f3:36: 6c:f6:43:96:92:15:18:82:2b:55:06:eb:53:2c:b4: 3a:53:8f:1f:ad:64:9d:bd:81:1f:bd:f3:b6:5e:d6: 42:83:48:b1:8b:a4:34:fa:42:d2:0e:45:19:d1:94: 6d:b7:a7:e5:fc:5f:c1:19:18:6e:9d:ec:a8:41:35: 29:f0:fc:08:e3:b9:a3:63:e0:88:17:df:ae:59:4f: 21:47:45:5b:10:f6:0a:3b:3f:76:0a:65:5b:50:cb: 08:12:65:df:26:60:9c:65:db:a9:a8:d5:fb:d4:08: b2:cc:25:ae:3f:3a:09:10:21:ac:30:83:a2:44:98: 46:e2:41:9b:c1:ce:24:f8:d7:81:12:23:1f:7f:95: cb:f4:d3:06:2a:25:e3:5c:5b:76:ca:db:cd:7f:f4: e1:68:62:34:12:ee:c8:c9:3f:c9:81:2c:98:64:33: 9a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:28:48:AD:BF:12:75:7A:E3:62:47:8E:5D:7A:AF:38:63:CA:A0:53 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32362e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.26.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:bb:11:e1:40:02:05:b6:83:65:33:39:dd:21:39:e4:b4:2b: fe:e3:9d:ce:9a:cb:cb:35:17:70:16:90:08:92:1b:e7:1e:f4: 87:2c:0f:6a:a8:bf:52:c8:24:fa:62:ff:dd:af:8f:d8:49:6e: 5a:17:6a:86:7b:01:a1:c5:f7:d6:3a:5b:f3:ac:1f:fc:d0:98: 12:fd:5e:6c:82:8d:29:82:34:94:24:b8:be:11:32:ca:1b:81: 3c:c3:82:d6:2b:5e:2b:fb:82:01:13:3f:8b:36:91:f9:ee:44: 99:65:7a:af:9e:2d:6b:9c:6e:ad:1e:2a:63:bb:c7:bd:c2:e3: 4c:b8:80:d5:d1:9d:5b:c6:d3:9b:bc:5a:eb:c1:28:90:92:30: a7:2c:c9:d8:d4:96:9c:2d:f4:a9:0e:9e:63:cc:07:2e:03:21: 79:83:17:72:80:bd:7e:ff:1e:99:7f:2f:9b:a6:ed:52:f8:4a: 3a:66:2a:9c:2a:c0:84:3f:35:d4:e8:fa:e4:83:d1:51:4a:85: 7a:3e:91:05:9b:80:70:ba:db:94:cc:63:2f:bc:ca:8c:9f:9b: 06:23:59:6d:82:f0:94:60:9a:b2:9a:36:cc:c6:f1:96:60:e9: 33:15:aa:b9:26:d0:a9:ea:28:6e:e1:83:e3:fc:d6:53:98:75: ec:b9:0c:45 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZWYepIMFTABedKRHKlRV/5pXHrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNDU1MDBaFw0yNjA1MTcwNTAwMDBaMDMxMTAvBgNV BAMTKDg5Mjg0OEFEQkYxMjc1N0FFMzYyNDc4RTVEN0FBRjM4NjNDQUEwNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv/hNIzDQjQJal5atp1G4/jtAM qjtmenCttHRFij+YrmDnfBjIAc8APc21D42yuLHe0zZwW7PLTiWB9yaFA8VHAY/8 uia3iIiFwLDFrP/poyXNyuWxHBDzNmz2Q5aSFRiCK1UG61MstDpTjx+tZJ29gR+9 87Ze1kKDSLGLpDT6QtIORRnRlG23p+X8X8EZGG6d7KhBNSnw/AjjuaNj4IgX365Z TyFHRVsQ9go7P3YKZVtQywgSZd8mYJxl26mo1fvUCLLMJa4/OgkQIawwg6JEmEbi QZvBziT414ESIx9/lcv00wYqJeNcW3bK281/9OFoYjQS7sjJP8mBLJhkM5qlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUiShIrb8SdXrjYkeOXXqvOGPKoFMwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxowDQYJKoZIhvcN AQELBQADggEBAB27EeFAAgW2g2UzOd0hOeS0K/7jnc6ay8s1F3AWkAiSG+ce9Ics D2qov1LIJPpi/92vj9hJbloXaoZ7AaHF99Y6W/OsH/zQmBL9XmyCjSmCNJQkuL4R MsobgTzDgtYrXiv7ggETP4s2kfnuRJlleq+eLWucbq0eKmO7x73C40y4gNXRnVvG 05u8WuvBKJCSMKcsydjUlpwt9KkOnmPMBy4DIXmDF3KAvX7/Hpl/L5um7VL4Sjpm KpwqwIQ/NdTo+uSD0VFKhXo+kQWbgHC625TMYy+8yoyfmwYjWW2C8JRgmrKaNszG 8ZZg6TMVqrkm0KnqKG7hg+P81lOYdey5DEU= -----END CERTIFICATE-----Generated at Sat Jun 7 14:43:31 2025 by rpki-client