$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32382e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: YHX+6BBRaxxCELIdKsaug4GcfgtUgPcSjqByVGIE/fg= Subject key identifier: 9E:4F:03:FB:1C:8E:2A:01:D2:09:6C:BC:0C:34:6E:38:C2:F0:95:ED Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 720C39196FD06F4AAD2DB86F24F76803505600AC Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa Signing time: Sun 16 Jul 2023 05:00:01 +0000 ROA not before: Sun 16 Jul 2023 04:55:01 +0000 ROA not after: Sun 14 Jul 2024 05:00:01 +0000 asID: 24528 IP address blocks: 202.91.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:0c:39:19:6f:d0:6f:4a:ad:2d:b8:6f:24:f7:68:03:50:56:00:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jul 16 04:55:01 2023 GMT Not After : Jul 14 05:00:01 2024 GMT Subject: CN=9E4F03FB1C8E2A01D2096CBC0C346E38C2F095ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:19:65:16:02:01:5d:23:5b:f6:cf:b2:18:20: 8a:8c:0b:35:a0:92:02:74:2c:74:d8:9a:f2:c3:06: d7:cf:f4:d2:37:4c:51:2f:7b:66:62:e9:93:53:9b: 90:ed:c8:b4:ee:ea:4d:c3:8c:c6:6a:43:c0:06:61: a8:3c:9c:d5:e2:58:9a:2b:34:78:27:e5:85:fb:23: b8:5b:9f:97:b5:0e:4a:fe:49:08:47:f4:90:0f:34: 14:dc:56:6e:d5:89:22:f1:3c:7b:0d:cb:00:9f:f5: d5:67:6b:2e:22:a8:c3:bd:c3:25:6d:b8:3f:73:10: ad:83:18:36:48:5d:3a:3d:79:bd:73:08:8a:13:d6: 08:5a:0e:a4:9e:30:b4:85:52:9c:a4:f7:df:39:76: 9c:bb:ef:8b:13:7e:ec:00:80:2e:e3:4e:16:cb:75: 5f:88:3f:f9:32:4f:e3:d7:22:bf:36:ff:83:eb:f4: 90:63:52:fc:65:e7:83:af:33:d7:96:b6:d9:43:37: 03:26:6d:d5:50:4d:22:e8:f1:be:b9:fc:79:3f:4a: 51:29:9e:f7:1c:98:8a:ec:ed:e4:e1:c2:d2:1f:b6: 9f:96:c0:0e:f4:f1:27:55:d1:ea:49:78:fe:6f:ec: 74:d5:6e:85:c7:31:46:8b:d2:0a:0d:f0:25:38:83: fc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:4F:03:FB:1C:8E:2A:01:D2:09:6C:BC:0C:34:6E:38:C2:F0:95:ED X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.28.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a3:bd:8e:ff:05:26:18:eb:d9:f6:8a:ad:63:88:7e:b4:1b: 29:3d:65:28:a5:22:00:e4:eb:8c:10:dc:75:36:31:5b:bc:8d: 50:48:04:8d:9f:d9:d1:93:19:ac:fb:c9:33:6e:34:6f:92:1b: 42:37:94:44:d6:37:8a:fb:01:49:10:9a:15:15:74:11:8e:2d: 17:6c:ec:39:23:1f:aa:24:90:73:89:3d:da:2c:3a:5d:a9:a3: e3:75:b2:a5:09:22:9b:1b:57:af:75:c0:5d:44:38:5f:c5:ef: a6:45:2f:a5:20:f7:25:38:a9:84:65:1a:a4:61:41:47:f6:6c: 7b:b7:49:a7:b9:20:d5:7f:fc:68:7e:72:36:dc:e4:db:49:4d: 84:ef:f7:46:b5:49:d3:dc:73:45:f2:58:27:01:9c:f5:57:13: 3d:94:33:c3:c3:bc:60:61:57:20:2b:ce:d6:89:13:45:f1:29: c0:0b:ff:9b:8a:61:b7:c2:f6:eb:2a:ac:23:84:0c:2d:44:35: 7f:4a:11:fd:33:cb:8a:9c:85:1f:69:0b:95:4e:68:6a:66:46: 4c:77:32:98:fa:f7:ac:a8:c7:e7:55:06:2c:0e:db:a0:39:23: 2d:2a:f0:65:7f:cc:81:33:3d:50:6b:fe:fb:d6:d3:50:b7:f6: 43:1c:f2:27 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcgw5GW/Qb0qtLbhvJPdoA1BWAKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yMzA3MTYwNDU1MDFaFw0yNDA3MTQwNTAwMDFaMDMxMTAvBgNV BAMTKDlFNEYwM0ZCMUM4RTJBMDFEMjA5NkNCQzBDMzQ2RTM4QzJGMDk1RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGGWUWAgFdI1v2z7IYIIqMCzWg kgJ0LHTYmvLDBtfP9NI3TFEve2Zi6ZNTm5DtyLTu6k3DjMZqQ8AGYag8nNXiWJor NHgn5YX7I7hbn5e1Dkr+SQhH9JAPNBTcVm7ViSLxPHsNywCf9dVnay4iqMO9wyVt uD9zEK2DGDZIXTo9eb1zCIoT1ghaDqSeMLSFUpyk9985dpy774sTfuwAgC7jThbL dV+IP/kyT+PXIr82/4Pr9JBjUvxl54OvM9eWttlDNwMmbdVQTSLo8b65/Hk/SlEp nvccmIrs7eThwtIftp+WwA708SdV0epJeP5v7HTVboXHMUaL0goN8CU4g/wrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnk8D+xyOKgHSCWy8DDRuOMLwle0wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxwwDQYJKoZIhvcN AQELBQADggEBAAejvY7/BSYY69n2iq1jiH60Gyk9ZSilIgDk64wQ3HU2MVu8jVBI BI2f2dGTGaz7yTNuNG+SG0I3lETWN4r7AUkQmhUVdBGOLRds7DkjH6okkHOJPdos Ol2po+N1sqUJIpsbV691wF1EOF/F76ZFL6Ug9yU4qYRlGqRhQUf2bHu3Sae5INV/ /Gh+cjbc5NtJTYTv90a1SdPcc0XyWCcBnPVXEz2UM8PDvGBhVyArztaJE0XxKcAL /5uKYbfC9usqrCOEDC1ENX9KEf0zy4qchR9pC5VOaGpmRkx3Mpj696yox+dVBiwO 26A5Iy0q8GV/zIEzPVBr/vvW01C39kMc8ic= -----END CERTIFICATE-----Generated at Sat Jun 1 19:26:35 2024 by rpki-client on console-fra.rpki-client.org