$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32382e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: aOzMI9PHIaU1+JYfqj3PgTWOSMZrS1G3wjVf+KJcQuA= Subject key identifier: 64:84:43:20:19:FD:B8:1A:F0:88:BF:67:17:FF:97:44:BE:C5:11:DC Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 5288C57829C62D81F333CE82B3A9E47FDA9E2FC0 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa Signing time: Sun 18 May 2025 07:00:00 +0000 ROA not before: Sun 18 May 2025 06:55:00 +0000 ROA not after: Sun 17 May 2026 07:00:00 +0000 asID: 24528 IP address blocks: 202.91.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:88:c5:78:29:c6:2d:81:f3:33:ce:82:b3:a9:e4:7f:da:9e:2f:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 06:55:00 2025 GMT Not After : May 17 07:00:00 2026 GMT Subject: CN=6484432019FDB81AF088BF6717FF9744BEC511DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9d:c1:b7:38:88:66:4a:e0:be:3b:ca:bd:0b: 16:d3:45:92:2d:82:98:66:95:7e:21:4b:44:b9:f5: bb:89:3e:ce:af:ad:82:8e:fb:f7:9c:df:ec:e6:b9: 0b:65:22:60:99:1b:92:c7:ef:b5:3b:b7:d4:39:c6: 79:7b:bf:4e:b4:d9:2d:3e:d6:c7:30:a2:da:e7:f9: 4c:d2:88:21:de:d8:65:54:4d:bf:5f:49:0e:e8:45: 12:80:bc:dc:40:21:96:89:e0:18:2a:d6:7e:8b:0b: cd:37:26:6a:f4:74:1e:9d:33:5f:d9:d2:86:7c:24: 43:35:73:48:27:a6:c5:d2:69:99:da:aa:9e:78:fb: 81:85:59:8d:1c:c5:8f:10:30:bd:ae:a7:33:f0:bc: 70:f3:0a:d4:4b:50:4a:79:e2:92:59:a7:36:f8:14: 6d:9f:0d:f1:94:a2:89:4d:b8:96:96:91:2f:49:ee: ff:9c:b8:c1:e5:1c:e7:cf:b5:d1:b5:23:58:70:f3: 54:22:8c:3f:24:23:ef:0a:d2:f5:ff:21:59:7c:cd: 18:43:d9:c8:68:12:e3:a9:25:57:46:44:71:16:04: af:2a:cd:df:3d:23:df:ef:21:0f:81:0b:8b:f6:23: c2:63:6d:07:d1:70:66:33:9e:f3:8a:92:b1:6f:16: 59:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:84:43:20:19:FD:B8:1A:F0:88:BF:67:17:FF:97:44:BE:C5:11:DC X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.28.0/24 Signature Algorithm: sha256WithRSAEncryption 35:48:77:58:bb:e0:02:35:5a:d3:4d:86:db:c8:68:22:6a:2e: e5:dc:29:0b:14:ac:91:8a:af:e8:a3:63:d0:8e:c0:cf:0f:d3: 09:12:be:d8:3a:66:eb:d5:08:7e:88:a0:1f:31:8c:55:0d:72: e4:b6:d1:98:42:aa:8a:75:81:62:dc:73:bd:05:46:b6:28:f2: 66:01:a7:63:1f:a2:c9:87:11:0c:9e:c5:b1:58:f7:d4:15:32: 7e:ae:5d:62:62:76:0a:85:cc:11:35:a7:f4:17:34:22:f5:82: 6d:6c:47:9a:80:bd:c0:6f:8c:63:15:a9:c1:c1:ec:b5:55:7a: ec:77:06:7e:9e:86:0a:4a:ea:0b:0f:f9:23:04:28:bd:b7:13: dc:93:60:27:50:e3:85:45:60:ca:84:7a:bf:e9:51:a1:c2:72: 60:47:e8:81:c8:65:64:f8:28:7e:72:bb:c9:bd:a3:ba:5f:92: 60:ac:95:8c:b7:03:9e:f4:84:30:76:33:d3:87:76:14:2e:c3: 1e:12:c6:43:c0:ae:cc:21:27:1d:53:1c:ce:ad:fd:ab:f9:d1: f4:09:92:35:ce:8f:3d:c8:60:9c:85:69:90:bd:9c:9a:5b:0d: f3:ce:57:0f:d9:6b:81:19:12:55:af:92:fb:40:41:a7:2d:df: fc:97:19:23 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUojFeCnGLYHzM86Cs6nkf9qeL8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwNjU1MDBaFw0yNjA1MTcwNzAwMDBaMDMxMTAvBgNV BAMTKDY0ODQ0MzIwMTlGREI4MUFGMDg4QkY2NzE3RkY5NzQ0QkVDNTExREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdncG3OIhmSuC+O8q9CxbTRZIt gphmlX4hS0S59buJPs6vrYKO+/ec3+zmuQtlImCZG5LH77U7t9Q5xnl7v0602S0+ 1scwotrn+UzSiCHe2GVUTb9fSQ7oRRKAvNxAIZaJ4Bgq1n6LC803Jmr0dB6dM1/Z 0oZ8JEM1c0gnpsXSaZnaqp54+4GFWY0cxY8QML2upzPwvHDzCtRLUEp54pJZpzb4 FG2fDfGUoolNuJaWkS9J7v+cuMHlHOfPtdG1I1hw81QijD8kI+8K0vX/IVl8zRhD 2choEuOpJVdGRHEWBK8qzd89I9/vIQ+BC4v2I8JjbQfRcGYznvOKkrFvFlnHAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZIRDIBn9uBrwiL9nF/+XRL7FEdwwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxwwDQYJKoZIhvcN AQELBQADggEBADVId1i74AI1WtNNhtvIaCJqLuXcKQsUrJGKr+ijY9COwM8P0wkS vtg6ZuvVCH6IoB8xjFUNcuS20ZhCqop1gWLcc70FRrYo8mYBp2MfosmHEQyexbFY 99QVMn6uXWJidgqFzBE1p/QXNCL1gm1sR5qAvcBvjGMVqcHB7LVVeux3Bn6ehgpK 6gsP+SMEKL23E9yTYCdQ44VFYMqEer/pUaHCcmBH6IHIZWT4KH5yu8m9o7pfkmCs lYy3A570hDB2M9OHdhQuwx4SxkPArswhJx1THM6t/av50fQJkjXOjz3IYJyFaZC9 nJpbDfPOVw/Za4EZElWvkvtAQact3/yXGSM= -----END CERTIFICATE-----Generated at Sat Jun 7 23:16:42 2025 by rpki-client