$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32382e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: 5dD8EGyHNmiFesdS/SYN09R1SP4j1b0qW/Ps1YwTmj0= Subject key identifier: B5:27:E1:E5:AE:A4:27:2E:37:D8:20:EC:1F:DA:B8:F8:9E:E8:90:4E Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 1D788382F3456EE2848469D068BF0CB8A6105EF8 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa Signing time: Sun 16 Jun 2024 06:00:01 +0000 ROA not before: Sun 16 Jun 2024 05:55:01 +0000 ROA not after: Sun 15 Jun 2025 06:00:01 +0000 asID: 24528 IP address blocks: 202.91.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:78:83:82:f3:45:6e:e2:84:84:69:d0:68:bf:0c:b8:a6:10:5e:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jun 16 05:55:01 2024 GMT Not After : Jun 15 06:00:01 2025 GMT Subject: CN=B527E1E5AEA4272E37D820EC1FDAB8F89EE8904E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f7:cf:04:28:15:c9:0e:53:30:2b:66:63:8f: 38:a7:46:9b:f8:2c:c2:09:bb:0b:e1:98:82:0f:51: 79:a7:c5:10:a5:29:2b:43:9b:38:bb:8e:de:42:68: 63:42:61:e8:e0:b0:4b:32:e9:97:c9:9f:19:b1:b4: a7:59:67:dc:a1:d0:bb:48:db:56:81:b6:a3:99:11: f4:4b:12:20:fa:82:50:df:12:de:b8:a9:9f:8e:b6: 6c:a8:a5:38:2e:aa:7c:b4:79:56:d2:bf:34:d2:fb: fe:74:b6:f1:30:95:17:5d:b1:c5:09:d9:76:27:f9: d3:3d:d2:66:5e:ab:56:0c:04:66:02:34:ef:d9:a3: 21:c7:36:38:9d:06:0c:86:1d:3f:e2:1b:8e:d8:e4: 05:2b:b9:01:a7:55:47:36:45:46:a9:2d:77:a9:81: 98:29:ac:63:4f:c0:7a:68:e5:f4:d6:75:d8:d4:cd: e4:75:f0:6d:51:cc:90:2d:4b:74:cd:09:fc:94:36: 4e:ff:d0:43:2b:92:41:83:b4:48:4c:09:65:da:b0: e9:9e:cd:e7:a3:d7:68:a9:b0:64:28:07:9b:38:e9: ce:10:9a:ab:41:25:92:20:42:b5:8d:88:ae:8c:b5: f1:15:f4:95:6d:ff:ac:0b:ec:43:dd:33:0a:22:f8: d1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:27:E1:E5:AE:A4:27:2E:37:D8:20:EC:1F:DA:B8:F8:9E:E8:90:4E X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32382e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.28.0/24 Signature Algorithm: sha256WithRSAEncryption 92:a9:18:c8:e2:8b:f1:64:cc:82:ed:e5:03:e4:94:22:9f:31: b2:3c:43:04:58:56:47:4b:8b:cc:dc:0f:ea:dd:98:a0:b4:84: 6c:d7:29:77:f7:40:de:75:9b:ac:ac:5b:4f:df:ca:00:d2:08: 04:72:0a:c2:31:95:f4:a6:e3:a5:e3:da:12:c9:77:61:45:92: 22:6f:5f:37:56:4d:97:a5:78:1e:76:94:db:64:89:d6:4c:4d: 8a:20:b3:90:82:3f:46:48:e6:8f:c8:39:1e:f4:41:fe:b7:3d: 3c:23:ac:41:d5:f7:6e:e8:bc:06:21:d4:d3:6d:cd:cf:fb:9e: b3:84:ce:75:d5:2f:fb:d3:56:9d:00:e3:f8:14:a2:dc:67:5b: 3b:b4:11:8a:34:76:0f:81:a4:55:f1:f9:99:47:03:f6:32:57: 4d:2b:b1:aa:8b:0f:c8:3f:2d:d0:09:74:46:a6:45:ff:93:39: 44:53:d9:11:2d:cf:3e:de:23:99:c7:f0:39:15:4d:51:d4:56: 9e:6f:23:86:8d:31:ef:91:a9:51:e6:37:14:a1:2a:61:58:b8: cc:45:fc:bf:f3:3a:f0:e1:88:84:9c:d3:ca:b0:36:79:ee:63: 3e:a5:ce:e2:e1:7a:09:cd:a8:4b:09:da:5a:39:4b:25:4c:f7: d1:59:44:84 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHXiDgvNFbuKEhGnQaL8MuKYQXvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNDA2MTYwNTU1MDFaFw0yNTA2MTUwNjAwMDFaMDMxMTAvBgNV BAMTKEI1MjdFMUU1QUVBNDI3MkUzN0Q4MjBFQzFGREFCOEY4OUVFODkwNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF988EKBXJDlMwK2ZjjzinRpv4 LMIJuwvhmIIPUXmnxRClKStDmzi7jt5CaGNCYejgsEsy6ZfJnxmxtKdZZ9yh0LtI 21aBtqOZEfRLEiD6glDfEt64qZ+OtmyopTguqny0eVbSvzTS+/50tvEwlRddscUJ 2XYn+dM90mZeq1YMBGYCNO/ZoyHHNjidBgyGHT/iG47Y5AUruQGnVUc2RUapLXep gZgprGNPwHpo5fTWddjUzeR18G1RzJAtS3TNCfyUNk7/0EMrkkGDtEhMCWXasOme zeej12ipsGQoB5s46c4QmqtBJZIgQrWNiK6MtfEV9JVt/6wL7EPdMwoi+NE/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtSfh5a6kJy432CDsH9q4+J7okE4wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWxwwDQYJKoZIhvcN AQELBQADggEBAJKpGMjii/FkzILt5QPklCKfMbI8QwRYVkdLi8zcD+rdmKC0hGzX KXf3QN51m6ysW0/fygDSCARyCsIxlfSm46Xj2hLJd2FFkiJvXzdWTZeleB52lNtk idZMTYogs5CCP0ZI5o/IOR70Qf63PTwjrEHV927ovAYh1NNtzc/7nrOEznXVL/vT Vp0A4/gUotxnWzu0EYo0dg+BpFXx+ZlHA/YyV00rsaqLD8g/LdAJdEamRf+TOURT 2REtzz7eI5nH8DkVTVHUVp5vI4aNMe+RqVHmNxShKmFYuMxF/L/zOvDhiISc08qw NnnuYz6lzuLhegnNqEsJ2lo5SyVM99FZRIQ= -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org