$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32392e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: p6w84x+sTkId9KJBAsf0out+ASQwEBO6MAkMqXPQJmY= Subject key identifier: 9D:8B:74:8C:D4:9A:98:C2:6A:28:B3:FF:AF:97:9D:CD:E1:05:27:6C Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 1BB3FEF15BFB996CB3897C87DAE3C475E66A5AAE Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa Signing time: Sun 18 May 2025 04:00:00 +0000 ROA not before: Sun 18 May 2025 03:55:00 +0000 ROA not after: Sun 17 May 2026 04:00:00 +0000 asID: 24528 IP address blocks: 202.91.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:b3:fe:f1:5b:fb:99:6c:b3:89:7c:87:da:e3:c4:75:e6:6a:5a:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 03:55:00 2025 GMT Not After : May 17 04:00:00 2026 GMT Subject: CN=9D8B748CD49A98C26A28B3FFAF979DCDE105276C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fb:b3:39:fd:ac:8f:12:a6:7d:f2:74:c6:50: d0:b1:5f:8a:c0:6d:68:25:98:5a:ec:7d:7f:92:79: 6c:e5:06:57:a8:ea:b6:50:47:1b:fd:68:92:85:c9: 7e:44:e1:fa:c5:fc:d7:1b:cc:bc:f6:3b:89:f9:2f: 5f:d6:58:6e:58:1c:1e:6b:ca:d8:60:a5:f2:f8:44: 08:b2:a6:ef:e1:99:8b:cc:d9:96:8e:a0:de:2d:a2: cd:5f:b8:60:94:59:f3:40:03:8e:8e:42:d8:05:6c: b0:0e:28:f2:6e:16:f0:e3:c2:ba:27:df:01:a6:51: 78:be:4d:37:63:3c:0e:63:da:82:44:1c:d0:41:f1: 0a:44:e6:f7:31:ab:92:02:7a:e1:9d:de:ba:c1:4f: 9c:e8:95:a1:22:71:c3:75:a4:65:a9:d0:4d:a5:0e: 2d:c2:dd:a7:ce:9b:6e:fd:eb:ee:82:f9:25:78:2c: 38:a9:56:3d:1d:db:a7:b8:a3:f7:f8:99:df:08:95: 70:f6:fb:68:4d:1a:16:20:ca:bc:2c:c3:00:28:c4: b2:49:83:69:21:46:90:83:3f:a8:97:0a:92:a2:27: ab:2e:73:ca:d5:8e:35:b6:74:a2:fa:c7:5d:0f:51: 20:85:69:cd:9f:f1:77:91:9c:3b:c3:9b:ed:25:07: 7d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8B:74:8C:D4:9A:98:C2:6A:28:B3:FF:AF:97:9D:CD:E1:05:27:6C X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.29.0/24 Signature Algorithm: sha256WithRSAEncryption c8:8f:4b:d6:9c:77:64:d8:f3:65:24:d5:44:35:60:58:6e:56: 3c:af:d6:0d:bb:43:88:76:71:38:04:a8:33:2a:7d:a3:17:54: 91:fd:a6:27:6b:61:3e:ca:d2:bf:33:fb:f3:a7:a2:36:05:aa: 29:2f:42:9d:dd:6e:e7:4f:0a:53:49:6c:fc:83:a4:ac:98:e3: 0c:d7:0e:99:25:d9:7d:a3:2e:3f:1a:81:56:ab:dd:0c:5c:7c: 01:48:5d:06:f0:fe:b1:89:35:f4:d4:43:99:22:f3:ee:ed:9f: 20:b5:7c:bd:2f:27:ca:e7:cc:2a:4d:fb:e0:50:85:a3:1e:de: 6c:85:4a:ef:45:f2:29:1a:63:3c:54:00:86:00:fb:f9:ac:4d: 87:5a:4b:30:f9:63:c6:a8:37:20:78:0d:2c:e0:27:a5:37:7a: 46:b5:f1:3d:0c:80:8e:d3:b8:c0:8c:a4:00:7e:3f:2b:d0:00: 14:8f:60:fb:44:c5:29:21:f5:eb:a7:2d:20:3c:7d:5e:90:fe: 98:8a:86:b1:0f:95:c1:2a:8e:e0:f8:e7:d4:45:46:18:11:e8: 61:57:cd:a2:47:9d:1e:16:6a:a2:31:75:5d:15:78:0b:8b:ea: 14:6d:97:67:5c:42:29:55:12:6f:8a:ca:72:95:b5:ca:ba:2c: 69:89:e5:03 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUG7P+8Vv7mWyziXyH2uPEdeZqWq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwMzU1MDBaFw0yNjA1MTcwNDAwMDBaMDMxMTAvBgNV BAMTKDlEOEI3NDhDRDQ5QTk4QzI2QTI4QjNGRkFGOTc5RENERTEwNTI3NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj+7M5/ayPEqZ98nTGUNCxX4rA bWglmFrsfX+SeWzlBleo6rZQRxv9aJKFyX5E4frF/NcbzLz2O4n5L1/WWG5YHB5r ythgpfL4RAiypu/hmYvM2ZaOoN4tos1fuGCUWfNAA46OQtgFbLAOKPJuFvDjwron 3wGmUXi+TTdjPA5j2oJEHNBB8QpE5vcxq5ICeuGd3rrBT5zolaEiccN1pGWp0E2l Di3C3afOm2796+6C+SV4LDipVj0d26e4o/f4md8IlXD2+2hNGhYgyrwswwAoxLJJ g2khRpCDP6iXCpKiJ6suc8rVjjW2dKL6x10PUSCFac2f8XeRnDvDm+0lB30rAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUnYt0jNSamMJqKLP/r5edzeEFJ2wwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWx0wDQYJKoZIhvcN AQELBQADggEBAMiPS9acd2TY82Uk1UQ1YFhuVjyv1g27Q4h2cTgEqDMqfaMXVJH9 pidrYT7K0r8z+/OnojYFqikvQp3dbudPClNJbPyDpKyY4wzXDpkl2X2jLj8agVar 3QxcfAFIXQbw/rGJNfTUQ5ki8+7tnyC1fL0vJ8rnzCpN++BQhaMe3myFSu9F8ika YzxUAIYA+/msTYdaSzD5Y8aoNyB4DSzgJ6U3eka18T0MgI7TuMCMpAB+PyvQABSP YPtExSkh9eunLSA8fV6Q/piKhrEPlcEqjuD459RFRhgR6GFXzaJHnR4WaqIxdV0V eAuL6hRtl2dcQilVEm+KynKVtcq6LGmJ5QM= -----END CERTIFICATE-----Generated at Sat Jun 7 23:16:02 2025 by rpki-client