$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa File: 3230322e39312e32392e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: dwbWFoPjhBYm0ICnwf9B5oheJbD6wcLhrl82urARAfs= Subject key identifier: 76:46:F6:68:48:53:9E:C4:67:8A:D8:A4:DB:27:7A:7F:12:9C:95:D1 Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 7B311C321E22934DE04255D7404E15A3FE255CC9 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa Signing time: Sun 16 Jun 2024 04:00:00 +0000 ROA not before: Sun 16 Jun 2024 03:55:00 +0000 ROA not after: Sun 15 Jun 2025 04:00:00 +0000 asID: 24528 IP address blocks: 202.91.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:31:1c:32:1e:22:93:4d:e0:42:55:d7:40:4e:15:a3:fe:25:5c:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jun 16 03:55:00 2024 GMT Not After : Jun 15 04:00:00 2025 GMT Subject: CN=7646F66848539EC4678AD8A4DB277A7F129C95D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:34:ec:71:44:63:a7:7e:3d:ee:72:3c:92:82: 5e:5c:e8:00:98:56:ea:bc:a3:89:43:1c:3f:d6:fd: 78:8a:21:5a:85:53:25:23:b2:80:52:89:7b:46:df: 22:28:01:e7:2f:c0:5f:37:be:cd:6e:31:29:76:e8: 75:84:b2:07:4b:94:f2:c9:c6:19:8f:fe:e5:03:24: 1d:2b:93:16:5d:69:e7:14:44:8b:ed:b0:dc:08:85: 25:b2:8b:07:ac:da:c2:09:61:df:e0:73:35:70:1b: 4e:05:ec:ba:2b:c3:4f:02:dc:94:94:ae:c1:4b:97: 31:9e:c2:df:4d:f1:bc:db:c6:fe:fe:a3:e1:32:57: 76:f3:fe:ce:35:d4:95:83:88:97:4c:b6:82:e9:fb: b7:66:6a:a7:e6:80:ac:4b:70:e7:54:df:56:40:c7: a3:76:da:8b:ad:61:6f:94:08:f1:7b:16:3f:5f:3b: 84:b7:e1:48:5a:fe:d6:c6:cc:1b:7b:48:3f:88:57: 42:cc:65:21:a0:08:7e:86:31:5e:fc:39:53:b3:74: 9a:30:40:cb:8f:13:90:dd:5c:6a:0a:b9:b2:2c:48: 75:c0:ab:96:42:5b:94:db:21:97:18:55:5d:bd:0d: 7c:7b:a3:d7:02:44:b2:42:84:b3:80:0b:a2:eb:4a: df:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:46:F6:68:48:53:9E:C4:67:8A:D8:A4:DB:27:7A:7F:12:9C:95:D1 X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e32392e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.29.0/24 Signature Algorithm: sha256WithRSAEncryption e0:37:80:1c:01:0d:71:7e:0a:f3:8c:40:49:74:c3:2c:b0:62: bf:7b:ff:c3:3e:57:de:cd:74:7b:0f:5c:01:66:29:40:38:04: 52:96:ef:9e:8f:3b:a6:6d:83:ac:70:f0:16:7b:86:f8:1b:8c: 65:34:8d:a9:30:d2:d8:09:9c:9d:df:21:1d:72:55:c7:90:1b: 9a:37:60:14:b6:52:cd:bc:93:df:fc:eb:ee:b5:97:06:94:4b: 41:c8:91:1f:fa:ab:3f:5c:9d:90:bb:68:09:49:9d:ab:6c:69: 69:fe:cf:11:75:58:f6:6d:39:3d:35:3f:92:25:b4:13:a7:d8: d7:4f:a5:dd:f2:1b:fa:85:58:b3:7e:da:7b:1f:2f:db:71:ad: f4:de:04:26:e1:52:2c:c3:10:ad:ce:6d:e5:10:51:21:7e:7a: 01:ac:7c:98:49:41:44:50:74:ec:c9:c1:59:ed:e4:48:71:7b: a0:2f:f7:b4:96:0f:df:ef:f2:9d:e3:58:f9:54:7b:f3:7b:b1: 8c:65:d6:5e:71:40:f8:fd:31:df:12:6e:6a:9d:84:f8:2c:2b: 38:df:f6:5e:df:99:68:4b:45:28:36:07:5f:7b:37:ec:79:ea: 2d:5f:10:14:a5:e8:c3:44:04:fc:a4:9d:42:cc:23:4d:0a:32: 36:56:3d:a3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUezEcMh4ik03gQlXXQE4Vo/4lXMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNDA2MTYwMzU1MDBaFw0yNTA2MTUwNDAwMDBaMDMxMTAvBgNV BAMTKDc2NDZGNjY4NDg1MzlFQzQ2NzhBRDhBNERCMjc3QTdGMTI5Qzk1RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKNOxxRGOnfj3ucjySgl5c6ACY Vuq8o4lDHD/W/XiKIVqFUyUjsoBSiXtG3yIoAecvwF83vs1uMSl26HWEsgdLlPLJ xhmP/uUDJB0rkxZdaecURIvtsNwIhSWyiwes2sIJYd/gczVwG04F7Lorw08C3JSU rsFLlzGewt9N8bzbxv7+o+EyV3bz/s411JWDiJdMtoLp+7dmaqfmgKxLcOdU31ZA x6N22outYW+UCPF7Fj9fO4S34Uha/tbGzBt7SD+IV0LMZSGgCH6GMV78OVOzdJow QMuPE5DdXGoKubIsSHXAq5ZCW5TbIZcYVV29DXx7o9cCRLJChLOAC6LrSt8lAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdkb2aEhTnsRnitik2yd6fxKcldEwHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWx0wDQYJKoZIhvcN AQELBQADggEBAOA3gBwBDXF+CvOMQEl0wyywYr97/8M+V97NdHsPXAFmKUA4BFKW 756PO6Ztg6xw8BZ7hvgbjGU0jakw0tgJnJ3fIR1yVceQG5o3YBS2Us28k9/86+61 lwaUS0HIkR/6qz9cnZC7aAlJnatsaWn+zxF1WPZtOT01P5IltBOn2NdPpd3yG/qF WLN+2nsfL9txrfTeBCbhUizDEK3ObeUQUSF+egGsfJhJQURQdOzJwVnt5Ehxe6Av 97SWD9/v8p3jWPlUe/N7sYxl1l5xQPj9Md8SbmqdhPgsKzjf9l7fmWhLRSg2B197 N+x56i1fEBSl6MNEBPyknULMI00KMjZWPaM= -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org