$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e203234353238.roa File: 3230322e39312e33312e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: y95B3NY3RXZzYL13rMMgNhTE08tIkXfckcaTOzD7GLs= Subject key identifier: 37:9B:46:20:42:71:BF:BE:52:B2:CF:0A:A9:2E:07:BF:2C:5F:58:EE Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 2EE51651C8BA461D8CE056D68D3B12E24C33C3E4 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e203234353238.roa Signing time: Sun 16 Jun 2024 04:00:00 +0000 ROA not before: Sun 16 Jun 2024 03:55:00 +0000 ROA not after: Sun 15 Jun 2025 04:00:00 +0000 asID: 24528 IP address blocks: 202.91.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e5:16:51:c8:ba:46:1d:8c:e0:56:d6:8d:3b:12:e2:4c:33:c3:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: Jun 16 03:55:00 2024 GMT Not After : Jun 15 04:00:00 2025 GMT Subject: CN=379B46204271BFBE52B2CF0AA92E07BF2C5F58EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:02:70:26:89:e2:e7:fd:8f:91:de:a5:63:09: e1:d3:fb:e7:83:5d:90:02:a9:06:2a:56:c1:3f:c4: cd:bb:45:c3:97:26:ac:88:0e:30:75:38:71:8e:e3: 3d:21:93:3a:e9:4f:90:0f:28:62:4e:6b:cf:04:a8: 9b:4a:28:3c:2c:60:2a:da:47:07:f9:16:1c:44:d0: 82:de:55:06:76:89:0b:1b:89:3a:f9:b0:0a:e0:a5: 1d:06:12:d6:96:1a:04:3e:ed:4d:01:9c:7d:88:0e: b8:9d:28:82:a1:18:3b:82:84:c9:07:ae:f1:ff:7a: 3b:16:5e:32:dc:2e:ba:96:3c:72:1f:fe:21:50:66: 2d:a4:c1:b5:f5:39:b6:db:0f:d2:b1:6d:86:fa:2a: 44:a5:f3:59:ca:d0:df:ef:d5:c9:6e:54:9f:2f:51: 95:ca:4b:6b:2f:54:6e:c1:9e:ff:4b:5e:64:90:29: f4:9e:8c:13:d9:8c:7d:d9:1f:99:ae:71:03:bf:a4: e5:e2:2e:fb:79:bb:50:a3:b2:35:df:5a:91:dd:e7: 48:e3:0f:90:70:66:d7:3e:51:95:3d:58:f2:68:a7: 77:6a:08:87:60:02:f9:65:40:ac:b6:2d:e0:9f:ad: ec:6a:62:8c:1f:ce:01:a7:b8:77:91:f4:e0:e3:4a: 7c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9B:46:20:42:71:BF:BE:52:B2:CF:0A:A9:2E:07:BF:2C:5F:58:EE X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.31.0/24 Signature Algorithm: sha256WithRSAEncryption 91:0e:e0:f6:f3:dd:a3:30:9c:6b:12:e5:7c:90:b6:1b:6c:55: 27:71:1f:f5:ef:55:e1:82:7f:ad:bb:70:79:1e:7f:8f:14:fb: 4a:1a:56:a4:1f:9c:bf:94:aa:62:13:91:6a:c6:15:1b:a4:80: 16:07:c1:68:a4:9a:1c:8f:74:7a:86:cb:35:fc:2e:2c:46:85: 68:c6:eb:e7:7e:b6:06:2a:07:13:d0:24:c5:2b:4a:0a:ba:65: b9:dd:13:54:0e:a3:9e:f9:a1:36:74:72:1c:2b:a4:cf:47:c9: 55:6f:a9:7a:dd:aa:8b:69:fc:b0:0f:7a:84:8f:cf:18:3e:e1: 1f:b3:60:6f:22:0f:37:d4:a1:f9:c3:1b:bd:30:c8:f3:11:4f: 09:9b:26:2d:f6:37:6f:4d:6e:83:7b:44:cc:35:71:70:59:eb: a4:7b:8e:33:81:b2:e8:d4:e4:f7:dd:c3:73:48:87:be:7d:95: 91:42:9c:23:2b:66:93:d3:5b:ad:45:64:17:24:cc:6f:12:6c: b7:66:5b:fd:c6:f1:df:7e:e5:81:3e:bd:23:de:ef:56:d1:fa: 1c:30:8a:c4:08:4a:4f:75:53:65:bd:a7:58:19:fa:f0:03:c5: da:1d:56:b0:fb:ef:2a:d2:c7:76:c4:ea:76:2c:04:ab:00:6b: bd:e5:54:49 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULuUWUci6Rh2M4FbWjTsS4kwzw+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNDA2MTYwMzU1MDBaFw0yNTA2MTUwNDAwMDBaMDMxMTAvBgNV BAMTKDM3OUI0NjIwNDI3MUJGQkU1MkIyQ0YwQUE5MkUwN0JGMkM1RjU4RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeAnAmieLn/Y+R3qVjCeHT++eD XZACqQYqVsE/xM27RcOXJqyIDjB1OHGO4z0hkzrpT5APKGJOa88EqJtKKDwsYCra Rwf5FhxE0ILeVQZ2iQsbiTr5sArgpR0GEtaWGgQ+7U0BnH2IDridKIKhGDuChMkH rvH/ejsWXjLcLrqWPHIf/iFQZi2kwbX1ObbbD9KxbYb6KkSl81nK0N/v1cluVJ8v UZXKS2svVG7Bnv9LXmSQKfSejBPZjH3ZH5mucQO/pOXiLvt5u1CjsjXfWpHd50jj D5BwZtc+UZU9WPJop3dqCIdgAvllQKy2LeCfrexqYowfzgGnuHeR9ODjSnzjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUN5tGIEJxv75Sss8KqS4HvyxfWO4wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzMzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWx8wDQYJKoZIhvcN AQELBQADggEBAJEO4Pbz3aMwnGsS5XyQthtsVSdxH/XvVeGCf627cHkef48U+0oa VqQfnL+UqmITkWrGFRukgBYHwWikmhyPdHqGyzX8LixGhWjG6+d+tgYqBxPQJMUr Sgq6ZbndE1QOo575oTZ0chwrpM9HyVVvqXrdqotp/LAPeoSPzxg+4R+zYG8iDzfU ofnDG70wyPMRTwmbJi32N29NboN7RMw1cXBZ66R7jjOBsujU5Pfdw3NIh759lZFC nCMrZpPTW61FZBckzG8SbLdmW/3G8d9+5YE+vSPe71bR+hwwisQISk91U2W9p1gZ +vADxdodVrD77yrSx3bE6nYsBKsAa73lVEk= -----END CERTIFICATE-----Generated at Thu Nov 21 01:29:57 2024 by rpki-client on console-fra.rpki-client.org