$ rpki-client -vvf repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e203234353238.roa File: 3230322e39312e33312e302f32342d3234203d3e203234353238.roa (raw, json) Hash identifier: PYlzhe+IAch9XO1on1CijnQRACSSXKfMv/Z8ZKEBHq8= Subject key identifier: D5:12:35:D0:B2:09:BA:0D:20:C1:40:5A:D3:BC:D3:BE:BB:79:11:7D Certificate issuer: /CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Certificate serial: 6EF8E36118DCC5044A3126BD0FE1A4C1A4FCDB46 Authority key identifier: F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e203234353238.roa Signing time: Sun 18 May 2025 04:00:00 +0000 ROA not before: Sun 18 May 2025 03:55:00 +0000 ROA not after: Sun 17 May 2026 04:00:00 +0000 asID: 24528 IP address blocks: 202.91.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:f8:e3:61:18:dc:c5:04:4a:31:26:bd:0f:e1:a4:c1:a4:fc:db:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A Validity Not Before: May 18 03:55:00 2025 GMT Not After : May 17 04:00:00 2026 GMT Subject: CN=D51235D0B209BA0D20C1405AD3BCD3BEBB79117D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ee:f4:29:cf:4e:5e:62:33:26:8c:13:74:ef: fb:f4:7f:8f:14:8e:05:d2:97:51:49:47:fa:27:ca: e4:57:bb:9e:1d:ed:0d:d5:99:ce:48:a9:31:72:1c: 12:ba:9b:24:fa:1a:9d:b5:64:53:90:69:14:9c:04: 3d:6f:83:19:75:92:ca:b1:d3:10:34:93:53:97:6a: df:51:c4:d2:27:60:3b:f1:ee:7e:fa:1d:d0:75:8e: 80:87:6c:78:fc:f5:4f:b4:b7:cf:f0:e2:f7:34:72: 33:7e:62:9f:bb:b7:1b:2e:d4:59:f8:9d:a6:b3:b4: 73:d1:23:f9:99:c8:b3:61:8f:49:46:07:fc:41:d6: 99:1f:dd:51:cd:55:11:2c:66:05:c9:22:90:93:38: 8f:12:d4:ba:3c:d2:cf:65:09:ac:e1:9a:67:08:e6: 50:d3:10:ce:b7:6f:56:ac:92:25:b0:9b:9e:3b:95: 94:c1:29:51:de:80:fa:e1:46:69:86:98:c3:b0:58: 0d:0f:1d:8f:50:90:21:cb:fc:3f:47:7b:33:09:26: 7c:55:6d:e7:cd:0c:db:51:dd:b6:97:90:8d:e8:b4: fd:1c:d9:a9:b2:2e:d8:df:c9:0a:d8:42:19:c5:25: 97:49:4d:bd:75:d6:5d:f7:f3:9b:c9:44:16:21:da: fc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:12:35:D0:B2:09:BA:0D:20:C1:40:5A:D3:BC:D3:BE:BB:79:11:7D X509v3 Authority Key Identifier: keyid:F1:85:3A:1C:5C:1E:CA:FE:10:76:F9:4A:61:FA:77:96:DD:3C:67:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1853A1C5C1ECAFE1076F94A61FA7796DD3C671A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29ab60b1-a244-4a78-b31b-feca3d14ed9f/0/3230322e39312e33312e302f32342d3234203d3e203234353238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.91.31.0/24 Signature Algorithm: sha256WithRSAEncryption c9:d9:2f:f9:e8:30:2a:df:df:7f:53:07:9f:92:64:af:d3:02: 44:f6:31:70:85:9b:fe:f5:9b:fe:e9:12:5b:c7:ce:09:52:8b: 88:2b:a4:ed:39:34:37:f2:b5:dc:42:f7:38:8c:ef:45:7e:f5: 3a:bb:65:f9:da:c6:d0:23:99:fc:55:84:8b:d2:f2:d2:d4:9e: 7d:0b:ce:ea:d9:14:3f:3a:39:05:94:17:61:5c:92:b8:a1:4d: d0:8f:4d:9b:61:36:7e:0e:98:c0:5a:b7:73:73:6a:32:39:de: e8:a1:22:63:d8:9c:a5:ac:af:a8:52:0a:b3:c7:43:af:01:f8: d2:02:f0:5c:1a:fe:bf:9a:a1:48:60:9f:87:59:ba:48:1a:42: ad:86:99:65:e1:94:08:8f:2d:47:13:55:c1:6d:6d:99:f9:51: ec:9f:e6:41:63:1c:06:c1:08:9d:b4:f9:78:36:8e:06:7c:98: fc:f9:9f:97:6a:19:79:36:8e:e3:3f:a2:26:2c:31:06:5f:98: 1d:78:08:38:95:56:0c:4f:5e:72:e1:34:8b:92:f2:37:91:11: 4e:7f:a9:22:3e:af:7d:28:c0:59:42:ee:84:bb:6d:65:ae:9d: 70:d7:26:7e:e0:ae:b7:47:67:4a:6a:41:13:7f:b2:d4:2b:44: a0:54:3d:a4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbvjjYRjcxQRKMSa9D+GkwaT820YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZE RDNDNjcxQTAeFw0yNTA1MTgwMzU1MDBaFw0yNjA1MTcwNDAwMDBaMDMxMTAvBgNV BAMTKEQ1MTIzNUQwQjIwOUJBMEQyMEMxNDA1QUQzQkNEM0JFQkI3OTExN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI7vQpz05eYjMmjBN07/v0f48U jgXSl1FJR/onyuRXu54d7Q3Vmc5IqTFyHBK6myT6Gp21ZFOQaRScBD1vgxl1ksqx 0xA0k1OXat9RxNInYDvx7n76HdB1joCHbHj89U+0t8/w4vc0cjN+Yp+7txsu1Fn4 naaztHPRI/mZyLNhj0lGB/xB1pkf3VHNVREsZgXJIpCTOI8S1Lo80s9lCazhmmcI 5lDTEM63b1askiWwm547lZTBKVHegPrhRmmGmMOwWA0PHY9QkCHL/D9HezMJJnxV befNDNtR3baXkI3otP0c2amyLtjfyQrYQhnFJZdJTb111l3385vJRBYh2vzLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1RI10LIJug0gwUBa07zTvrt5EX0wHwYDVR0j BBgwFoAU8YU6HFweyv4QdvlKYfp3lt08ZxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWFiNjBiMS1hMjQ0LTRhNzgtYjMxYi1mZWNhM2QxNGVkOWYvMC9GMTg1M0ExQzVD MUVDQUZFMTA3NkY5NEE2MUZBNzc5NkREM0M2NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjE4NTNBMUM1QzFFQ0FGRTEwNzZGOTRBNjFGQTc3OTZERDND NjcxQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YWI2MGIxLWEyNDQtNGE3OC1i MzFiLWZlY2EzZDE0ZWQ5Zi8wLzMyMzAzMjJlMzkzMTJlMzMzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKWx8wDQYJKoZIhvcN AQELBQADggEBAMnZL/noMCrf339TB5+SZK/TAkT2MXCFm/71m/7pElvHzglSi4gr pO05NDfytdxC9ziM70V+9Tq7ZfnaxtAjmfxVhIvS8tLUnn0LzurZFD86OQWUF2Fc krihTdCPTZthNn4OmMBat3NzajI53uihImPYnKWsr6hSCrPHQ68B+NIC8Fwa/r+a oUhgn4dZukgaQq2GmWXhlAiPLUcTVcFtbZn5Ueyf5kFjHAbBCJ20+Xg2jgZ8mPz5 n5dqGXk2juM/oiYsMQZfmB14CDiVVgxPXnLhNIuS8jeREU5/qSI+r30owFlC7oS7 bWWunXDXJn7grrdHZ0pqQRN/stQrRKBUPaQ= -----END CERTIFICATE-----Generated at Sat Jun 7 19:08:03 2025 by rpki-client