$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa File: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (raw, json) Hash identifier: 1f4e1XEuXG9su40zHvwmNI+q39l2fKb22IFThBoIE0Y= Subject key identifier: 72:CB:D1:D7:21:AA:6B:B4:AC:29:7B:35:71:E8:7D:17:77:EF:61:90 Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 4B88B3F05BA7FA65D3BCEC35F926D555BC321E54 Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa Signing time: Sat 01 Mar 2025 04:02:24 +0000 ROA not before: Sat 01 Mar 2025 03:57:24 +0000 ROA not after: Sat 28 Feb 2026 04:02:24 +0000 asID: 135462 IP address blocks: 103.70.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 14:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:88:b3:f0:5b:a7:fa:65:d3:bc:ec:35:f9:26:d5:55:bc:32:1e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Mar 1 03:57:24 2025 GMT Not After : Feb 28 04:02:24 2026 GMT Subject: CN=72CBD1D721AA6BB4AC297B3571E87D1777EF6190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:8f:e5:f0:ad:5e:93:e0:4b:1c:f0:88:52:8a: 94:1b:82:78:74:53:44:53:88:78:4f:b3:53:0f:92: 98:e4:25:b9:8c:d8:c0:10:48:75:31:f0:a0:64:42: 86:b1:32:a2:75:71:f0:1a:20:25:b4:a7:ca:bd:a4: b1:cd:ef:ab:21:66:61:eb:2d:9c:58:4b:60:e8:43: 51:81:a5:2a:52:95:2f:c4:3e:8e:32:a4:da:3d:05: 71:bb:1a:d0:64:d8:a4:e8:dc:6b:45:9e:dd:9c:6f: 9a:bb:0d:f4:49:8b:40:00:29:c1:e0:6f:86:40:27: f9:47:7c:de:46:9f:70:70:f4:9f:68:b0:ee:6f:23: 47:6d:70:78:7c:d6:fc:df:47:72:23:c5:72:83:95: 1f:c8:ef:33:ed:b8:19:1f:3e:f4:54:5c:fb:df:48: e1:57:6d:ae:38:c3:c9:df:22:bc:84:45:00:2e:ad: 7b:49:da:24:fc:07:be:62:a9:6d:ea:88:d0:d8:43: eb:03:84:b5:df:71:4b:4e:52:0b:be:80:c2:05:1e: 95:04:66:b5:1f:e5:67:ae:c1:d6:62:b6:30:75:b6: 74:be:e2:90:23:97:8d:2d:f0:81:92:68:ce:94:38: 02:6b:7f:7a:97:20:e3:32:cf:83:5f:22:3b:a8:c2: ee:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CB:D1:D7:21:AA:6B:B4:AC:29:7B:35:71:E8:7D:17:77:EF:61:90 X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.16.0/22 Signature Algorithm: sha256WithRSAEncryption 23:9a:56:7c:d5:3b:5a:9a:95:1a:09:fd:b7:53:22:dc:1b:45: a9:a1:d0:6e:8f:95:5c:17:6f:3c:7c:e0:07:de:49:f6:94:61: b7:6a:ef:24:38:62:76:bb:d0:ef:d4:3c:c4:e0:ed:ce:14:00: c9:53:3d:98:5e:46:30:6e:19:df:50:df:46:ef:f2:dc:62:d5: 57:38:5a:5c:3f:59:85:d7:4c:be:ce:01:d4:f9:f0:b1:d7:4f: 66:b3:9c:88:5f:2b:1a:89:63:33:98:24:f3:ea:10:ac:f9:6c: ae:8e:53:1a:f1:40:6b:e9:de:5d:5c:27:a0:69:db:e5:39:88: 03:22:14:d6:83:0e:ae:c1:71:6a:00:7c:3c:7c:83:95:d9:ab: 37:ba:f3:19:cd:9c:94:0e:58:1f:6f:b9:f4:1e:89:c5:93:4a: 66:4d:ab:a2:47:eb:ad:90:09:2a:4a:c5:ea:e9:10:80:d2:d0: 97:45:af:aa:10:15:6b:2c:22:57:54:d5:08:02:4a:78:ba:ef: 38:6b:98:87:a5:99:cc:f9:0d:3c:44:8a:12:67:2d:be:57:cc: aa:6a:65:76:9f:dc:0c:db:ad:3b:14:c6:61:fc:11:03:90:df: 6d:3d:e5:44:68:ea:14:b3:ce:25:9b:09:fb:63:88:3d:85:4e: 98:01:ba:f3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS4iz8Fun+mXTvOw1+SbVVbwyHlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNTAzMDEwMzU3MjRaFw0yNjAyMjgwNDAyMjRaMDMxMTAvBgNV BAMTKDcyQ0JEMUQ3MjFBQTZCQjRBQzI5N0IzNTcxRTg3RDE3NzdFRjYxOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4j+XwrV6T4Esc8IhSipQbgnh0 U0RTiHhPs1MPkpjkJbmM2MAQSHUx8KBkQoaxMqJ1cfAaICW0p8q9pLHN76shZmHr LZxYS2DoQ1GBpSpSlS/EPo4ypNo9BXG7GtBk2KTo3GtFnt2cb5q7DfRJi0AAKcHg b4ZAJ/lHfN5Gn3Bw9J9osO5vI0dtcHh81vzfR3IjxXKDlR/I7zPtuBkfPvRUXPvf SOFXba44w8nfIryERQAurXtJ2iT8B75iqW3qiNDYQ+sDhLXfcUtOUgu+gMIFHpUE ZrUf5WeuwdZitjB1tnS+4pAjl40t8IGSaM6UOAJrf3qXIOMyz4NfIjuowu5bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcsvR1yGqa7SsKXs1ceh9F3fvYZAwHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzNjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdGEDANBgkqhkiG 9w0BAQsFAAOCAQEAI5pWfNU7WpqVGgn9t1Mi3BtFqaHQbo+VXBdvPHzgB95J9pRh t2rvJDhidrvQ79Q8xODtzhQAyVM9mF5GMG4Z31DfRu/y3GLVVzhaXD9ZhddMvs4B 1PnwsddPZrOciF8rGoljM5gk8+oQrPlsro5TGvFAa+neXVwnoGnb5TmIAyIU1oMO rsFxagB8PHyDldmrN7rzGc2clA5YH2+59B6JxZNKZk2rokfrrZAJKkrF6ukQgNLQ l0WvqhAVaywiV1TVCAJKeLrvOGuYh6WZzPkNPESKEmctvlfMqmpldp/cDNutOxTG YfwRA5DfbT3lRGjqFLPOJZsJ+2OIPYVOmAG68w== -----END CERTIFICATE-----Generated at Fri Apr 18 07:13:20 2025 by rpki-client