$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa File: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (raw, json) Hash identifier: Cffb9PkKzDpnNi+H5wjp//YtIY4RaBP+4ANvlLTOSTE= Subject key identifier: 73:70:35:E1:97:D6:09:02:B4:0B:7F:AE:B8:2E:A5:F6:04:C7:EE:3E Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 695C132F89CEAAFB8E3EE4CF39D49803DA8C1F44 Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa Signing time: Sat 30 Mar 2024 04:00:37 +0000 ROA not before: Sat 30 Mar 2024 03:55:37 +0000 ROA not after: Sat 29 Mar 2025 04:00:37 +0000 asID: 135462 IP address blocks: 103.70.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:5c:13:2f:89:ce:aa:fb:8e:3e:e4:cf:39:d4:98:03:da:8c:1f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Mar 30 03:55:37 2024 GMT Not After : Mar 29 04:00:37 2025 GMT Subject: CN=737035E197D60902B40B7FAEB82EA5F604C7EE3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3b:61:d4:74:89:5e:a7:56:ca:d1:78:37:f5: 50:07:91:d2:5f:cd:5b:02:8f:1a:73:4a:ae:f5:13: dd:38:b7:40:1f:56:91:c7:ef:15:7a:28:58:c6:d1: bd:4b:46:9f:d2:b4:2b:61:22:1d:f7:55:93:e2:7d: 81:71:4a:c5:76:c4:29:af:d1:54:13:8b:1d:c2:52: 9a:01:9a:60:c1:9e:78:d5:2b:7d:f6:51:f0:ce:e9: 48:d0:00:e7:7f:a6:85:7e:ba:c4:33:cf:2c:37:78: 07:c8:b6:71:65:27:67:aa:47:04:0f:6a:4c:70:1a: ca:ae:f7:1d:ef:bd:c3:5b:70:1a:75:96:e2:ef:e4: 25:11:8e:cf:b0:64:88:6d:20:71:40:31:3d:fe:5d: 3d:9d:3b:fe:d8:60:c7:2f:1e:1b:d8:85:c3:be:ff: 95:cb:22:75:da:73:6e:49:22:03:80:d7:60:e9:45: 9c:40:00:7c:ae:c4:88:39:ab:50:23:04:2c:20:d1: 33:aa:29:92:c6:5e:96:af:c1:7e:43:e4:60:1f:d6: f0:c6:b8:cd:d6:20:d5:fa:90:75:70:64:15:12:17: a2:6e:30:2a:02:d1:68:1a:3a:c2:e7:3f:f8:25:3d: 3a:11:81:ac:b3:64:ed:ee:64:b7:83:a2:1a:b8:9e: 61:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:70:35:E1:97:D6:09:02:B4:0B:7F:AE:B8:2E:A5:F6:04:C7:EE:3E X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31362e302f32322d3232203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.16.0/22 Signature Algorithm: sha256WithRSAEncryption 33:4f:58:f9:8f:0c:dd:7f:86:a5:2c:b6:94:66:73:cc:d1:3d: 10:a8:f6:25:b3:26:dc:e6:29:ad:35:bd:d3:2b:f3:77:1c:ad: e8:f7:73:11:d5:65:37:b0:e2:15:11:d1:41:0d:8a:5b:51:ab: 53:c0:68:c8:54:b5:02:85:a7:90:d1:02:c1:a2:49:ba:a5:d3: ad:a4:10:92:6e:a6:14:bb:13:bc:78:74:13:f0:1b:b1:d8:c7: cb:37:1f:c0:cb:26:2b:28:65:48:f5:a4:2a:ab:65:77:f3:e9: 72:ed:60:34:d1:4a:42:8e:dd:7f:11:c8:0f:fb:fa:82:d2:77: f0:d2:3f:8b:d9:7c:1c:24:4e:93:a9:44:8c:1a:c5:79:d3:1e: 48:93:a1:51:22:fc:ec:bb:df:08:bd:e3:aa:73:fe:2e:e9:50: 11:7a:cd:10:df:af:e0:db:24:d9:cd:cd:3e:a3:f2:ab:ab:5c: 6a:18:56:91:50:94:8d:5d:d6:8c:2d:bc:e0:92:5e:0b:87:4f: be:5e:bc:87:1b:89:37:05:e0:22:3a:05:3a:c4:16:4f:44:36: 9f:1f:16:4b:03:d1:77:a4:32:91:c9:e8:bb:c8:d5:67:55:fe: e1:e4:91:31:50:ba:00:37:ad:4f:41:d4:0e:de:5d:9e:f5:94: bd:bb:43:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaVwTL4nOqvuOPuTPOdSYA9qMH0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNDAzMzAwMzU1MzdaFw0yNTAzMjkwNDAwMzdaMDMxMTAvBgNV BAMTKDczNzAzNUUxOTdENjA5MDJCNDBCN0ZBRUI4MkVBNUY2MDRDN0VFM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQO2HUdIlep1bK0Xg39VAHkdJf zVsCjxpzSq71E904t0AfVpHH7xV6KFjG0b1LRp/StCthIh33VZPifYFxSsV2xCmv 0VQTix3CUpoBmmDBnnjVK332UfDO6UjQAOd/poV+usQzzyw3eAfItnFlJ2eqRwQP akxwGsqu9x3vvcNbcBp1luLv5CURjs+wZIhtIHFAMT3+XT2dO/7YYMcvHhvYhcO+ /5XLInXac25JIgOA12DpRZxAAHyuxIg5q1AjBCwg0TOqKZLGXpavwX5D5GAf1vDG uM3WINX6kHVwZBUSF6JuMCoC0WgaOsLnP/glPToRgayzZO3uZLeDohq4nmEhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUc3A14ZfWCQK0C3+uuC6l9gTH7j4wHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzNjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdGEDANBgkqhkiG 9w0BAQsFAAOCAQEAM09Y+Y8M3X+GpSy2lGZzzNE9EKj2JbMm3OYprTW90yvzdxyt 6PdzEdVlN7DiFRHRQQ2KW1GrU8BoyFS1AoWnkNECwaJJuqXTraQQkm6mFLsTvHh0 E/AbsdjHyzcfwMsmKyhlSPWkKqtld/Ppcu1gNNFKQo7dfxHID/v6gtJ38NI/i9l8 HCROk6lEjBrFedMeSJOhUSL87LvfCL3jqnP+LulQEXrNEN+v4Nsk2c3NPqPyq6tc ahhWkVCUjV3WjC284JJeC4dPvl68hxuJNwXgIjoFOsQWT0Q2nx8WSwPRd6Qykcno u8jVZ1X+4eSRMVC6ADetT0HUDt5dnvWUvbtDwg== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org