$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa File: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (raw, json) Hash identifier: 5O64hKt9RzH3ZzDpkJQi2OQjZz2H00iXtdqxYuETUUo= Subject key identifier: 26:93:D0:56:65:2C:90:7A:3D:B7:60:66:E2:1C:29:C5:58:E7:34:44 Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 65D49E209BF11A003FB42D6E407185BCEC484C7F Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa Signing time: Sat 30 Mar 2024 04:00:37 +0000 ROA not before: Sat 30 Mar 2024 03:55:37 +0000 ROA not after: Sat 29 Mar 2025 04:00:37 +0000 asID: 135462 IP address blocks: 103.70.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d4:9e:20:9b:f1:1a:00:3f:b4:2d:6e:40:71:85:bc:ec:48:4c:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Mar 30 03:55:37 2024 GMT Not After : Mar 29 04:00:37 2025 GMT Subject: CN=2693D056652C907A3DB76066E21C29C558E73444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e9:15:e0:cf:dc:99:b9:b4:8f:4e:2a:75:d4: 43:8b:f2:00:b8:d4:fe:f3:67:34:a1:ba:67:0a:0e: 09:05:78:b2:0b:9b:41:47:e2:2f:33:09:e3:d9:60: 7a:4d:15:b2:1a:5c:67:bb:b5:6a:54:8d:05:6b:31: f6:e2:dc:79:8b:b7:f4:60:31:2c:cd:c3:b9:96:99: 1e:2d:f2:88:d7:73:00:27:1c:3f:aa:94:5a:4d:58: 67:8c:f9:bc:83:4e:bc:fd:5e:8c:c7:cf:bb:1d:2d: 8b:06:18:e0:00:69:de:24:ac:78:6a:fc:f7:d0:d9: bd:94:b1:2a:d2:f8:8c:d1:9c:68:f9:a1:d2:bd:98: 83:3b:e9:62:64:2a:80:70:0b:6c:c2:11:89:61:08: fa:f0:ad:56:ab:8c:f9:2d:99:d2:12:1e:b3:3c:af: 1f:67:4d:fd:43:b7:33:78:36:59:cd:be:ca:07:5a: 7b:01:e0:83:4c:a5:e4:77:dc:e4:3d:79:80:35:82: b4:01:32:f2:d6:2b:57:e2:89:40:94:2f:e5:a9:d5: e7:29:2b:cd:af:0c:8e:36:4c:da:3a:72:dd:17:f9: 42:2e:a0:46:56:e0:e9:07:62:40:d1:07:02:bd:d0: aa:47:35:cc:33:df:07:bf:4d:4f:bb:a6:16:cc:90: fb:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:93:D0:56:65:2C:90:7A:3D:B7:60:66:E2:1C:29:C5:58:E7:34:44 X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.18.0/24 Signature Algorithm: sha256WithRSAEncryption 04:11:48:9c:ca:08:4a:30:99:51:1f:f9:43:5f:c6:f4:65:19: 0c:a6:9b:eb:c7:c0:41:16:eb:08:72:8b:b2:be:66:06:d2:b7: 20:1b:7d:21:81:90:59:96:a0:e9:ee:fc:d7:56:68:9d:89:fa: 5c:40:f7:24:43:81:36:26:05:fc:9d:ef:c6:6c:00:20:ae:ed: 18:aa:15:a5:3b:4f:56:b8:c0:b1:53:26:89:56:b2:37:15:10: 28:f6:67:32:02:dd:cf:9b:84:a7:34:82:4c:b4:d1:e9:66:23: 18:1d:e5:79:ee:31:f9:2d:70:47:b7:c6:08:f8:9a:10:ae:6b: ff:70:d6:01:90:78:34:38:98:69:8b:69:61:8b:5a:1a:03:49: 4a:cc:4b:1b:7b:8f:dd:be:8a:28:3a:3b:1d:9c:d8:b3:11:1d: 55:f5:47:85:3a:36:7f:58:2f:c8:26:e0:49:75:97:2a:4f:f5: 46:9a:98:5f:49:37:62:f9:7c:68:71:8c:bc:f0:04:c0:82:c7: 14:eb:86:dd:57:4a:41:fd:66:43:ce:76:89:31:68:10:66:6e: 68:be:a9:65:e3:88:ba:87:7a:c2:1a:06:cc:ec:e6:7e:a2:70: 4a:14:ba:23:76:93:60:64:67:2b:95:0f:90:06:9e:9f:9e:4e: 87:a4:55:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZdSeIJvxGgA/tC1uQHGFvOxITH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNDAzMzAwMzU1MzdaFw0yNTAzMjkwNDAwMzdaMDMxMTAvBgNV BAMTKDI2OTNEMDU2NjUyQzkwN0EzREI3NjA2NkUyMUMyOUM1NThFNzM0NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk6RXgz9yZubSPTip11EOL8gC4 1P7zZzShumcKDgkFeLILm0FH4i8zCePZYHpNFbIaXGe7tWpUjQVrMfbi3HmLt/Rg MSzNw7mWmR4t8ojXcwAnHD+qlFpNWGeM+byDTrz9XozHz7sdLYsGGOAAad4krHhq /PfQ2b2UsSrS+IzRnGj5odK9mIM76WJkKoBwC2zCEYlhCPrwrVarjPktmdISHrM8 rx9nTf1DtzN4NlnNvsoHWnsB4INMpeR33OQ9eYA1grQBMvLWK1fiiUCUL+Wp1ecp K82vDI42TNo6ct0X+UIuoEZW4OkHYkDRBwK90KpHNcwz3we/TU+7phbMkPt/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJpPQVmUskHo9t2Bm4hwpxVjnNEQwHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdGEjANBgkqhkiG 9w0BAQsFAAOCAQEABBFInMoISjCZUR/5Q1/G9GUZDKab68fAQRbrCHKLsr5mBtK3 IBt9IYGQWZag6e7811ZonYn6XED3JEOBNiYF/J3vxmwAIK7tGKoVpTtPVrjAsVMm iVayNxUQKPZnMgLdz5uEpzSCTLTR6WYjGB3lee4x+S1wR7fGCPiaEK5r/3DWAZB4 NDiYaYtpYYtaGgNJSsxLG3uP3b6KKDo7HZzYsxEdVfVHhTo2f1gvyCbgSXWXKk/1 RpqYX0k3Yvl8aHGMvPAEwILHFOuG3VdKQf1mQ852iTFoEGZuaL6pZeOIuod6whoG zOzmfqJwShS6I3aTYGRnK5UPkAaen55Oh6RVEw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org