$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132670.roa File: AS132670.roa (raw, json) Hash identifier: noD3BOV7xmzTzS9yc86AvzSrBFo5O2wpEJgOdL3VDuw= Subject key identifier: 29:CA:A4:ED:32:DF:44:B2:9A:2B:13:73:3A:6A:3C:A7:E6:26:20:BC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2999D8BE907A6CAFED379E72404FF0B96BFB4D35 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132670.roa Signing time: Tue 10 Dec 2024 05:00:10 +0000 ROA not before: Tue 10 Dec 2024 04:55:10 +0000 ROA not after: Tue 09 Dec 2025 05:00:10 +0000 asID: 132670 IP address blocks: 103.27.36.0/24 maxlen: 24 2001:df3:2c80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:99:d8:be:90:7a:6c:af:ed:37:9e:72:40:4f:f0:b9:6b:fb:4d:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 10 04:55:10 2024 GMT Not After : Dec 9 05:00:10 2025 GMT Subject: CN=29CAA4ED32DF44B29A2B13733A6A3CA7E62620BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:63:1d:eb:1f:54:4b:15:4c:1f:a5:b0:90:65: 00:68:3b:29:10:ff:1e:e9:fa:2d:98:68:93:07:8a: d3:0f:f3:5b:ef:d6:39:ed:39:4a:c9:f0:17:48:63: 93:19:48:22:cc:54:b0:4c:35:d1:06:77:50:60:25: 24:ab:17:d9:00:23:58:29:5e:d5:36:ca:98:cb:32: 57:92:6d:fc:e9:ec:cf:43:05:b9:26:00:75:51:98: d3:20:ef:ae:0a:43:79:f7:23:3d:09:17:8f:b4:61: c2:91:09:47:34:e2:99:bd:4b:82:4e:fb:00:b4:1b: ab:da:8c:8b:04:87:35:92:d5:65:2e:19:a0:a6:60: 2f:b5:33:46:5b:8e:5b:43:7e:9b:22:07:dd:0e:21: fd:6f:54:fd:3c:62:45:09:d1:6b:6a:51:cf:b2:04: 06:cc:b4:ad:d9:9c:a4:2c:67:66:7c:2c:fa:7c:aa: 02:2e:22:49:b2:ac:6b:b2:10:7a:b7:97:3a:72:d4: 40:76:44:cc:ad:d6:34:fb:dc:12:6d:a4:1b:4e:08: b6:a7:1a:a6:22:e8:83:3e:1d:14:bf:33:49:7e:a9: 89:bc:b4:d7:60:c0:98:2e:98:cc:84:19:ed:59:29: 42:3d:3a:20:c5:fa:58:2c:16:43:e4:56:6e:f9:ab: 45:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:CA:A4:ED:32:DF:44:B2:9A:2B:13:73:3A:6A:3C:A7:E6:26:20:BC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132670.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.27.36.0/24 IPv6: 2001:df3:2c80::/48 Signature Algorithm: sha256WithRSAEncryption 90:70:57:59:0c:a0:2e:20:69:76:3e:7e:c5:75:3c:59:42:89: 7a:cc:3c:63:c8:fb:73:58:f9:1c:2d:f5:8e:d9:37:86:66:19: d1:3c:ab:1d:ab:c8:88:87:59:02:ff:f1:a9:ae:6b:af:b2:b0: f1:99:5b:41:12:ea:33:e5:14:83:cf:03:f3:39:ab:54:00:4d: 13:5e:af:90:69:d8:b4:4a:e2:2f:a8:cb:34:ee:6d:5f:ea:78: e2:69:49:53:10:4f:7a:ba:ca:a0:b1:aa:f8:ec:c9:01:1f:71: d5:2b:eb:aa:43:32:68:5b:f5:67:9b:e3:4e:cb:2b:a0:09:e5: 5e:f6:2d:54:85:d9:86:ce:0b:8a:0f:b8:7e:63:b8:b0:67:5c: 60:e2:6b:97:34:e5:7c:d1:4c:9c:dc:f8:3d:e5:af:de:78:05: 29:15:36:d2:92:b6:09:86:9a:6c:c1:ee:99:d5:bc:06:63:35: 4b:17:78:61:ff:f3:cd:1d:7b:90:ae:3e:20:89:df:75:01:b7: e0:4a:69:ff:77:11:cb:c1:5a:17:14:11:fe:41:7f:20:e7:91: 03:2b:22:91:d9:6e:80:fa:23:09:dd:3d:4b:ea:5d:5c:19:e3: cf:82:c0:78:25:ca:cb:5d:18:52:32:c9:2a:ec:25:98:cc:18: 72:b7:c1:89 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUKZnYvpB6bK/tN55yQE/wuWv7TTUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMDA0NTUxMFoX DTI1MTIwOTA1MDAxMFowMzExMC8GA1UEAxMoMjlDQUE0RUQzMkRGNDRCMjlBMkIx MzczM0E2QTNDQTdFNjI2MjBCQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOVjHesfVEsVTB+lsJBlAGg7KRD/Hun6LZhokweK0w/zW+/WOe05SsnwF0hj kxlIIsxUsEw10QZ3UGAlJKsX2QAjWCle1TbKmMsyV5Jt/Onsz0MFuSYAdVGY0yDv rgpDefcjPQkXj7RhwpEJRzTimb1Lgk77ALQbq9qMiwSHNZLVZS4ZoKZgL7UzRluO W0N+myIH3Q4h/W9U/TxiRQnRa2pRz7IEBsy0rdmcpCxnZnws+nyqAi4iSbKsa7IQ ereXOnLUQHZEzK3WNPvcEm2kG04ItqcapiLogz4dFL8zSX6piby012DAmC6YzIQZ 7VkpQj06IMX6WCwWQ+RWbvmrRd8CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQpyqTt Mt9EsporE3M6ajyn5iYgvDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMjY3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGcbJDAPBAIAAjAJAwcAIAEN8yyAMA0GCSqGSIb3DQEBCwUAA4IB AQCQcFdZDKAuIGl2Pn7FdTxZQol6zDxjyPtzWPkcLfWO2TeGZhnRPKsdq8iIh1kC //GprmuvsrDxmVtBEuoz5RSDzwPzOatUAE0TXq+Qadi0SuIvqMs07m1f6njiaUlT EE96usqgsar47MkBH3HVK+uqQzJoW/Vnm+NOyyugCeVe9i1UhdmGzguKD7h+Y7iw Z1xg4muXNOV80Uyc3Pg95a/eeAUpFTbSkrYJhppswe6Z1bwGYzVLF3hh//PNHXuQ rj4gid91AbfgSmn/dxHLwVoXFBH+QX8g55EDKyKR2W6A+iMJ3T1L6l1cGePPgsB4 JcrLXRhSMskq7CWYzBhyt8GJ -----END CERTIFICATE-----Generated at Sat Apr 5 06:19:58 2025 by rpki-client