$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa File: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (raw, json) Hash identifier: Q3xxSdQXC23vXFGFdHyLQV020HZB9BgH6IL3S5vtQAA= Subject key identifier: 02:6B:49:CA:11:1B:3F:E2:30:1B:49:05:82:66:34:64:38:7A:A0:7F Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 24FA5D93C9FF4F7BD2202D9777D728479BA7A590 Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa Signing time: Sat 01 Mar 2025 04:02:24 +0000 ROA not before: Sat 01 Mar 2025 03:57:24 +0000 ROA not after: Sat 28 Feb 2026 04:02:24 +0000 asID: 135462 IP address blocks: 103.70.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 01:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:fa:5d:93:c9:ff:4f:7b:d2:20:2d:97:77:d7:28:47:9b:a7:a5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Mar 1 03:57:24 2025 GMT Not After : Feb 28 04:02:24 2026 GMT Subject: CN=026B49CA111B3FE2301B490582663464387AA07F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:99:c6:18:5b:bf:4c:06:10:4a:e1:76:59: 47:ac:db:31:2a:39:ed:95:8e:9e:18:f0:d3:5b:fe: c5:93:6e:76:4a:fe:d7:f6:1c:e7:76:f6:22:43:17: dc:56:15:9f:88:c7:9c:d1:92:9c:45:56:cd:03:be: 0b:4b:c8:51:c3:b3:80:e2:dd:07:e8:4f:08:dd:d3: b8:0b:50:3a:f4:7e:d3:17:8c:bf:05:db:17:06:fa: 14:d8:04:fc:19:2d:7b:b8:ec:54:d5:8c:d5:42:eb: 4a:cc:64:a4:76:97:14:1e:27:66:12:ee:df:48:37: 53:23:1f:74:be:bd:ea:d8:07:5a:fc:6c:d1:7d:5e: c3:42:50:83:e7:e5:5d:e4:90:e2:3a:c4:d7:75:39: 85:53:36:97:05:9f:39:18:ab:64:c6:c5:3c:01:4b: 90:49:35:9d:9e:eb:df:63:1f:65:ff:9a:97:2b:04: 6f:31:a3:7a:b5:e9:83:ab:b2:b5:4e:22:44:5f:10: e4:66:54:2f:d8:82:76:dd:64:1f:d5:96:b9:63:da: 5f:be:a7:2d:59:40:13:7c:aa:ae:b1:88:f6:cd:b3: 94:56:6a:fd:ba:87:fc:25:19:1d:ac:b0:3c:61:f0: 88:9b:c6:95:47:ed:3d:56:a0:c9:36:1f:31:7f:db: 2b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:6B:49:CA:11:1B:3F:E2:30:1B:49:05:82:66:34:64:38:7A:A0:7F X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31382e302f32342d3234203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.18.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:6f:d1:c4:d6:84:bf:e8:7a:0a:e0:98:0b:34:8e:e6:56:eb: 91:d8:7b:8c:90:30:2a:2f:a3:2c:7d:46:73:99:ac:5b:b1:5e: 8c:3f:48:b4:f9:3d:fb:bc:33:be:77:61:7b:ea:c5:2d:ed:ee: 1a:60:5d:76:e2:5f:ee:f8:fd:47:6e:22:2d:2c:51:0d:8d:d2: 51:a9:8d:d8:4f:e5:0a:01:4d:20:11:9a:6d:38:d5:a5:f5:1c: 90:20:2e:c9:af:74:b0:a2:99:50:c5:1a:54:b5:7f:58:e3:2c: 73:04:54:f8:31:63:56:02:ff:38:cc:1d:62:92:41:1b:ea:be: cd:ca:e2:41:50:73:dc:3f:20:b4:9b:c9:da:e5:07:be:87:05: a9:e3:15:06:a3:37:fe:2d:1d:f6:4d:0d:39:f3:00:5e:68:9a: 6e:dc:29:a7:b6:76:51:9f:23:4c:7e:be:47:e6:19:3e:63:13: 99:b6:85:a9:cf:5b:28:56:82:7d:dc:9d:4e:01:bd:4c:c0:c0: 88:6a:78:10:08:c8:74:f5:88:06:f1:1d:72:00:08:d5:b1:3f: 27:26:98:ae:c3:2a:69:53:3d:50:3e:af:98:44:55:db:3d:e3: 71:1b:90:57:c2:84:9a:0f:04:86:bb:5d:a9:db:b5:1f:53:ec: 84:ca:e9:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJPpdk8n/T3vSIC2Xd9coR5unpZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNTAzMDEwMzU3MjRaFw0yNjAyMjgwNDAyMjRaMDMxMTAvBgNV BAMTKDAyNkI0OUNBMTExQjNGRTIzMDFCNDkwNTgyNjYzNDY0Mzg3QUEwN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwkZnGGFu/TAYQSuF2WUes2zEq Oe2Vjp4Y8NNb/sWTbnZK/tf2HOd29iJDF9xWFZ+Ix5zRkpxFVs0DvgtLyFHDs4Di 3QfoTwjd07gLUDr0ftMXjL8F2xcG+hTYBPwZLXu47FTVjNVC60rMZKR2lxQeJ2YS 7t9IN1MjH3S+verYB1r8bNF9XsNCUIPn5V3kkOI6xNd1OYVTNpcFnzkYq2TGxTwB S5BJNZ2e699jH2X/mpcrBG8xo3q16YOrsrVOIkRfEORmVC/YgnbdZB/Vlrlj2l++ py1ZQBN8qq6xiPbNs5RWav26h/wlGR2ssDxh8IibxpVH7T1WoMk2HzF/2yufAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAmtJyhEbP+IwG0kFgmY0ZDh6oH8wHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdGEjANBgkqhkiG 9w0BAQsFAAOCAQEAPG/RxNaEv+h6CuCYCzSO5lbrkdh7jJAwKi+jLH1Gc5msW7Fe jD9ItPk9+7wzvndhe+rFLe3uGmBdduJf7vj9R24iLSxRDY3SUamN2E/lCgFNIBGa bTjVpfUckCAuya90sKKZUMUaVLV/WOMscwRU+DFjVgL/OMwdYpJBG+q+zcriQVBz 3D8gtJvJ2uUHvocFqeMVBqM3/i0d9k0NOfMAXmiabtwpp7Z2UZ8jTH6+R+YZPmMT mbaFqc9bKFaCfdydTgG9TMDAiGp4EAjIdPWIBvEdcgAI1bE/JyaYrsMqaVM9UD6v mERV2z3jcRuQV8KEmg8Ehrtdqdu1H1PshMrpTQ== -----END CERTIFICATE-----Generated at Thu Apr 24 01:45:14 2025 by rpki-client on console.sobornost.net