$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31392e302f32342d3234203d3e20313335343632.roa File: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (raw, json) Hash identifier: 6N2J2kg+Zlk+0sQHWC1BIhfECV5xjbZiRhQRFmUUNag= Subject key identifier: E9:D5:C8:40:9E:14:57:22:C1:06:4A:76:94:D3:EB:7C:2A:10:EC:74 Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 03ECB255CEB0E5ECA1096A06DFDEDB74533559D3 Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31392e302f32342d3234203d3e20313335343632.roa Signing time: Sat 01 Mar 2025 04:02:24 +0000 ROA not before: Sat 01 Mar 2025 03:57:24 +0000 ROA not after: Sat 28 Feb 2026 04:02:24 +0000 asID: 135462 IP address blocks: 103.70.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 01:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ec:b2:55:ce:b0:e5:ec:a1:09:6a:06:df:de:db:74:53:35:59:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Mar 1 03:57:24 2025 GMT Not After : Feb 28 04:02:24 2026 GMT Subject: CN=E9D5C8409E145722C1064A7694D3EB7C2A10EC74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:30:a5:3b:fe:9a:0a:e7:27:0f:eb:5b:5e:11: 9c:e9:5a:a1:4e:06:e5:09:7a:86:6a:d7:40:dc:7a: fd:c4:71:93:f6:bf:a1:54:33:0a:7d:17:eb:69:7e: f6:3d:d4:55:b8:ec:79:16:4a:44:fb:35:36:05:09: 8d:f3:dc:4b:fd:1d:cc:a1:61:8f:53:ba:0f:4d:6c: 01:8c:ed:82:b4:4f:2f:26:0a:65:0a:6c:34:71:96: 07:c3:81:9c:0c:53:97:25:c4:92:e2:42:b5:52:f6: 65:e4:fd:eb:a5:2f:40:be:91:ed:6b:3c:d1:dc:50: a3:6a:f3:93:2b:d3:c8:ec:95:cd:1e:67:95:f3:c6: eb:59:1a:30:d3:04:ee:35:bd:55:a3:91:c7:c0:ed: 4c:34:9b:48:ee:ba:ef:fa:d2:07:b9:27:8e:bc:5a: 00:60:6a:4d:19:18:c5:c4:cd:62:29:52:54:e8:ab: 85:32:12:20:fc:81:44:3a:26:18:51:55:e2:e6:74: 6c:2c:72:0c:1f:3b:d2:78:c3:ee:49:82:7f:be:af: 20:e5:70:19:a6:a0:4d:e3:99:12:70:fc:2a:55:38: 76:81:00:b8:fa:40:c6:62:bc:b6:75:41:29:29:62: e5:a9:ee:c2:68:ed:23:37:b1:e9:98:b2:63:d8:72: 38:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D5:C8:40:9E:14:57:22:C1:06:4A:76:94:D3:EB:7C:2A:10:EC:74 X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/3130332e37302e31392e302f32342d3234203d3e20313335343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.19.0/24 Signature Algorithm: sha256WithRSAEncryption 24:c3:74:73:32:ee:f7:6b:33:52:f4:4f:2d:60:a4:49:01:62: 44:2e:a0:34:c5:a2:a3:b0:9c:37:dc:30:a5:c1:14:90:1a:ca: 9c:78:39:f2:52:6b:67:f2:36:9f:bf:6d:8e:e5:64:41:c0:27: 14:cc:2e:86:81:82:16:a4:86:b4:ed:54:24:98:26:3b:a1:54: b1:90:5f:2d:9b:8d:55:5b:4d:c0:d6:1a:c5:b7:e3:77:ea:7f: ce:72:96:15:7d:aa:93:b1:45:aa:4f:a5:c8:fe:1c:1b:86:46: ee:e6:d5:30:c6:40:99:1d:bc:39:36:8d:86:84:ac:04:dc:fa: 34:dd:3e:55:3d:bf:65:f6:85:5b:df:b7:e3:e0:6c:a1:3e:46: 2e:e7:0d:d1:aa:50:21:83:a7:23:a6:fb:e5:2d:ea:dd:99:9a: 02:a0:00:85:a9:2d:a9:92:b3:8d:c9:ae:cc:e8:c5:4f:b4:2a: cf:c3:1a:56:81:a6:8e:06:a5:78:46:6b:84:90:be:cd:af:ba: 5f:aa:c4:ab:3d:3f:11:a6:65:58:f2:c7:49:a6:6f:c0:8d:b9: 5b:e1:77:81:1b:06:60:9a:d8:36:5b:4e:5f:38:3e:47:16:89: a0:87:11:cb:82:84:b8:a0:a3:ad:17:5c:e6:b8:fb:11:10:f0: 0a:ec:8d:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA+yyVc6w5eyhCWoG397bdFM1WdMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNTAzMDEwMzU3MjRaFw0yNjAyMjgwNDAyMjRaMDMxMTAvBgNV BAMTKEU5RDVDODQwOUUxNDU3MjJDMTA2NEE3Njk0RDNFQjdDMkExMEVDNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCMKU7/poK5ycP61teEZzpWqFO BuUJeoZq10Dcev3EcZP2v6FUMwp9F+tpfvY91FW47HkWSkT7NTYFCY3z3Ev9Hcyh YY9Tug9NbAGM7YK0Ty8mCmUKbDRxlgfDgZwMU5clxJLiQrVS9mXk/eulL0C+ke1r PNHcUKNq85Mr08jslc0eZ5XzxutZGjDTBO41vVWjkcfA7Uw0m0juuu/60ge5J468 WgBgak0ZGMXEzWIpUlToq4UyEiD8gUQ6JhhRVeLmdGwscgwfO9J4w+5Jgn++ryDl cBmmoE3jmRJw/CpVOHaBALj6QMZivLZ1QSkpYuWp7sJo7SM3semYsmPYcjgFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6dXIQJ4UVyLBBkp2lNPrfCoQ7HQwHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZjRkNGYxLWIzNmMtNGE0Ni04 ODQ0LTRlNmM3YTNjOTdkOS8wLzMxMzAzMzJlMzczMDJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzYzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdGEzANBgkqhkiG 9w0BAQsFAAOCAQEAJMN0czLu92szUvRPLWCkSQFiRC6gNMWio7CcN9wwpcEUkBrK nHg58lJrZ/I2n79tjuVkQcAnFMwuhoGCFqSGtO1UJJgmO6FUsZBfLZuNVVtNwNYa xbfjd+p/znKWFX2qk7FFqk+lyP4cG4ZG7ubVMMZAmR28OTaNhoSsBNz6NN0+VT2/ ZfaFW9+34+BsoT5GLucN0apQIYOnI6b75S3q3ZmaAqAAhaktqZKzjcmuzOjFT7Qq z8MaVoGmjgaleEZrhJC+za+6X6rEqz0/EaZlWPLHSaZvwI25W+F3gRsGYJrYNltO Xzg+RxaJoIcRy4KEuKCjrRdc5rj7ERDwCuyNpA== -----END CERTIFICATE-----Generated at Thu Apr 24 01:45:14 2025 by rpki-client on console.sobornost.net