$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a31303a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a31303a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: PbO4pvqV6ufqqC3g+CqdnYAN9NhycPdf5LSVOD0gDQI= Subject key identifier: CD:E8:1E:49:0C:CC:19:B4:58:CD:07:F5:13:F4:B4:F2:A8:7E:72:B3 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 1BAE1BFA13C9FFEA861D582E6AD9E2F9E40A65B0 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a31303a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:44 +0000 ROA not before: Mon 01 Jul 2024 00:59:44 +0000 ROA not after: Mon 30 Jun 2025 01:04:44 +0000 asID: 38500 IP address blocks: 2403:2700:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ae:1b:fa:13:c9:ff:ea:86:1d:58:2e:6a:d9:e2:f9:e4:0a:65:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:44 2024 GMT Not After : Jun 30 01:04:44 2025 GMT Subject: CN=CDE81E490CCC19B458CD07F513F4B4F2A87E72B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ce:30:1b:50:4f:4c:a9:60:1c:71:2a:27:86: 4e:dc:d7:41:0b:70:c3:9a:83:1a:e6:4f:fb:94:64: 9a:3a:6a:00:ca:06:38:24:1b:e5:68:ee:12:d2:1a: 5f:73:ea:c9:f2:ef:33:11:75:28:30:f1:9b:5b:81: bf:4b:f3:a0:91:c0:f9:36:41:02:19:f5:c8:3e:1f: 9f:79:03:b3:52:40:3d:2f:2e:1f:f8:96:6c:80:85: 3b:02:98:72:23:94:39:4b:53:05:dd:2b:e5:df:17: 21:45:ae:30:1c:b9:b6:70:f6:f5:f5:4a:27:25:1d: fb:9a:dd:3d:84:e0:7b:c6:f7:f2:64:f1:8e:6e:24: 7e:bc:cc:ff:63:66:2d:1b:f7:a5:b1:e7:e3:12:32: 6f:c7:44:58:2f:09:69:21:d4:94:df:d1:11:a0:25: 75:03:92:df:88:e8:8f:3f:ec:6f:f3:32:d6:19:45: 41:a0:1b:2b:7b:d8:21:b4:18:03:33:54:b4:d0:53: 4c:66:1d:2e:d1:8a:9b:ab:91:46:f5:8b:0d:78:89: 49:9b:2e:1c:75:2c:6c:77:a7:43:27:fe:01:e6:5f: ab:31:35:f7:96:76:68:ae:3f:14:ed:1d:70:a1:04: 80:93:9f:45:b8:c3:fa:95:cc:53:08:00:15:2b:94: c2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E8:1E:49:0C:CC:19:B4:58:CD:07:F5:13:F4:B4:F2:A8:7E:72:B3 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a31303a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:10::/48 Signature Algorithm: sha256WithRSAEncryption 41:49:15:73:c2:7b:e4:b0:6e:d8:53:1c:bc:fd:8f:ea:b2:8c: c9:7e:1d:87:20:e2:4c:ad:29:63:58:c1:64:af:d2:29:37:b1: 64:9e:9e:46:ad:6e:66:8e:2a:28:e2:f1:4b:39:b2:e1:96:eb: 33:26:61:0d:8c:fe:a3:24:07:9d:21:95:65:1f:42:bc:42:57: 5b:e0:e0:f8:34:97:a7:8f:8e:5b:8f:13:67:64:55:71:e6:45: a0:0b:bd:a8:74:7b:96:25:45:ba:0e:08:04:e5:3d:bc:9e:76: 8d:74:bb:d2:7b:41:d3:52:cf:76:1c:a9:c8:c1:c4:06:06:7c: 90:b6:db:77:a6:e0:3a:0e:83:19:dc:1b:57:46:53:96:e2:fc: db:22:e9:49:4b:c6:24:3c:56:42:76:b3:b5:77:70:ed:0e:ee: 27:9a:8e:0e:4c:ee:05:11:55:3d:83:db:37:98:67:29:10:a5: 4c:43:3f:48:d5:89:f3:eb:bc:1f:11:04:22:bd:d0:b9:51:1b: 6b:e2:44:de:0e:a5:cd:d9:bc:8d:49:4f:35:52:e4:99:0d:20: 62:95:4c:be:20:bb:f5:13:fb:12:28:6e:cb:fd:90:a5:76:1a: c5:9c:45:f5:b8:a5:34:2d:56:38:61:78:8c:13:15:5b:3a:df: 67:91:a2:2b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUG64b+hPJ/+qGHVguatni+eQKZbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDRaFw0yNTA2MzAwMTA0NDRaMDMxMTAvBgNV BAMTKENERTgxRTQ5MENDQzE5QjQ1OENEMDdGNTEzRjRCNEYyQTg3RTcyQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCczjAbUE9MqWAccSonhk7c10EL cMOagxrmT/uUZJo6agDKBjgkG+Vo7hLSGl9z6sny7zMRdSgw8Ztbgb9L86CRwPk2 QQIZ9cg+H595A7NSQD0vLh/4lmyAhTsCmHIjlDlLUwXdK+XfFyFFrjAcubZw9vX1 SiclHfua3T2E4HvG9/Jk8Y5uJH68zP9jZi0b96Wx5+MSMm/HRFgvCWkh1JTf0RGg JXUDkt+I6I8/7G/zMtYZRUGgGyt72CG0GAMzVLTQU0xmHS7RipurkUb1iw14iUmb Lhx1LGx3p0Mn/gHmX6sxNfeWdmiuPxTtHXChBICTn0W4w/qVzFMIABUrlMLzAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUzegeSQzMGbRYzQf1E/S08qh+crMwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMzMzgzNTMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAycAABAw DQYJKoZIhvcNAQELBQADggEBAEFJFXPCe+SwbthTHLz9j+qyjMl+HYcg4kytKWNY wWSv0ik3sWSenkatbmaOKiji8Us5suGW6zMmYQ2M/qMkB50hlWUfQrxCV1vg4Pg0 l6ePjluPE2dkVXHmRaALvah0e5YlRboOCATlPbyedo10u9J7QdNSz3YcqcjBxAYG fJC223em4DoOgxncG1dGU5bi/Nsi6UlLxiQ8VkJ2s7V3cO0O7ieajg5M7gURVT2D 2zeYZykQpUxDP0jVifPrvB8RBCK90LlRG2viRN4Opc3ZvI1JTzVS5JkNIGKVTL4g u/UT+xIobsv9kKV2GsWcRfW4pTQtVjhheIwTFVs632eRois= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org