$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a313a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a313a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: 2W51nh5SvC7wVRVUPJUQdl2ayXHuGQ/7zMnZ4Pq0DZM= Subject key identifier: 3F:9E:4E:9F:23:0E:60:C3:FF:70:3F:61:81:98:02:97:2D:A0:A2:B6 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 1AEF252CF869042886CEC2F3C8C737271F03231B Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a313a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:45 +0000 ROA not before: Mon 01 Jul 2024 00:59:45 +0000 ROA not after: Mon 30 Jun 2025 01:04:45 +0000 asID: 38500 IP address blocks: 2403:2700:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ef:25:2c:f8:69:04:28:86:ce:c2:f3:c8:c7:37:27:1f:03:23:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:45 2024 GMT Not After : Jun 30 01:04:45 2025 GMT Subject: CN=3F9E4E9F230E60C3FF703F61819802972DA0A2B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:39:89:c0:8d:59:d7:7f:e9:92:b1:ae:26:09: 2d:ce:c4:60:d3:71:38:8f:b6:d3:af:e5:8b:f2:fa: 39:cc:cb:4a:80:4d:d2:82:e9:a1:dc:6d:ac:2a:70: 95:47:d9:96:d9:18:d6:43:c9:4b:97:d9:4b:5d:ca: e9:5b:51:62:56:de:0a:de:50:55:25:58:26:28:de: d8:3b:92:4e:a9:5a:c9:8b:56:e1:23:db:4c:dd:c2: 0d:28:c0:9c:69:05:cc:3c:30:9b:57:07:52:92:56: 30:3f:da:b5:d8:c9:77:f4:e7:ad:b5:c1:7f:4d:bf: 38:45:da:b7:6f:49:6d:f1:b0:e8:05:c7:58:86:73: 4d:ef:b1:0d:3b:41:17:d8:45:b8:87:8f:2e:cf:d5: b2:69:bf:87:47:fe:96:d6:24:68:a7:fb:dc:2f:d2: ae:5b:2c:d0:07:5c:18:44:bd:e7:7a:d7:75:2e:f2: d7:60:95:67:ad:2d:12:ec:84:a4:3a:50:20:20:a8: df:d2:72:a0:1b:a8:80:c4:d3:26:aa:ed:ee:73:b9: 83:aa:de:21:b8:57:38:79:c2:d6:45:e1:c9:37:fe: 20:24:cc:8e:4b:66:b9:94:51:48:f9:8d:81:7f:43: 27:ed:86:b5:82:eb:7a:e2:ba:d0:82:59:91:e9:bd: ee:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9E:4E:9F:23:0E:60:C3:FF:70:3F:61:81:98:02:97:2D:A0:A2:B6 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a313a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:1::/48 Signature Algorithm: sha256WithRSAEncryption 7f:8e:a3:96:69:ed:7f:9b:60:94:a3:dc:33:ac:f6:2a:e1:b4: 33:bd:47:a1:11:28:45:9c:60:5f:53:c4:73:ba:2f:90:10:9b: f1:b6:4b:23:02:d1:ea:ff:49:d2:9b:71:19:f1:81:82:a4:03: aa:d3:e4:b1:34:ee:d7:0c:4a:d8:63:67:8e:6c:47:84:62:3f: f8:c4:3c:e1:b7:d6:aa:66:6b:da:bf:5b:af:45:d9:72:6a:60: 11:b9:9f:5f:d1:54:c8:92:d2:15:de:71:50:66:64:3e:dc:b6: 52:8e:37:19:63:95:1b:e7:e2:a3:15:04:e7:31:e3:11:b1:f1: 6f:e1:91:05:ae:35:08:f5:27:00:22:65:e6:fe:94:29:45:be: 91:2b:c1:62:86:79:9b:0e:c1:14:df:d5:2d:90:67:0a:c3:3d: 22:a2:4b:b4:b6:c4:73:c7:50:e5:96:ad:00:8c:86:c1:ca:a9: 5c:84:e2:c8:3a:ec:ef:ea:05:9a:63:04:3d:d0:b0:94:1f:8e: fe:5d:1f:cd:81:68:73:13:a0:58:62:53:62:a8:7d:33:66:e3: 66:c3:1f:8f:6a:08:93:7c:58:ef:13:2d:57:63:e7:87:41:9f: 53:32:6f:ff:b4:ce:23:8c:9d:29:b2:d9:af:a9:3f:55:9c:39: 9c:10:4e:73 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUGu8lLPhpBCiGzsLzyMc3Jx8DIxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDVaFw0yNTA2MzAwMTA0NDVaMDMxMTAvBgNV BAMTKDNGOUU0RTlGMjMwRTYwQzNGRjcwM0Y2MTgxOTgwMjk3MkRBMEEyQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUOYnAjVnXf+mSsa4mCS3OxGDT cTiPttOv5Yvy+jnMy0qATdKC6aHcbawqcJVH2ZbZGNZDyUuX2UtdyulbUWJW3gre UFUlWCYo3tg7kk6pWsmLVuEj20zdwg0owJxpBcw8MJtXB1KSVjA/2rXYyXf05621 wX9NvzhF2rdvSW3xsOgFx1iGc03vsQ07QRfYRbiHjy7P1bJpv4dH/pbWJGin+9wv 0q5bLNAHXBhEved613Uu8tdglWetLRLshKQ6UCAgqN/ScqAbqIDE0yaq7e5zuYOq 3iG4Vzh5wtZF4ck3/iAkzI5LZrmUUUj5jYF/QyfthrWC63riutCCWZHpve4lAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUP55OnyMOYMP/cD9hgZgCly2gorYwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAABMA0G CSqGSIb3DQEBCwUAA4IBAQB/jqOWae1/m2CUo9wzrPYq4bQzvUehEShFnGBfU8Rz ui+QEJvxtksjAtHq/0nSm3EZ8YGCpAOq0+SxNO7XDErYY2eObEeEYj/4xDzht9aq Zmvav1uvRdlyamARuZ9f0VTIktIV3nFQZmQ+3LZSjjcZY5Ub5+KjFQTnMeMRsfFv 4ZEFrjUI9ScAImXm/pQpRb6RK8FihnmbDsEU39UtkGcKwz0ioku0tsRzx1Dllq0A jIbByqlchOLIOuzv6gWaYwQ90LCUH47+XR/NgWhzE6BYYlNiqH0zZuNmwx+PagiT fFjvEy1XY+eHQZ9TMm//tM4jjJ0pstmvqT9VnDmcEE5z -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org