$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a323a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a323a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: pao+/ACSlKwWgRv7dZTLnj5A4K1efIV+FgAQdtaK93U= Subject key identifier: 0D:A7:A1:7D:43:1B:63:1E:C6:45:AA:45:E4:6C:E6:A2:DF:6C:91:E1 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 72662321CBD09B3FE181A84E310A9C09A754B317 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a323a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:45 +0000 ROA not before: Mon 01 Jul 2024 00:59:45 +0000 ROA not after: Mon 30 Jun 2025 01:04:45 +0000 asID: 38500 IP address blocks: 2403:2700:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:66:23:21:cb:d0:9b:3f:e1:81:a8:4e:31:0a:9c:09:a7:54:b3:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:45 2024 GMT Not After : Jun 30 01:04:45 2025 GMT Subject: CN=0DA7A17D431B631EC645AA45E46CE6A2DF6C91E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:28:6c:d8:12:2b:41:00:a4:d9:45:a0:c6:7d: 37:f7:dd:1c:b9:62:fe:e1:65:8b:18:c7:b7:85:ec: ee:32:40:2b:3b:71:07:18:ab:04:e6:a7:92:82:47: 40:a6:0b:54:62:f5:36:7c:23:ed:aa:73:0f:67:5a: 30:25:10:e8:e8:80:3b:a8:ae:ce:b9:4a:69:61:3f: 8b:28:29:c2:32:15:6b:bd:db:18:02:fd:9f:11:ae: 90:80:b6:21:18:f6:d3:f4:45:6c:4b:54:11:40:36: a6:80:62:13:85:77:49:30:6f:b5:b9:f6:43:19:01: 28:66:e2:e3:04:2c:3c:48:13:56:2d:09:af:13:5b: a9:5c:4b:00:1a:6d:22:c9:81:ae:c0:07:43:a8:8a: 57:34:84:3e:ef:0b:6e:48:07:6b:79:01:0c:9f:cf: dc:3f:21:40:d0:4d:54:5a:76:8e:66:20:56:af:62: ef:f0:65:cf:10:bc:7f:21:45:1e:f6:e9:f8:e9:af: fa:45:67:3d:cb:e7:79:ef:27:77:94:f5:9a:39:3e: d8:f9:74:70:35:32:c0:2d:c2:f1:7c:cd:7a:ef:b4: 44:3c:d9:5f:ec:87:c5:c3:52:99:5b:8e:4a:b4:fb: 59:9c:af:a5:59:4b:ea:c5:4a:a7:62:a7:f6:e6:5a: 25:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A7:A1:7D:43:1B:63:1E:C6:45:AA:45:E4:6C:E6:A2:DF:6C:91:E1 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a323a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:2::/48 Signature Algorithm: sha256WithRSAEncryption 0e:c0:ee:82:fc:e0:3f:1a:e2:f2:93:16:27:ee:0b:ae:92:1c: 59:e2:23:53:fb:d9:8e:05:35:af:42:c4:e7:39:19:78:84:5e: d3:09:6a:0c:cb:d4:78:a5:0f:42:10:94:65:4f:02:ec:ff:d6: 8c:bd:0c:eb:87:e2:a0:b6:21:6e:21:73:c2:d1:c1:26:5a:63: 75:e2:08:e5:11:82:2d:ee:25:2c:30:67:1c:72:ea:39:84:d3: ba:e8:fe:60:9c:ff:c9:7c:9e:17:a2:5b:09:1d:95:85:0a:5b: 89:16:a0:1f:c0:63:ea:59:35:b6:f6:eb:a3:13:2e:de:b9:13: c0:de:10:e3:6b:8b:0f:c2:2f:48:e8:d6:c6:e6:9c:b7:f7:17: 63:a9:75:cf:e9:a3:25:8a:2c:0c:43:9e:72:5b:cc:0c:91:fc: 46:eb:84:c2:7b:0e:62:a4:63:00:10:3f:05:9e:19:e8:fd:40: 86:69:55:49:48:f1:dd:38:97:be:2f:20:d8:85:c9:4c:28:d0: aa:5f:15:b7:c7:97:a9:57:e1:b7:9b:8c:ef:42:af:cb:a8:78: 74:9a:e6:0a:82:a5:9b:28:ab:fe:69:b2:2f:56:1f:2f:e9:ed: fa:a1:64:58:a4:9d:57:c4:18:58:c9:18:7b:fb:8f:b1:46:c3: d6:ac:4b:29 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUcmYjIcvQmz/hgahOMQqcCadUsxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDVaFw0yNTA2MzAwMTA0NDVaMDMxMTAvBgNV BAMTKDBEQTdBMTdENDMxQjYzMUVDNjQ1QUE0NUU0NkNFNkEyREY2QzkxRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHKGzYEitBAKTZRaDGfTf33Ry5 Yv7hZYsYx7eF7O4yQCs7cQcYqwTmp5KCR0CmC1Ri9TZ8I+2qcw9nWjAlEOjogDuo rs65SmlhP4soKcIyFWu92xgC/Z8RrpCAtiEY9tP0RWxLVBFANqaAYhOFd0kwb7W5 9kMZAShm4uMELDxIE1YtCa8TW6lcSwAabSLJga7AB0Ooilc0hD7vC25IB2t5AQyf z9w/IUDQTVRado5mIFavYu/wZc8QvH8hRR726fjpr/pFZz3L53nvJ3eU9Zo5Ptj5 dHA1MsAtwvF8zXrvtEQ82V/sh8XDUplbjkq0+1mcr6VZS+rFSqdip/bmWiUJAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUDaehfUMbYx7GRapF5Gzmot9skeEwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAACMA0G CSqGSIb3DQEBCwUAA4IBAQAOwO6C/OA/GuLykxYn7guukhxZ4iNT+9mOBTWvQsTn ORl4hF7TCWoMy9R4pQ9CEJRlTwLs/9aMvQzrh+KgtiFuIXPC0cEmWmN14gjlEYIt 7iUsMGcccuo5hNO66P5gnP/JfJ4XolsJHZWFCluJFqAfwGPqWTW29uujEy7euRPA 3hDja4sPwi9I6NbG5py39xdjqXXP6aMliiwMQ55yW8wMkfxG64TCew5ipGMAED8F nhno/UCGaVVJSPHdOJe+LyDYhclMKNCqXxW3x5epV+G3m4zvQq/LqHh0muYKgqWb KKv+abIvVh8v6e36oWRYpJ1XxBhYyRh7+4+xRsPWrEsp -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org