$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: BCXILGY3+AYcUnLR4JiFrEPueD/W7wiynZYypP8MMqY= Subject key identifier: 4C:2E:5A:19:D4:E1:98:CC:89:B6:C1:95:63:E5:35:6B:B5:58:E7:EE Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 1054874E9F10DF284E2D55A60D35A4BFE82F28D7 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:44 +0000 ROA not before: Mon 01 Jul 2024 00:59:44 +0000 ROA not after: Mon 30 Jun 2025 01:04:44 +0000 asID: 38500 IP address blocks: 2403:2700:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:54:87:4e:9f:10:df:28:4e:2d:55:a6:0d:35:a4:bf:e8:2f:28:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:44 2024 GMT Not After : Jun 30 01:04:44 2025 GMT Subject: CN=4C2E5A19D4E198CC89B6C19563E5356BB558E7EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:84:0a:e0:e4:c6:2b:6e:45:7c:a2:89:4e:8f: 22:fa:22:70:00:a6:bd:f8:00:e8:39:04:d5:ae:49: 65:b5:cc:66:f5:be:65:0b:f7:55:21:1a:1b:d0:29: f0:c3:c3:18:5c:bf:f5:dc:d3:cd:29:b2:ad:ae:3b: 02:a1:57:ed:1c:87:16:3c:b7:1b:18:f8:57:56:63: 53:a2:ab:25:d9:a1:27:8f:b1:fa:0e:b6:5f:4d:16: a9:ee:ac:55:53:2a:59:36:0c:5a:91:5e:2d:a6:1c: 8d:b4:a1:4a:6e:f6:62:72:99:d6:74:30:da:41:e9: a7:58:3d:4a:9f:c8:36:47:7c:25:39:94:2e:dd:3f: 91:6a:4e:b2:e4:99:72:3b:48:5f:8a:23:f0:11:f4: f8:8e:3c:85:64:99:25:d1:85:de:6b:e1:73:41:d2: 7b:72:d4:c3:a5:62:c5:3e:05:be:92:ed:c2:af:f6: d8:d6:80:36:ee:21:a0:3e:eb:35:01:e2:c0:cb:2a: 03:0d:24:71:c9:77:c4:d4:ee:44:ef:7a:a9:90:05: 4b:36:31:28:62:df:76:b5:5f:7c:b1:1d:d3:96:aa: b3:b7:d1:19:0f:3c:34:b5:24:07:0b:45:bc:e5:ec: 4f:ac:b1:bb:a4:5c:57:d6:9d:30:1e:2f:e5:39:ab: 29:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2E:5A:19:D4:E1:98:CC:89:B6:C1:95:63:E5:35:6B:B5:58:E7:EE X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:3::/48 Signature Algorithm: sha256WithRSAEncryption 16:f7:2f:2f:e2:fe:05:e9:a3:03:09:48:10:cd:52:9a:99:c5: 5b:b0:aa:41:a7:21:c3:1c:96:3b:b5:19:c5:2f:d7:c9:18:15: ed:b4:de:08:95:8b:b3:f4:28:32:a3:8a:3b:18:4b:19:2f:1d: 34:32:df:02:f6:61:82:90:84:51:6a:0d:6b:1a:a8:62:6b:89: 89:6b:59:25:e3:d4:b9:d4:70:bd:7e:62:4c:07:67:e7:9a:51: dd:b0:a2:55:b2:35:25:4f:3b:5f:35:e6:7a:8e:59:ff:28:7d: 1c:90:5b:b9:c3:de:19:88:03:0a:82:f0:38:cc:27:d2:e1:0d: 6b:26:0e:ec:8b:65:43:c7:95:d1:89:12:50:40:d4:25:77:bd: 4a:5f:a3:02:dd:ff:01:e5:ff:43:c6:98:52:04:e7:0f:e1:0a: aa:ef:83:c5:7c:0a:73:af:a7:e4:06:2a:74:07:11:a7:23:e2: a4:e1:34:47:c2:6c:9e:36:c7:0d:5b:c0:26:97:98:a7:77:26: cf:b5:59:2d:29:c4:16:2d:02:85:8a:ba:ef:17:22:f8:10:68: 94:04:50:ce:58:09:a0:19:51:4a:ed:bf:fc:4e:93:c9:1a:08: 33:e8:7a:d8:d1:d7:91:9b:0e:04:9b:16:ea:4f:0d:f0:e0:e0: 7d:a2:e4:3d -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUEFSHTp8Q3yhOLVWmDTWkv+gvKNcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDRaFw0yNTA2MzAwMTA0NDRaMDMxMTAvBgNV BAMTKDRDMkU1QTE5RDRFMTk4Q0M4OUI2QzE5NTYzRTUzNTZCQjU1OEU3RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5hArg5MYrbkV8oolOjyL6InAA pr34AOg5BNWuSWW1zGb1vmUL91UhGhvQKfDDwxhcv/Xc080psq2uOwKhV+0chxY8 txsY+FdWY1OiqyXZoSePsfoOtl9NFqnurFVTKlk2DFqRXi2mHI20oUpu9mJymdZ0 MNpB6adYPUqfyDZHfCU5lC7dP5FqTrLkmXI7SF+KI/AR9PiOPIVkmSXRhd5r4XNB 0nty1MOlYsU+Bb6S7cKv9tjWgDbuIaA+6zUB4sDLKgMNJHHJd8TU7kTveqmQBUs2 MShi33a1X3yxHdOWqrO30RkPPDS1JAcLRbzl7E+ssbukXFfWnTAeL+U5qylXAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUTC5aGdThmMyJtsGVY+U1a7VY5+4wHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAADMA0G CSqGSIb3DQEBCwUAA4IBAQAW9y8v4v4F6aMDCUgQzVKamcVbsKpBpyHDHJY7tRnF L9fJGBXttN4IlYuz9Cgyo4o7GEsZLx00Mt8C9mGCkIRRag1rGqhia4mJa1kl49S5 1HC9fmJMB2fnmlHdsKJVsjUlTztfNeZ6jln/KH0ckFu5w94ZiAMKgvA4zCfS4Q1r Jg7si2VDx5XRiRJQQNQld71KX6MC3f8B5f9DxphSBOcP4Qqq74PFfApzr6fkBip0 BxGnI+Kk4TRHwmyeNscNW8Aml5indybPtVktKcQWLQKFirrvFyL4EGiUBFDOWAmg GVFK7b/8TpPJGggz6HrY0deRmw4EmxbqTw3w4OB9ouQ9 -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org