$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030303a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030303a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: Zb7rPFf6VF+jGYmpydtnDSz3SvzOUS22N5NJon2+iz4= Subject key identifier: D6:D4:B1:45:6B:07:19:A2:96:A8:EF:7B:D1:EF:3E:42:A1:C8:A2:2E Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 73B589ABD5DBA8537263515550B8A4C4BD165A8E Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030303a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:47 +0000 ROA not before: Mon 01 Jul 2024 00:59:47 +0000 ROA not after: Mon 30 Jun 2025 01:04:47 +0000 asID: 38500 IP address blocks: 2403:2700:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:b5:89:ab:d5:db:a8:53:72:63:51:55:50:b8:a4:c4:bd:16:5a:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:47 2024 GMT Not After : Jun 30 01:04:47 2025 GMT Subject: CN=D6D4B1456B0719A296A8EF7BD1EF3E42A1C8A22E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c4:36:5b:6c:f5:b5:69:54:68:56:4a:a6:d8: 91:a2:49:4b:b3:d8:77:b1:8b:4f:c4:14:6f:e6:16: f5:dd:11:57:25:9f:8f:e7:c7:9b:92:36:d1:d7:ca: 41:fc:03:da:d4:0d:85:6e:f0:61:72:80:3d:28:a3: 2c:3b:e3:a0:bf:cd:39:8f:0c:a9:08:0c:2d:48:60: 9b:9d:e3:ef:10:61:59:4d:e9:a5:6f:bc:c7:dc:0d: ff:9a:20:b7:85:46:e0:b3:38:49:9b:68:d9:0a:47: 1e:ad:86:2c:52:c0:f4:82:7c:45:f2:ed:14:d6:29: 5c:62:d1:98:8c:8a:f8:eb:e8:54:f1:98:a2:0e:f9: 5c:ac:d8:7e:97:06:ae:db:a6:2d:c4:9e:35:c8:8a: a6:6b:2f:db:a5:88:ef:b4:08:7f:ec:da:d5:d8:85: c2:30:c9:73:1c:ec:64:5f:8f:78:c5:fd:94:d7:4c: 3d:77:a3:84:a7:fb:27:df:65:9b:1b:9d:85:73:70: 3d:53:40:b5:c6:d6:2f:d9:c8:73:ce:24:be:8f:6b: 87:a7:24:fc:c0:61:6e:ee:ac:b9:0f:e9:22:ef:13: 8f:7f:ee:ba:b5:b2:ea:53:84:be:10:4c:33:c0:17: 98:b2:79:fb:09:ed:f7:e4:40:2a:df:a7:1f:85:78: 62:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:D4:B1:45:6B:07:19:A2:96:A8:EF:7B:D1:EF:3E:42:A1:C8:A2:2E X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030303a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4000::/48 Signature Algorithm: sha256WithRSAEncryption 2c:51:35:d3:fc:47:bc:29:98:d1:1a:34:53:23:3f:4c:4a:1b: 14:8a:ec:99:23:e9:5d:60:23:91:8c:c3:14:2d:e3:8d:68:dc: 3d:bc:eb:71:3e:28:b7:44:41:ce:6f:26:5b:06:b7:d8:66:40: e0:c3:1a:54:fa:0e:58:70:70:89:1d:36:89:7b:18:74:21:23: 1e:a7:24:f7:59:34:da:47:0e:a0:d1:de:08:d7:c9:17:71:b6: f5:ce:c8:d3:f1:cb:11:63:2f:92:a5:12:d8:be:3d:75:48:6a: 12:34:dc:d7:d3:d9:91:e6:c0:d2:74:37:f0:87:18:16:e4:32: c7:60:99:b6:ad:78:91:6c:7d:df:d2:22:a8:e0:91:d6:dc:1a: 5f:1b:72:f5:76:4e:b6:f1:73:d0:b8:82:20:ef:24:67:09:3a: 1c:05:f2:50:80:5f:95:b2:41:a6:bc:31:64:2a:10:6b:f3:81: 30:34:b6:0e:78:3b:da:65:ff:7e:fe:0c:fc:b8:2d:fe:9d:60: c2:c7:11:8e:4e:19:e6:29:14:11:f9:9b:5d:ee:11:fc:12:a4: 1a:cf:5f:b9:c8:ed:63:a7:64:96:6c:0c:4b:b5:6a:64:2f:41: 90:7f:05:7f:db:23:ca:b2:0f:99:d0:30:c3:20:2e:26:d3:3f: 16:71:25:b8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUc7WJq9XbqFNyY1FVULikxL0WWo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDdaFw0yNTA2MzAwMTA0NDdaMDMxMTAvBgNV BAMTKEQ2RDRCMTQ1NkIwNzE5QTI5NkE4RUY3QkQxRUYzRTQyQTFDOEEyMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZxDZbbPW1aVRoVkqm2JGiSUuz 2Hexi0/EFG/mFvXdEVcln4/nx5uSNtHXykH8A9rUDYVu8GFygD0ooyw746C/zTmP DKkIDC1IYJud4+8QYVlN6aVvvMfcDf+aILeFRuCzOEmbaNkKRx6thixSwPSCfEXy 7RTWKVxi0ZiMivjr6FTxmKIO+Vys2H6XBq7bpi3EnjXIiqZrL9uliO+0CH/s2tXY hcIwyXMc7GRfj3jF/ZTXTD13o4Sn+yffZZsbnYVzcD1TQLXG1i/ZyHPOJL6Pa4en JPzAYW7urLkP6SLvE49/7rq1supThL4QTDPAF5iyefsJ7ffkQCrfpx+FeGJLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1tSxRWsHGaKWqO970e8+QqHIoi4wHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAAMA0GCSqGSIb3DQEBCwUAA4IBAQAsUTXT/Ee8KZjRGjRTIz9MShsUiuyZI+ld YCORjMMULeONaNw9vOtxPii3REHObyZbBrfYZkDgwxpU+g5YcHCJHTaJexh0ISMe pyT3WTTaRw6g0d4I18kXcbb1zsjT8csRYy+SpRLYvj11SGoSNNzX09mR5sDSdDfw hxgW5DLHYJm2rXiRbH3f0iKo4JHW3BpfG3L1dk628XPQuIIg7yRnCTocBfJQgF+V skGmvDFkKhBr84EwNLYOeDvaZf9+/gz8uC3+nWDCxxGOThnmKRQR+Ztd7hH8EqQa z1+5yO1jp2SWbAxLtWpkL0GQfwV/2yPKsg+Z0DDDIC4m0z8WcSW4 -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org