$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: ubtrKNhwXXcr0ETIWIdxgHH4b+DjI98JUXi9y4XDjsA= Subject key identifier: 53:10:5C:21:7E:8C:71:73:C6:D9:70:8F:3B:59:F6:BB:F9:EC:96:A1 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 353BFF7E2740D519A91AA0BF0FE801F6B4D1AE0C Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:45 +0000 ROA not before: Mon 01 Jul 2024 00:59:45 +0000 ROA not after: Mon 30 Jun 2025 01:04:45 +0000 asID: 38500 IP address blocks: 2403:2700:4001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:3b:ff:7e:27:40:d5:19:a9:1a:a0:bf:0f:e8:01:f6:b4:d1:ae:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:45 2024 GMT Not After : Jun 30 01:04:45 2025 GMT Subject: CN=53105C217E8C7173C6D9708F3B59F6BBF9EC96A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:f7:da:d5:39:01:81:f1:6a:ea:2d:36:34:29: 84:61:77:3d:90:fa:67:bc:5d:0a:13:b1:20:10:fe: c8:55:7a:9d:2e:95:9b:fb:24:c3:fb:ab:a7:64:e5: be:c5:32:92:4f:3d:1a:05:36:fd:da:84:f8:31:26: 2e:f4:99:57:c3:51:50:da:2d:6a:b4:77:d1:b9:93: 0f:54:77:7d:a2:3a:e4:b3:e7:5d:04:88:10:b0:08: 4a:6f:0c:96:6f:9f:70:44:06:da:39:ab:48:54:7c: bb:81:07:4e:cb:82:7e:74:da:43:46:2b:ad:81:dd: ac:67:c7:09:82:ed:cd:bf:50:cb:ec:42:c9:c4:9e: 35:7e:69:4c:01:37:fa:e4:fb:0c:23:2c:ab:1c:a9: 5f:95:db:e6:5e:36:5c:a2:c5:51:e4:0e:d0:b5:95: a7:6b:95:a0:e2:3f:e2:92:85:c4:28:c0:de:a6:20: b8:e9:7d:61:2b:a2:bc:d9:bc:bc:08:4d:bf:99:e2: df:49:04:c8:bb:7d:12:ea:cc:dd:86:33:2a:ed:46: 49:b6:58:66:dc:f8:49:90:f7:0a:37:6e:a2:35:16: 80:45:8a:ec:4b:44:7b:bd:db:32:76:f8:b7:ec:ee: c1:a9:d3:c2:4c:a6:d4:62:35:23:b6:3f:0e:cd:7b: f5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:10:5C:21:7E:8C:71:73:C6:D9:70:8F:3B:59:F6:BB:F9:EC:96:A1 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4001::/48 Signature Algorithm: sha256WithRSAEncryption 30:35:ae:d3:9f:96:d5:7d:3c:8e:7b:e9:79:f1:85:55:11:6b: 7a:7e:8e:07:19:01:41:59:dd:69:94:e1:3e:71:d2:ab:5b:85: af:48:e9:6f:14:37:b8:bf:d6:24:79:05:4e:6d:68:21:60:12: 41:2b:62:81:b4:d8:ba:b2:f7:56:f6:06:da:04:24:0f:b9:73: 98:a8:cd:eb:cb:43:ea:64:0a:c9:5f:88:6f:ae:be:36:5d:0a: ae:78:a2:8f:f3:34:dd:78:99:15:4b:ea:15:4b:4b:68:84:04: 82:8e:79:2b:a3:c8:d3:43:62:3d:d5:70:4b:d1:e8:f6:6e:aa: 16:9e:d4:3d:2d:d2:e0:70:1a:49:31:bb:d2:e4:9e:2c:8e:2e: 45:e0:9d:cb:12:e9:f1:12:01:fe:d7:22:ea:4d:bc:b9:95:af: b4:48:cd:47:47:48:ba:15:d8:4c:4a:0d:6c:83:f0:6d:0c:0c: c1:12:c8:95:0a:77:38:02:e5:9c:50:0a:a4:9b:3c:78:21:a5: 05:a4:b8:57:b7:4f:23:26:61:cf:50:53:8b:4a:2a:15:10:d4: 99:e2:77:c6:ea:1f:bc:3b:d7:c5:1c:ee:b2:0c:4e:f7:47:c2: 42:bc:49:17:fb:ef:19:e1:2c:49:c3:72:ca:ab:49:c6:7f:1a: 8a:2d:70:39 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNTv/fidA1RmpGqC/D+gB9rTRrgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDVaFw0yNTA2MzAwMTA0NDVaMDMxMTAvBgNV BAMTKDUzMTA1QzIxN0U4QzcxNzNDNkQ5NzA4RjNCNTlGNkJCRjlFQzk2QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD299rVOQGB8WrqLTY0KYRhdz2Q +me8XQoTsSAQ/shVep0ulZv7JMP7q6dk5b7FMpJPPRoFNv3ahPgxJi70mVfDUVDa LWq0d9G5kw9Ud32iOuSz510EiBCwCEpvDJZvn3BEBto5q0hUfLuBB07Lgn502kNG K62B3axnxwmC7c2/UMvsQsnEnjV+aUwBN/rk+wwjLKscqV+V2+ZeNlyixVHkDtC1 ladrlaDiP+KShcQowN6mILjpfWErorzZvLwITb+Z4t9JBMi7fRLqzN2GMyrtRkm2 WGbc+EmQ9wo3bqI1FoBFiuxLRHu92zJ2+Lfs7sGp08JMptRiNSO2Pw7Ne/WHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUxBcIX6McXPG2XCPO1n2u/nslqEwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEABMA0GCSqGSIb3DQEBCwUAA4IBAQAwNa7Tn5bVfTyOe+l58YVVEWt6fo4HGQFB Wd1plOE+cdKrW4WvSOlvFDe4v9YkeQVObWghYBJBK2KBtNi6svdW9gbaBCQPuXOY qM3ry0PqZArJX4hvrr42XQqueKKP8zTdeJkVS+oVS0tohASCjnkro8jTQ2I91XBL 0ej2bqoWntQ9LdLgcBpJMbvS5J4sji5F4J3LEunxEgH+1yLqTby5la+0SM1HR0i6 FdhMSg1sg/BtDAzBEsiVCnc4AuWcUAqkmzx4IaUFpLhXt08jJmHPUFOLSioVENSZ 4nfG6h+8O9fFHO6yDE73R8JCvEkX++8Z4SxJw3LKq0nGfxqKLXA5 -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org