$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: bJxVEFJqkVbKOiwNNB4H5sD/W8/g/dcBZzqgF/Ln6iY= Subject key identifier: B8:73:C2:22:11:08:A2:4D:77:4A:3F:17:B0:5F:3F:2F:B0:00:9F:58 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 4B51384EEED277D69FF50E0A172DDBAF30238270 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:42 +0000 ROA not before: Mon 01 Jul 2024 00:59:42 +0000 ROA not after: Mon 30 Jun 2025 01:04:42 +0000 asID: 38500 IP address blocks: 2403:2700:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:51:38:4e:ee:d2:77:d6:9f:f5:0e:0a:17:2d:db:af:30:23:82:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:42 2024 GMT Not After : Jun 30 01:04:42 2025 GMT Subject: CN=B873C2221108A24D774A3F17B05F3F2FB0009F58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:62:fa:e9:d2:6f:2c:72:e1:dc:51:5d:32:4e: 45:ff:d3:40:3b:49:47:57:35:12:da:eb:e0:86:38: 72:33:65:a4:be:02:58:14:f3:c1:5d:8b:60:df:30: 51:6b:3b:9d:6a:12:bb:f4:63:f0:a6:e6:32:d3:c3: 90:97:56:50:9a:e6:62:09:da:18:2a:0b:d9:88:fc: 5f:e9:36:37:e0:23:34:21:74:70:77:7b:71:9d:30: 00:f5:3e:56:8c:44:8c:15:83:55:cb:e0:4e:d5:bf: de:55:4c:9e:bb:44:79:1f:fd:56:b8:34:17:c8:69: c6:e2:aa:90:f1:d6:81:76:b9:23:55:88:3a:d3:65: 1a:4c:da:72:ff:24:ae:cd:b3:61:41:38:f0:aa:ae: 59:3f:ad:50:3f:27:e7:53:5f:92:ae:5b:5c:72:4b: 4e:f3:1b:2d:c4:ab:72:20:1e:10:d8:0d:4f:88:f5: 0c:00:56:1e:75:52:80:47:f6:ad:fa:3e:be:76:a8: 94:d3:bc:fe:90:86:34:6d:f2:78:f8:04:f3:93:07: b6:57:9d:d7:28:a5:f6:94:f1:7e:00:86:9e:c8:67: eb:c9:74:42:fe:1f:8e:55:68:00:b0:2d:fd:6b:39: 7e:91:5a:64:95:1e:8f:da:52:c4:23:20:94:c8:68: 05:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:73:C2:22:11:08:A2:4D:77:4A:3F:17:B0:5F:3F:2F:B0:00:9F:58 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4004::/48 Signature Algorithm: sha256WithRSAEncryption 42:48:d3:56:8b:05:c9:5c:7b:80:c6:fe:e8:5f:be:ff:cf:10: 36:2f:e1:64:9b:c4:67:7b:5d:1e:a0:64:24:ea:08:0f:ee:09: a9:9d:d2:e4:ba:a3:55:b9:b8:ea:2d:26:f0:b2:8a:2c:54:e9: e1:e2:44:63:b4:c2:7e:c7:48:bc:6f:54:e0:67:ae:a9:c6:7c: e1:5e:1d:0b:ff:04:83:30:84:a3:11:b5:3c:d4:5c:1e:3d:d3: 03:03:2a:43:9a:ae:c2:43:11:81:a7:6e:cd:1a:6d:6a:3b:95: 7e:28:07:0e:ff:ee:fc:30:74:4a:c4:b7:a9:96:35:5e:e6:97: 0c:71:fd:ad:11:98:8c:77:6c:69:97:2b:5c:19:9d:36:5d:2e: 5d:51:58:2e:c1:92:76:f2:37:99:73:90:fe:f8:e8:72:ee:40: b2:39:50:e3:cd:cf:e7:2c:d4:b3:b4:f1:24:c3:cd:f9:c4:cc: 4e:e8:7a:6c:42:1d:91:ec:6d:58:9b:5d:ae:fb:bf:ee:1b:54: aa:d6:a4:b0:87:07:8e:f6:f0:fd:42:20:35:fc:62:20:a7:b9: f5:d9:4d:28:f2:b0:ec:e9:f7:ec:7d:13:15:7a:80:80:35:9d: e8:cc:f1:8f:34:03:87:8b:37:1b:d3:0e:62:f6:d1:5e:d2:00: 8c:41:b8:7e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUS1E4Tu7Sd9af9Q4KFy3brzAjgnAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDJaFw0yNTA2MzAwMTA0NDJaMDMxMTAvBgNV BAMTKEI4NzNDMjIyMTEwOEEyNEQ3NzRBM0YxN0IwNUYzRjJGQjAwMDlGNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoYvrp0m8scuHcUV0yTkX/00A7 SUdXNRLa6+CGOHIzZaS+AlgU88Fdi2DfMFFrO51qErv0Y/Cm5jLTw5CXVlCa5mIJ 2hgqC9mI/F/pNjfgIzQhdHB3e3GdMAD1PlaMRIwVg1XL4E7Vv95VTJ67RHkf/Va4 NBfIacbiqpDx1oF2uSNViDrTZRpM2nL/JK7Ns2FBOPCqrlk/rVA/J+dTX5KuW1xy S07zGy3Eq3IgHhDYDU+I9QwAVh51UoBH9q36Pr52qJTTvP6QhjRt8nj4BPOTB7ZX ndcopfaU8X4Ahp7IZ+vJdEL+H45VaACwLf1rOX6RWmSVHo/aUsQjIJTIaAXNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuHPCIhEIok13Sj8XsF8/L7AAn1gwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQBCSNNWiwXJXHuAxv7oX77/zxA2L+Fkm8Rn e10eoGQk6ggP7gmpndLkuqNVubjqLSbwsoosVOnh4kRjtMJ+x0i8b1TgZ66pxnzh Xh0L/wSDMISjEbU81FwePdMDAypDmq7CQxGBp27NGm1qO5V+KAcO/+78MHRKxLep ljVe5pcMcf2tEZiMd2xplytcGZ02XS5dUVguwZJ28jeZc5D++Ohy7kCyOVDjzc/n LNSztPEkw835xMxO6HpsQh2R7G1Ym12u+7/uG1Sq1qSwhweO9vD9QiA1/GIgp7n1 2U0o8rDs6ffsfRMVeoCANZ3ozPGPNAOHizcb0w5i9tFe0gCMQbh+ -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org