$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030353a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030353a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: 6+oj/u52qOmkqsF5utRKJ8ePcdxQ82y9Sa7f96/sE74= Subject key identifier: F8:26:67:63:18:A7:B9:6A:F0:8D:60:72:9B:37:1A:4F:E6:28:35:A2 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 50A7ECB98CD330866546D046C3EA0EA598AF8B49 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030353a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:44 +0000 ROA not before: Mon 01 Jul 2024 00:59:44 +0000 ROA not after: Mon 30 Jun 2025 01:04:44 +0000 asID: 38500 IP address blocks: 2403:2700:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:a7:ec:b9:8c:d3:30:86:65:46:d0:46:c3:ea:0e:a5:98:af:8b:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:44 2024 GMT Not After : Jun 30 01:04:44 2025 GMT Subject: CN=F826676318A7B96AF08D60729B371A4FE62835A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:26:af:0e:a4:12:71:97:46:92:3d:d7:8e:18: d0:98:bf:cf:a1:ad:e1:64:49:6c:b5:49:98:19:e9: 55:64:75:5e:99:d4:0d:6f:88:9b:22:57:23:4d:93: 99:f6:ba:f0:9e:1b:31:9b:31:65:c5:46:de:d3:68: cd:df:9f:9e:30:95:87:37:bb:75:e5:28:ff:0f:3a: d8:3a:bf:86:3e:29:7a:1b:f7:b2:9c:8f:07:de:57: fe:88:af:6e:aa:a2:d1:53:07:a0:30:db:7f:3f:1a: 25:3d:a0:9f:2e:38:8c:6f:82:c4:2a:24:1e:02:10: 65:8b:d7:0d:e7:ea:b8:7f:bc:d7:40:93:cd:80:37: 19:62:60:d1:da:a9:82:3f:89:08:78:b3:31:85:83: b9:b8:8a:df:aa:15:08:64:9a:47:62:73:f5:3c:66: 27:c0:5d:c7:22:b9:db:84:39:bb:cd:77:40:cb:87: 56:f2:f1:47:7b:18:8e:8e:98:6b:6e:58:56:64:2b: ec:d6:6a:8d:83:c5:3c:f5:84:67:9c:55:61:72:89: f4:20:85:24:ac:7d:4f:49:25:6b:f9:c9:4c:8a:1e: fa:7f:ff:f8:d6:ac:ec:97:9c:0b:e1:97:06:08:9f: 8e:6d:37:c5:34:3f:e7:3d:a8:db:92:9b:2d:d3:4a: ad:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:26:67:63:18:A7:B9:6A:F0:8D:60:72:9B:37:1A:4F:E6:28:35:A2 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030353a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4005::/48 Signature Algorithm: sha256WithRSAEncryption 2d:96:13:6f:1e:b0:4d:5b:91:bd:46:4e:3d:da:8e:c1:ca:44: 79:c6:00:d6:05:d8:b7:fd:9e:0f:df:f5:09:bf:51:d6:71:3a: 2f:54:bb:8f:9f:20:e3:a0:4a:3d:98:59:f1:38:99:20:bd:3a: 82:c9:5b:1a:73:0b:b2:d5:2f:ca:d2:a0:5c:f4:7a:df:f8:6f: 70:c9:53:af:ba:fe:3d:1f:e7:12:0e:91:44:23:fd:57:26:78: 59:dd:30:98:37:fe:37:65:60:eb:2a:4a:cf:e5:78:33:f7:c6: eb:02:ac:45:97:76:38:59:92:cc:94:19:12:f5:ed:98:7b:70: f5:cd:12:be:24:9c:76:c6:f2:d2:f4:93:a2:59:41:ab:11:e1: 7f:1c:23:43:f6:bf:c2:12:a6:4c:cb:2e:ab:ca:77:7b:62:2e: b3:de:36:63:78:0d:4e:e9:6b:ce:63:2b:e7:9d:2a:ae:a7:e7: b6:82:77:f2:4c:f5:00:73:05:43:49:e9:f3:b0:6c:f8:fb:e0: 0a:83:93:15:ee:7e:16:84:be:82:77:c6:a1:f0:07:c2:64:a6: 49:26:bd:42:e8:92:45:7c:48:20:39:ab:2b:27:83:93:5d:ac: 4b:8c:01:e9:7d:7f:3f:4e:08:36:8a:30:94:04:66:45:42:df: 18:b0:82:4c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUKfsuYzTMIZlRtBGw+oOpZivi0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDRaFw0yNTA2MzAwMTA0NDRaMDMxMTAvBgNV BAMTKEY4MjY2NzYzMThBN0I5NkFGMDhENjA3MjlCMzcxQTRGRTYyODM1QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIJq8OpBJxl0aSPdeOGNCYv8+h reFkSWy1SZgZ6VVkdV6Z1A1viJsiVyNNk5n2uvCeGzGbMWXFRt7TaM3fn54wlYc3 u3XlKP8POtg6v4Y+KXob97KcjwfeV/6Ir26qotFTB6Aw238/GiU9oJ8uOIxvgsQq JB4CEGWL1w3n6rh/vNdAk82ANxliYNHaqYI/iQh4szGFg7m4it+qFQhkmkdic/U8 ZifAXcciuduEObvNd0DLh1by8Ud7GI6OmGtuWFZkK+zWao2DxTz1hGecVWFyifQg hSSsfU9JJWv5yUyKHvp///jWrOyXnAvhlwYIn45tN8U0P+c9qNuSmy3TSq3HAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+CZnYxinuWrwjWBymzcaT+YoNaIwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAFMA0GCSqGSIb3DQEBCwUAA4IBAQAtlhNvHrBNW5G9Rk492o7BykR5xgDWBdi3 /Z4P3/UJv1HWcTovVLuPnyDjoEo9mFnxOJkgvTqCyVsacwuy1S/K0qBc9Hrf+G9w yVOvuv49H+cSDpFEI/1XJnhZ3TCYN/43ZWDrKkrP5Xgz98brAqxFl3Y4WZLMlBkS 9e2Ye3D1zRK+JJx2xvLS9JOiWUGrEeF/HCND9r/CEqZMyy6rynd7Yi6z3jZjeA1O 6WvOYyvnnSqup+e2gnfyTPUAcwVDSenzsGz4++AKg5MV7n4WhL6Cd8ah8AfCZKZJ Jr1C6JJFfEggOasrJ4OTXaxLjAHpfX8/Tgg2ijCUBGZFQt8YsIJM -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org