$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030363a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030363a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: rt/eUImSHktBNKKYB4+n6Rxzcr6tD09gargsb9zc+EM= Subject key identifier: 1A:CA:42:B5:16:99:FB:BB:5B:68:93:57:C8:D9:A2:6D:79:C5:89:05 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 4EEA7CA71A4304232A2BB9EEA96BA0B302DDD1D2 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030363a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:44 +0000 ROA not before: Mon 01 Jul 2024 00:59:44 +0000 ROA not after: Mon 30 Jun 2025 01:04:44 +0000 asID: 38500 IP address blocks: 2403:2700:4006::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ea:7c:a7:1a:43:04:23:2a:2b:b9:ee:a9:6b:a0:b3:02:dd:d1:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:44 2024 GMT Not After : Jun 30 01:04:44 2025 GMT Subject: CN=1ACA42B51699FBBB5B689357C8D9A26D79C58905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:00:73:3e:d0:ca:d9:62:26:5e:bb:28:f5:fe: 51:d5:df:d2:be:b9:90:da:5b:94:16:0e:4d:08:0b: e7:5f:a0:5c:2e:2b:6a:19:6a:9a:94:7d:ff:65:3f: 00:b8:67:2d:12:62:83:5d:3b:14:db:14:94:b8:7c: b5:76:e5:02:9a:01:0e:d4:49:c0:3c:e6:67:6f:32: 4d:4e:7d:ea:b6:8e:ad:15:03:47:c6:03:65:b6:e6: f7:1f:07:8e:00:62:25:a1:78:a7:ba:22:16:61:d7: 1d:5b:1e:d9:0a:4c:de:07:cf:02:e6:d2:fe:6c:90: fc:54:0e:4f:d3:2a:90:af:fe:b6:3c:e1:e7:0b:c1: a1:71:0c:bc:75:3d:af:b2:d9:8c:e0:f9:f1:60:f5: 16:90:6c:df:5e:d1:f5:9a:4b:86:82:a2:75:07:2d: de:ca:0e:75:64:0a:a9:1a:f4:e2:49:09:32:3d:4d: c9:79:0b:46:aa:e1:69:d1:56:21:11:b9:31:38:39: 79:f0:43:83:a2:e3:58:8a:fe:32:fb:ef:01:cc:f7: 7d:43:7c:fe:09:1a:42:bd:14:96:a1:f4:6c:b1:e7: b3:bc:5a:b5:71:bd:4b:a7:f6:2f:0a:13:4d:19:56: ac:18:28:e1:47:32:ec:11:81:b9:e0:29:5f:67:0e: 87:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CA:42:B5:16:99:FB:BB:5B:68:93:57:C8:D9:A2:6D:79:C5:89:05 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030363a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4006::/48 Signature Algorithm: sha256WithRSAEncryption a2:06:2c:18:24:0a:64:0e:0a:6a:4f:87:f8:8f:64:15:17:39: 38:6e:c0:67:4f:5d:d4:8f:53:50:08:01:ca:e3:3a:bb:d4:9e: f2:26:21:e0:a6:3e:15:a6:ce:d4:3f:6c:0e:0d:7f:da:2b:75: d9:b8:49:f1:2d:9f:c8:c3:42:d4:0a:f6:cd:b0:b2:a3:ca:bb: 36:75:28:67:bd:6a:6d:4c:df:de:15:dc:a6:72:a9:5a:55:34: 66:71:70:d2:f1:35:81:5c:15:99:4e:52:cf:05:c5:8f:1b:ca: b5:74:ba:ad:ce:ba:fc:50:38:09:df:0c:42:26:f4:ba:e8:f2: 0c:a8:f6:48:fa:42:42:0e:73:41:e9:ee:21:dc:8f:df:c8:eb: b8:80:a4:01:8c:78:77:c6:12:1b:31:02:6c:c9:d7:56:59:bc: e1:0e:c6:a1:d8:18:2c:38:3d:eb:f4:8b:4d:07:b3:c0:6b:a0: 50:9c:27:d2:75:aa:46:84:ac:25:45:19:77:0e:6a:f0:7b:19: 56:98:26:50:61:b2:09:eb:5c:7a:59:1a:9c:23:9e:52:ae:3e: eb:0c:92:58:49:03:6c:3f:5d:d9:ff:0d:2f:5b:a9:06:d0:ec: 42:cf:a7:64:05:39:3c:d5:10:65:cc:a4:2c:3e:27:52:2b:3f: ca:56:b1:d6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTup8pxpDBCMqK7nuqWugswLd0dIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDRaFw0yNTA2MzAwMTA0NDRaMDMxMTAvBgNV BAMTKDFBQ0E0MkI1MTY5OUZCQkI1QjY4OTM1N0M4RDlBMjZENzlDNTg5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPAHM+0MrZYiZeuyj1/lHV39K+ uZDaW5QWDk0IC+dfoFwuK2oZapqUff9lPwC4Zy0SYoNdOxTbFJS4fLV25QKaAQ7U ScA85mdvMk1Ofeq2jq0VA0fGA2W25vcfB44AYiWheKe6IhZh1x1bHtkKTN4HzwLm 0v5skPxUDk/TKpCv/rY84ecLwaFxDLx1Pa+y2Yzg+fFg9RaQbN9e0fWaS4aConUH Ld7KDnVkCqka9OJJCTI9Tcl5C0aq4WnRViERuTE4OXnwQ4Oi41iK/jL77wHM931D fP4JGkK9FJah9Gyx57O8WrVxvUun9i8KE00ZVqwYKOFHMuwRgbngKV9nDofVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGspCtRaZ+7tbaJNXyNmibXnFiQUwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAGMA0GCSqGSIb3DQEBCwUAA4IBAQCiBiwYJApkDgpqT4f4j2QVFzk4bsBnT13U j1NQCAHK4zq71J7yJiHgpj4Vps7UP2wODX/aK3XZuEnxLZ/Iw0LUCvbNsLKjyrs2 dShnvWptTN/eFdymcqlaVTRmcXDS8TWBXBWZTlLPBcWPG8q1dLqtzrr8UDgJ3wxC JvS66PIMqPZI+kJCDnNB6e4h3I/fyOu4gKQBjHh3xhIbMQJsyddWWbzhDsah2Bgs OD3r9ItNB7PAa6BQnCfSdapGhKwlRRl3DmrwexlWmCZQYbIJ61x6WRqcI55Srj7r DJJYSQNsP13Z/w0vW6kG0OxCz6dkBTk81RBlzKQsPidSKz/KVrHW -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org