$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: nljH86LWGwNNEN8fF5rImf9pAnYykihyJGG8ZFJ+rSc= Subject key identifier: E4:6A:02:5B:38:C0:B0:C5:87:67:39:02:64:7E:BB:4C:28:90:63:39 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 6CF5EB01351E9EE3C37B88F95A39E88B18DEF60D Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:41 +0000 ROA not before: Mon 01 Jul 2024 00:59:41 +0000 ROA not after: Mon 30 Jun 2025 01:04:41 +0000 asID: 38500 IP address blocks: 2403:2700:4007::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f5:eb:01:35:1e:9e:e3:c3:7b:88:f9:5a:39:e8:8b:18:de:f6:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:41 2024 GMT Not After : Jun 30 01:04:41 2025 GMT Subject: CN=E46A025B38C0B0C587673902647EBB4C28906339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:79:2d:ec:38:88:6c:8c:3a:e9:79:ab:56:10: 97:dd:90:06:55:bb:73:09:05:c4:53:7f:d4:05:ec: b3:c1:65:21:44:87:32:9f:23:5d:55:44:56:62:3a: 92:8c:39:a2:52:f2:da:78:0a:46:04:34:4f:7c:3a: 77:9c:09:4e:9d:43:a4:86:96:4b:67:86:ce:96:3d: 72:a9:f7:0f:18:a5:b5:14:cc:10:02:58:b5:d2:7e: 00:26:c6:9d:e1:6e:fc:bb:44:1c:23:97:ae:4b:10: bb:69:3a:45:7f:4f:ea:f5:e3:8b:37:28:0e:c3:90: f7:9c:69:fd:7e:b2:78:dc:11:eb:05:d2:31:83:ef: 7f:cc:0e:56:59:8c:c3:8b:e6:67:c1:33:a8:cb:18: bc:c5:6b:71:5e:6f:f1:54:31:ba:c3:8b:94:5c:10: a1:98:5a:ab:3c:f1:62:bf:cb:40:42:ae:83:80:43: e2:27:f0:02:35:28:6c:cd:18:1b:d8:ae:f2:e4:66: 84:78:11:78:33:2f:63:89:41:81:0e:62:2f:65:2d: 2e:72:71:bb:b0:39:6f:21:57:1b:1a:e2:b1:1f:e7: 29:8a:40:64:1c:93:65:96:86:15:65:db:ba:83:6a: aa:71:3f:4c:b8:1f:ad:89:c4:2d:54:fc:8a:f9:91: 79:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:6A:02:5B:38:C0:B0:C5:87:67:39:02:64:7E:BB:4C:28:90:63:39 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4007::/48 Signature Algorithm: sha256WithRSAEncryption 5f:d3:b7:80:66:9f:a9:a8:17:11:87:14:23:de:67:bf:94:34: e4:66:0c:ec:49:19:08:0b:ea:10:30:4e:9f:f2:62:34:5a:04: 4e:fc:fe:a5:9e:5e:7e:e1:0d:39:f2:10:3c:a4:d2:46:ff:3b: 47:56:f3:70:84:3c:35:ec:72:53:c1:94:13:01:7a:28:5b:6c: db:f7:da:46:26:27:6a:09:aa:72:0e:ce:bc:ac:9c:86:53:64: 43:47:f2:de:3f:4c:8f:bc:ff:8e:fa:ef:bc:4c:27:d5:83:7f: ee:c7:6f:c4:03:a5:5c:91:0b:0d:8e:3d:e5:93:0d:41:4a:a7: da:7a:7d:09:68:e7:e4:63:9d:e0:4f:d5:27:8f:f4:12:80:77: 54:0e:68:39:8d:34:3f:71:bd:5c:50:be:5b:7d:42:a5:3d:7c: b4:61:ae:47:d2:5e:c8:93:80:32:97:41:d7:27:59:dd:04:2f: 04:35:b8:f5:92:4a:fc:61:72:9d:f4:b0:6a:d1:41:89:a8:ae: 24:6f:6c:b9:39:51:fc:d0:bb:1e:c9:cc:58:c6:30:a0:7d:67: 19:f5:63:83:49:82:bd:3e:52:13:81:36:34:f0:a1:29:b7:b3: 09:95:64:f3:eb:4a:ef:66:b7:aa:22:0c:39:8b:52:70:b1:c5: ab:c7:61:96 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbPXrATUenuPDe4j5Wjnoixje9g0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDFaFw0yNTA2MzAwMTA0NDFaMDMxMTAvBgNV BAMTKEU0NkEwMjVCMzhDMEIwQzU4NzY3MzkwMjY0N0VCQjRDMjg5MDYzMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgeS3sOIhsjDrpeatWEJfdkAZV u3MJBcRTf9QF7LPBZSFEhzKfI11VRFZiOpKMOaJS8tp4CkYENE98OnecCU6dQ6SG lktnhs6WPXKp9w8YpbUUzBACWLXSfgAmxp3hbvy7RBwjl65LELtpOkV/T+r144s3 KA7DkPecaf1+snjcEesF0jGD73/MDlZZjMOL5mfBM6jLGLzFa3Feb/FUMbrDi5Rc EKGYWqs88WK/y0BCroOAQ+In8AI1KGzNGBvYrvLkZoR4EXgzL2OJQYEOYi9lLS5y cbuwOW8hVxsa4rEf5ymKQGQck2WWhhVl27qDaqpxP0y4H62JxC1U/Ir5kXkxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5GoCWzjAsMWHZzkCZH67TCiQYzkwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAHMA0GCSqGSIb3DQEBCwUAA4IBAQBf07eAZp+pqBcRhxQj3me/lDTkZgzsSRkI C+oQME6f8mI0WgRO/P6lnl5+4Q058hA8pNJG/ztHVvNwhDw17HJTwZQTAXooW2zb 99pGJidqCapyDs68rJyGU2RDR/LeP0yPvP+O+u+8TCfVg3/ux2/EA6VckQsNjj3l kw1BSqfaen0JaOfkY53gT9Unj/QSgHdUDmg5jTQ/cb1cUL5bfUKlPXy0Ya5H0l7I k4Ayl0HXJ1ndBC8ENbj1kkr8YXKd9LBq0UGJqK4kb2y5OVH80LseycxYxjCgfWcZ 9WODSYK9PlITgTY08KEpt7MJlWTz60rvZreqIgw5i1JwscWrx2GW -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org