$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030383a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030383a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: 873yEHn43Xn509+z+8XPyIe4punEA7hzTdd4moYwQ8I= Subject key identifier: 5B:28:0C:03:D4:A3:B2:A6:E6:9A:37:62:6B:67:93:89:9E:2A:51:E0 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 47BB6B3B7EB229E1080C0418CCBDC50210B3EBF2 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030383a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:42 +0000 ROA not before: Mon 01 Jul 2024 00:59:42 +0000 ROA not after: Mon 30 Jun 2025 01:04:42 +0000 asID: 38500 IP address blocks: 2403:2700:4008::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:bb:6b:3b:7e:b2:29:e1:08:0c:04:18:cc:bd:c5:02:10:b3:eb:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:42 2024 GMT Not After : Jun 30 01:04:42 2025 GMT Subject: CN=5B280C03D4A3B2A6E69A37626B6793899E2A51E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:83:25:fd:04:46:35:53:9b:a0:bd:52:67: ca:96:13:3e:96:6b:13:82:0e:d0:ab:8b:45:03:87: 74:cf:a0:cb:ff:43:2f:08:fd:55:89:74:e5:78:62: 4c:a9:9e:24:ef:15:fe:68:a2:7b:65:10:50:84:41: 16:36:ea:e1:40:89:ad:dd:d9:e2:ef:f0:bb:5b:0b: af:aa:e9:a1:6c:04:d2:c4:85:af:88:dd:19:26:77: a5:af:1f:4c:a2:72:14:1f:cd:37:8b:d2:6a:3b:b8: e8:bc:11:1c:55:3a:90:b9:33:1d:5c:87:bf:18:1a: 0c:7a:f0:00:ac:5e:02:57:0a:3b:a0:05:9f:ad:8f: 10:78:3d:d6:b9:6a:5b:7c:16:9a:4d:91:aa:25:c7: 6e:01:5b:51:d2:c9:6d:82:60:30:b0:c3:bd:c4:52: e1:e8:13:8a:db:23:5d:6e:6a:06:cb:47:a4:4f:62: 85:24:60:f7:d2:84:bd:78:75:d8:92:88:59:bc:66: fd:3b:e3:84:f0:fc:7e:54:44:7c:49:9c:11:88:b7: 26:3c:d5:6f:6e:58:ae:68:f8:ea:4e:d2:75:ba:9b: 0b:b6:78:2b:bc:2c:14:92:2c:8b:d4:2b:4a:5f:31: 3a:55:3f:8e:60:5f:d3:6c:65:a2:90:66:40:2a:79: 76:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:28:0C:03:D4:A3:B2:A6:E6:9A:37:62:6B:67:93:89:9E:2A:51:E0 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030383a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4008::/48 Signature Algorithm: sha256WithRSAEncryption 08:53:02:ae:4c:4f:54:26:5f:c3:1c:fe:a0:59:77:25:77:61: b6:8d:13:4b:a4:b9:63:26:81:8b:6e:9d:16:09:9e:68:17:82: c4:a3:80:d9:c8:73:eb:28:11:38:35:ff:20:33:48:ef:fe:7f: 46:12:29:b2:17:b6:bb:3a:23:24:fd:17:eb:9d:9c:16:87:6f: e8:53:24:bd:ab:98:98:ec:d4:ec:23:de:23:af:67:ef:77:c1: 9a:e2:83:f1:31:4d:87:ef:a1:6c:28:fc:bd:30:de:9f:37:c7: 15:ce:4a:d8:e1:f8:41:83:a4:5a:bb:0d:97:6a:9a:48:48:2a: 13:db:44:d3:95:30:94:a1:dc:c2:79:8f:19:e7:2c:4b:0f:23: 47:e6:ae:fa:ec:88:04:78:f7:6a:be:b2:a7:58:5d:67:20:59: 63:63:fd:73:3e:00:fa:88:df:2b:cf:b2:58:6b:81:1e:32:ce: 72:03:1a:b3:84:ae:4c:b9:b8:8f:6d:aa:6f:4a:62:e8:af:b5: ae:99:73:23:05:c2:68:0b:6c:87:73:94:b7:34:24:48:5c:aa: 5d:c6:88:96:1c:a6:0a:db:f0:12:21:b7:e2:c8:78:02:fe:82: bc:b4:a6:5c:a4:38:03:cf:cd:a1:c6:30:3c:08:4a:cd:4a:e9: 6e:f8:c2:fe -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR7trO36yKeEIDAQYzL3FAhCz6/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDJaFw0yNTA2MzAwMTA0NDJaMDMxMTAvBgNV BAMTKDVCMjgwQzAzRDRBM0IyQTZFNjlBMzc2MjZCNjc5Mzg5OUUyQTUxRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzYMl/QRGNVOboL1SZ8qWEz6W axOCDtCri0UDh3TPoMv/Qy8I/VWJdOV4YkypniTvFf5oontlEFCEQRY26uFAia3d 2eLv8LtbC6+q6aFsBNLEha+I3Rkmd6WvH0yichQfzTeL0mo7uOi8ERxVOpC5Mx1c h78YGgx68ACsXgJXCjugBZ+tjxB4Pda5alt8FppNkaolx24BW1HSyW2CYDCww73E UuHoE4rbI11uagbLR6RPYoUkYPfShL14ddiSiFm8Zv0744Tw/H5URHxJnBGItyY8 1W9uWK5o+OpO0nW6mwu2eCu8LBSSLIvUK0pfMTpVP45gX9NsZaKQZkAqeXYhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWygMA9Sjsqbmmjdia2eTiZ4qUeAwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAIMA0GCSqGSIb3DQEBCwUAA4IBAQAIUwKuTE9UJl/DHP6gWXcld2G2jRNLpLlj JoGLbp0WCZ5oF4LEo4DZyHPrKBE4Nf8gM0jv/n9GEimyF7a7OiMk/RfrnZwWh2/o UyS9q5iY7NTsI94jr2fvd8Ga4oPxMU2H76FsKPy9MN6fN8cVzkrY4fhBg6Rauw2X appISCoT20TTlTCUodzCeY8Z5yxLDyNH5q767IgEePdqvrKnWF1nIFljY/1zPgD6 iN8rz7JYa4EeMs5yAxqzhK5MubiPbapvSmLor7WumXMjBcJoC2yHc5S3NCRIXKpd xoiWHKYK2/ASIbfiyHgC/oK8tKZcpDgDz82hxjA8CErNSulu+ML+ -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org