$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030393a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030393a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: hzLEDwoPZQV97Y1ZJUECMuJAkL9ERyV8181k4NZC4Ac= Subject key identifier: A8:36:98:79:28:C7:CB:6F:7A:7D:E7:BB:55:30:F5:5C:1E:C5:09:A8 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 56763663840AAB111AD445520703BD1F2A1DEC24 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030393a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:47 +0000 ROA not before: Mon 01 Jul 2024 00:59:47 +0000 ROA not after: Mon 30 Jun 2025 01:04:47 +0000 asID: 38500 IP address blocks: 2403:2700:4009::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:76:36:63:84:0a:ab:11:1a:d4:45:52:07:03:bd:1f:2a:1d:ec:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:47 2024 GMT Not After : Jun 30 01:04:47 2025 GMT Subject: CN=A836987928C7CB6F7A7DE7BB5530F55C1EC509A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b0:e0:a1:6e:1d:84:04:84:71:30:9c:7c:4a: 34:d0:7b:64:d3:76:22:72:35:06:8a:0e:25:ff:4c: 8a:2a:0f:41:1e:ef:e8:87:cf:a5:1a:f4:45:18:a4: 96:07:b6:39:ac:c3:bc:be:e1:06:1f:f8:13:d0:5c: 88:d2:3f:6b:25:13:e8:8d:f9:21:5c:14:03:ac:64: 78:b0:18:7e:c8:1a:c6:cb:fc:98:ba:46:c4:f0:af: c6:dd:96:65:20:b9:00:e0:28:50:04:46:89:24:60: 05:1d:28:dc:37:2d:22:9f:ec:01:c5:e6:34:90:21: 8b:c2:bf:97:56:5e:f6:9a:39:8f:a5:79:da:fa:2f: b3:73:0b:e3:89:79:7a:d8:ac:dc:7c:86:ee:6e:4c: e8:03:1a:8e:51:01:86:55:92:87:34:6d:79:e2:00: e6:35:69:ea:9c:3c:cc:c5:8d:f4:0e:79:a8:d7:24: 78:ca:c8:dc:1e:d9:00:50:62:1f:3d:f0:22:47:6d: 6e:5c:3e:56:6d:6f:1f:85:d5:b4:e2:fe:d9:54:de: 71:ec:52:c5:54:ce:97:ee:f7:09:5c:a0:30:af:2f: 8d:a7:77:0a:0c:15:2d:d8:94:5b:3d:2a:5e:77:e2: f9:2a:85:d2:d7:b8:b2:cf:5f:41:74:df:55:cf:ee: dc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:36:98:79:28:C7:CB:6F:7A:7D:E7:BB:55:30:F5:5C:1E:C5:09:A8 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030393a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4009::/48 Signature Algorithm: sha256WithRSAEncryption 97:3e:7b:da:87:47:03:95:83:bd:df:c0:bd:19:34:ae:2e:50: 03:cf:56:d3:fe:d7:43:0b:26:bc:4e:52:f0:19:4f:14:89:23: db:47:ed:87:a2:4a:d8:12:0e:42:a5:e6:3f:aa:e7:55:1b:c3: 79:c9:9d:1b:8d:be:bc:4c:d3:fd:c7:cb:1a:7c:cf:5f:4c:3c: 41:6a:58:19:5c:01:ad:60:e1:59:ff:2a:a6:1d:84:6c:58:29: 66:69:06:7f:13:31:44:2f:8b:fd:ba:0f:1a:7f:f7:19:06:76: 41:8a:35:f3:88:5e:c4:1a:cf:96:d5:2f:1c:9d:5f:53:e5:48: 06:78:7f:3a:d2:b1:3e:6c:6d:dc:f2:aa:43:20:f4:28:31:bd: a5:68:b5:55:af:3a:ae:2d:bb:ad:b2:7f:f9:f6:60:ab:0c:c1: 80:e0:8b:d5:0d:3f:c3:93:97:b3:d5:ec:f7:1c:fb:7f:d2:d8: 46:22:fe:fa:20:ef:f4:c0:b7:d5:e7:f7:62:e9:90:fe:8d:52: 7d:fb:d9:88:c4:50:9a:3d:09:bb:da:9a:ae:fc:7f:c9:94:db: 36:3a:22:df:0d:a8:8e:6e:53:6e:d4:65:f2:46:26:96:9b:1f: 34:3c:67:d9:1f:2e:c1:91:37:af:96:62:32:f2:03:94:64:48: 06:f1:07:4c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVnY2Y4QKqxEa1EVSBwO9Hyod7CQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDdaFw0yNTA2MzAwMTA0NDdaMDMxMTAvBgNV BAMTKEE4MzY5ODc5MjhDN0NCNkY3QTdERTdCQjU1MzBGNTVDMUVDNTA5QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXsOChbh2EBIRxMJx8SjTQe2TT diJyNQaKDiX/TIoqD0Ee7+iHz6Ua9EUYpJYHtjmsw7y+4QYf+BPQXIjSP2slE+iN +SFcFAOsZHiwGH7IGsbL/Ji6RsTwr8bdlmUguQDgKFAERokkYAUdKNw3LSKf7AHF 5jSQIYvCv5dWXvaaOY+ledr6L7NzC+OJeXrYrNx8hu5uTOgDGo5RAYZVkoc0bXni AOY1aeqcPMzFjfQOeajXJHjKyNwe2QBQYh898CJHbW5cPlZtbx+F1bTi/tlU3nHs UsVUzpfu9wlcoDCvL42ndwoMFS3YlFs9Kl534vkqhdLXuLLPX0F031XP7tz1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUqDaYeSjHy296fee7VTD1XB7FCagwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAJMA0GCSqGSIb3DQEBCwUAA4IBAQCXPnvah0cDlYO938C9GTSuLlADz1bT/tdD Cya8TlLwGU8UiSPbR+2HokrYEg5CpeY/qudVG8N5yZ0bjb68TNP9x8safM9fTDxB algZXAGtYOFZ/yqmHYRsWClmaQZ/EzFEL4v9ug8af/cZBnZBijXziF7EGs+W1S8c nV9T5UgGeH860rE+bG3c8qpDIPQoMb2laLVVrzquLbutsn/59mCrDMGA4IvVDT/D k5ez1ez3HPt/0thGIv76IO/0wLfV5/di6ZD+jVJ9+9mIxFCaPQm72pqu/H/JlNs2 OiLfDaiOblNu1GXyRiaWmx80PGfZHy7BkTevlmIy8gOUZEgG8QdM -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org