$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: CYyov54HIizse2X1caxwUAoGE1hXD3ZT5cny+gNbbYs= Subject key identifier: 9B:95:BF:2B:37:EE:E4:16:67:72:CA:D2:A6:CC:E1:CE:5E:B5:6F:94 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 701D05F6C324A339EA43B0C0B6D2EEDAC1E33B7C Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:46 +0000 ROA not before: Mon 01 Jul 2024 00:59:46 +0000 ROA not after: Mon 30 Jun 2025 01:04:46 +0000 asID: 38500 IP address blocks: 2403:2700:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:1d:05:f6:c3:24:a3:39:ea:43:b0:c0:b6:d2:ee:da:c1:e3:3b:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:46 2024 GMT Not After : Jun 30 01:04:46 2025 GMT Subject: CN=9B95BF2B37EEE4166772CAD2A6CCE1CE5EB56F94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9d:4c:1a:68:1b:54:72:6f:a8:5d:38:b9:87: d4:b3:b5:99:7d:96:ae:b3:2a:82:b0:9d:bf:4d:93: 34:6b:32:98:19:31:f0:7c:3a:0d:b3:28:53:89:64: c4:c5:4b:bc:2b:2b:b1:48:72:bb:45:64:fd:b5:34: 90:61:93:ee:87:a6:35:21:64:de:dc:c2:7b:11:19: 42:0e:9d:9e:26:1b:70:57:1b:8e:56:04:da:66:db: 71:17:70:ce:4d:96:72:4d:7b:f4:8d:48:6a:05:3d: ab:d6:7f:7d:98:cd:76:97:30:94:cd:87:f0:16:e5: 37:92:e5:a8:d4:8a:d6:d0:26:d9:78:ce:1a:3a:e7: e5:aa:27:4a:cf:69:1f:f5:fb:cd:4b:39:6e:9c:e9: f4:8f:98:af:92:9f:5e:79:85:38:42:8c:40:a4:16: 97:89:fd:4d:49:da:cc:fb:b0:21:a1:ed:a6:99:e3: 6d:fc:e8:8f:d2:f9:32:fe:69:7e:40:f7:a6:c2:00: a5:d8:42:07:d8:cb:87:a0:f1:8b:8c:d1:61:a5:4f: 83:d2:c3:0e:a2:30:ff:78:63:68:06:92:ef:dd:d2: d3:c6:28:35:b1:50:ab:63:b6:71:cb:22:2a:4d:72: 76:4f:76:50:9a:1e:cb:ec:ad:75:8b:6c:d3:96:03: 1f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:95:BF:2B:37:EE:E4:16:67:72:CA:D2:A6:CC:E1:CE:5E:B5:6F:94 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4010::/48 Signature Algorithm: sha256WithRSAEncryption 38:93:fd:57:ac:b6:43:e9:3e:64:22:00:2f:88:60:dc:86:63: 6d:eb:c5:66:6f:13:6c:06:77:c3:46:09:d3:6e:31:85:04:c6: a3:4a:ea:d0:17:2e:c3:14:0a:c6:fb:56:50:3e:7c:c7:06:e2: a5:bd:33:3d:0c:46:75:e1:ac:79:40:bf:c2:9d:19:cf:f9:61: 1d:25:be:70:a8:43:6d:e8:31:66:dd:3d:78:76:cc:f1:c4:c7: 94:f5:35:49:d7:57:ec:49:e8:bc:4f:54:1e:8b:a7:f6:70:3e: be:1f:79:fd:9a:f7:96:35:d8:e5:c9:25:ae:c0:7a:b8:d1:ae: 72:45:22:7c:14:d9:69:a0:6d:ae:9e:d2:4b:9c:3f:c1:8c:38: d1:14:a3:69:99:1b:fd:89:e4:a3:69:0c:38:d8:33:08:b2:76: fc:d5:7c:2f:0d:c3:58:64:10:49:65:bb:17:dd:01:44:8a:f1: f3:5d:39:de:b7:21:7f:b0:69:14:ce:80:ad:ff:8d:5f:ee:8e: a9:25:6c:be:6d:17:90:4c:6d:b4:9c:9c:dc:58:89:49:61:4d: 1b:6a:87:17:af:2d:d3:f9:21:b4:25:28:82:9d:a4:8e:f5:6b: 61:0e:a0:18:89:11:69:93:df:88:a3:6b:a9:13:b9:5c:57:28: 88:ff:83:bb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcB0F9sMkoznqQ7DAttLu2sHjO3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDZaFw0yNTA2MzAwMTA0NDZaMDMxMTAvBgNV BAMTKDlCOTVCRjJCMzdFRUU0MTY2NzcyQ0FEMkE2Q0NFMUNFNUVCNTZGOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpnUwaaBtUcm+oXTi5h9SztZl9 lq6zKoKwnb9NkzRrMpgZMfB8Og2zKFOJZMTFS7wrK7FIcrtFZP21NJBhk+6HpjUh ZN7cwnsRGUIOnZ4mG3BXG45WBNpm23EXcM5NlnJNe/SNSGoFPavWf32YzXaXMJTN h/AW5TeS5ajUitbQJtl4zho65+WqJ0rPaR/1+81LOW6c6fSPmK+Sn155hThCjECk FpeJ/U1J2sz7sCGh7aaZ42386I/S+TL+aX5A96bCAKXYQgfYy4eg8YuM0WGlT4PS ww6iMP94Y2gGku/d0tPGKDWxUKtjtnHLIipNcnZPdlCaHsvsrXWLbNOWAx//AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUm5W/Kzfu5BZncsrSpszhzl61b5QwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAQMA0GCSqGSIb3DQEBCwUAA4IBAQA4k/1XrLZD6T5kIgAviGDchmNt68VmbxNs BnfDRgnTbjGFBMajSurQFy7DFArG+1ZQPnzHBuKlvTM9DEZ14ax5QL/CnRnP+WEd Jb5wqENt6DFm3T14dszxxMeU9TVJ11fsSei8T1Qei6f2cD6+H3n9mveWNdjlySWu wHq40a5yRSJ8FNlpoG2untJLnD/BjDjRFKNpmRv9ieSjaQw42DMIsnb81XwvDcNY ZBBJZbsX3QFEivHzXTnetyF/sGkUzoCt/41f7o6pJWy+bReQTG20nJzcWIlJYU0b aocXry3T+SG0JSiCnaSO9WthDqAYiRFpk9+Io2upE7lcVyiI/4O7 -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org