$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: pcjXDYHI1yc76HolbrMi/oz3RSekhdCYyflXUlZg9iQ= Subject key identifier: 25:0F:EE:79:34:1B:DB:0F:2C:45:64:A3:07:96:7A:B9:BA:E6:B7:96 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 03FDB62949786F9A43EBCF4236F4571F32D89B94 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:41 +0000 ROA not before: Mon 01 Jul 2024 00:59:41 +0000 ROA not after: Mon 30 Jun 2025 01:04:41 +0000 asID: 38500 IP address blocks: 2403:2700:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:fd:b6:29:49:78:6f:9a:43:eb:cf:42:36:f4:57:1f:32:d8:9b:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:41 2024 GMT Not After : Jun 30 01:04:41 2025 GMT Subject: CN=250FEE79341BDB0F2C4564A307967AB9BAE6B796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5c:c0:5d:3a:83:2c:5c:65:25:1b:09:e8:21: 1a:38:5d:f6:48:ad:45:a7:db:af:c6:a6:b1:11:5e: 8a:f4:ce:c7:8d:f2:ac:9b:ae:4c:bb:a2:89:94:ef: d2:b3:06:53:84:b7:ba:16:b8:ef:51:df:32:87:13: 7f:02:e3:cf:7b:59:00:a7:b9:8c:a5:ca:a7:a5:7f: 68:ed:a3:55:94:d8:e6:ab:b9:d3:24:15:9e:78:f2: 74:83:dc:c5:13:10:f2:f5:0d:fb:d0:2a:dd:d7:d5: 21:73:d0:83:82:57:c5:a5:cb:30:15:ae:ba:c1:3d: 56:13:6d:c3:aa:98:fe:3f:3d:1c:77:c7:ce:29:d0: 7d:56:7f:fb:39:73:5c:8f:ef:cc:4e:0c:96:54:29: f6:2d:3f:ba:b0:06:ee:51:41:03:93:e6:7a:e4:ec: 9f:c0:3b:5b:8c:d4:2d:60:db:c2:83:de:07:63:2e: 47:0d:62:a8:71:f2:b3:b6:ff:0c:d6:f8:31:ea:be: 8d:12:80:c6:74:49:82:37:39:95:5f:92:9f:25:15: 4d:de:93:1f:3e:30:b7:f4:85:e4:2b:8c:eb:ea:fc: 53:ae:b5:93:a4:e6:2f:69:2e:24:e7:29:94:9e:24: f9:04:7d:74:c1:80:83:d7:7e:5a:d6:4d:7b:35:59: 3b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0F:EE:79:34:1B:DB:0F:2C:45:64:A3:07:96:7A:B9:BA:E6:B7:96 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4::/48 Signature Algorithm: sha256WithRSAEncryption 27:7f:46:81:c0:0a:22:02:72:cc:79:8d:f9:65:b2:99:dd:e4: 8e:bd:8c:37:f2:79:a3:19:f3:13:aa:37:9b:ed:68:34:fa:51: fe:61:52:92:75:c0:fc:15:9b:26:ea:17:ce:98:35:53:f5:39: de:91:91:61:af:48:e9:88:b6:81:d7:28:4c:2f:71:6c:a3:96: 60:80:cb:af:82:56:01:f8:da:fe:b4:5e:69:37:26:f5:50:4d: f2:e8:5d:04:83:76:94:61:a2:c5:be:e8:e9:16:ac:19:17:5f: 76:30:8e:91:65:c6:90:3c:f7:74:51:48:e7:41:ef:32:c8:7e: 3a:4d:4d:9e:ed:bf:cb:a4:62:eb:6c:c3:b0:41:92:f5:58:e5: 7e:ba:d7:d6:07:49:fc:19:7f:b1:62:72:41:df:c3:0a:a1:8d: d6:0a:dc:7f:39:67:88:9f:b3:b6:61:d0:ee:7d:bf:53:ff:43: 14:1f:f2:5d:26:d1:14:85:42:d9:d8:39:65:0a:d2:0f:3b:ef: 66:81:7a:b1:eb:b5:ad:9f:d0:c4:ae:b4:06:a4:11:af:7c:60: 14:6a:e2:f7:e9:a7:6d:e4:c5:55:5a:d2:0f:09:13:9f:38:f0: 20:81:6d:1c:1a:ae:b1:3e:67:fe:9f:07:7e:0d:ff:f4:17:82: d6:f8:07:01 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUA/22KUl4b5pD689CNvRXHzLYm5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDFaFw0yNTA2MzAwMTA0NDFaMDMxMTAvBgNV BAMTKDI1MEZFRTc5MzQxQkRCMEYyQzQ1NjRBMzA3OTY3QUI5QkFFNkI3OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2XMBdOoMsXGUlGwnoIRo4XfZI rUWn26/GprERXor0zseN8qybrky7oomU79KzBlOEt7oWuO9R3zKHE38C4897WQCn uYylyqelf2jto1WU2OarudMkFZ548nSD3MUTEPL1DfvQKt3X1SFz0IOCV8WlyzAV rrrBPVYTbcOqmP4/PRx3x84p0H1Wf/s5c1yP78xODJZUKfYtP7qwBu5RQQOT5nrk 7J/AO1uM1C1g28KD3gdjLkcNYqhx8rO2/wzW+DHqvo0SgMZ0SYI3OZVfkp8lFU3e kx8+MLf0heQrjOvq/FOutZOk5i9pLiTnKZSeJPkEfXTBgIPXflrWTXs1WTujAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUJQ/ueTQb2w8sRWSjB5Z6ubrmt5YwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAEMA0G CSqGSIb3DQEBCwUAA4IBAQAnf0aBwAoiAnLMeY35ZbKZ3eSOvYw38nmjGfMTqjeb 7Wg0+lH+YVKSdcD8FZsm6hfOmDVT9TnekZFhr0jpiLaB1yhML3Fso5ZggMuvglYB +Nr+tF5pNyb1UE3y6F0Eg3aUYaLFvujpFqwZF192MI6RZcaQPPd0UUjnQe8yyH46 TU2e7b/LpGLrbMOwQZL1WOV+utfWB0n8GX+xYnJB38MKoY3WCtx/OWeIn7O2YdDu fb9T/0MUH/JdJtEUhULZ2DllCtIPO+9mgXqx67Wtn9DErrQGpBGvfGAUauL36adt 5MVVWtIPCROfOPAggW0cGq6xPmf+nwd+Df/0F4LW+AcB -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org