$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: LXf44cMnNVFP6u5UuVgj4UoOkAZLG+aK8bv6iSUrY/w= Subject key identifier: 93:35:B7:E1:DB:42:EB:12:3A:53:25:D4:17:F4:C0:45:48:01:AF:D2 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 3D7F186A3BC5C92DD99C676AE93B2ECF2AE07DF0 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:43 +0000 ROA not before: Mon 01 Jul 2024 00:59:43 +0000 ROA not after: Mon 30 Jun 2025 01:04:43 +0000 asID: 38500 IP address blocks: 2403:2700:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:7f:18:6a:3b:c5:c9:2d:d9:9c:67:6a:e9:3b:2e:cf:2a:e0:7d:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:43 2024 GMT Not After : Jun 30 01:04:43 2025 GMT Subject: CN=9335B7E1DB42EB123A5325D417F4C0454801AFD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d8:b7:e7:78:1d:18:6f:7c:d9:9f:f0:0b:4b: 36:e0:95:d3:2c:8f:00:54:2d:cf:f3:18:6d:0a:d0: 5f:ff:20:29:74:fe:39:29:f5:8f:98:7f:f2:97:cd: 29:e0:67:29:4b:27:d5:c8:d3:b1:6f:a0:e9:42:13: 95:6a:5d:f4:73:21:a4:ab:19:1c:ae:fe:07:4b:bd: 05:05:be:f0:f8:65:cc:41:6c:57:72:1c:de:e1:2f: 06:9c:9d:af:0f:ca:91:3a:60:37:b6:39:35:bd:c6: fd:4a:4e:12:79:38:3d:9e:17:60:cc:88:21:2b:49: 4d:00:95:38:13:4f:b2:be:2b:ca:34:f3:4e:a2:b8: 9d:f7:7d:32:18:be:f7:be:da:89:a6:3e:a2:90:a5: 16:d4:34:6a:0e:9b:bf:c1:0b:fa:6a:95:a7:38:cf: a1:0b:81:7a:2c:8a:e9:90:45:a8:22:c4:0f:a6:6c: f4:29:ad:f1:77:26:e8:9e:ca:a4:65:e5:95:66:81: 35:84:73:6c:5d:9e:a8:9b:d5:cb:0f:b2:f2:f1:5b: f1:58:bf:a6:71:96:e6:17:31:cb:25:57:0b:e2:44: 58:7c:36:2f:06:6e:bb:e9:8b:2c:ce:33:78:19:73: 50:b0:09:e9:7e:2c:e9:4c:dc:0a:08:38:1b:3a:8e: 85:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:35:B7:E1:DB:42:EB:12:3A:53:25:D4:17:F4:C0:45:48:01:AF:D2 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:5::/48 Signature Algorithm: sha256WithRSAEncryption 6c:2f:44:14:18:d3:b4:d2:45:10:ba:2c:67:4a:37:c3:2d:41: a0:99:e3:cc:c3:64:e0:c8:d4:ae:bf:26:f8:62:a9:5d:2d:3a: 01:e2:c7:62:5b:1b:e5:8f:f0:1f:34:86:fe:ec:29:49:d1:85: 0e:7a:33:fe:04:42:85:29:cb:35:1a:2b:c4:7e:35:eb:1d:c1: 41:ba:ef:1c:41:35:ce:5d:38:6b:b2:5a:3e:ff:be:63:e5:9f: 5a:77:38:81:37:0c:0e:16:4e:fb:0f:3d:74:98:f5:0f:0e:b3: 21:47:f5:b8:0a:e6:98:8f:28:76:c3:da:66:8f:20:c6:7a:be: f6:fb:14:ac:c4:82:4d:72:02:b4:bc:c0:ac:e7:0a:86:a8:a8: 89:db:f9:7d:3b:7c:6f:1f:3d:65:6e:b6:c5:1a:af:3b:53:39: 8e:46:b3:f7:c0:17:cc:af:34:38:52:bd:fa:1b:8b:84:db:26: 3b:e8:a8:bc:f4:8e:78:6f:40:27:36:ea:33:08:5c:b0:19:c5: 97:41:9d:6d:5c:2b:85:a9:d8:2b:d0:22:4d:55:f4:c6:c5:95: c1:21:c4:67:ca:40:8c:27:ed:d3:a7:df:95:59:26:cc:a2:9b: d9:3e:c4:63:87:61:e7:81:04:8d:3d:5a:0d:95:d6:3c:fe:4b: 4d:b3:93:26 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUPX8YajvFyS3ZnGdq6TsuzyrgffAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDNaFw0yNTA2MzAwMTA0NDNaMDMxMTAvBgNV BAMTKDkzMzVCN0UxREI0MkVCMTIzQTUzMjVENDE3RjRDMDQ1NDgwMUFGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg2LfneB0Yb3zZn/ALSzbgldMs jwBULc/zGG0K0F//ICl0/jkp9Y+Yf/KXzSngZylLJ9XI07FvoOlCE5VqXfRzIaSr GRyu/gdLvQUFvvD4ZcxBbFdyHN7hLwacna8PypE6YDe2OTW9xv1KThJ5OD2eF2DM iCErSU0AlTgTT7K+K8o0806iuJ33fTIYvve+2ommPqKQpRbUNGoOm7/BC/pqlac4 z6ELgXosiumQRagixA+mbPQprfF3JuieyqRl5ZVmgTWEc2xdnqib1csPsvLxW/FY v6ZxluYXMcslVwviRFh8Ni8GbrvpiyzOM3gZc1CwCel+LOlM3AoIOBs6joXzAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUkzW34dtC6xI6UyXUF/TARUgBr9IwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAFMA0G CSqGSIb3DQEBCwUAA4IBAQBsL0QUGNO00kUQuixnSjfDLUGgmePMw2TgyNSuvyb4 YqldLToB4sdiWxvlj/AfNIb+7ClJ0YUOejP+BEKFKcs1GivEfjXrHcFBuu8cQTXO XThrslo+/75j5Z9adziBNwwOFk77Dz10mPUPDrMhR/W4CuaYjyh2w9pmjyDGer72 +xSsxIJNcgK0vMCs5wqGqKiJ2/l9O3xvHz1lbrbFGq87UzmORrP3wBfMrzQ4Ur36 G4uE2yY76Ki89I54b0AnNuozCFywGcWXQZ1tXCuFqdgr0CJNVfTGxZXBIcRnykCM J+3Tp9+VWSbMopvZPsRjh2HngQSNPVoNldY8/ktNs5Mm -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org