$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a363a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a363a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: kXT0CcauRa/phxDKjJChLeDVPhaM1fa9c1d2uU4Km94= Subject key identifier: 80:AB:6D:89:A8:36:2B:FC:92:BB:28:DF:C0:CA:F3:C1:7B:F0:D2:86 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 0F08256C33418FA8826B75E209A25681C32569B5 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a363a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:41 +0000 ROA not before: Mon 01 Jul 2024 00:59:41 +0000 ROA not after: Mon 30 Jun 2025 01:04:41 +0000 asID: 38500 IP address blocks: 2403:2700:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:08:25:6c:33:41:8f:a8:82:6b:75:e2:09:a2:56:81:c3:25:69:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:41 2024 GMT Not After : Jun 30 01:04:41 2025 GMT Subject: CN=80AB6D89A8362BFC92BB28DFC0CAF3C17BF0D286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:82:24:1b:c3:82:f7:56:6b:e7:31:31:0b:c3: 59:2b:75:45:e3:1d:40:6d:d4:a3:98:dd:a5:9c:09: a4:d0:17:2f:44:e0:7b:4d:3e:c8:9d:de:24:ad:99: 7e:0f:92:a3:cc:15:20:09:26:7f:87:7b:e9:b3:02: 40:65:35:25:0b:02:7d:fd:67:e6:6f:85:39:8b:00: 21:65:76:db:8e:fb:2a:30:01:b2:b8:f6:43:35:66: 2a:d6:6f:17:4c:68:6d:a7:95:67:87:4d:64:0a:43: 57:9e:ec:1a:75:13:21:3c:03:80:c2:b3:6e:f2:d9: 40:0d:22:c7:9c:f5:61:3f:56:a6:c1:b8:de:31:8e: 36:df:2e:4c:2f:bf:ea:db:b1:81:f0:26:93:6a:31: 08:3c:cb:84:3d:9f:6c:3f:42:d2:e7:1a:e4:9b:59: fc:bd:04:08:b7:25:2b:05:a9:69:e5:05:40:b4:1f: 69:25:56:fa:34:c4:b4:d2:9a:33:e2:5d:77:72:39: aa:71:f0:89:28:0a:b2:0a:8b:d4:04:ca:30:df:ee: f1:64:da:80:5c:9d:24:f4:d6:ae:5c:99:2c:ba:d1: da:73:8e:5e:43:7c:22:fc:13:79:b1:62:a9:e3:ce: eb:03:02:6e:01:49:a5:bd:6b:44:8e:15:ae:d3:c2: 6f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AB:6D:89:A8:36:2B:FC:92:BB:28:DF:C0:CA:F3:C1:7B:F0:D2:86 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a363a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:6::/48 Signature Algorithm: sha256WithRSAEncryption a2:5a:91:e0:76:45:72:53:83:f4:fa:0d:8c:94:56:fd:22:7b: 89:81:22:a3:bd:93:6d:50:0f:a9:f8:05:ae:db:ec:3b:a0:05: ae:1d:87:8f:d8:0c:60:f2:1c:96:e6:11:ad:48:af:af:da:fb: 70:ab:2d:32:e0:5f:67:99:d5:80:35:2e:a3:c1:ea:1c:54:21: 5e:cb:e6:a5:a4:8f:d0:87:a8:bd:94:16:ea:e4:5c:f1:e2:95: 15:3f:30:b5:ea:61:50:ce:5e:1a:9b:39:c2:2f:0b:26:36:73: 88:66:8d:2a:6e:dc:ec:0e:8a:13:a6:62:16:61:8c:e0:2b:47: c0:03:dc:af:7e:76:ce:dc:c9:0f:6f:fa:13:24:f9:ae:72:c3: 48:05:e5:34:16:a0:07:d1:61:4f:c1:1b:99:27:54:ad:59:8e: f7:a1:20:3e:75:65:3e:69:8a:87:a5:26:9b:9c:a8:91:bf:2e: 0b:11:24:c5:81:a1:8f:15:d8:9c:19:99:3f:d5:c1:89:84:6e: de:47:19:f9:84:2a:86:40:fa:59:9c:24:25:a1:0c:b4:89:36: 41:4e:04:cf:63:ec:99:64:4f:4b:2c:ec:f1:a4:44:b3:a6:e3: 05:73:4f:7d:2b:45:f8:6a:0d:88:96:50:d7:0e:8d:39:ed:a5: 35:15:c2:69 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUDwglbDNBj6iCa3XiCaJWgcMlabUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDFaFw0yNTA2MzAwMTA0NDFaMDMxMTAvBgNV BAMTKDgwQUI2RDg5QTgzNjJCRkM5MkJCMjhERkMwQ0FGM0MxN0JGMEQyODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNgiQbw4L3VmvnMTELw1krdUXj HUBt1KOY3aWcCaTQFy9E4HtNPsid3iStmX4PkqPMFSAJJn+He+mzAkBlNSULAn39 Z+ZvhTmLACFldtuO+yowAbK49kM1ZirWbxdMaG2nlWeHTWQKQ1ee7Bp1EyE8A4DC s27y2UANIsec9WE/VqbBuN4xjjbfLkwvv+rbsYHwJpNqMQg8y4Q9n2w/QtLnGuSb Wfy9BAi3JSsFqWnlBUC0H2klVvo0xLTSmjPiXXdyOapx8IkoCrIKi9QEyjDf7vFk 2oBcnST01q5cmSy60dpzjl5DfCL8E3mxYqnjzusDAm4BSaW9a0SOFa7Twm/TAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUgKttiag2K/ySuyjfwMrzwXvw0oYwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAGMA0G CSqGSIb3DQEBCwUAA4IBAQCiWpHgdkVyU4P0+g2MlFb9InuJgSKjvZNtUA+p+AWu 2+w7oAWuHYeP2Axg8hyW5hGtSK+v2vtwqy0y4F9nmdWANS6jweocVCFey+alpI/Q h6i9lBbq5Fzx4pUVPzC16mFQzl4amznCLwsmNnOIZo0qbtzsDooTpmIWYYzgK0fA A9yvfnbO3MkPb/oTJPmucsNIBeU0FqAH0WFPwRuZJ1StWY73oSA+dWU+aYqHpSab nKiRvy4LESTFgaGPFdicGZk/1cGJhG7eRxn5hCqGQPpZnCQloQy0iTZBTgTPY+yZ ZE9LLOzxpESzpuMFc099K0X4ag2IllDXDo057aU1FcJp -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org