$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: 9Va+9fvyqyWhSaKKKkowC02TdLLn07mUstrmppit8fk= Subject key identifier: 38:1E:E2:BB:B5:58:D0:62:6F:1F:3C:9E:1C:4E:6A:11:F3:B5:95:0D Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 188C2CDA18B1E3D8EE9AFEC07B7325821A70FC57 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:44 +0000 ROA not before: Mon 01 Jul 2024 00:59:44 +0000 ROA not after: Mon 30 Jun 2025 01:04:44 +0000 asID: 38500 IP address blocks: 2403:2700:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:8c:2c:da:18:b1:e3:d8:ee:9a:fe:c0:7b:73:25:82:1a:70:fc:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:44 2024 GMT Not After : Jun 30 01:04:44 2025 GMT Subject: CN=381EE2BBB558D0626F1F3C9E1C4E6A11F3B5950D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e3:9e:50:42:2c:5d:d9:c6:1b:af:4b:04:fb: a0:ef:13:b6:52:2c:3b:4e:eb:76:e5:76:72:02:34: 9d:b7:18:3b:4c:cf:1b:49:3f:1b:64:ec:db:f4:0d: f6:97:11:c3:05:c4:81:eb:99:16:99:ad:46:2e:05: 73:c7:bb:91:b3:72:97:98:10:2e:ef:6b:80:85:ac: 5c:50:da:53:a4:87:77:96:55:84:09:3c:65:e5:e9: de:e0:c7:15:cd:bf:0b:79:a1:37:b3:e6:cb:51:75: 4c:f6:3d:d9:d5:cf:aa:4c:49:64:a4:b2:6b:23:85: 94:19:be:b5:49:7a:fd:ed:2e:21:b8:d3:14:5e:25: 41:c2:27:0f:1d:09:e2:73:db:98:f9:68:4f:20:68: 2c:d4:ff:a4:4e:94:a8:e1:51:24:f4:62:f8:f5:83: f3:1e:71:b7:54:f5:1e:30:25:63:ed:26:35:e8:d0: b1:a2:0b:ac:93:7d:f2:d9:47:16:c2:56:a4:ed:fa: f1:84:ea:fd:be:bb:6e:8b:97:a7:08:22:96:30:7f: ee:68:57:f3:78:21:e0:b9:fb:e4:69:26:94:43:1b: dd:a0:84:03:76:23:d8:c5:e2:e7:5d:24:cb:2e:37: 2e:6e:b2:f2:af:87:b7:6f:99:a9:f7:6c:1f:e1:eb: e1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:1E:E2:BB:B5:58:D0:62:6F:1F:3C:9E:1C:4E:6A:11:F3:B5:95:0D X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:7::/48 Signature Algorithm: sha256WithRSAEncryption 71:3b:27:22:ce:d6:c1:dd:bf:b0:09:66:c3:de:24:7e:aa:27: af:a0:62:9f:4b:32:fc:18:3f:d4:46:ec:f9:b6:a1:90:e8:2e: 2f:8c:de:a8:8e:9f:91:38:82:1a:50:fc:00:54:18:3a:c0:1a: 74:5d:8e:82:d0:53:bf:a2:52:72:12:fd:d3:a2:5c:93:3a:f2: 60:87:2e:64:12:71:bc:1b:36:8f:16:e2:c7:bb:40:28:96:55: 26:94:a8:36:c1:0a:0f:6f:b8:bd:1c:68:8d:40:7a:2b:6f:fe: ab:09:30:48:6d:0f:18:ee:e3:bf:3b:26:03:84:f1:90:6e:1e: d5:51:22:5f:2b:dc:83:28:ec:82:2d:46:39:11:f7:cc:3c:36: 9d:e0:27:07:7e:ce:d2:cd:0b:00:9e:fb:c5:cb:2c:e2:e7:56: e8:be:c7:a3:65:96:1e:1b:da:69:3f:0a:ff:09:38:c6:42:52: aa:ac:29:6b:8a:5b:5a:f0:cb:f8:09:fb:49:d9:d8:59:6c:b3: 71:4d:fe:f2:8a:39:73:98:73:c4:b0:67:41:70:8e:5a:1f:14: 84:b0:b7:2c:1f:f1:fa:dd:5e:98:92:4b:c2:3d:31:bb:4e:de: c0:de:bd:a0:9f:05:86:5a:90:14:c5:af:e7:d5:f9:34:18:21: 64:4f:6a:88 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUGIws2hix49jumv7Ae3Mlghpw/FcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDRaFw0yNTA2MzAwMTA0NDRaMDMxMTAvBgNV BAMTKDM4MUVFMkJCQjU1OEQwNjI2RjFGM0M5RTFDNEU2QTExRjNCNTk1MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe455QQixd2cYbr0sE+6DvE7ZS LDtO63bldnICNJ23GDtMzxtJPxtk7Nv0DfaXEcMFxIHrmRaZrUYuBXPHu5GzcpeY EC7va4CFrFxQ2lOkh3eWVYQJPGXl6d7gxxXNvwt5oTez5stRdUz2PdnVz6pMSWSk smsjhZQZvrVJev3tLiG40xReJUHCJw8dCeJz25j5aE8gaCzU/6ROlKjhUST0Yvj1 g/MecbdU9R4wJWPtJjXo0LGiC6yTffLZRxbCVqTt+vGE6v2+u26Ll6cIIpYwf+5o V/N4IeC5++RpJpRDG92ghAN2I9jF4uddJMsuNy5usvKvh7dvman3bB/h6+F7AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUOB7iu7VY0GJvHzyeHE5qEfO1lQ0wHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAHMA0G CSqGSIb3DQEBCwUAA4IBAQBxOyciztbB3b+wCWbD3iR+qievoGKfSzL8GD/URuz5 tqGQ6C4vjN6ojp+ROIIaUPwAVBg6wBp0XY6C0FO/olJyEv3TolyTOvJghy5kEnG8 GzaPFuLHu0AollUmlKg2wQoPb7i9HGiNQHorb/6rCTBIbQ8Y7uO/OyYDhPGQbh7V USJfK9yDKOyCLUY5EffMPDad4CcHfs7SzQsAnvvFyyzi51bovsejZZYeG9ppPwr/ CTjGQlKqrClrilta8Mv4CftJ2dhZbLNxTf7yijlzmHPEsGdBcI5aHxSEsLcsH/H6 3V6YkkvCPTG7Tt7A3r2gnwWGWpAUxa/n1fk0GCFkT2qI -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org