$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a383a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a383a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: op5bT2L1N0sHmZSjZcqK0jvfD4qLLHRy+eUbnuqHBLQ= Subject key identifier: 93:AD:01:82:70:BE:9C:C7:4E:04:D4:13:C4:BE:47:9A:FA:46:B9:3D Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 2BB9ED2EC10BB86A9329D2D95FAFEAD04C5F94F7 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a383a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:43 +0000 ROA not before: Mon 01 Jul 2024 00:59:43 +0000 ROA not after: Mon 30 Jun 2025 01:04:43 +0000 asID: 38500 IP address blocks: 2403:2700:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b9:ed:2e:c1:0b:b8:6a:93:29:d2:d9:5f:af:ea:d0:4c:5f:94:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:43 2024 GMT Not After : Jun 30 01:04:43 2025 GMT Subject: CN=93AD018270BE9CC74E04D413C4BE479AFA46B93D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6e:cd:d6:70:d2:cc:9f:1d:d3:64:c3:dd:67: 83:9d:bf:4a:93:9d:37:17:03:9b:62:f8:3e:d8:e0: e8:9f:21:63:a7:29:3a:90:87:19:51:56:05:2a:7d: 1d:e3:b2:ce:59:2b:2a:b5:da:8c:79:98:33:87:2a: 12:5b:73:fb:73:c0:f8:03:86:05:b2:ea:01:23:f9: 1f:d4:0d:eb:2d:7e:b7:1f:ff:89:54:2c:f7:95:63: 16:66:64:a5:f3:f8:de:2e:84:36:87:bc:79:46:58: 26:d0:e8:f7:9d:6a:af:f0:9f:40:55:c4:51:76:2d: 0c:27:84:24:b7:74:ed:14:05:56:42:f7:f1:5f:09: e0:c7:1c:6b:8c:9d:a0:37:af:07:08:42:df:9d:0b: 77:1f:19:32:df:f6:b1:2f:87:81:31:de:9f:97:0c: 72:7c:4f:93:d5:ac:2f:ca:c3:67:f8:64:e2:84:65: 84:bc:7a:0a:d3:bb:33:9a:a9:de:fe:1b:da:08:70: cd:f3:90:fa:51:9a:3e:88:d9:3a:d0:26:a3:80:0c: 5a:f6:a9:69:42:be:36:53:1a:a7:eb:1d:22:a5:e1: e5:a0:ba:fc:b9:3f:71:24:3b:c9:72:b0:7d:f8:38: 75:ed:48:71:0f:6f:6f:ff:3f:0b:ad:15:cd:4f:a1: b0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:AD:01:82:70:BE:9C:C7:4E:04:D4:13:C4:BE:47:9A:FA:46:B9:3D X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a383a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:8::/48 Signature Algorithm: sha256WithRSAEncryption 20:de:cb:b8:2d:f9:11:82:94:67:19:f3:1c:83:15:a6:d4:98: 5c:aa:bb:43:39:13:6a:16:4f:12:2b:fa:be:25:3a:95:ae:5f: 3b:b4:e9:ce:d2:6b:35:a8:62:18:d1:8e:a6:10:20:6d:d6:9f: b6:54:21:cb:cf:d4:9f:db:04:06:08:e6:c3:11:13:c0:e5:75: b2:aa:70:3e:db:64:45:26:59:11:7d:31:4a:61:a2:0f:6a:a3: 18:b9:72:7f:28:77:e8:4e:80:56:c5:d2:9a:b6:c7:00:8c:5b: 0a:53:52:28:5f:d5:ff:c6:f5:60:a5:8e:ec:30:05:dc:38:f6: 92:c3:2d:e8:ea:0e:97:77:c2:fd:51:68:b2:e6:b5:45:bd:da: 11:82:ee:fb:66:4d:50:40:3d:d0:86:2e:2f:de:ea:3f:e9:af: 61:72:ef:ea:fc:8a:6a:16:33:bb:7c:2a:eb:82:72:76:7f:fe: 99:8d:12:4d:cf:a5:39:c1:0c:24:2f:9e:bb:7f:2c:77:16:72: 3f:3f:87:32:07:68:1a:a5:85:a3:78:04:65:80:70:e4:c8:75: dd:19:83:4c:a8:bc:0c:6f:da:5a:98:b0:64:3e:c4:52:fd:28: fb:22:7e:7e:4e:95:e2:e6:6d:1b:68:2c:ce:98:10:bb:b7:f3: f4:f0:5b:d1 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUK7ntLsELuGqTKdLZX6/q0ExflPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDNaFw0yNTA2MzAwMTA0NDNaMDMxMTAvBgNV BAMTKDkzQUQwMTgyNzBCRTlDQzc0RTA0RDQxM0M0QkU0NzlBRkE0NkI5M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcbs3WcNLMnx3TZMPdZ4Odv0qT nTcXA5ti+D7Y4OifIWOnKTqQhxlRVgUqfR3jss5ZKyq12ox5mDOHKhJbc/tzwPgD hgWy6gEj+R/UDestfrcf/4lULPeVYxZmZKXz+N4uhDaHvHlGWCbQ6Pedaq/wn0BV xFF2LQwnhCS3dO0UBVZC9/FfCeDHHGuMnaA3rwcIQt+dC3cfGTLf9rEvh4Ex3p+X DHJ8T5PVrC/Kw2f4ZOKEZYS8egrTuzOaqd7+G9oIcM3zkPpRmj6I2TrQJqOADFr2 qWlCvjZTGqfrHSKl4eWguvy5P3EkO8lysH34OHXtSHEPb2//PwutFc1PobAlAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUk60BgnC+nMdOBNQTxL5HmvpGuT0wHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAIMA0G CSqGSIb3DQEBCwUAA4IBAQAg3su4LfkRgpRnGfMcgxWm1JhcqrtDORNqFk8SK/q+ JTqVrl87tOnO0ms1qGIY0Y6mECBt1p+2VCHLz9Sf2wQGCObDERPA5XWyqnA+22RF JlkRfTFKYaIPaqMYuXJ/KHfoToBWxdKatscAjFsKU1IoX9X/xvVgpY7sMAXcOPaS wy3o6g6Xd8L9UWiy5rVFvdoRgu77Zk1QQD3Qhi4v3uo/6a9hcu/q/IpqFjO7fCrr gnJ2f/6ZjRJNz6U5wQwkL567fyx3FnI/P4cyB2gapYWjeARlgHDkyHXdGYNMqLwM b9pamLBkPsRS/Sj7In5+TpXi5m0baCzOmBC7t/P08FvR -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org