$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: pSi/i88W62l+90rS3oGlyj942vaAtjozHI+TQUQdl3Q= Subject key identifier: 3E:66:3F:FB:FB:22:23:9A:20:30:A0:E5:22:22:68:A6:2D:F1:BF:A5 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 7D912FF2160608E9E569F8F98DFEBA384912C847 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:45 +0000 ROA not before: Mon 01 Jul 2024 00:59:45 +0000 ROA not after: Mon 30 Jun 2025 01:04:45 +0000 asID: 38500 IP address blocks: 2403:2700:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:91:2f:f2:16:06:08:e9:e5:69:f8:f9:8d:fe:ba:38:49:12:c8:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:45 2024 GMT Not After : Jun 30 01:04:45 2025 GMT Subject: CN=3E663FFBFB22239A2030A0E5222268A62DF1BFA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b8:29:88:81:ab:be:82:a6:a0:65:1a:41:92: 8f:24:85:f7:e9:f7:21:5d:69:48:55:21:66:e2:76: d9:89:af:85:f9:28:e5:a7:cd:f5:63:4b:0a:c5:0b: d7:7e:7e:1d:1d:c3:26:9c:5c:1f:60:35:d5:8d:85: 80:8c:fd:f7:a1:a0:98:a4:ef:9e:67:22:a4:46:63: c8:02:fc:75:04:fd:36:2b:71:a4:2d:78:16:62:06: 40:43:3b:2e:17:1f:31:74:ac:d9:e4:df:d5:ab:69: 2e:5d:a2:6b:41:c8:31:09:25:bd:64:d7:20:89:8f: bb:20:47:50:ea:0f:0d:f1:a4:d0:ff:6b:44:3b:be: 52:cb:ea:eb:a1:84:9b:cf:49:e3:31:44:41:31:dc: b8:96:0d:cd:c1:35:b4:3e:d5:52:99:ab:34:be:9b: e9:02:84:6f:9e:6a:14:49:e8:1b:19:2d:f4:2d:e1: a6:3d:8c:97:0c:48:f1:20:5a:60:88:80:94:7c:25: a1:6d:c9:1f:11:23:49:9d:31:2e:7b:f6:e1:4d:1a: de:d4:58:61:72:37:65:00:d6:d4:d6:a7:f1:4e:db: e8:bc:06:25:b3:a6:be:29:ec:25:ce:db:5c:3d:ed: 8f:6b:f7:25:d4:d6:ae:4a:86:ae:5c:15:f4:35:b8: c5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:66:3F:FB:FB:22:23:9A:20:30:A0:E5:22:22:68:A6:2D:F1:BF:A5 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:9::/48 Signature Algorithm: sha256WithRSAEncryption a6:4c:4e:d2:4d:9d:b2:ed:11:3e:a6:0c:0f:ca:4f:ed:4d:ac: 94:dc:c6:ef:01:a8:01:9e:c0:0c:1a:3f:19:1e:25:02:24:8c: c0:81:86:c3:2c:47:2e:a9:4b:e8:c1:5b:4f:a0:29:c9:94:62: c1:de:ed:9c:a9:54:c9:c4:17:53:2d:b2:cc:04:67:bd:d5:38: 84:fc:32:c7:04:b4:ef:2e:2c:37:68:e1:13:0f:57:1a:5f:e8: c8:0b:4f:17:fd:c4:0c:7f:28:df:84:4f:cc:d4:1d:8c:91:50: c7:ad:11:ea:4b:41:20:8e:83:c5:9f:c5:53:9e:f0:bf:52:ed: e0:74:fd:fa:31:34:3c:a8:0a:1a:d1:dc:04:88:ac:5d:a3:b3: 4d:e3:1b:3f:d8:63:1c:dd:1d:85:1f:73:79:5f:ee:49:54:0c: 65:62:08:ae:69:c6:ef:3d:53:51:68:97:99:0f:90:84:e1:39: 41:3a:27:7e:34:73:31:d6:f4:eb:04:eb:32:63:1b:5c:95:a1: 2b:6b:ca:6f:76:da:75:14:6f:95:db:87:19:1f:1d:5b:47:2a: 0f:e4:90:ef:f9:bb:31:d1:bd:2b:d4:30:70:85:45:e8:2d:69: 31:21:a0:95:56:be:d1:bf:b8:d4:2a:92:4f:35:67:01:32:b3: 0c:80:ff:50 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfZEv8hYGCOnlafj5jf66OEkSyEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDVaFw0yNTA2MzAwMTA0NDVaMDMxMTAvBgNV BAMTKDNFNjYzRkZCRkIyMjIzOUEyMDMwQTBFNTIyMjI2OEE2MkRGMUJGQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcuCmIgau+gqagZRpBko8khffp 9yFdaUhVIWbidtmJr4X5KOWnzfVjSwrFC9d+fh0dwyacXB9gNdWNhYCM/fehoJik 755nIqRGY8gC/HUE/TYrcaQteBZiBkBDOy4XHzF0rNnk39WraS5domtByDEJJb1k 1yCJj7sgR1DqDw3xpND/a0Q7vlLL6uuhhJvPSeMxREEx3LiWDc3BNbQ+1VKZqzS+ m+kChG+eahRJ6BsZLfQt4aY9jJcMSPEgWmCIgJR8JaFtyR8RI0mdMS579uFNGt7U WGFyN2UA1tTWp/FO2+i8BiWzpr4p7CXO21w97Y9r9yXU1q5Khq5cFfQ1uMXRAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUPmY/+/siI5ogMKDlIiJopi3xv6UwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAJMA0G CSqGSIb3DQEBCwUAA4IBAQCmTE7STZ2y7RE+pgwPyk/tTayU3MbvAagBnsAMGj8Z HiUCJIzAgYbDLEcuqUvowVtPoCnJlGLB3u2cqVTJxBdTLbLMBGe91TiE/DLHBLTv Liw3aOETD1caX+jIC08X/cQMfyjfhE/M1B2MkVDHrRHqS0EgjoPFn8VTnvC/Uu3g dP36MTQ8qAoa0dwEiKxdo7NN4xs/2GMc3R2FH3N5X+5JVAxlYgiuacbvPVNRaJeZ D5CE4TlBOid+NHMx1vTrBOsyYxtclaEra8pvdtp1FG+V24cZHx1bRyoP5JDv+bsx 0b0r1DBwhUXoLWkxIaCVVr7Rv7jUKpJPNWcBMrMMgP9Q -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org