$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313339393a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a313339393a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: OSOXxJexRBCXGpEnlOsOg5TOUDuRwzl9RE1pFY2Qqhg= Subject key identifier: 48:38:61:35:F5:67:2F:37:4B:65:F2:8D:68:AC:D1:62:C9:26:FE:CE Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 12725FA97959F1034A8FAC321454C9E9310E66B3 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313339393a3a2f34382d3438203d3e20313339393732.roa Signing time: Mon 13 Jan 2025 08:02:03 +0000 ROA not before: Mon 13 Jan 2025 07:57:03 +0000 ROA not after: Mon 12 Jan 2026 08:02:03 +0000 asID: 139972 IP address blocks: 2405:c440:1399::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:72:5f:a9:79:59:f1:03:4a:8f:ac:32:14:54:c9:e9:31:0e:66:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 13 07:57:03 2025 GMT Not After : Jan 12 08:02:03 2026 GMT Subject: CN=48386135F5672F374B65F28D68ACD162C926FECE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1e:23:66:64:c4:21:5c:fb:16:b3:d1:08:18: d3:02:49:34:86:c6:0d:4d:87:52:c5:3a:7f:6a:00: 51:02:d3:0c:6e:b6:1f:90:ca:83:6d:0c:bd:57:d6: eb:12:2c:2b:b3:5d:24:66:ea:e6:43:77:34:ec:3c: 09:27:9e:ce:ec:35:d2:9d:85:99:fb:40:63:0c:53: 7e:9e:6f:0e:78:e7:fe:4b:41:fd:bb:f1:90:a7:33: 20:d9:28:c3:15:0e:fe:00:64:63:46:50:a0:a8:76: 79:3f:2b:14:66:8c:17:37:e3:25:43:75:34:a0:6a: 68:c9:08:5d:19:f3:92:15:54:14:80:c2:6a:48:7c: 17:09:1f:ab:7d:ee:7f:2b:a8:08:6a:c0:f8:e4:33: 7f:d3:b8:25:89:3e:38:77:5d:f1:93:c2:c3:2a:4a: c8:3e:e5:9c:1b:3a:92:14:ac:d9:61:ff:df:94:59: 18:5c:46:f9:ae:fe:f6:f6:7f:58:16:8d:1f:25:4f: 32:5c:bb:be:43:2e:47:1e:2f:3c:36:42:41:f8:35: bc:c0:f7:26:e5:67:0e:0c:29:f7:67:42:34:0e:33: 0b:08:16:23:f6:3b:8f:fb:7f:a9:7d:1c:de:a6:3f: 2c:2b:0c:52:11:47:ea:0f:7d:44:db:c7:3e:2c:4a: e7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:38:61:35:F5:67:2F:37:4B:65:F2:8D:68:AC:D1:62:C9:26:FE:CE X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313339393a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:1399::/48 Signature Algorithm: sha256WithRSAEncryption 86:60:2b:ec:cb:22:7b:b1:fc:6d:90:ca:e4:4a:9b:36:d9:05: 37:52:49:58:e2:e6:da:54:d2:68:d7:73:16:cb:2c:2c:11:cb: e2:74:0c:39:d1:81:b8:0a:25:dd:ea:73:df:db:af:ae:9c:44: c9:2b:99:da:8a:2e:6d:51:47:ff:3a:7f:32:f3:52:23:fc:61: 79:67:f8:8d:64:c9:42:6a:d9:8a:bd:d0:27:6a:4d:a4:60:a1: 34:24:d3:af:00:f1:64:f4:9c:ae:e9:be:3a:a6:01:95:d4:4f: ab:c8:bc:c0:f5:76:b2:f9:3f:90:90:36:88:12:1b:a9:9e:bb: 31:ea:18:f6:b3:21:1b:3c:87:39:65:60:4c:77:30:6b:dd:f4: 37:fc:26:dd:ca:28:c3:70:45:b0:ed:e7:72:57:91:2f:b0:2d: e5:fb:ce:72:67:d4:35:6b:11:ab:e5:c1:fd:7c:f7:43:60:f2: 0b:09:6a:02:7e:98:2a:78:92:bf:60:9a:f6:be:ab:4b:f4:6c: 72:1c:4e:08:4f:2c:13:a5:e4:f1:f8:0a:66:5f:37:83:f4:d8: 12:a7:e1:b6:24:b0:d7:14:2e:3b:dd:28:f0:69:a5:ce:30:91: 85:ae:94:3b:04:4a:1c:83:d0:07:6b:96:d8:28:1a:95:72:54: a9:ab:6d:ad -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUEnJfqXlZ8QNKj6wyFFTJ6TEOZrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTAxMTMwNzU3MDNaFw0yNjAxMTIwODAyMDNaMDMxMTAvBgNV BAMTKDQ4Mzg2MTM1RjU2NzJGMzc0QjY1RjI4RDY4QUNEMTYyQzkyNkZFQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcHiNmZMQhXPsWs9EIGNMCSTSG xg1Nh1LFOn9qAFEC0wxuth+QyoNtDL1X1usSLCuzXSRm6uZDdzTsPAknns7sNdKd hZn7QGMMU36ebw545/5LQf278ZCnMyDZKMMVDv4AZGNGUKCodnk/KxRmjBc34yVD dTSgamjJCF0Z85IVVBSAwmpIfBcJH6t97n8rqAhqwPjkM3/TuCWJPjh3XfGTwsMq Ssg+5ZwbOpIUrNlh/9+UWRhcRvmu/vb2f1gWjR8lTzJcu75DLkceLzw2QkH4NbzA 9yblZw4MKfdnQjQOMwsIFiP2O4/7f6l9HN6mPywrDFIRR+oPfUTbxz4sSuc3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUSDhhNfVnLzdLZfKNaKzRYskm/s4wHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzEzMzM5Mzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BcRAE5kwDQYJKoZIhvcNAQELBQADggEBAIZgK+zLInux/G2QyuRKmzbZBTdSSVji 5tpU0mjXcxbLLCwRy+J0DDnRgbgKJd3qc9/br66cRMkrmdqKLm1RR/86fzLzUiP8 YXln+I1kyUJq2Yq90CdqTaRgoTQk068A8WT0nK7pvjqmAZXUT6vIvMD1drL5P5CQ NogSG6meuzHqGPazIRs8hzllYEx3MGvd9Df8Jt3KKMNwRbDt53JXkS+wLeX7znJn 1DVrEavlwf1890Ng8gsJagJ+mCp4kr9gmva+q0v0bHIcTghPLBOl5PH4CmZfN4P0 2BKn4bYksNcULjvdKPBppc4wkYWulDsEShyD0AdrltgoGpVyVKmrba0= -----END CERTIFICATE-----Generated at Sun Apr 6 13:36:40 2025 by rpki-client