$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a313a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: 1UvPoblsNrb7o0YIHTnR6TpBHg4o78E00QrfgXrELOQ= Subject key identifier: CF:97:F5:AF:1A:C5:5F:08:27:24:84:7F:8A:1F:50:E5:DA:44:26:55 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 7F3D6A9A39654BA20AB0E63D6F7B185AD3952F6B Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 03 Jan 2024 08:01:59 +0000 ROA not before: Wed 03 Jan 2024 07:56:59 +0000 ROA not after: Wed 01 Jan 2025 08:01:59 +0000 asID: 139972 IP address blocks: 2405:c440:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:3d:6a:9a:39:65:4b:a2:0a:b0:e6:3d:6f:7b:18:5a:d3:95:2f:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 3 07:56:59 2024 GMT Not After : Jan 1 08:01:59 2025 GMT Subject: CN=CF97F5AF1AC55F082724847F8A1F50E5DA442655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:66:6c:c6:90:45:d2:ee:c2:6d:3b:ff:f1:66: 13:6a:be:e3:19:a5:85:8d:6e:d9:78:2d:fd:7d:60: e1:0f:6f:f6:b2:4b:0a:ff:37:3f:ac:ae:88:a7:4e: 4b:b5:6c:1d:c0:82:02:8a:3d:ff:e8:32:f9:04:cf: 26:69:ac:26:20:ab:34:99:b2:b6:55:47:b5:98:df: dc:9b:70:a4:12:e3:17:3c:47:69:2e:21:ce:80:df: c0:0a:df:1b:fb:44:34:b3:d1:6e:b5:1f:5c:fd:9e: df:4b:0a:66:2b:e4:eb:b2:cf:c7:ca:73:76:6b:95: 5d:f7:6e:a4:a4:01:84:f3:eb:36:80:02:10:14:76: 49:70:27:59:c7:1d:fb:65:c4:11:b4:78:a5:ef:38: 1a:cf:71:8c:e2:47:87:12:3d:af:f1:b3:4b:a8:64: ef:f4:91:1f:d4:76:f9:98:b5:d7:91:40:c4:79:36: a2:fd:2f:cd:8a:c2:df:42:d8:6c:6f:e2:d2:a1:9f: 77:36:d6:9b:62:39:e1:92:ff:0e:2d:ce:8c:55:04: 3e:0c:ec:3e:50:1c:f9:e1:74:f8:de:37:ef:19:7c: b1:2d:a1:33:71:86:84:0f:d1:1f:94:42:a2:f0:d0: 76:ef:f7:ae:38:53:f6:80:4e:bb:6e:11:ed:f1:03: cc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:97:F5:AF:1A:C5:5F:08:27:24:84:7F:8A:1F:50:E5:DA:44:26:55 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a313a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:1::/48 Signature Algorithm: sha256WithRSAEncryption 53:54:19:cf:3a:e7:5d:f6:97:ed:e9:48:9b:54:9f:1c:06:45: 16:ac:27:4a:9d:2b:3b:61:fa:dc:62:b6:ed:1a:06:89:8e:8d: 60:b7:20:4e:91:a5:a1:c1:97:31:18:fc:c5:e6:f8:7b:21:29: 84:19:9d:17:bf:e0:1c:70:07:bd:17:5b:8c:e7:56:3d:25:fb: 9d:27:5d:ce:67:8f:20:21:13:81:56:5d:9f:28:23:8c:21:fd: ed:17:8b:a2:6c:9d:2b:ed:63:c1:95:2c:8f:5a:8b:e7:91:06: 99:e4:b2:85:7a:08:44:46:a8:29:16:93:b7:20:ce:68:9a:69: f9:03:87:8d:72:3d:8e:35:1c:e9:46:14:16:3a:eb:fd:11:a8: 32:e9:8b:83:5b:fa:a1:95:72:6a:34:f6:2f:cf:43:0f:b6:33: 0d:05:c0:94:db:13:8d:02:99:cc:e9:78:3a:53:70:45:f7:42: 3d:4e:c3:75:08:5f:e8:14:b0:f7:99:af:4e:c4:69:85:0c:e4: 83:8d:32:c8:f6:58:80:ce:8f:22:39:08:40:89:33:21:74:31: ef:e3:9d:9c:07:89:d0:bc:6d:23:93:80:20:6e:66:bc:31:e5: 09:d7:4a:d6:eb:77:63:1b:eb:c2:30:74:9d:d1:47:50:7d:12: 60:c0:d4:fd -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfz1qmjllS6IKsOY9b3sYWtOVL2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAxMDMwNzU2NTlaFw0yNTAxMDEwODAxNTlaMDMxMTAvBgNV BAMTKENGOTdGNUFGMUFDNTVGMDgyNzI0ODQ3RjhBMUY1MEU1REE0NDI2NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGZmzGkEXS7sJtO//xZhNqvuMZ pYWNbtl4Lf19YOEPb/aySwr/Nz+sroinTku1bB3AggKKPf/oMvkEzyZprCYgqzSZ srZVR7WY39ybcKQS4xc8R2kuIc6A38AK3xv7RDSz0W61H1z9nt9LCmYr5Ouyz8fK c3ZrlV33bqSkAYTz6zaAAhAUdklwJ1nHHftlxBG0eKXvOBrPcYziR4cSPa/xs0uo ZO/0kR/UdvmYtdeRQMR5NqL9L82Kwt9C2Gxv4tKhn3c21ptiOeGS/w4tzoxVBD4M 7D5QHPnhdPjeN+8ZfLEtoTNxhoQP0R+UQqLw0Hbv9644U/aATrtuEe3xA8xJAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUz5f1rxrFXwgnJIR/ih9Q5dpEJlUwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAEw DQYJKoZIhvcNAQELBQADggEBAFNUGc865132l+3pSJtUnxwGRRasJ0qdKzth+txi tu0aBomOjWC3IE6RpaHBlzEY/MXm+HshKYQZnRe/4BxwB70XW4znVj0l+50nXc5n jyAhE4FWXZ8oI4wh/e0Xi6JsnSvtY8GVLI9ai+eRBpnksoV6CERGqCkWk7cgzmia afkDh41yPY41HOlGFBY66/0RqDLpi4Nb+qGVcmo09i/PQw+2Mw0FwJTbE40Cmczp eDpTcEX3Qj1Ow3UIX+gUsPeZr07EaYUM5IONMsj2WIDOjyI5CECJMyF0Me/jnZwH idC8bSOTgCBuZrwx5QnXStbrd2Mb68IwdJ3RR1B9EmDA1P0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org