$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a323a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a323a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: Qv3XoR8wJvRDz9jGRknJeSW57FJ43tR2omIYtw+jh5c= Subject key identifier: A6:0B:E8:7A:55:7B:05:4E:9B:BA:43:83:E3:54:A3:9E:D8:70:2E:A0 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 66465D9F4661E09C81C6D83D98D8580E330F306A Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a323a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 03 Jan 2024 08:01:59 +0000 ROA not before: Wed 03 Jan 2024 07:56:59 +0000 ROA not after: Wed 01 Jan 2025 08:01:59 +0000 asID: 139972 IP address blocks: 2405:c440:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:46:5d:9f:46:61:e0:9c:81:c6:d8:3d:98:d8:58:0e:33:0f:30:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 3 07:56:59 2024 GMT Not After : Jan 1 08:01:59 2025 GMT Subject: CN=A60BE87A557B054E9BBA4383E354A39ED8702EA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:10:5b:7a:50:24:c6:21:9c:f3:b3:8c:e6:6b: 6f:a7:4b:0e:ec:bd:7b:0c:0d:83:f7:f3:de:a1:ce: c5:a2:11:ed:34:14:0b:5e:10:04:80:a8:bc:48:df: 65:6e:13:69:d7:da:eb:7c:1d:32:c0:00:5c:24:a3: b9:85:6c:1e:50:1b:68:df:a1:a4:e0:5a:7e:15:c0: 64:2e:27:03:cb:b7:c1:f4:ca:d8:85:d3:85:cc:ec: fb:e0:df:77:cf:bd:63:e9:52:7a:7f:dd:8d:47:7a: 17:00:06:18:af:5e:95:5e:85:4f:36:00:bf:65:72: 06:66:04:ce:5e:72:72:ba:1c:98:10:bb:dc:6f:52: a7:a1:ff:61:12:e6:b9:34:80:83:3b:9f:f0:fd:1f: d2:d8:f3:65:d7:fa:d1:bb:73:a2:c7:f0:6e:af:e2: 1c:dc:f0:e4:e0:74:37:ef:a0:de:84:ee:a7:56:fa: 59:da:66:f6:c5:62:63:f3:e8:dd:13:cb:74:ba:0e: 12:1f:e6:75:92:63:b6:96:6a:76:b2:bf:a5:40:b3: 7d:d3:da:b8:62:78:df:b3:da:79:21:13:13:99:87: 2f:a4:ec:3b:cf:0c:38:c4:b6:3d:72:d3:c4:82:6c: 21:72:39:22:05:16:00:38:25:9c:0c:06:11:a9:11: ff:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:0B:E8:7A:55:7B:05:4E:9B:BA:43:83:E3:54:A3:9E:D8:70:2E:A0 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a323a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:2::/48 Signature Algorithm: sha256WithRSAEncryption 78:7c:85:cc:34:bf:f9:82:27:27:4e:94:e1:29:d5:c3:79:e6: 29:17:02:b3:a2:e1:8f:c4:6b:d7:65:05:82:3a:a6:80:8c:74: cf:7f:80:8e:72:71:df:f7:6c:fc:04:32:24:7d:87:1c:b9:a1: 5d:e7:db:ba:7c:05:42:ce:cd:cb:7c:48:6f:a4:01:08:eb:23: 19:9b:22:69:6e:65:c2:52:27:5a:cb:7d:75:a9:27:0e:63:8c: 58:80:4f:29:94:08:67:3a:0f:04:4e:cf:6f:17:b7:63:e6:14: c5:3d:ec:73:c3:8e:cc:06:b4:f7:3f:0a:2b:f1:d8:9f:cc:3c: 94:aa:41:80:de:41:1e:60:10:b5:e7:38:31:e6:c9:f8:46:1d: ce:97:97:38:1c:0d:3a:1d:d3:e7:f6:34:08:eb:a3:b6:b0:cc: 51:2c:d9:fa:18:fe:e0:03:6d:c1:21:7a:ff:4f:88:86:a3:35: 76:c8:8b:10:4d:4e:7a:69:d6:9c:f0:96:19:cb:39:97:5c:77: 66:e2:fb:82:d6:5d:bf:60:13:45:ae:fa:fb:60:4e:73:26:70: fa:72:7d:5b:bb:2c:73:2a:4b:18:63:cc:54:ce:09:ff:8b:45: a1:8c:5b:b3:ca:de:e7:5a:1d:3d:63:0b:66:ec:3c:a3:27:94: 7b:9c:a3:ac -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZkZdn0Zh4JyBxtg9mNhYDjMPMGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAxMDMwNzU2NTlaFw0yNTAxMDEwODAxNTlaMDMxMTAvBgNV BAMTKEE2MEJFODdBNTU3QjA1NEU5QkJBNDM4M0UzNTRBMzlFRDg3MDJFQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrEFt6UCTGIZzzs4zma2+nSw7s vXsMDYP3896hzsWiEe00FAteEASAqLxI32VuE2nX2ut8HTLAAFwko7mFbB5QG2jf oaTgWn4VwGQuJwPLt8H0ytiF04XM7Pvg33fPvWPpUnp/3Y1HehcABhivXpVehU82 AL9lcgZmBM5ecnK6HJgQu9xvUqeh/2ES5rk0gIM7n/D9H9LY82XX+tG7c6LH8G6v 4hzc8OTgdDfvoN6E7qdW+lnaZvbFYmPz6N0Ty3S6DhIf5nWSY7aWanayv6VAs33T 2rhieN+z2nkhExOZhy+k7DvPDDjEtj1y08SCbCFyOSIFFgA4JZwMBhGpEf9nAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUpgvoelV7BU6bukOD41SjnthwLqAwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAIw DQYJKoZIhvcNAQELBQADggEBAHh8hcw0v/mCJydOlOEp1cN55ikXArOi4Y/Ea9dl BYI6poCMdM9/gI5ycd/3bPwEMiR9hxy5oV3n27p8BULOzct8SG+kAQjrIxmbImlu ZcJSJ1rLfXWpJw5jjFiATymUCGc6DwROz28Xt2PmFMU97HPDjswGtPc/Civx2J/M PJSqQYDeQR5gELXnODHmyfhGHc6XlzgcDTod0+f2NAjro7awzFEs2foY/uADbcEh ev9PiIajNXbIixBNTnpp1pzwlhnLOZdcd2bi+4LWXb9gE0Wu+vtgTnMmcPpyfVu7 LHMqSxhjzFTOCf+LRaGMW7PK3udaHT1jC2bsPKMnlHuco6w= -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:09 2024 by rpki-client on console-fra.rpki-client.org