$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a333a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a333a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: XyFJjU5tROWWK4U+MZv41F0gVQmmwAcTxtEMdXqgGKo= Subject key identifier: DB:0A:A2:88:F2:88:C0:D6:B0:E0:E2:DC:BA:14:D6:6F:2E:49:F3:46 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 6911F113A27A913934948F72D13BDB86015FCB96 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a333a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 03 Jan 2024 08:01:59 +0000 ROA not before: Wed 03 Jan 2024 07:56:59 +0000 ROA not after: Wed 01 Jan 2025 08:01:59 +0000 asID: 139972 IP address blocks: 2405:c440:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:11:f1:13:a2:7a:91:39:34:94:8f:72:d1:3b:db:86:01:5f:cb:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 3 07:56:59 2024 GMT Not After : Jan 1 08:01:59 2025 GMT Subject: CN=DB0AA288F288C0D6B0E0E2DCBA14D66F2E49F346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:71:e8:e6:81:dd:75:23:f2:7c:2e:1b:f9: 1a:9c:d2:38:c7:63:0d:85:3b:70:94:47:bc:0c:88: 7e:be:46:02:df:32:8c:42:2c:9a:89:93:8d:ac:11: 99:26:1d:20:05:ca:96:88:a4:a5:17:bd:af:97:a7: 94:f2:bd:6e:89:5c:93:7f:aa:4d:70:84:4e:2c:3f: 3f:63:87:57:bf:4b:25:b2:2c:d8:f4:c1:0c:53:ea: ae:c7:40:bd:cb:40:37:bd:cf:54:d6:df:ee:53:e8: 29:b8:32:7e:fa:6f:99:c8:bb:8a:03:bf:40:0c:d4: 9d:6f:fd:93:7d:45:6f:ee:9c:f0:10:c8:98:f4:28: b0:bc:d1:ec:c3:72:fc:74:72:54:5b:5e:cc:6f:74: 28:04:14:9b:20:79:e8:53:b1:1b:ef:d8:6d:90:03: 10:ee:41:a7:8b:84:17:51:e3:96:51:5c:ee:21:a4: 98:f0:bf:82:2e:2f:48:82:95:81:cf:83:9a:51:65: bd:ee:87:12:e4:95:70:95:ea:cf:d9:26:17:91:1e: 06:b5:35:74:b7:82:ff:9f:c9:97:ca:44:90:56:8c: 6b:d3:23:5b:36:3a:5f:6b:58:6e:f3:63:c7:ad:9b: 9a:81:1d:ed:4b:2f:44:72:69:6a:e4:54:a7:91:d5: 7d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:0A:A2:88:F2:88:C0:D6:B0:E0:E2:DC:BA:14:D6:6F:2E:49:F3:46 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a333a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:3::/48 Signature Algorithm: sha256WithRSAEncryption 7a:2c:21:23:3e:ba:c8:6c:44:ef:12:f8:d4:75:e6:a5:3b:01: 20:d1:ef:a6:4b:c2:da:ea:77:38:31:96:79:07:a3:df:89:37: 31:6c:87:b8:69:4e:9a:b0:7b:b5:7c:0c:d1:fc:ca:ee:52:0a: 2a:c9:cc:b6:20:a6:45:8a:66:00:f9:47:9f:8c:2d:53:f9:0a: 95:a4:51:91:5f:41:bf:02:99:38:ab:b3:1f:3b:57:a3:c1:20: e4:26:f3:4d:63:e6:66:3f:63:c0:b5:89:7b:50:8d:a3:03:99: 14:01:00:e8:33:c4:90:87:57:4e:0d:d9:b8:13:71:41:d8:53: 04:25:d3:29:88:dc:45:fc:e1:a3:7c:57:92:46:fb:20:5f:cd: 92:29:02:88:1d:79:35:da:af:2f:e4:2e:dd:e0:25:25:61:13: d4:b0:05:c5:f1:7e:4e:4c:6a:e8:a8:96:47:95:18:15:4f:8a: b5:73:bf:31:aa:34:6e:7d:9e:27:d2:5f:69:b1:3a:1e:45:5f: 08:9d:35:c1:ec:64:72:ae:c1:58:ae:ae:c3:31:03:e2:4f:5a: de:c9:86:6d:fc:23:03:4e:6d:af:9f:54:37:fa:96:5e:52:a4: 57:81:67:da:f4:00:f9:d5:83:b4:59:ba:58:23:da:56:38:10: 80:56:2e:35 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUaRHxE6J6kTk0lI9y0TvbhgFfy5YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAxMDMwNzU2NTlaFw0yNTAxMDEwODAxNTlaMDMxMTAvBgNV BAMTKERCMEFBMjg4RjI4OEMwRDZCMEUwRTJEQ0JBMTRENjZGMkU0OUYzNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtR3Ho5oHddSPyfC4b+Rqc0jjH Yw2FO3CUR7wMiH6+RgLfMoxCLJqJk42sEZkmHSAFypaIpKUXva+Xp5TyvW6JXJN/ qk1whE4sPz9jh1e/SyWyLNj0wQxT6q7HQL3LQDe9z1TW3+5T6Cm4Mn76b5nIu4oD v0AM1J1v/ZN9RW/unPAQyJj0KLC80ezDcvx0clRbXsxvdCgEFJsgeehTsRvv2G2Q AxDuQaeLhBdR45ZRXO4hpJjwv4IuL0iClYHPg5pRZb3uhxLklXCV6s/ZJheRHga1 NXS3gv+fyZfKRJBWjGvTI1s2Ol9rWG7zY8etm5qBHe1LL0RyaWrkVKeR1X2pAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU2wqiiPKIwNaw4OLcuhTWby5J80YwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAMw DQYJKoZIhvcNAQELBQADggEBAHosISM+ushsRO8S+NR15qU7ASDR76ZLwtrqdzgx lnkHo9+JNzFsh7hpTpqwe7V8DNH8yu5SCirJzLYgpkWKZgD5R5+MLVP5CpWkUZFf Qb8CmTirsx87V6PBIOQm801j5mY/Y8C1iXtQjaMDmRQBAOgzxJCHV04N2bgTcUHY UwQl0ymI3EX84aN8V5JG+yBfzZIpAogdeTXary/kLt3gJSVhE9SwBcXxfk5Mauio lkeVGBVPirVzvzGqNG59nifSX2mxOh5FXwidNcHsZHKuwViursMxA+JPWt7Jhm38 IwNOba+fVDf6ll5SpFeBZ9r0APnVg7RZulgj2lY4EIBWLjU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org