$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: Z3YjL/wYvWpihhxjGXq0cRfx/I3fmsdvyF8uXLZLQx4= Subject key identifier: 11:D3:3C:92:EC:75:CD:C4:67:09:3F:3C:0E:08:6D:4E:A2:D5:F0:F9 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 1ABF408477B0B173AE77F3B867D8B057D965A173 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 03 Jan 2024 08:01:59 +0000 ROA not before: Wed 03 Jan 2024 07:56:59 +0000 ROA not after: Wed 01 Jan 2025 08:01:59 +0000 asID: 139972 IP address blocks: 2405:c440:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:bf:40:84:77:b0:b1:73:ae:77:f3:b8:67:d8:b0:57:d9:65:a1:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 3 07:56:59 2024 GMT Not After : Jan 1 08:01:59 2025 GMT Subject: CN=11D33C92EC75CDC467093F3C0E086D4EA2D5F0F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9f:83:86:74:a7:1d:28:b1:c0:df:b2:86:9c: e6:3c:37:bd:76:66:2c:85:64:40:39:29:16:f0:33: 34:52:c6:61:2b:cf:a8:02:95:ae:9f:05:d3:62:da: 13:f5:5c:d8:60:0c:95:22:cb:08:6c:52:37:c1:08: 4f:35:fe:68:b3:73:2b:f0:fe:89:cd:aa:67:52:ef: 7b:29:c4:9a:90:95:4f:fa:bf:e9:67:75:6e:3f:70: e7:74:8f:ea:85:aa:eb:84:93:fc:3c:32:cf:e1:d6: 2d:27:de:70:10:d9:73:36:f9:cb:9a:23:55:06:85: ab:8b:8b:5e:0c:c7:e9:f6:4a:05:84:8f:2b:e7:2e: bd:3c:97:63:90:51:53:e5:67:35:6c:08:8b:c4:dd: a1:7c:62:a3:68:91:e0:68:1c:c0:a7:bf:9b:d7:da: 25:75:7c:d0:b1:95:ee:f9:da:48:5b:76:be:c0:af: 89:2f:8e:59:5b:30:87:b7:43:24:53:5c:74:75:fd: d6:a9:fc:7b:d4:e5:e7:b4:71:13:02:d2:10:de:a7: 0f:35:b6:5b:30:63:cc:e5:bf:a2:53:78:34:5d:48: f4:09:ba:8d:ac:79:f9:25:78:19:ae:82:10:e2:13: b7:b4:d4:ac:71:39:9a:98:b3:82:2b:82:59:ad:fe: a6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D3:3C:92:EC:75:CD:C4:67:09:3F:3C:0E:08:6D:4E:A2:D5:F0:F9 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:4::/48 Signature Algorithm: sha256WithRSAEncryption 67:30:ca:46:73:e3:2b:cd:5c:cf:8f:2c:41:df:2b:cb:4e:bf: 0c:e6:22:c6:a2:1e:85:b9:bc:7a:c0:57:2b:27:a1:79:9f:2c: e1:ab:58:60:d4:96:b8:cc:e6:fb:c4:72:d6:7e:63:db:62:ce: 0f:8e:b1:2a:3c:2c:c5:5d:63:c0:d0:0e:68:11:39:8b:24:0d: 0e:3c:ac:23:1e:2a:02:4a:e6:bc:a6:de:29:4c:c9:2e:68:d2: 9e:68:62:a7:56:f1:f9:df:37:a9:a2:ff:b6:9b:ad:2d:fe:fc: 30:cc:f3:b0:f0:e7:b9:fb:7d:fa:e7:f6:bb:d3:05:d1:e7:72: ff:e7:ee:3c:21:65:ab:11:cc:a0:19:ad:3b:d0:01:52:6e:f0: b5:6b:50:f5:d3:9b:6f:ab:6a:cd:74:35:f4:4c:ae:38:ee:4b: 80:38:38:62:3d:ed:3f:88:a9:66:9d:ae:71:fd:8f:5f:f2:1f: 8c:4e:38:18:c1:58:0b:03:80:8a:4f:f2:e6:2d:47:44:65:9d: bf:b8:9a:43:55:ea:65:87:fc:6c:4c:f7:10:45:c1:8d:ba:8a: 44:8f:86:ec:57:37:a5:a3:2c:01:07:34:50:d8:58:f4:ce:6d: c8:8a:c1:ff:35:fc:60:0f:39:89:89:78:3b:17:39:cf:11:95: 8c:52:3b:8a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGr9AhHewsXOud/O4Z9iwV9lloXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAxMDMwNzU2NTlaFw0yNTAxMDEwODAxNTlaMDMxMTAvBgNV BAMTKDExRDMzQzkyRUM3NUNEQzQ2NzA5M0YzQzBFMDg2RDRFQTJENUYwRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhn4OGdKcdKLHA37KGnOY8N712 ZiyFZEA5KRbwMzRSxmErz6gCla6fBdNi2hP1XNhgDJUiywhsUjfBCE81/mizcyvw /onNqmdS73spxJqQlU/6v+lndW4/cOd0j+qFquuEk/w8Ms/h1i0n3nAQ2XM2+cua I1UGhauLi14Mx+n2SgWEjyvnLr08l2OQUVPlZzVsCIvE3aF8YqNokeBoHMCnv5vX 2iV1fNCxle752khbdr7Ar4kvjllbMIe3QyRTXHR1/dap/HvU5ee0cRMC0hDepw81 tlswY8zlv6JTeDRdSPQJuo2sefkleBmughDiE7e01KxxOZqYs4Irglmt/qYFAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUEdM8kux1zcRnCT88DghtTqLV8PkwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAQw DQYJKoZIhvcNAQELBQADggEBAGcwykZz4yvNXM+PLEHfK8tOvwzmIsaiHoW5vHrA VysnoXmfLOGrWGDUlrjM5vvEctZ+Y9tizg+OsSo8LMVdY8DQDmgROYskDQ48rCMe KgJK5rym3ilMyS5o0p5oYqdW8fnfN6mi/7abrS3+/DDM87Dw57n7ffrn9rvTBdHn cv/n7jwhZasRzKAZrTvQAVJu8LVrUPXTm2+ras10NfRMrjjuS4A4OGI97T+IqWad rnH9j1/yH4xOOBjBWAsDgIpP8uYtR0Rlnb+4mkNV6mWH/GxM9xBFwY26ikSPhuxX N6WjLAEHNFDYWPTObciKwf81/GAPOYmJeDsXOc8RlYxSO4o= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org