$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: iT+MaDJ4i5BeR8TDDIOP07f7P6GIAJ+rbvY/CrktoQk= Subject key identifier: 2F:61:69:C9:CF:6D:DB:0D:09:86:9B:E1:CB:0A:86:55:40:65:46:77 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 486C1A29E237E8E0AE7E259717603DCE71A525E0 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 04 Dec 2024 09:03:04 +0000 ROA not before: Wed 04 Dec 2024 08:58:04 +0000 ROA not after: Wed 03 Dec 2025 09:03:04 +0000 asID: 139972 IP address blocks: 2405:c440:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:6c:1a:29:e2:37:e8:e0:ae:7e:25:97:17:60:3d:ce:71:a5:25:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Dec 4 08:58:04 2024 GMT Not After : Dec 3 09:03:04 2025 GMT Subject: CN=2F6169C9CF6DDB0D09869BE1CB0A865540654677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:12:45:e2:08:44:ed:e9:8b:a4:6a:24:9a:a9: 21:e5:2f:22:f8:be:d3:a9:55:8f:6b:67:39:7f:49: 29:20:33:b1:e0:5d:9f:c8:dc:c0:95:ff:f7:42:4e: b5:3e:39:33:6a:88:ec:7d:7b:a1:b8:0f:10:6a:d0: 88:25:e1:fb:81:98:09:04:b2:3d:39:22:13:3a:10: ea:a5:0d:f0:a9:27:10:22:a3:61:56:d7:5d:1b:cf: ad:7a:bd:08:5a:f9:35:48:60:ac:a6:d1:50:54:f6: 8c:c6:82:03:b3:f9:57:5b:ce:ff:73:c3:b7:49:a0: 71:42:3c:9a:9c:4c:6d:a9:3f:b4:1f:79:f7:ea:1d: a4:ef:d7:a0:93:da:20:5f:80:ac:b3:dc:15:97:ab: 3d:be:17:6b:79:d0:24:a5:21:e5:40:9b:e1:51:7d: bf:8d:ce:42:78:62:1b:6b:53:17:bf:da:88:8e:04: 4c:27:9d:6d:e6:f0:7f:8c:de:d1:52:f4:4e:1c:aa: 88:d0:5d:c7:38:3a:6f:7e:cd:37:42:c5:95:fa:12: fb:66:15:ad:2f:13:c6:1a:9a:a7:9c:73:a5:6a:73: 26:dc:74:e2:bc:57:30:7d:3c:3d:55:45:6c:73:55: 54:a7:06:37:07:2c:f4:b5:a7:4f:79:6b:55:0b:cc: af:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:61:69:C9:CF:6D:DB:0D:09:86:9B:E1:CB:0A:86:55:40:65:46:77 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a343a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:4::/48 Signature Algorithm: sha256WithRSAEncryption 30:85:1a:97:16:08:56:33:92:f8:bf:96:7d:6e:a2:90:c1:69: 9b:40:63:9e:9d:a8:c8:ba:72:6c:1d:8c:b7:b4:94:38:06:e9: f1:84:67:a7:34:26:6d:ee:81:13:9e:1c:5c:81:56:72:b3:44: c3:e1:df:62:7c:1a:91:8c:83:a6:0b:11:81:f9:2f:a1:a9:30: 2e:3a:ae:32:91:4d:72:c3:90:ae:38:ce:bb:d1:a3:c8:26:e8: dd:dd:6d:13:ce:d6:0f:4b:50:ca:c5:7f:43:a3:3c:e1:7b:d5: b4:60:9c:34:c8:6e:b8:41:f1:35:13:8a:9e:99:18:6c:8d:51: 6b:e3:98:a6:2a:ce:35:fc:1b:22:af:ae:ab:42:85:ae:51:8a: 20:35:0f:31:72:c3:93:03:54:9a:c6:52:b8:30:04:d3:ff:60: d8:9e:26:5d:b3:0c:12:45:52:f7:97:35:8e:09:2f:93:10:03: d8:61:dc:84:e1:56:fe:04:36:d8:ef:fb:8f:54:ef:a5:69:ad: f7:1a:e8:c7:fa:85:04:f0:a8:0b:c6:48:66:14:3d:b3:f6:8f: 6f:e1:75:d6:90:6c:92:56:e5:3f:ca:98:a6:05:0b:b2:11:d7: 7f:9b:64:d9:ac:28:1f:08:b5:9a:b1:2d:61:e1:88:7b:80:06: 7c:cb:49:c3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSGwaKeI36OCufiWXF2A9znGlJeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDEyMDQwODU4MDRaFw0yNTEyMDMwOTAzMDRaMDMxMTAvBgNV BAMTKDJGNjE2OUM5Q0Y2RERCMEQwOTg2OUJFMUNCMEE4NjU1NDA2NTQ2NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZEkXiCETt6YukaiSaqSHlLyL4 vtOpVY9rZzl/SSkgM7HgXZ/I3MCV//dCTrU+OTNqiOx9e6G4DxBq0Igl4fuBmAkE sj05IhM6EOqlDfCpJxAio2FW110bz616vQha+TVIYKym0VBU9ozGggOz+Vdbzv9z w7dJoHFCPJqcTG2pP7QfeffqHaTv16CT2iBfgKyz3BWXqz2+F2t50CSlIeVAm+FR fb+NzkJ4YhtrUxe/2oiOBEwnnW3m8H+M3tFS9E4cqojQXcc4Om9+zTdCxZX6Evtm Fa0vE8Yamqecc6VqcybcdOK8VzB9PD1VRWxzVVSnBjcHLPS1p095a1ULzK87AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUL2Fpyc9t2w0JhpvhywqGVUBlRncwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAQw DQYJKoZIhvcNAQELBQADggEBADCFGpcWCFYzkvi/ln1uopDBaZtAY56dqMi6cmwd jLe0lDgG6fGEZ6c0Jm3ugROeHFyBVnKzRMPh32J8GpGMg6YLEYH5L6GpMC46rjKR TXLDkK44zrvRo8gm6N3dbRPO1g9LUMrFf0OjPOF71bRgnDTIbrhB8TUTip6ZGGyN UWvjmKYqzjX8GyKvrqtCha5RiiA1DzFyw5MDVJrGUrgwBNP/YNieJl2zDBJFUveX NY4JL5MQA9hh3IThVv4ENtjv+49U76Vprfca6Mf6hQTwqAvGSGYUPbP2j2/hddaQ bJJW5T/KmKYFC7IR13+bZNmsKB8ItZqxLWHhiHuABnzLScM= -----END CERTIFICATE-----Generated at Wed Apr 9 01:07:48 2025 by rpki-client