$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: gxFT1hN4vKCMbqK8rVqotf9q1EUgIkb99qbvSh7aczw= Subject key identifier: 6B:D7:EF:BB:32:5D:45:6C:29:E6:7F:DE:A8:E3:9C:B3:62:C9:82:71 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 4009B4146A88E9A4E42E4667E30CA0E42728F0E4 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 03 Jan 2024 08:01:59 +0000 ROA not before: Wed 03 Jan 2024 07:56:59 +0000 ROA not after: Wed 01 Jan 2025 08:01:59 +0000 asID: 139972 IP address blocks: 2405:c440:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:09:b4:14:6a:88:e9:a4:e4:2e:46:67:e3:0c:a0:e4:27:28:f0:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 3 07:56:59 2024 GMT Not After : Jan 1 08:01:59 2025 GMT Subject: CN=6BD7EFBB325D456C29E67FDEA8E39CB362C98271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3d:ec:e2:3a:4e:cb:d6:dd:d6:01:09:c6:8b: 32:7d:4f:58:65:24:4a:78:1b:16:12:7d:ff:f5:16: 4f:dc:aa:a7:28:e2:b8:d6:02:f5:f5:80:6e:ce:5c: 34:b0:6c:1b:db:cd:1a:6a:f9:83:d8:77:68:40:b6: 3e:69:a4:12:ce:44:f3:4a:b3:ef:20:23:e0:80:60: f7:7e:f2:7e:cf:e9:e8:dc:e9:00:bd:06:ee:18:68: 40:b7:1e:bc:db:ca:38:05:76:93:4f:e4:36:b5:1e: c2:6f:14:85:e5:a3:98:e2:8a:4d:05:0a:f2:f2:43: 32:53:f6:43:61:7c:ea:65:aa:9c:21:c5:5f:be:8d: 06:c7:a8:40:60:59:86:0c:9a:c4:c8:f4:db:d9:e9: 0d:c3:8e:16:bb:d2:a3:c4:96:23:b2:a6:95:66:c6: 6d:3b:d9:ed:83:94:9f:41:bd:2a:d7:e4:0b:88:7c: 93:43:7e:17:00:ce:96:a7:6f:81:a2:c6:04:11:ee: 94:ef:83:c9:3d:8e:9d:77:d4:35:c7:09:6a:14:c0: 0b:95:69:6b:9b:ee:7a:aa:95:0f:5c:01:9f:c3:12: 55:be:97:76:c7:90:00:dd:5b:b6:a6:c3:51:c6:4c: ad:9e:9e:5a:bb:37:47:b6:c3:e9:ff:83:d4:c6:db: d2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D7:EF:BB:32:5D:45:6C:29:E6:7F:DE:A8:E3:9C:B3:62:C9:82:71 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:5::/48 Signature Algorithm: sha256WithRSAEncryption 1e:9c:c6:38:36:a8:3e:3f:27:40:6d:7b:ad:08:0c:82:25:43: 54:e3:ed:d6:0d:d7:29:e5:f0:d0:a1:34:69:35:ad:9b:71:f9: 74:de:5b:9a:37:78:49:2a:69:99:34:14:c1:b4:48:9e:d1:40: 1d:cb:23:00:a8:52:c0:70:de:c0:74:27:eb:59:b6:d8:36:49: 89:6c:46:b6:8c:8c:1b:de:91:5c:10:66:64:b4:a5:ca:e3:9a: 07:04:f7:ed:e9:04:17:6c:2d:9a:c6:ff:a0:3b:35:26:db:c9: 7c:7a:8e:31:28:cd:3a:52:ed:d9:af:9f:5e:31:c7:35:4b:29: 2b:47:f5:b2:53:67:c7:68:15:f8:9b:0b:9f:37:fa:ee:f4:c1: 4d:fa:6a:62:ea:62:e1:c2:f2:11:e2:ff:16:ee:bc:7b:c3:dd: 86:5b:3e:29:74:d2:ad:6a:84:2d:27:61:4c:45:1f:24:40:5a: 49:24:17:1f:cf:28:67:17:ab:1d:eb:8d:46:d6:a4:bb:4c:97: eb:b0:a5:ee:9e:c9:f1:3b:c2:db:1a:49:fa:a7:e8:fd:31:e1: 1d:47:36:d3:0b:1d:55:ea:6e:b7:4c:14:fd:64:19:f1:d8:a6: a9:dd:df:44:fa:b1:bd:71:89:dd:09:e1:9e:57:b9:c0:55:df: ae:46:c9:93 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQAm0FGqI6aTkLkZn4wyg5Cco8OQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAxMDMwNzU2NTlaFw0yNTAxMDEwODAxNTlaMDMxMTAvBgNV BAMTKDZCRDdFRkJCMzI1RDQ1NkMyOUU2N0ZERUE4RTM5Q0IzNjJDOTgyNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmPeziOk7L1t3WAQnGizJ9T1hl JEp4GxYSff/1Fk/cqqco4rjWAvX1gG7OXDSwbBvbzRpq+YPYd2hAtj5ppBLORPNK s+8gI+CAYPd+8n7P6ejc6QC9Bu4YaEC3HrzbyjgFdpNP5Da1HsJvFIXlo5jiik0F CvLyQzJT9kNhfOplqpwhxV++jQbHqEBgWYYMmsTI9NvZ6Q3Djha70qPEliOyppVm xm072e2DlJ9BvSrX5AuIfJNDfhcAzpanb4GixgQR7pTvg8k9jp131DXHCWoUwAuV aWub7nqqlQ9cAZ/DElW+l3bHkADdW7amw1HGTK2enlq7N0e2w+n/g9TG29JtAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUa9fvuzJdRWwp5n/eqOOcs2LJgnEwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAUw DQYJKoZIhvcNAQELBQADggEBAB6cxjg2qD4/J0Bte60IDIIlQ1Tj7dYN1ynl8NCh NGk1rZtx+XTeW5o3eEkqaZk0FMG0SJ7RQB3LIwCoUsBw3sB0J+tZttg2SYlsRraM jBvekVwQZmS0pcrjmgcE9+3pBBdsLZrG/6A7NSbbyXx6jjEozTpS7dmvn14xxzVL KStH9bJTZ8doFfibC583+u70wU36amLqYuHC8hHi/xbuvHvD3YZbPil00q1qhC0n YUxFHyRAWkkkFx/PKGcXqx3rjUbWpLtMl+uwpe6eyfE7wtsaSfqn6P0x4R1HNtML HVXqbrdMFP1kGfHYpqnd30T6sb1xid0J4Z5XucBV365GyZM= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org