$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: gyPh3b00K9+EtWewGNdy24gtbijTmPkvS+xaYyHiNaA= Subject key identifier: 2B:A9:59:FE:D6:93:EE:68:3F:8A:2C:64:16:4F:4C:23:03:B5:0D:00 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 31FFAF81EA9FD78D26CAE9B71A36B41416579AB5 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa Signing time: Wed 04 Dec 2024 09:03:05 +0000 ROA not before: Wed 04 Dec 2024 08:58:05 +0000 ROA not after: Wed 03 Dec 2025 09:03:05 +0000 asID: 139972 IP address blocks: 2405:c440:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ff:af:81:ea:9f:d7:8d:26:ca:e9:b7:1a:36:b4:14:16:57:9a:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Dec 4 08:58:05 2024 GMT Not After : Dec 3 09:03:05 2025 GMT Subject: CN=2BA959FED693EE683F8A2C64164F4C2303B50D00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:87:f9:f2:8a:03:9a:6c:0e:4b:5f:d3:cc:88: 4d:a8:61:20:04:6d:35:97:b0:db:a8:c6:01:14:45: c3:37:bb:38:c0:16:92:42:17:0b:72:f8:67:82:f2: 32:55:34:59:1c:28:ab:03:ae:3c:7f:09:5c:7d:ff: 98:cb:14:92:b2:b2:37:a2:89:7e:94:d8:6d:e8:b8: 6b:0d:0f:ad:6b:87:61:77:d6:50:03:0f:72:f7:2e: 76:14:d5:48:75:82:eb:4d:59:27:58:72:74:3d:d3: 7e:ff:6d:14:87:b5:48:5c:0b:34:2b:32:ad:9b:4f: be:4f:0a:0f:f2:02:37:ff:5d:0c:58:9c:7e:0f:9b: 80:3c:ad:5d:99:98:2d:d9:e7:64:38:29:20:c3:a8: 94:33:c1:10:50:60:83:10:c7:48:bd:bd:01:14:15: a5:0e:cf:11:b0:66:c3:b2:22:d7:04:ea:cb:37:2d: 8d:bf:07:eb:c5:a1:3d:d2:5d:89:48:56:70:99:85: 70:1c:38:50:0e:bd:32:a2:c0:a7:81:91:93:e8:76: 6a:d2:02:be:db:fa:ce:81:51:4d:08:8e:ce:17:92: 48:27:9f:c1:36:0f:87:6b:b2:09:76:6e:92:14:a1: 0a:a4:b4:ef:9e:92:aa:6c:9a:ae:59:67:1c:46:f9: d9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A9:59:FE:D6:93:EE:68:3F:8A:2C:64:16:4F:4C:23:03:B5:0D:00 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a353a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:5::/48 Signature Algorithm: sha256WithRSAEncryption 9b:8e:c5:16:09:f0:fe:df:5d:67:58:c4:90:0e:e8:2e:f3:c9: 72:d5:a1:58:b1:2f:d5:b0:3f:fd:70:a3:f7:11:bc:44:14:0c: 20:7e:4c:65:2c:19:b1:0d:f3:5c:ea:8a:40:c0:6e:44:ca:c6: 23:d7:93:1c:16:27:8e:26:bc:f7:56:2f:dc:4f:a5:4d:d5:b8: 34:29:ff:f2:b9:49:89:0a:8c:cb:f8:47:26:f6:a3:01:4e:fd: 00:2b:6e:3a:61:3d:9c:78:d2:da:9b:21:13:81:2b:e4:ef:25: d6:e0:60:7a:aa:ac:98:a0:f0:b9:f0:ea:4f:24:9d:63:0e:08: d2:59:0d:a6:aa:d0:a3:40:64:41:f0:28:16:35:ef:a4:5c:11: bd:6a:cd:2b:27:fe:c9:30:49:c3:1c:4a:ae:72:7e:da:1a:14: 2c:5d:c0:dc:d1:fa:ea:cd:a0:5d:c8:bd:24:9f:6f:94:0c:f3: 49:67:f8:03:80:5f:25:fb:fa:b5:f5:fb:dc:05:f8:18:5e:0f: 7c:77:9b:3d:4b:e5:e5:a6:69:f2:fb:17:48:6e:dc:c3:8b:9b: 74:b3:59:8a:27:ab:82:40:1b:39:76:49:c8:34:1f:87:9b:91: 88:19:3e:58:3f:59:29:89:08:d3:20:3f:08:e6:4b:c1:58:b1: 23:8c:c0:ce -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMf+vgeqf140myum3Gja0FBZXmrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDEyMDQwODU4MDVaFw0yNTEyMDMwOTAzMDVaMDMxMTAvBgNV BAMTKDJCQTk1OUZFRDY5M0VFNjgzRjhBMkM2NDE2NEY0QzIzMDNCNTBEMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJh/nyigOabA5LX9PMiE2oYSAE bTWXsNuoxgEURcM3uzjAFpJCFwty+GeC8jJVNFkcKKsDrjx/CVx9/5jLFJKysjei iX6U2G3ouGsND61rh2F31lADD3L3LnYU1Uh1gutNWSdYcnQ9037/bRSHtUhcCzQr Mq2bT75PCg/yAjf/XQxYnH4Pm4A8rV2ZmC3Z52Q4KSDDqJQzwRBQYIMQx0i9vQEU FaUOzxGwZsOyItcE6ss3LY2/B+vFoT3SXYlIVnCZhXAcOFAOvTKiwKeBkZPodmrS Ar7b+s6BUU0Ijs4Xkkgnn8E2D4drsgl2bpIUoQqktO+ekqpsmq5ZZxxG+dmxAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUK6lZ/taT7mg/iixkFk9MIwO1DQAwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAUw DQYJKoZIhvcNAQELBQADggEBAJuOxRYJ8P7fXWdYxJAO6C7zyXLVoVixL9WwP/1w o/cRvEQUDCB+TGUsGbEN81zqikDAbkTKxiPXkxwWJ44mvPdWL9xPpU3VuDQp//K5 SYkKjMv4Ryb2owFO/QArbjphPZx40tqbIROBK+TvJdbgYHqqrJig8Lnw6k8knWMO CNJZDaaq0KNAZEHwKBY176RcEb1qzSsn/skwScMcSq5yftoaFCxdwNzR+urNoF3I vSSfb5QM80ln+AOAXyX7+rX1+9wF+BheD3x3mz1L5eWmafL7F0hu3MOLm3SzWYon q4JAGzl2Scg0H4ebkYgZPlg/WSmJCNMgPwjmS8FYsSOMwM4= -----END CERTIFICATE-----Generated at Sun Apr 6 13:34:19 2025 by rpki-client