$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a363a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a363a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: UZJBFUmGOWcyCUvIIFKUbAc9VXTri6PNHyeB4hhkFvw= Subject key identifier: A0:2A:9D:7C:A5:BA:73:2E:D7:4F:89:AF:1B:05:93:77:DE:1E:FC:17 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 7FC48BF7643AE1C7E4FE8D560C285996D12E6C65 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a363a3a2f34382d3438203d3e20313339393732.roa Signing time: Sun 29 Dec 2024 09:00:01 +0000 ROA not before: Sun 29 Dec 2024 08:55:01 +0000 ROA not after: Sun 28 Dec 2025 09:00:01 +0000 asID: 139972 IP address blocks: 2405:c440:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c4:8b:f7:64:3a:e1:c7:e4:fe:8d:56:0c:28:59:96:d1:2e:6c:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Dec 29 08:55:01 2024 GMT Not After : Dec 28 09:00:01 2025 GMT Subject: CN=A02A9D7CA5BA732ED74F89AF1B059377DE1EFC17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:65:cc:9e:53:86:c6:40:15:2b:77:90:a6:67: bd:d5:4b:7a:af:78:22:ba:69:19:32:5f:fe:b6:cb: 0a:de:58:73:61:ff:d0:ff:89:86:54:7b:c5:43:ad: 98:ff:74:f1:cd:70:7d:aa:f4:ac:fe:3e:37:f5:93: 2b:45:d2:dd:56:81:18:d8:75:19:25:56:a5:2d:2f: 33:3c:65:c5:33:42:4c:1a:d3:7b:94:01:68:19:83: 6d:03:45:4f:cb:d9:49:08:f2:be:4b:34:0f:fb:2d: 6f:e7:e5:2e:a1:ee:3c:30:56:f8:3f:29:f3:cb:0b: e8:bc:a0:d6:3e:5b:55:00:b3:8a:b6:06:55:56:32: 64:98:59:58:54:a3:34:69:0d:c4:9c:19:f7:58:8b: 82:cc:da:d8:cf:17:85:2f:b1:34:29:5c:fc:5a:93: d6:bd:c9:02:ea:db:b7:7f:bc:42:54:b6:aa:d7:0c: 09:3a:99:66:b9:4b:30:83:83:11:87:a4:4e:81:b9: 62:ad:0a:26:1f:a4:30:98:86:db:97:e6:9a:14:c1: db:19:16:86:c9:ff:56:a4:3a:b5:06:8c:d2:1c:38: ed:c9:3f:0a:d7:ab:8a:89:ad:06:16:a0:d1:cd:87: 81:60:b3:ed:f4:51:8b:70:91:49:f2:e7:f9:ec:52: 49:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:2A:9D:7C:A5:BA:73:2E:D7:4F:89:AF:1B:05:93:77:DE:1E:FC:17 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a363a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:6::/48 Signature Algorithm: sha256WithRSAEncryption 98:5a:18:17:ed:41:eb:08:cf:a0:96:bd:23:5a:2b:e7:c2:02: 71:20:c5:55:72:e0:bc:24:7a:de:ae:e3:3f:9d:06:9e:98:2e: 66:a1:9e:85:e8:f3:33:88:3f:31:52:e3:e6:0e:e9:72:ed:e0: 68:69:63:53:9b:46:74:d3:e5:40:ef:14:07:74:9a:f5:ba:e4: da:12:c5:70:94:0c:4e:24:01:98:81:81:0f:c7:05:54:9c:aa: 43:f5:4d:02:8c:5f:dc:b9:b5:51:c8:69:14:d5:8a:73:61:db: cb:14:7c:a1:81:66:42:2c:bc:86:f9:b3:5c:ea:fc:34:a8:33: 17:75:06:eb:73:53:fe:84:03:45:b7:97:f8:f5:b7:77:cb:12: 8c:b9:23:1e:1c:61:03:dc:91:21:bb:f8:64:78:0c:21:81:d1: 19:95:d4:aa:56:97:d2:60:de:76:1c:d4:b1:18:07:97:6c:08: 8a:f0:7b:f8:dd:53:fb:7f:3b:55:01:71:08:98:e9:23:db:a3: 33:80:77:bc:2b:a5:c4:1e:56:35:fc:fc:f4:92:7d:73:d0:92: e0:07:fe:74:bb:db:86:99:c6:7b:4b:0e:a4:c8:04:93:9a:24: b2:c3:b8:30:66:b8:df:1e:0b:91:c2:d4:1e:3c:5a:40:3e:d0: c7:a0:4e:6d -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUf8SL92Q64cfk/o1WDChZltEubGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDEyMjkwODU1MDFaFw0yNTEyMjgwOTAwMDFaMDMxMTAvBgNV BAMTKEEwMkE5RDdDQTVCQTczMkVENzRGODlBRjFCMDU5Mzc3REUxRUZDMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHZcyeU4bGQBUrd5CmZ73VS3qv eCK6aRkyX/62ywreWHNh/9D/iYZUe8VDrZj/dPHNcH2q9Kz+Pjf1kytF0t1WgRjY dRklVqUtLzM8ZcUzQkwa03uUAWgZg20DRU/L2UkI8r5LNA/7LW/n5S6h7jwwVvg/ KfPLC+i8oNY+W1UAs4q2BlVWMmSYWVhUozRpDcScGfdYi4LM2tjPF4UvsTQpXPxa k9a9yQLq27d/vEJUtqrXDAk6mWa5SzCDgxGHpE6BuWKtCiYfpDCYhtuX5poUwdsZ FobJ/1akOrUGjNIcOO3JPwrXq4qJrQYWoNHNh4Fgs+30UYtwkUny5/nsUknDAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUoCqdfKW6cy7XT4mvGwWTd94e/BcwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAYw DQYJKoZIhvcNAQELBQADggEBAJhaGBftQesIz6CWvSNaK+fCAnEgxVVy4Lwket6u 4z+dBp6YLmahnoXo8zOIPzFS4+YO6XLt4GhpY1ObRnTT5UDvFAd0mvW65NoSxXCU DE4kAZiBgQ/HBVScqkP1TQKMX9y5tVHIaRTVinNh28sUfKGBZkIsvIb5s1zq/DSo Mxd1ButzU/6EA0W3l/j1t3fLEoy5Ix4cYQPckSG7+GR4DCGB0RmV1KpWl9Jg3nYc 1LEYB5dsCIrwe/jdU/t/O1UBcQiY6SPbozOAd7wrpcQeVjX8/PSSfXPQkuAH/nS7 24aZxntLDqTIBJOaJLLDuDBmuN8eC5HC1B48WkA+0MegTm0= -----END CERTIFICATE-----Generated at Sun Apr 6 13:36:43 2025 by rpki-client