$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a383a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a383a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: hv4G6xf0aOIXBbOwuUCaEb1jHN4mFF14r2i1B04Oync= Subject key identifier: 9E:C9:40:AC:0E:8A:E1:5F:37:D5:8D:AE:56:C7:E2:54:09:31:DE:42 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 4ACC1EFDF236D5B7BCED51ABD77277F376BF44E8 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a383a3a2f34382d3438203d3e20313339393732.roa Signing time: Sun 28 Jan 2024 08:00:00 +0000 ROA not before: Sun 28 Jan 2024 07:55:00 +0000 ROA not after: Sun 26 Jan 2025 08:00:00 +0000 asID: 139972 IP address blocks: 2405:c440:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:cc:1e:fd:f2:36:d5:b7:bc:ed:51:ab:d7:72:77:f3:76:bf:44:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 28 07:55:00 2024 GMT Not After : Jan 26 08:00:00 2025 GMT Subject: CN=9EC940AC0E8AE15F37D58DAE56C7E2540931DE42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ae:6f:c0:7a:ef:f6:a7:87:39:de:ac:66:e2: 71:38:9a:c2:38:43:6a:04:44:78:56:78:68:12:fd: 8b:93:59:18:70:48:5a:e7:52:a9:9d:ae:7f:99:fe: b5:fb:0c:04:c2:e0:5b:b8:43:ba:a4:d3:97:36:c2: 78:ed:36:8e:b8:fc:94:21:b4:a9:eb:24:03:4b:98: 94:cd:a4:1c:a0:e5:1f:be:9f:a9:e7:fb:c6:05:65: 67:11:0d:13:5a:da:cc:18:91:2e:c7:72:bf:fe:ba: 3d:e9:72:b6:4d:34:a3:b3:f6:0c:9d:0a:cf:56:89: 35:d4:d4:dd:6a:0b:61:d1:a6:db:df:fa:32:c9:53: 98:b1:c3:ec:67:22:7e:b4:b7:6a:47:35:b0:0d:f0: 35:08:0b:af:c7:91:34:9c:cd:8e:03:76:71:e1:84: f6:69:ad:c8:a8:de:5d:a1:10:91:cf:af:42:49:6d: 72:36:a3:cf:80:5f:d2:56:dd:2f:65:82:8f:f7:dc: 2d:f9:d3:11:0f:f0:19:f2:7f:44:55:62:3b:55:82: 16:66:a1:3a:9f:03:cc:4e:7f:f7:42:95:3e:56:06: ab:99:38:f5:cb:1d:f3:46:95:87:87:fe:e6:9f:88: b7:77:60:e5:27:95:0d:d8:e2:6a:ea:38:78:2f:7e: af:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C9:40:AC:0E:8A:E1:5F:37:D5:8D:AE:56:C7:E2:54:09:31:DE:42 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a383a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:8::/48 Signature Algorithm: sha256WithRSAEncryption a8:1c:42:37:d7:56:47:55:7e:93:77:de:66:eb:cb:4a:06:92: 36:87:a1:3e:b2:26:ad:74:b9:c2:28:47:5d:e2:df:09:96:4d: 9c:31:32:9c:b8:b7:51:c4:5d:44:2c:07:da:09:6b:5b:87:8e: 06:98:1d:86:1f:82:a9:b5:fb:8d:d8:75:4c:f6:7f:6a:4f:d1: 94:9d:92:08:67:a8:d0:56:41:65:cc:a9:83:59:7d:cb:e5:6a: 98:a1:52:e1:05:e2:5f:73:1e:57:75:5c:89:93:07:62:fa:75: 92:4a:60:df:3d:21:1d:e5:cd:5b:84:bc:82:ef:f6:56:5d:a0: 96:24:b8:d1:47:0b:af:e0:25:c9:e0:bb:9c:a2:e5:19:d8:ac: a9:74:4b:86:56:b5:94:7b:bf:96:4a:9a:47:af:65:2a:4f:41: 47:e4:9b:7c:bb:6d:58:dc:aa:a3:e4:d1:ea:ba:4b:86:dc:86: 6c:d3:5b:0b:a0:1f:95:e1:8d:5d:b7:87:16:1a:10:4b:52:57: b6:35:0a:25:73:3c:27:bc:d4:a7:9e:ae:35:0d:20:4d:c5:c5: 11:32:61:0b:56:79:3f:f2:84:01:d7:06:ae:53:7f:a9:d2:9e: 27:a8:be:f3:e1:60:3e:0a:74:85:8e:92:ee:14:f9:cd:0a:b3: 36:43:89:f5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSswe/fI21be87VGr13J383a/ROgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAxMjgwNzU1MDBaFw0yNTAxMjYwODAwMDBaMDMxMTAvBgNV BAMTKDlFQzk0MEFDMEU4QUUxNUYzN0Q1OERBRTU2QzdFMjU0MDkzMURFNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDrm/Aeu/2p4c53qxm4nE4msI4 Q2oERHhWeGgS/YuTWRhwSFrnUqmdrn+Z/rX7DATC4Fu4Q7qk05c2wnjtNo64/JQh tKnrJANLmJTNpByg5R++n6nn+8YFZWcRDRNa2swYkS7Hcr/+uj3pcrZNNKOz9gyd Cs9WiTXU1N1qC2HRptvf+jLJU5ixw+xnIn60t2pHNbAN8DUIC6/HkTSczY4DdnHh hPZprcio3l2hEJHPr0JJbXI2o8+AX9JW3S9lgo/33C350xEP8Bnyf0RVYjtVghZm oTqfA8xOf/dClT5WBquZOPXLHfNGlYeH/uafiLd3YOUnlQ3Y4mrqOHgvfq+fAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUnslArA6K4V831Y2uVsfiVAkx3kIwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAgw DQYJKoZIhvcNAQELBQADggEBAKgcQjfXVkdVfpN33mbry0oGkjaHoT6yJq10ucIo R13i3wmWTZwxMpy4t1HEXUQsB9oJa1uHjgaYHYYfgqm1+43YdUz2f2pP0ZSdkghn qNBWQWXMqYNZfcvlapihUuEF4l9zHld1XImTB2L6dZJKYN89IR3lzVuEvILv9lZd oJYkuNFHC6/gJcngu5yi5RnYrKl0S4ZWtZR7v5ZKmkevZSpPQUfkm3y7bVjcqqPk 0eq6S4bchmzTWwugH5XhjV23hxYaEEtSV7Y1CiVzPCe81KeerjUNIE3FxREyYQtW eT/yhAHXBq5Tf6nSnieovvPhYD4KdIWOku4U+c0KszZDifU= -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:16 2024 by rpki-client on console-ams.rpki-client.org