$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: 7N0ipjrp/kfGWPAKDp1YkSjAZrXRpJoxebnl8w7VyRA= Subject key identifier: 67:9F:51:4F:6D:34:50:5F:56:3B:5D:98:B2:6F:B1:6C:D7:91:D0:0D Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 3F42E976F71284A4DA09A80C0556B8AB8748BFB6 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa Signing time: Mon 12 Feb 2024 08:01:20 +0000 ROA not before: Mon 12 Feb 2024 07:56:20 +0000 ROA not after: Mon 10 Feb 2025 08:01:20 +0000 asID: 139972 IP address blocks: 2405:c440:9972::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:42:e9:76:f7:12:84:a4:da:09:a8:0c:05:56:b8:ab:87:48:bf:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Feb 12 07:56:20 2024 GMT Not After : Feb 10 08:01:20 2025 GMT Subject: CN=679F514F6D34505F563B5D98B26FB16CD791D00D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:56:0e:6a:22:7d:7f:c3:3d:be:43:03:db:11: 86:c2:10:03:f4:5e:1b:23:65:ec:c8:04:a8:04:d4: c8:95:71:ad:f5:af:34:31:49:5a:78:d3:e4:51:67: 34:90:43:de:f4:87:b0:bc:9d:f7:78:93:81:eb:1b: 2c:a9:af:eb:47:70:c4:d9:66:29:e2:3e:09:dc:e1: 28:f3:63:23:cc:70:8b:df:14:3e:10:ac:24:5d:de: a5:cc:75:5a:e0:3f:ea:49:48:06:39:84:c3:7d:24: 13:b5:42:68:65:b7:1b:c6:6d:07:bd:4f:ae:39:eb: 63:bc:9e:2c:f1:42:ea:18:eb:4c:88:05:d5:c1:46: 7c:05:16:de:1c:fd:44:93:a2:61:94:4e:c9:a2:f7: a1:f0:5f:44:7a:b8:34:55:74:d7:1a:77:43:e8:d4: aa:9a:4a:18:3e:e8:1f:e9:6b:2b:9a:dd:d3:aa:d9: 55:4c:67:19:7a:43:a4:8d:1d:0e:ee:b3:d2:93:86: f6:83:84:71:03:1e:10:d8:b8:49:ea:5b:7b:ba:03: 36:9f:b9:4f:25:62:03:e1:2d:af:37:9f:fc:94:74: aa:dd:75:e8:d2:9a:4c:c4:c8:d2:08:32:7b:ff:22: a5:c7:ec:82:22:08:b8:85:2f:68:55:ab:37:7b:1e: c4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:9F:51:4F:6D:34:50:5F:56:3B:5D:98:B2:6F:B1:6C:D7:91:D0:0D X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:9972::/48 Signature Algorithm: sha256WithRSAEncryption 3c:00:f5:67:5b:0b:22:e9:a6:11:00:5b:97:90:90:92:f5:b0: 52:30:db:f1:c0:96:1a:ad:bb:74:02:4b:45:69:1f:d7:b5:fb: 4d:d9:7a:d5:d4:22:54:b2:06:80:e4:64:52:96:dc:5d:75:5d: c4:5d:9f:fb:1b:da:1b:14:59:f9:2a:8d:02:af:c0:d7:9b:63: fe:4b:b5:d3:db:61:e3:71:a9:b9:b1:3f:64:31:ba:5e:1b:a0: ae:4f:e1:e5:ef:a9:cb:ef:9f:ed:cd:cc:f8:30:4d:1f:89:49: 44:56:0b:3a:ac:75:10:cb:b9:ad:28:56:f6:31:5e:61:cb:db: df:a4:3e:cd:a5:25:d2:15:f2:6f:bb:03:93:6c:83:97:1a:bb: 3e:5c:d8:67:2d:8e:14:b3:f2:d1:2f:ed:7d:e3:54:fa:ce:42: f0:c1:fd:37:df:9a:83:88:cf:4b:12:d2:79:82:d7:9f:d4:46: ea:41:35:70:75:15:2e:a2:21:57:0b:0a:48:51:8f:ff:f9:4c: 90:f7:b5:fd:74:9f:cf:28:8a:05:11:c1:e6:b1:eb:f5:fe:66: 84:ae:a2:fb:63:69:b9:7c:93:89:b8:5d:dc:31:4f:39:f1:82: 8a:8b:31:aa:2e:0f:9c:23:c2:a2:b3:f5:f0:84:7c:05:8d:53: 6e:ad:da:f8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUP0LpdvcShKTaCagMBVa4q4dIv7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAyMTIwNzU2MjBaFw0yNTAyMTAwODAxMjBaMDMxMTAvBgNV BAMTKDY3OUY1MTRGNkQzNDUwNUY1NjNCNUQ5OEIyNkZCMTZDRDc5MUQwMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRVg5qIn1/wz2+QwPbEYbCEAP0 XhsjZezIBKgE1MiVca31rzQxSVp40+RRZzSQQ970h7C8nfd4k4HrGyypr+tHcMTZ ZiniPgnc4SjzYyPMcIvfFD4QrCRd3qXMdVrgP+pJSAY5hMN9JBO1QmhltxvGbQe9 T64562O8nizxQuoY60yIBdXBRnwFFt4c/USTomGUTsmi96HwX0R6uDRVdNcad0Po 1KqaShg+6B/payua3dOq2VVMZxl6Q6SNHQ7us9KThvaDhHEDHhDYuEnqW3u6Azaf uU8lYgPhLa83n/yUdKrddejSmkzEyNIIMnv/IqXH7IIiCLiFL2hVqzd7HsRdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUZ59RT200UF9WO12Ysm+xbNeR0A0wHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzkzOTM3MzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BcRAmXIwDQYJKoZIhvcNAQELBQADggEBADwA9WdbCyLpphEAW5eQkJL1sFIw2/HA lhqtu3QCS0VpH9e1+03ZetXUIlSyBoDkZFKW3F11XcRdn/sb2hsUWfkqjQKvwNeb Y/5LtdPbYeNxqbmxP2Qxul4boK5P4eXvqcvvn+3NzPgwTR+JSURWCzqsdRDLua0o VvYxXmHL29+kPs2lJdIV8m+7A5Nsg5cauz5c2GctjhSz8tEv7X3jVPrOQvDB/Tff moOIz0sS0nmC15/URupBNXB1FS6iIVcLCkhRj//5TJD3tf10n88oigURweax6/X+ ZoSuovtjabl8k4m4XdwxTznxgoqLMaouD5wjwqKz9fCEfAWNU26t2vg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org