$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: Pu0wJEo+XXadVijB7isyEjKAERKeoNWdSqwY7VuwWUs= Subject key identifier: D3:75:91:6E:49:44:11:65:65:CF:1B:CE:B2:DA:6B:BE:B7:E7:CB:3D Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 1596E6595651D2E8B06CFBF5D4CA42725E545F7B Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa Signing time: Mon 13 Jan 2025 08:02:03 +0000 ROA not before: Mon 13 Jan 2025 07:57:03 +0000 ROA not after: Mon 12 Jan 2026 08:02:03 +0000 asID: 139972 IP address blocks: 2405:c440:9972::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 21:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:96:e6:59:56:51:d2:e8:b0:6c:fb:f5:d4:ca:42:72:5e:54:5f:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 13 07:57:03 2025 GMT Not After : Jan 12 08:02:03 2026 GMT Subject: CN=D375916E4944116565CF1BCEB2DA6BBEB7E7CB3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ae:d5:a2:ae:b7:3c:e8:f2:78:ff:97:a7:53: 51:07:4c:00:d3:01:54:5c:64:96:1e:8a:84:b7:97: 0d:89:6e:7c:53:af:cf:fe:ac:2f:c0:9e:6a:9b:34: 44:a5:1e:8a:3a:a3:9e:53:14:69:f5:dc:e3:8d:54: 72:0c:b3:0f:d0:a2:7e:45:d2:c9:21:8b:fb:ee:b7: 70:f8:66:9d:5e:9d:74:f3:34:5b:05:12:d9:fe:a1: 23:a1:ee:19:5a:ff:7f:45:54:a7:ee:2a:50:71:19: 0b:bf:d1:ba:63:b5:42:15:75:34:9f:6f:26:61:4f: ff:a6:e3:71:c7:be:6d:91:b9:b4:bd:86:4c:c2:6b: 6b:7b:63:89:8a:8d:ed:3c:3a:05:f8:56:2d:84:04: d4:e4:33:89:37:2f:67:c1:4b:33:39:42:47:13:83: 32:26:53:9b:3f:59:13:3a:b6:22:a5:08:67:19:77: 4b:e0:2d:35:e0:60:33:13:93:fe:7b:ee:d7:97:fd: 1d:cb:52:d5:b9:b4:60:94:fa:19:ce:d1:f0:02:70: 5a:a9:a1:9d:23:fa:8a:1a:a0:8f:39:09:c8:d5:23: 6f:e2:85:92:0b:6c:dc:89:6f:85:50:83:fc:56:00: a1:51:e0:2a:64:96:70:fc:96:6f:17:43:2a:dd:c0: 05:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:75:91:6E:49:44:11:65:65:CF:1B:CE:B2:DA:6B:BE:B7:E7:CB:3D X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:9972::/48 Signature Algorithm: sha256WithRSAEncryption 92:36:a6:65:10:8c:69:05:16:d0:a8:06:50:ed:28:b0:3d:5f: a9:0c:94:08:1a:7f:b1:ea:a6:d7:4e:93:6b:89:11:36:05:6a: 21:61:dd:62:52:4f:21:b7:63:45:1f:4a:f2:3b:60:bb:78:07: fd:9b:9d:12:4a:fa:94:82:b3:22:57:c5:e0:92:ea:31:26:bd: 03:a1:38:b3:4f:64:fa:ac:ea:1a:d3:7b:84:37:70:b0:c7:16: 6d:86:3d:fe:56:66:2c:b4:09:4b:87:30:05:d5:70:45:0e:ad: 6b:71:33:95:82:51:07:7a:89:32:a3:3a:1d:38:b0:e7:58:7a: 74:d6:77:75:0b:a4:bf:1b:a5:19:06:cc:88:35:dd:56:90:18: eb:3c:51:50:69:83:9b:91:70:0f:61:84:0c:94:66:71:23:b2: 65:35:35:aa:2f:96:45:77:3f:e7:f1:03:6f:b4:8c:5c:ed:6d: a5:c8:7f:5a:e3:d6:41:8a:8c:b3:88:61:9a:52:ac:a1:f1:dc: a8:9d:61:2c:04:3a:4f:7a:b3:69:12:d2:96:f8:35:51:fe:ed: c3:22:42:72:25:b3:bb:33:d5:9a:69:55:ee:47:5d:11:aa:8a: d3:f4:a5:a3:40:c1:51:27:b1:57:e3:a7:fd:80:e0:a5:27:bb: 37:0d:63:b7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUFZbmWVZR0uiwbPv11MpCcl5UX3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTAxMTMwNzU3MDNaFw0yNjAxMTIwODAyMDNaMDMxMTAvBgNV BAMTKEQzNzU5MTZFNDk0NDExNjU2NUNGMUJDRUIyREE2QkJFQjdFN0NCM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3rtWirrc86PJ4/5enU1EHTADT AVRcZJYeioS3lw2JbnxTr8/+rC/AnmqbNESlHoo6o55TFGn13OONVHIMsw/Qon5F 0skhi/vut3D4Zp1enXTzNFsFEtn+oSOh7hla/39FVKfuKlBxGQu/0bpjtUIVdTSf byZhT/+m43HHvm2RubS9hkzCa2t7Y4mKje08OgX4Vi2EBNTkM4k3L2fBSzM5QkcT gzImU5s/WRM6tiKlCGcZd0vgLTXgYDMTk/577teX/R3LUtW5tGCU+hnO0fACcFqp oZ0j+ooaoI85CcjVI2/ihZILbNyJb4VQg/xWAKFR4CpklnD8lm8XQyrdwAWjAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU03WRbklEEWVlzxvOstprvrfnyz0wHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzkzOTM3MzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BcRAmXIwDQYJKoZIhvcNAQELBQADggEBAJI2pmUQjGkFFtCoBlDtKLA9X6kMlAga f7HqptdOk2uJETYFaiFh3WJSTyG3Y0UfSvI7YLt4B/2bnRJK+pSCsyJXxeCS6jEm vQOhOLNPZPqs6hrTe4Q3cLDHFm2GPf5WZiy0CUuHMAXVcEUOrWtxM5WCUQd6iTKj Oh04sOdYenTWd3ULpL8bpRkGzIg13VaQGOs8UVBpg5uRcA9hhAyUZnEjsmU1Naov lkV3P+fxA2+0jFztbaXIf1rj1kGKjLOIYZpSrKHx3KidYSwEOk96s2kS0pb4NVH+ 7cMiQnIls7sz1ZppVe5HXRGqitP0paNAwVEnsVfjp/2A4KUnuzcNY7c= -----END CERTIFICATE-----Generated at Sun Apr 6 13:36:45 2025 by rpki-client