$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: jfDH9aDXTAzjeKh2y2/zvqCljZwNuc6UcK9+a7vkMSw= Subject key identifier: 59:2C:4C:76:51:4B:09:C2:FB:74:80:99:32:9F:DA:88:39:1F:F6:6F Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 4F1DE30766D78CDDD52A4FD9960486038CAB2769 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa Signing time: Sun 28 Jan 2024 08:00:01 +0000 ROA not before: Sun 28 Jan 2024 07:55:01 +0000 ROA not after: Sun 26 Jan 2025 08:00:01 +0000 asID: 139972 IP address blocks: 2405:c440:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:1d:e3:07:66:d7:8c:dd:d5:2a:4f:d9:96:04:86:03:8c:ab:27:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Jan 28 07:55:01 2024 GMT Not After : Jan 26 08:00:01 2025 GMT Subject: CN=592C4C76514B09C2FB748099329FDA88391FF66F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b9:f3:f9:c1:32:03:7c:f6:63:7f:11:c7:e5: 3b:37:a5:1a:d3:02:4e:6a:09:ad:6e:9b:18:a7:b7: d9:50:b1:f2:77:61:15:76:34:71:72:22:13:4c:c9: c1:24:b9:2b:92:1b:56:ea:ef:2d:db:4b:1e:45:3c: 0d:f0:81:2c:ae:e1:95:18:41:c1:61:7d:df:e7:c0: db:a3:d4:30:f7:37:53:77:12:48:cd:db:05:dc:a7: 05:67:f9:3f:cf:18:45:61:b9:da:f5:3b:b1:39:30: 23:f5:0f:87:c2:39:a7:31:cd:8a:89:49:6d:77:d0: 6d:1b:ea:3e:d2:fe:7c:00:2f:b5:4e:d2:86:f1:06: 91:42:c4:b5:c5:bd:df:59:d4:56:c4:c5:4b:4a:76: 07:60:ae:48:c3:6d:78:10:0a:d6:c9:ae:89:43:ba: ab:94:b8:b3:21:13:90:5f:d5:05:de:72:73:e5:37: d6:bb:d7:bf:ca:20:7e:98:46:c8:90:c0:c8:6a:92: 0d:d3:91:d3:cf:a8:4b:4d:ec:06:e6:01:a1:d6:9c: cc:cd:64:fc:92:03:41:ff:75:8f:e2:b7:01:eb:a6: d1:a9:d9:8f:81:73:37:41:79:7b:d7:7d:73:fc:39: 43:91:a7:85:f8:15:fe:75:3a:f9:98:46:20:72:aa: 89:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:2C:4C:76:51:4B:09:C2:FB:74:80:99:32:9F:DA:88:39:1F:F6:6F X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:9::/48 Signature Algorithm: sha256WithRSAEncryption 79:9d:b8:3c:aa:b4:8b:06:5c:4f:9c:eb:9d:52:ae:9b:23:b2: a2:46:c3:12:fe:06:03:39:47:a6:8f:54:cc:de:5e:1f:e2:e4: 50:f2:57:bc:b7:a5:1a:d9:ec:95:be:fa:bf:84:ae:fe:a6:e3: 34:03:f4:2d:1d:f1:5e:f4:ab:78:ff:a0:8f:43:c6:1f:81:ca: 8c:45:31:63:b2:b7:19:45:30:7b:fe:d9:e7:c5:62:bf:16:ae: 1c:c3:a6:b4:5f:28:8c:f8:22:45:38:b7:b5:f3:79:7e:e9:5a: 20:e5:a0:8a:61:c1:68:ae:ad:f8:4c:4c:83:6b:82:1e:06:1f: 68:99:80:27:70:04:66:ef:34:76:ea:ba:b5:7b:aa:5d:09:b2: 3b:78:86:d2:91:2b:10:5f:39:0c:53:ae:d7:74:76:e7:80:66: b2:16:c5:69:6e:7d:69:04:4b:d6:68:a1:3c:c3:8e:ba:b8:e6: 27:48:55:4f:8e:db:53:fb:ac:ef:57:b3:4b:c1:67:5f:f1:46: d4:94:44:80:0e:15:f8:a3:ef:d8:c7:97:9a:5e:1f:da:a8:c0: ff:b7:0b:ba:4a:c2:eb:3a:0a:b7:80:33:92:a7:ed:a8:82:01: ef:c3:24:16:8b:8a:a1:b2:9a:41:fc:80:1e:0d:78:8b:65:8f: 3c:6a:15:ec -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTx3jB2bXjN3VKk/ZlgSGA4yrJ2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAxMjgwNzU1MDFaFw0yNTAxMjYwODAwMDFaMDMxMTAvBgNV BAMTKDU5MkM0Qzc2NTE0QjA5QzJGQjc0ODA5OTMyOUZEQTg4MzkxRkY2NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2ufP5wTIDfPZjfxHH5Ts3pRrT Ak5qCa1umxint9lQsfJ3YRV2NHFyIhNMycEkuSuSG1bq7y3bSx5FPA3wgSyu4ZUY QcFhfd/nwNuj1DD3N1N3EkjN2wXcpwVn+T/PGEVhudr1O7E5MCP1D4fCOacxzYqJ SW130G0b6j7S/nwAL7VO0obxBpFCxLXFvd9Z1FbExUtKdgdgrkjDbXgQCtbJrolD uquUuLMhE5Bf1QXecnPlN9a717/KIH6YRsiQwMhqkg3TkdPPqEtN7AbmAaHWnMzN ZPySA0H/dY/itwHrptGp2Y+BczdBeXvXfXP8OUORp4X4Ff51OvmYRiByqomlAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUWSxMdlFLCcL7dICZMp/aiDkf9m8wHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAAkw DQYJKoZIhvcNAQELBQADggEBAHmduDyqtIsGXE+c651SrpsjsqJGwxL+BgM5R6aP VMzeXh/i5FDyV7y3pRrZ7JW++r+Erv6m4zQD9C0d8V70q3j/oI9Dxh+ByoxFMWOy txlFMHv+2efFYr8WrhzDprRfKIz4IkU4t7XzeX7pWiDloIphwWiurfhMTINrgh4G H2iZgCdwBGbvNHbqurV7ql0Jsjt4htKRKxBfOQxTrtd0dueAZrIWxWlufWkES9Zo oTzDjrq45idIVU+O21P7rO9Xs0vBZ1/xRtSURIAOFfij79jHl5peH9qowP+3C7pK wus6CreAM5Kn7aiCAe/DJBaLiqGymkH8gB4NeItljzxqFew= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org