$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a653a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a653a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: /32+MIuyZoPK3U+SXtP7kf9Tw0ySuGXTxRZXf0M/44c= Subject key identifier: D9:D4:B1:7F:46:40:15:A8:66:49:C1:95:77:21:85:F0:E7:5D:F5:1D Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 75BF0E538B4AF67B1889C71299CED37637EB5320 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a653a3a2f34382d3438203d3e20313339393732.roa Signing time: Sat 24 Feb 2024 23:00:00 +0000 ROA not before: Sat 24 Feb 2024 22:55:00 +0000 ROA not after: Sat 22 Feb 2025 23:00:00 +0000 asID: 139972 IP address blocks: 2405:c440:e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:bf:0e:53:8b:4a:f6:7b:18:89:c7:12:99:ce:d3:76:37:eb:53:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Feb 24 22:55:00 2024 GMT Not After : Feb 22 23:00:00 2025 GMT Subject: CN=D9D4B17F464015A86649C195772185F0E75DF51D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cc:8b:fa:f5:cf:75:91:63:70:4f:4c:c0:52: c1:b5:24:29:98:f5:11:c5:a1:7c:fa:cd:fd:d5:29: 2e:23:ca:e6:19:fb:70:ec:7b:9a:80:00:19:b9:84: e7:9f:4f:4d:96:cf:7c:17:75:e1:aa:91:c3:0f:0e: c6:ca:d8:c4:65:cb:d0:d3:ef:03:b1:62:46:31:87: 3a:a5:67:a6:fe:24:77:0e:33:7d:4a:0e:74:6d:03: 89:30:ca:e9:85:f3:f9:a7:ab:b7:28:6c:af:bd:22: 7f:c6:9f:f9:e6:43:3b:52:a9:28:24:d2:13:fb:41: 7b:6b:f2:6f:b2:f9:46:33:99:18:a9:1f:fa:73:ba: 87:9c:02:2d:db:27:90:9f:c5:d3:b7:81:61:45:d1: 7e:13:22:37:3e:01:9f:d7:e1:dd:c5:53:2e:6b:54: d1:ef:21:e1:87:44:ad:56:9f:40:26:7a:91:04:e5: 15:3a:c5:a6:67:39:e7:54:a7:30:57:a5:f3:20:1c: c6:73:b9:79:bc:db:16:f5:7f:7e:66:5d:ff:72:f1: ef:8e:f3:f4:74:2d:de:c8:ed:1d:c5:b7:e7:eb:5f: 50:75:10:c0:ea:42:38:4e:ae:2a:40:4c:02:9f:78: 67:e4:7f:4c:41:f6:fb:98:6e:f0:2b:2e:3f:9b:12: 8b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D4:B1:7F:46:40:15:A8:66:49:C1:95:77:21:85:F0:E7:5D:F5:1D X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a653a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:e::/48 Signature Algorithm: sha256WithRSAEncryption 72:a7:1f:da:93:d9:08:93:8a:7a:0a:27:52:48:ba:d6:a6:6b: 86:a8:00:75:ec:0b:80:1d:ad:b3:71:81:de:5d:e6:13:d8:ed: 99:2f:17:93:3a:70:71:2e:e8:73:41:06:e9:9e:18:d9:d5:b0: 2d:11:43:b3:24:41:48:32:ec:ed:84:c7:c9:4c:d1:19:74:c9: 2b:67:33:02:55:f2:92:16:44:ae:50:a6:fe:fe:20:30:8a:cf: 5d:4c:0e:f3:12:b3:63:5b:92:e8:45:55:1a:64:7b:a0:01:53: 86:0d:80:51:5e:17:e4:30:01:3f:a1:16:ed:40:62:c4:ae:e3: 1e:51:93:37:8a:d1:44:7d:6d:a3:f5:0a:60:0a:e1:df:a3:24: 28:47:b7:1b:23:c1:12:8c:f9:7a:7c:b0:d6:68:d7:9b:67:bc: e7:c8:c7:0f:e9:24:60:25:9f:d4:eb:f0:51:37:32:d4:55:51: 3c:6b:cd:44:51:38:bc:d4:8d:28:c5:f7:26:ca:21:21:1e:25: 69:5c:e3:1a:b4:c3:dc:55:ea:2c:9f:37:29:76:98:cd:11:59: 3b:35:21:a1:5b:fc:e2:93:30:dc:59:20:eb:6d:03:cf:a9:3b: 78:b3:d8:d8:ab:63:eb:57:ea:bb:a7:07:cd:be:61:b5:a5:95: 0d:b2:be:7d -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdb8OU4tK9nsYiccSmc7TdjfrUyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDAyMjQyMjU1MDBaFw0yNTAyMjIyMzAwMDBaMDMxMTAvBgNV BAMTKEQ5RDRCMTdGNDY0MDE1QTg2NjQ5QzE5NTc3MjE4NUYwRTc1REY1MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBzIv69c91kWNwT0zAUsG1JCmY 9RHFoXz6zf3VKS4jyuYZ+3Dse5qAABm5hOefT02Wz3wXdeGqkcMPDsbK2MRly9DT 7wOxYkYxhzqlZ6b+JHcOM31KDnRtA4kwyumF8/mnq7cobK+9In/Gn/nmQztSqSgk 0hP7QXtr8m+y+UYzmRipH/pzuoecAi3bJ5CfxdO3gWFF0X4TIjc+AZ/X4d3FUy5r VNHvIeGHRK1Wn0AmepEE5RU6xaZnOedUpzBXpfMgHMZzuXm82xb1f35mXf9y8e+O 8/R0Ld7I7R3Ft+frX1B1EMDqQjhOripATAKfeGfkf0xB9vuYbvArLj+bEotHAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU2dSxf0ZAFahmScGVdyGF8Odd9R0wHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhNjUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBcRAAA4w DQYJKoZIhvcNAQELBQADggEBAHKnH9qT2QiTinoKJ1JIutama4aoAHXsC4AdrbNx gd5d5hPY7ZkvF5M6cHEu6HNBBumeGNnVsC0RQ7MkQUgy7O2Ex8lM0Rl0yStnMwJV 8pIWRK5Qpv7+IDCKz11MDvMSs2NbkuhFVRpke6ABU4YNgFFeF+QwAT+hFu1AYsSu 4x5RkzeK0UR9baP1CmAK4d+jJChHtxsjwRKM+Xp8sNZo15tnvOfIxw/pJGAln9Tr 8FE3MtRVUTxrzURROLzUjSjF9ybKISEeJWlc4xq0w9xV6iyfNyl2mM0RWTs1IaFb /OKTMNxZIOttA8+pO3iz2NirY+tX6runB82+YbWllQ2yvn0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org