$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS23699.roa File: AS23699.roa (raw, json) Hash identifier: VD9aeczhXivgw0qqxN5TIA6pua84qTwep51Qu2Ue3Lw= Subject key identifier: 6A:AC:1D:2D:11:C9:88:44:31:88:19:5C:18:5C:F2:E2:08:3C:C8:BB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2CADF8B3E670173DC8E6097D087FECF48140C844 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS23699.roa Signing time: Fri 25 Oct 2024 04:00:00 +0000 ROA not before: Fri 25 Oct 2024 03:55:00 +0000 ROA not after: Fri 24 Oct 2025 04:00:00 +0000 asID: 23699 IP address blocks: 2400:cce0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ad:f8:b3:e6:70:17:3d:c8:e6:09:7d:08:7f:ec:f4:81:40:c8:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 25 03:55:00 2024 GMT Not After : Oct 24 04:00:00 2025 GMT Subject: CN=6AAC1D2D11C988443188195C185CF2E2083CC8BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5a:88:a9:3c:17:4e:68:bc:52:9a:d8:81:7e: cd:d3:1a:69:7b:1e:98:73:49:6a:bc:6a:fd:f4:22: 10:c5:6f:99:6b:1d:e4:1f:4a:7e:d1:dd:34:fb:00: 12:47:44:86:a3:be:23:87:aa:68:86:f9:70:9d:3c: 54:a0:27:23:20:f3:91:7f:06:c2:be:18:b0:de:da: 6e:3d:94:3a:75:fa:80:b2:d6:ea:06:09:90:e4:d4: 5e:b8:c9:d7:cc:18:e2:0f:27:b0:43:9f:05:94:b5: f9:bc:b6:ac:b1:63:84:a1:5c:d7:7e:a2:99:88:c7: 68:04:a7:c0:72:15:cd:39:12:3b:16:0e:4d:04:9b: 89:56:25:82:6d:24:4b:13:0b:f1:6f:11:d8:cd:e9: 3d:70:d0:41:88:40:c1:8f:56:5b:5a:f1:d4:c7:f5: b8:81:c8:94:ed:4a:cc:31:50:d7:65:46:58:34:53: 80:af:23:fe:66:f0:db:39:b1:91:21:48:84:63:6e: 04:20:e5:64:ea:cb:36:56:7f:90:2b:cc:ce:e0:59: 40:22:5e:17:23:7e:6e:ff:c1:fe:b6:10:70:9f:77: b8:e7:5e:e9:3b:40:40:65:bd:19:9e:9a:b2:ae:f6: 52:cb:d8:10:9b:ec:d5:d7:c0:5d:7e:28:c2:6f:4a: 81:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AC:1D:2D:11:C9:88:44:31:88:19:5C:18:5C:F2:E2:08:3C:C8:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS23699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:cce0::/32 Signature Algorithm: sha256WithRSAEncryption 04:79:68:c6:1e:2d:e6:da:30:e2:f7:9e:25:3e:a3:0b:4a:c2: f5:13:77:d0:b9:ab:bf:dc:0c:60:03:29:4e:10:a0:0f:0e:6d: 7c:7a:00:4a:9b:91:63:2b:1b:98:e9:62:94:e0:ff:46:01:b0: a3:cb:c4:2a:63:1b:91:20:64:e4:90:fc:4a:80:e0:d3:6e:90: 8c:6b:28:ef:36:2f:5d:09:76:dc:4f:6c:fd:a9:e1:e9:38:8c: a8:6b:1a:03:b6:93:5d:08:2e:c0:23:33:61:34:3a:b8:3e:67: 11:3d:d8:e4:26:5c:04:7c:63:89:26:b4:ce:74:82:e3:88:c2: 5d:ab:11:96:14:09:16:2e:64:fc:ef:a4:f4:0b:77:82:6a:e7: 0a:42:7b:14:1d:e9:be:89:66:92:93:3c:e0:0c:b5:ec:c2:bd: a6:91:cd:f2:ab:14:b2:6d:1e:6b:2d:3c:64:b8:b9:2e:7b:59: eb:e7:8e:3d:09:13:ff:52:da:ae:21:ec:1a:cd:7b:95:ce:c1: c1:62:e8:eb:0b:13:3b:66:4d:d7:c6:0a:be:da:83:73:a4:1c: 47:df:9a:4f:fa:f6:82:3c:8f:11:d9:ba:c1:85:44:fe:08:07: da:2e:f3:72:8f:ec:c9:76:30:f5:91:4f:05:08:fb:35:a1:20: 02:ad:78:82 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULK34s+ZwFz3I5gl9CH/s9IFAyEQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyNTAzNTUwMFoX DTI1MTAyNDA0MDAwMFowMzExMC8GA1UEAxMoNkFBQzFEMkQxMUM5ODg0NDMxODgx OTVDMTg1Q0YyRTIwODNDQzhCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBaiKk8F05ovFKa2IF+zdMaaXsemHNJarxq/fQiEMVvmWsd5B9KftHdNPsA EkdEhqO+I4eqaIb5cJ08VKAnIyDzkX8Gwr4YsN7abj2UOnX6gLLW6gYJkOTUXrjJ 18wY4g8nsEOfBZS1+by2rLFjhKFc136imYjHaASnwHIVzTkSOxYOTQSbiVYlgm0k SxML8W8R2M3pPXDQQYhAwY9WW1rx1Mf1uIHIlO1KzDFQ12VGWDRTgK8j/mbw2zmx kSFIhGNuBCDlZOrLNlZ/kCvMzuBZQCJeFyN+bv/B/rYQcJ93uOde6TtAQGW9GZ6a sq72UsvYEJvs1dfAXX4owm9Kgd0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRqrB0t EcmIRDGIGVwYXPLiCDzIuzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzIzNjk5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJADM4DANBgkqhkiG9w0BAQsFAAOCAQEABHloxh4t5tow4veeJT6j C0rC9RN30Lmrv9wMYAMpThCgDw5tfHoASpuRYysbmOlilOD/RgGwo8vEKmMbkSBk 5JD8SoDg026QjGso7zYvXQl23E9s/anh6TiMqGsaA7aTXQguwCMzYTQ6uD5nET3Y 5CZcBHxjiSa0znSC44jCXasRlhQJFi5k/O+k9At3gmrnCkJ7FB3pvolmkpM84Ay1 7MK9ppHN8qsUsm0eay08ZLi5LntZ6+eOPQkT/1LariHsGs17lc7BwWLo6wsTO2ZN 18YKvtqDc6QcR9+aT/r2gjyPEdm6wYVE/ggH2i7zco/syXYw9ZFPBQj7NaEgAq14 gg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:27 2024 by rpki-client on console-fra.rpki-client.org