$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa File: 36362e39362e3232342e302f32302d3230203d3e203633383539.roa (raw, json) Hash identifier: Klc2vY1fCYNNv93/ul11PDuISrmD612emz6fqA1dsc0= Subject key identifier: 88:CB:C7:C6:45:11:3E:66:FE:6D:03:DF:ED:C1:52:0E:DE:EA:15:1E Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 58C1BE00D1BE33F387FF914B890F19A54323FAF8 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa Signing time: Fri 24 Nov 2023 05:00:02 +0000 ROA not before: Fri 24 Nov 2023 04:55:02 +0000 ROA not after: Fri 22 Nov 2024 05:00:02 +0000 asID: 63859 IP address blocks: 66.96.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Apr 2024 18:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c1:be:00:d1:be:33:f3:87:ff:91:4b:89:0f:19:a5:43:23:fa:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Nov 24 04:55:02 2023 GMT Not After : Nov 22 05:00:02 2024 GMT Subject: CN=88CBC7C645113E66FE6D03DFEDC1520EDEEA151E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:62:4c:90:4d:5c:c7:bc:4d:67:18:2f:8c:39: e5:53:55:17:7b:a8:4a:81:36:46:a3:83:54:6a:c6: dd:6a:18:ad:34:58:a0:82:af:6d:1c:41:70:4d:f6: c1:e6:6a:9a:cc:05:b9:cc:fa:3e:06:da:40:70:fc: 80:2d:e2:dc:ce:dd:06:3b:7f:29:b7:5d:07:ca:c7: 30:b3:2c:3d:a3:9b:ff:d6:da:d7:9e:0d:d7:ba:b2: ad:f5:5a:be:3e:4e:6a:3d:9d:c9:c6:81:a3:f1:ec: 75:72:70:38:04:d2:28:cf:2a:2a:07:18:5a:a5:d7: f7:80:23:0f:e0:48:a0:a6:a2:1d:2d:07:3e:75:bc: 85:8f:e8:70:dd:4f:ab:ce:18:5e:b2:f7:6c:8a:03: 78:7c:26:1c:d1:33:41:6c:4c:80:62:39:94:8a:f5: 15:38:47:59:e4:36:67:c7:ca:75:99:6f:06:70:81: 78:64:4d:15:a2:93:8a:2c:0f:65:be:1d:3b:ae:34: 03:67:fe:47:1d:e8:ef:a9:6b:8c:a5:15:10:9d:40: d6:4e:57:55:82:c8:62:08:03:b1:bc:35:83:3e:2d: 9e:36:63:d0:0d:6b:54:d9:05:e6:a7:59:68:98:d5: b0:70:51:a4:5e:51:d6:86:56:bd:2d:ea:aa:d3:f3: d2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:CB:C7:C6:45:11:3E:66:FE:6D:03:DF:ED:C1:52:0E:DE:EA:15:1E X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.224.0/20 Signature Algorithm: sha256WithRSAEncryption 7f:01:33:cb:7b:ff:2e:c7:33:4f:36:18:55:5d:6d:6f:46:f8: f3:07:dc:67:63:65:e2:ad:b0:9c:fc:10:30:09:b2:d8:45:6d: 54:ea:2d:ee:61:41:e4:02:8e:69:16:17:14:01:2c:4a:ed:ad: bf:e4:7b:4f:83:1f:bd:e9:88:36:e0:89:23:91:4a:05:e6:5e: 2d:2b:1c:65:13:e6:fa:f7:fc:27:3f:1c:f3:0a:8c:3a:93:ca: 94:a5:de:7e:5c:b1:7e:c9:50:14:47:d0:4c:89:39:51:cb:90: 09:93:bb:38:6b:fd:83:c5:45:d2:e3:29:15:39:ab:d7:a2:7c: e6:5f:bd:15:5f:a6:37:dc:30:3e:2a:a8:5d:e5:82:29:fb:13: dd:1c:c6:3c:50:d1:76:ba:24:9f:ad:61:6b:b1:c0:e0:80:99: 67:29:d0:80:65:ea:f9:31:bb:ad:53:2c:4f:14:77:27:a7:b9: 30:aa:12:bc:db:61:04:ed:e2:c4:a4:e4:63:08:71:55:c2:b3: e1:88:d1:f3:bd:1f:7d:ed:34:69:36:34:7e:fc:86:60:52:37: f5:d3:ed:31:10:96:77:16:f7:28:d9:44:a7:e1:2a:23:ae:c2: 40:8a:d2:81:a0:c1:c6:84:78:f0:00:b8:3e:55:aa:b6:e5:b2: d5:2e:73:12 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWMG+ANG+M/OH/5FLiQ8ZpUMj+vgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzExMjQwNDU1MDJaFw0yNDExMjIwNTAwMDJaMDMxMTAvBgNV BAMTKDg4Q0JDN0M2NDUxMTNFNjZGRTZEMDNERkVEQzE1MjBFREVFQTE1MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXYkyQTVzHvE1nGC+MOeVTVRd7 qEqBNkajg1Rqxt1qGK00WKCCr20cQXBN9sHmaprMBbnM+j4G2kBw/IAt4tzO3QY7 fym3XQfKxzCzLD2jm//W2teeDde6sq31Wr4+Tmo9ncnGgaPx7HVycDgE0ijPKioH GFql1/eAIw/gSKCmoh0tBz51vIWP6HDdT6vOGF6y92yKA3h8JhzRM0FsTIBiOZSK 9RU4R1nkNmfHynWZbwZwgXhkTRWik4osD2W+HTuuNANn/kcd6O+pa4ylFRCdQNZO V1WCyGIIA7G8NYM+LZ42Y9ANa1TZBeanWWiY1bBwUaReUdaGVr0t6qrT89LfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUiMvHxkURPmb+bQPf7cFSDt7qFR4wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNDJlMzAyZjMyMzAy ZDMyMzAyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARCYOAwDQYJKoZIhvcN AQELBQADggEBAH8BM8t7/y7HM082GFVdbW9G+PMH3GdjZeKtsJz8EDAJsthFbVTq Le5hQeQCjmkWFxQBLErtrb/ke0+DH73piDbgiSORSgXmXi0rHGUT5vr3/Cc/HPMK jDqTypSl3n5csX7JUBRH0EyJOVHLkAmTuzhr/YPFRdLjKRU5q9eifOZfvRVfpjfc MD4qqF3lgin7E90cxjxQ0Xa6JJ+tYWuxwOCAmWcp0IBl6vkxu61TLE8UdyenuTCq ErzbYQTt4sSk5GMIcVXCs+GI0fO9H33tNGk2NH78hmBSN/XT7TEQlncW9yjZRKfh KiOuwkCK0oGgwcaEePAAuD5VqrblstUucxI= -----END CERTIFICATE-----Generated at Sun Apr 14 22:00:56 2024 by rpki-client on console-ams.rpki-client.org