$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 472Fc/S4cRYYaYTYGsVdgIG3YLr/d2k+opyCeR4vgg8= Subject key identifier: 8F:2C:27:BF:AE:55:44:52:E9:20:EE:F8:B4:84:76:4A:1A:A8:28:3A Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 2FB6BF51859E93A351C7A0C232A5709193F30189 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:02 +0000 ROA not before: Sun 10 Sep 2023 09:55:02 +0000 ROA not after: Sun 08 Sep 2024 10:00:02 +0000 asID: 63859 IP address blocks: 66.96.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 23:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:b6:bf:51:85:9e:93:a3:51:c7:a0:c2:32:a5:70:91:93:f3:01:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:02 2023 GMT Not After : Sep 8 10:00:02 2024 GMT Subject: CN=8F2C27BFAE554452E920EEF8B484764A1AA8283A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:4f:4f:0d:68:0b:51:2e:0d:5d:9d:25:f1:60: 16:1b:17:72:2c:0b:82:fa:ab:07:3e:51:7e:89:54: d9:a1:65:94:f6:a1:7a:08:de:ca:27:db:02:4b:6b: af:41:f5:92:b7:07:2f:cf:dd:28:d4:be:44:5a:2f: 60:17:db:f4:76:b4:53:0d:91:07:71:a5:13:11:57: a9:1d:7e:fb:d8:7f:6d:bd:65:fd:e9:1e:4d:7f:62: 9c:30:81:be:7e:13:9a:a9:09:6a:d1:bc:80:e6:58: fb:f3:7e:8f:7c:9d:f0:ed:fa:49:13:8d:41:f8:50: 66:2f:95:32:59:fd:a8:50:ae:83:e8:39:57:d8:9e: e9:87:f8:20:d2:1c:17:07:50:49:31:40:68:5c:9f: 91:bc:a4:c2:b6:c6:ca:63:a9:2c:68:cd:49:b7:73: 2c:1e:a2:83:af:27:28:98:dc:0c:87:82:2d:11:d7: fe:2f:2d:c2:97:17:62:23:b8:d2:2f:1c:77:ca:84: cf:7e:8a:9a:c0:6e:61:ea:36:c9:2d:e3:de:ae:99: 7b:36:44:79:2d:df:52:62:39:12:f4:38:6f:45:55: 46:0b:e5:09:5c:c8:5a:e7:a3:a7:4f:00:85:81:8f: fb:70:84:c8:27:a5:96:80:38:52:ba:88:a6:09:01: cf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2C:27:BF:AE:55:44:52:E9:20:EE:F8:B4:84:76:4A:1A:A8:28:3A X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.224.0/24 Signature Algorithm: sha256WithRSAEncryption 20:57:c4:3c:1c:98:5e:ec:0b:98:5c:93:9f:24:3b:ca:06:52: 7a:8d:af:28:94:c0:0d:8e:05:35:39:0f:1c:f5:c9:dd:52:df: 2b:64:64:25:94:ca:39:e8:68:9b:58:aa:eb:18:d9:39:bd:84: b3:fe:84:be:f8:99:4e:34:dd:1e:6d:87:1a:e8:97:fd:12:b4: 5b:60:41:2d:2f:23:78:c3:c2:13:72:bb:ff:e8:e7:3d:01:ef: 10:e0:22:7b:35:2e:d9:f9:7d:58:b0:63:b4:ca:eb:4c:11:b1: 7a:83:ab:7c:b3:89:66:b0:40:6f:83:2c:73:52:f5:96:4b:ac: 63:40:26:c5:79:2c:0b:3b:47:73:c9:97:5e:08:31:33:ba:a3: 5d:78:92:5c:e1:93:be:01:2a:c1:c9:58:e6:9d:84:c6:09:4e: 00:26:38:80:01:e0:fd:d7:b9:24:9d:aa:25:90:89:6a:c7:04: 9c:a4:22:7f:2c:c0:89:fd:11:1b:9d:92:b3:ff:79:72:7a:92: 52:61:cf:a8:1c:8f:37:9f:e1:7c:00:55:dc:20:3b:e1:ab:76: e4:66:c5:5b:7d:ee:16:cc:12:21:3e:6d:c9:c5:61:f5:d1:60: 14:56:57:5b:88:60:c1:8d:ab:dc:09:af:c5:a2:1b:f3:4d:62: 3c:9d:a5:7a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUL7a/UYWek6NRx6DCMqVwkZPzAYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDJaFw0yNDA5MDgxMDAwMDJaMDMxMTAvBgNV BAMTKDhGMkMyN0JGQUU1NTQ0NTJFOTIwRUVGOEI0ODQ3NjRBMUFBODI4M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrT08NaAtRLg1dnSXxYBYbF3Is C4L6qwc+UX6JVNmhZZT2oXoI3son2wJLa69B9ZK3By/P3SjUvkRaL2AX2/R2tFMN kQdxpRMRV6kdfvvYf229Zf3pHk1/Ypwwgb5+E5qpCWrRvIDmWPvzfo98nfDt+kkT jUH4UGYvlTJZ/ahQroPoOVfYnumH+CDSHBcHUEkxQGhcn5G8pMK2xspjqSxozUm3 cyweooOvJyiY3AyHgi0R1/4vLcKXF2IjuNIvHHfKhM9+iprAbmHqNskt496umXs2 RHkt31JiORL0OG9FVUYL5QlcyFrno6dPAIWBj/twhMgnpZaAOFK6iKYJAc9RAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjywnv65VRFLpIO74tIR2ShqoKDowHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOAwDQYJKoZIhvcN AQELBQADggEBACBXxDwcmF7sC5hck58kO8oGUnqNryiUwA2OBTU5Dxz1yd1S3ytk ZCWUyjnoaJtYqusY2Tm9hLP+hL74mU403R5thxrol/0StFtgQS0vI3jDwhNyu//o 5z0B7xDgIns1Ltn5fViwY7TK60wRsXqDq3yziWawQG+DLHNS9ZZLrGNAJsV5LAs7 R3PJl14IMTO6o114klzhk74BKsHJWOadhMYJTgAmOIAB4P3XuSSdqiWQiWrHBJyk In8swIn9ERudkrP/eXJ6klJhz6gcjzef4XwAVdwgO+GrduRmxVt97hbMEiE+bcnF YfXRYBRWV1uIYMGNq9wJr8WiG/NNYjydpXo= -----END CERTIFICATE-----Generated at Tue Apr 23 18:35:58 2024 by rpki-client on console-ams.rpki-client.org