$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232352e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: ubPT+l4sakXTseEpiYtEQfSucrTthNvyfZ5U6o8eUvU= Subject key identifier: 7A:92:B6:A6:59:A3:99:A5:EE:9A:5F:C7:AA:8B:12:88:25:4B:42:A3 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 384B7844380BFA0AD4CD24FFDA1167ACEE4E89DE Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232352e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 07:00:01 +0000 ROA not before: Sun 10 Sep 2023 06:55:01 +0000 ROA not after: Sun 08 Sep 2024 07:00:01 +0000 asID: 63859 IP address blocks: 66.96.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4b:78:44:38:0b:fa:0a:d4:cd:24:ff:da:11:67:ac:ee:4e:89:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 06:55:01 2023 GMT Not After : Sep 8 07:00:01 2024 GMT Subject: CN=7A92B6A659A399A5EE9A5FC7AA8B1288254B42A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c5:9d:08:d3:c4:2e:a2:51:57:db:48:ea:6c: 86:a6:f8:f8:28:40:b4:e8:cf:af:34:7b:b1:7a:3a: b5:08:2b:f7:52:85:54:c4:63:45:15:b1:65:e7:38: bd:b9:b3:93:b3:ef:22:3e:a7:ca:30:09:34:de:3b: 5e:3e:c3:93:ff:49:a2:41:f9:b6:93:24:40:b4:81: 8e:ea:e9:98:23:3f:39:bd:30:b6:c8:94:33:e5:2c: 58:bd:f1:16:e3:40:c3:cf:85:23:bc:64:6c:a5:1b: 43:0b:a3:3e:4f:a9:e9:f8:f8:3b:be:03:a5:aa:5c: ed:d1:f3:a9:74:17:78:dd:67:d6:50:12:99:ee:53: cf:d2:1a:bc:38:24:49:0e:1e:44:fa:be:d5:9d:80: a4:7c:38:ef:01:66:39:ff:c0:12:a6:5e:67:e1:42: d9:d4:2d:dd:8c:ee:aa:75:30:a2:a4:b2:a1:60:24: e3:60:4e:96:b6:7c:87:74:a7:a4:b3:00:12:a4:1e: b3:91:7d:92:2b:4f:d0:fb:95:41:f6:c8:9f:ed:99: 66:e1:b3:7b:a9:8a:45:8d:81:ef:4b:a9:fc:4e:88: 39:7a:44:26:b1:ef:90:e4:1f:64:36:3f:e7:9f:74: 49:f2:7d:5a:6d:39:2a:82:19:35:9e:90:de:54:a8: f3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:92:B6:A6:59:A3:99:A5:EE:9A:5F:C7:AA:8B:12:88:25:4B:42:A3 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.225.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:90:6a:6f:4c:27:b6:70:10:e3:7b:e2:9f:81:c6:1b:20:fa: a7:a4:72:9d:d0:18:de:c1:39:11:c8:eb:6f:df:24:31:fa:9b: 72:e5:26:a1:b6:7c:9e:a5:44:bd:11:a2:60:fa:89:1e:3f:e6: ff:c3:d9:f3:4b:f7:ca:05:3a:e5:d2:85:e2:25:1a:f8:c8:62: a0:fd:a2:65:89:85:5f:0e:5b:25:86:47:b6:82:ef:f3:2d:64: 0e:e8:16:68:0d:0f:68:96:3c:30:4b:cc:31:52:03:58:d3:ff: 9c:63:e0:c1:91:ce:7b:89:8b:d3:78:d9:74:48:fe:e5:25:bf: 64:93:ae:46:53:df:38:0c:eb:90:48:89:d1:6b:3e:da:25:27: 28:c9:14:cf:e0:f9:9f:f0:c3:1f:09:c0:13:2b:3a:03:cb:83: ca:2f:ac:38:37:f2:be:9a:79:d0:11:7b:38:c4:14:f5:62:a5: e8:48:3f:61:25:a1:84:00:60:62:6f:e8:f2:64:ca:08:da:e4: 57:d0:fb:71:de:d7:6f:c4:c0:e7:44:1a:73:19:75:11:2d:c9: 3d:c1:61:97:c0:c5:e0:ef:30:a7:50:06:ff:78:05:a7:6e:a9: fd:25:74:b3:38:af:26:a2:73:4f:f3:f6:cc:92:da:53:38:2c: 4f:27:44:79 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOEt4RDgL+grUzST/2hFnrO5Oid4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwNjU1MDFaFw0yNDA5MDgwNzAwMDFaMDMxMTAvBgNV BAMTKDdBOTJCNkE2NTlBMzk5QTVFRTlBNUZDN0FBOEIxMjg4MjU0QjQyQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoxZ0I08QuolFX20jqbIam+Pgo QLToz680e7F6OrUIK/dShVTEY0UVsWXnOL25s5Oz7yI+p8owCTTeO14+w5P/SaJB +baTJEC0gY7q6ZgjPzm9MLbIlDPlLFi98RbjQMPPhSO8ZGylG0MLoz5Pqen4+Du+ A6WqXO3R86l0F3jdZ9ZQEpnuU8/SGrw4JEkOHkT6vtWdgKR8OO8BZjn/wBKmXmfh QtnULd2M7qp1MKKksqFgJONgTpa2fId0p6SzABKkHrORfZIrT9D7lUH2yJ/tmWbh s3upikWNge9LqfxOiDl6RCax75DkH2Q2P+efdEnyfVptOSqCGTWekN5UqPO3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUepK2plmjmaXuml/HqosSiCVLQqMwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOEwDQYJKoZIhvcN AQELBQADggEBAByQam9MJ7ZwEON74p+Bxhsg+qekcp3QGN7BORHI62/fJDH6m3Ll JqG2fJ6lRL0RomD6iR4/5v/D2fNL98oFOuXSheIlGvjIYqD9omWJhV8OWyWGR7aC 7/MtZA7oFmgND2iWPDBLzDFSA1jT/5xj4MGRznuJi9N42XRI/uUlv2STrkZT3zgM 65BIidFrPtolJyjJFM/g+Z/wwx8JwBMrOgPLg8ovrDg38r6aedARezjEFPVipehI P2EloYQAYGJv6PJkygja5FfQ+3He12/EwOdEGnMZdREtyT3BYZfAxeDvMKdQBv94 Baduqf0ldLM4ryaic0/z9syS2lM4LE8nRHk= -----END CERTIFICATE-----Generated at Thu Apr 25 19:09:19 2024 by rpki-client on console-ams.rpki-client.org