$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232362e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 9LKOTg8a0Mq9AHrDjyYRCDguwjt1CNMT5Qcrv1ZDUS8= Subject key identifier: 35:57:24:D8:2E:D3:DB:97:C0:CD:DD:2C:74:2E:1F:11:65:56:B8:FC Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 70CD08F0209852F69EE0091CADAAC7C5D2FE70E8 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232362e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:06 +0000 ROA not before: Sun 10 Sep 2023 09:55:06 +0000 ROA not after: Sun 08 Sep 2024 10:00:06 +0000 asID: 63859 IP address blocks: 66.96.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 23:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:cd:08:f0:20:98:52:f6:9e:e0:09:1c:ad:aa:c7:c5:d2:fe:70:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:06 2023 GMT Not After : Sep 8 10:00:06 2024 GMT Subject: CN=355724D82ED3DB97C0CDDD2C742E1F116556B8FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f4:c4:61:25:7a:a1:31:a6:86:cc:ad:09:b9: 01:1f:f7:8b:5f:9b:73:d2:e5:61:e1:4e:5d:97:ee: a1:71:15:17:d6:00:52:02:cd:ba:37:b6:90:2d:49: 48:18:de:a2:69:fc:2b:91:8d:53:de:85:8e:a1:ec: 0c:ca:79:4e:0e:6d:48:c9:a1:83:48:a6:91:7c:32: 50:6b:7a:96:80:ac:f6:a8:54:b6:91:2d:a1:09:a3: f1:08:60:29:2d:3d:56:fe:f4:60:ee:cd:28:f1:65: c0:77:34:6a:49:3b:f6:a4:ff:5d:91:6c:38:11:7d: a7:81:71:41:0f:12:af:eb:9e:0b:5b:75:0a:34:0a: ca:0b:dc:40:44:ba:45:67:ee:72:5f:07:16:cb:1b: ca:4e:66:67:3f:38:dd:0b:2a:da:10:53:8b:25:18: 24:06:45:e1:7e:e8:23:2b:30:ec:fc:27:c8:74:48: 9b:ab:ed:01:55:bd:54:56:90:41:d4:70:83:32:27: 95:bf:7e:fa:c7:1f:a3:0e:b3:bd:4f:2f:e9:6d:52: 32:18:4a:7c:3b:29:2e:59:fd:61:96:40:ff:6c:94: 36:53:25:1d:d0:30:66:ab:e3:ab:74:be:5c:51:f4: 4c:03:6a:7a:1c:e0:c0:f1:d2:de:63:9a:27:8c:a3: 13:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:57:24:D8:2E:D3:DB:97:C0:CD:DD:2C:74:2E:1F:11:65:56:B8:FC X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.226.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:f8:fd:89:8e:35:2a:e1:bb:79:02:d8:51:24:b8:70:93:0d: 4b:25:c8:0f:04:05:e8:90:41:fc:3c:ec:94:85:03:d1:ed:17: d6:1f:36:ea:71:51:c0:42:33:e3:7c:a6:b1:fa:16:85:a8:f7: fa:00:c1:65:1e:c2:88:66:e4:0b:26:38:62:9b:7e:ad:a0:5e: 0f:29:cb:5a:80:9f:51:1c:d8:2c:77:19:56:46:f5:ff:1d:fc: 29:8e:16:9d:01:77:a3:56:a3:0b:96:1a:23:be:27:14:e3:99: 6f:e4:e4:d5:46:81:ec:e2:4f:ed:1c:08:64:60:be:7e:80:01: 68:1d:f7:63:5b:85:e3:d2:db:b2:5c:b5:a5:43:3a:70:58:74: 05:1f:23:29:72:11:df:76:9f:e1:27:72:1c:27:87:e9:60:23: bc:6b:7b:18:84:a0:bd:76:db:b8:de:fc:a9:18:13:e2:5c:59: ab:f6:0e:54:01:7d:ac:e4:a8:12:3e:de:eb:c9:2d:d9:16:f1: 49:69:72:da:9a:c7:33:2b:27:95:5a:85:91:15:f8:50:a9:f6: e5:65:cb:4f:5e:b8:8f:dc:ca:15:7a:9a:14:1b:a5:7e:9c:2b: fc:71:39:f9:ab:a8:f9:98:aa:45:6c:ef:38:ea:59:ba:64:85: 31:01:c8:73 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUcM0I8CCYUvae4AkcrarHxdL+cOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDZaFw0yNDA5MDgxMDAwMDZaMDMxMTAvBgNV BAMTKDM1NTcyNEQ4MkVEM0RCOTdDMENEREQyQzc0MkUxRjExNjU1NkI4RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi9MRhJXqhMaaGzK0JuQEf94tf m3PS5WHhTl2X7qFxFRfWAFICzbo3tpAtSUgY3qJp/CuRjVPehY6h7AzKeU4ObUjJ oYNIppF8MlBrepaArPaoVLaRLaEJo/EIYCktPVb+9GDuzSjxZcB3NGpJO/ak/12R bDgRfaeBcUEPEq/rngtbdQo0CsoL3EBEukVn7nJfBxbLG8pOZmc/ON0LKtoQU4sl GCQGReF+6CMrMOz8J8h0SJur7QFVvVRWkEHUcIMyJ5W/fvrHH6MOs71PL+ltUjIY Snw7KS5Z/WGWQP9slDZTJR3QMGar46t0vlxR9EwDanoc4MDx0t5jmieMoxP9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNVck2C7T25fAzd0sdC4fEWVWuPwwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOIwDQYJKoZIhvcN AQELBQADggEBAB74/YmONSrhu3kC2FEkuHCTDUslyA8EBeiQQfw87JSFA9HtF9Yf NupxUcBCM+N8prH6FoWo9/oAwWUewohm5AsmOGKbfq2gXg8py1qAn1Ec2Cx3GVZG 9f8d/CmOFp0Bd6NWowuWGiO+JxTjmW/k5NVGgeziT+0cCGRgvn6AAWgd92NbhePS 27JctaVDOnBYdAUfIylyEd92n+Enchwnh+lgI7xrexiEoL1227je/KkYE+JcWav2 DlQBfazkqBI+3uvJLdkW8UlpctqaxzMrJ5VahZEV+FCp9uVly09euI/cyhV6mhQb pX6cK/xxOfmrqPmYqkVs7zjqWbpkhTEByHM= -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:36 2024 by rpki-client on console-fra.rpki-client.org