$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232362e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: piFk60+sGzLUHRWZ5WGtbnCgCbgszu5+ra3wLKr/bHg= Subject key identifier: D4:0A:5B:EC:CD:23:38:0F:7D:E4:0F:AE:31:0C:10:17:78:D1:3A:E6 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 38D069DF355D6D2E7EB47CA4E3850B1063F7C99D Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232362e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:03 +0000 ROA not before: Sun 13 Jul 2025 11:55:03 +0000 ROA not after: Sun 12 Jul 2026 12:00:03 +0000 asID: 63859 IP address blocks: 66.96.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d0:69:df:35:5d:6d:2e:7e:b4:7c:a4:e3:85:0b:10:63:f7:c9:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:03 2025 GMT Not After : Jul 12 12:00:03 2026 GMT Subject: CN=D40A5BECCD23380F7DE40FAE310C101778D13AE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:54:dd:08:0b:e6:6f:63:00:7d:ec:00:3c:d1: 2a:03:f9:91:c6:ab:5f:b9:d3:be:76:5f:8f:77:1f: d9:d6:0e:87:25:cc:38:a1:67:73:18:a9:8d:af:3a: 47:63:9a:bb:6d:2d:76:b5:4d:c2:6c:5e:36:ac:47: 83:c6:9e:16:63:7f:a5:48:cc:01:44:07:67:d8:13: 25:b9:cb:01:e8:9a:88:25:21:12:f5:68:93:7f:a3: f5:50:df:18:32:5a:84:bb:fe:90:df:97:44:58:15: db:db:13:42:d5:63:54:46:56:ed:34:5c:e8:20:8e: 8b:e6:3f:3c:c4:96:c5:83:d6:fb:a5:aa:17:1d:50: b9:3a:6f:85:a9:f7:be:89:1d:bf:3b:33:80:52:8f: 68:de:6f:5b:58:34:9c:5d:98:01:6d:90:2d:fb:53: c2:c4:30:32:01:4c:80:97:93:2d:1f:56:1b:68:4e: fc:d8:c9:81:24:77:7d:f1:d4:9b:95:f0:d6:a7:cd: b1:ca:56:d2:6a:1b:3b:e3:75:ea:fd:71:45:be:3b: bd:83:f6:3f:f4:cb:03:b6:7e:1f:5a:9d:78:ab:f4: 28:28:6e:91:7a:19:08:90:e2:1c:1b:5a:15:0e:24: f3:ba:a9:51:2d:a1:5c:78:cd:6e:d8:2c:d3:6d:89: 3b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:0A:5B:EC:CD:23:38:0F:7D:E4:0F:AE:31:0C:10:17:78:D1:3A:E6 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.226.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:ed:0f:80:63:85:f3:12:c2:54:be:82:da:bc:8a:58:92:b9: 4b:8f:09:a3:5f:b1:45:31:60:8d:30:74:7f:f3:2b:65:63:ef: be:5c:65:95:b1:a0:ea:ca:ad:b3:d6:26:c2:35:e3:20:b6:14: cf:b6:a5:1e:cd:e3:72:99:c4:5f:02:67:42:67:59:20:e0:af: 62:ff:c9:62:3f:b7:55:7d:51:06:13:ac:95:59:25:7a:33:ce: ab:20:b5:da:7f:ed:62:5e:99:dc:ef:70:75:ac:7e:3a:e6:58: dc:cd:77:6e:05:7e:a8:48:43:c0:26:ab:18:c2:93:3d:6d:4e: f7:d3:59:bc:08:84:b0:d4:d1:b2:3a:05:28:95:ac:f2:27:76: df:c6:4e:48:10:c3:bd:c8:4c:57:21:4b:89:34:9a:1c:82:af: 85:e0:0e:22:51:ff:d1:ea:d7:d7:a5:7f:4d:13:5e:6c:1f:57: b7:4c:c2:f2:e3:94:bc:f3:05:4e:7d:2f:de:63:a1:98:32:50: c8:ee:4f:e9:36:14:a9:95:19:25:cd:9c:07:68:c5:ca:68:8f: 33:67:f4:74:0d:9a:61:fa:43:81:0b:e5:4f:c0:7f:83:0e:7d: ca:5f:e4:9b:67:3c:4d:46:11:f8:68:ff:91:3c:59:a9:91:70: c8:e5:a0:cb -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUONBp3zVdbS5+tHyk44ULEGP3yZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDNaFw0yNjA3MTIxMjAwMDNaMDMxMTAvBgNV BAMTKEQ0MEE1QkVDQ0QyMzM4MEY3REU0MEZBRTMxMEMxMDE3NzhEMTNBRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwVN0IC+ZvYwB97AA80SoD+ZHG q1+50752X493H9nWDoclzDihZ3MYqY2vOkdjmrttLXa1TcJsXjasR4PGnhZjf6VI zAFEB2fYEyW5ywHomoglIRL1aJN/o/VQ3xgyWoS7/pDfl0RYFdvbE0LVY1RGVu00 XOggjovmPzzElsWD1vulqhcdULk6b4Wp976JHb87M4BSj2jeb1tYNJxdmAFtkC37 U8LEMDIBTICXky0fVhtoTvzYyYEkd33x1JuV8NanzbHKVtJqGzvjder9cUW+O72D 9j/0ywO2fh9anXir9CgobpF6GQiQ4hwbWhUOJPO6qVEtoVx4zW7YLNNtiTtRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU1Apb7M0jOA995A+uMQwQF3jROuYwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOIwDQYJKoZIhvcN AQELBQADggEBAG3tD4BjhfMSwlS+gtq8iliSuUuPCaNfsUUxYI0wdH/zK2Vj775c ZZWxoOrKrbPWJsI14yC2FM+2pR7N43KZxF8CZ0JnWSDgr2L/yWI/t1V9UQYTrJVZ JXozzqsgtdp/7WJemdzvcHWsfjrmWNzNd24FfqhIQ8AmqxjCkz1tTvfTWbwIhLDU 0bI6BSiVrPIndt/GTkgQw73ITFchS4k0mhyCr4XgDiJR/9Hq19elf00TXmwfV7dM wvLjlLzzBU59L95joZgyUMjuT+k2FKmVGSXNnAdoxcpojzNn9HQNmmH6Q4EL5U/A f4MOfcpf5JtnPE1GEfho/5E8WamRcMjloMs= -----END CERTIFICATE-----Generated at Mon Jul 21 14:41:14 2025 by rpki-client