$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: SifCxgbuloMlZ8XrjcandY/DcoJU8nh9vl9PRNagQis= Subject key identifier: 29:81:AD:C9:53:0E:7C:06:31:FB:57:B4:80:E1:45:A1:50:EA:F7:88 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 3D7B21F1315DCDD07E3AE5D601125D9184BA3376 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:06 +0000 ROA not before: Sun 10 Sep 2023 09:55:06 +0000 ROA not after: Sun 08 Sep 2024 10:00:06 +0000 asID: 63859 IP address blocks: 66.96.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:7b:21:f1:31:5d:cd:d0:7e:3a:e5:d6:01:12:5d:91:84:ba:33:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:06 2023 GMT Not After : Sep 8 10:00:06 2024 GMT Subject: CN=2981ADC9530E7C0631FB57B480E145A150EAF788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:25:c8:dc:c4:83:82:f6:01:f6:ea:e0:d6:7f: b9:3a:8a:9f:be:ee:ac:27:f2:c9:ba:3d:18:2b:bc: b3:62:71:ce:91:ca:8e:72:a1:aa:02:06:60:3e:10: f2:25:8c:48:e8:ac:d1:4c:38:eb:01:b0:23:61:ba: 16:75:dd:7b:0b:d0:7b:ee:5e:3b:05:de:74:00:25: 5b:4e:f6:cf:61:1c:22:ab:4c:af:e3:bd:8b:5e:bf: 50:f1:7a:4d:ee:75:7b:07:a0:79:b3:28:15:80:89: 1d:b6:5d:d6:de:6c:80:33:54:da:11:02:58:af:16: 5a:ab:2c:e4:7d:0d:62:c7:b1:ce:f2:f9:fb:15:ff: ff:5a:e5:df:63:5b:00:92:99:98:d8:a9:aa:b6:bc: 95:fe:13:ec:d6:46:c5:38:19:31:3e:dd:fe:eb:1d: e1:f1:56:47:75:71:72:c8:0c:e4:26:ee:f7:2b:98: 09:7b:b5:40:85:3d:a3:60:23:e4:60:63:88:7a:2f: 1d:a8:97:ec:d8:68:e3:41:0e:70:ce:c0:5f:3f:d5: b0:86:37:43:dd:e9:48:78:77:af:99:c6:6e:62:93: 5f:fa:0b:b9:24:fd:8e:ee:9d:04:87:2d:81:2c:b5: 46:cb:14:0a:33:4e:ec:50:6c:ab:b6:24:25:fc:c0: 39:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:81:AD:C9:53:0E:7C:06:31:FB:57:B4:80:E1:45:A1:50:EA:F7:88 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.227.0/24 Signature Algorithm: sha256WithRSAEncryption 75:7f:1f:63:48:6e:e8:1c:5c:1d:81:5f:01:20:d4:6e:1e:05: a7:8f:7a:48:a1:d2:dc:32:8d:00:4b:c9:b5:88:59:9e:46:30: 65:30:82:74:0f:b6:6d:0d:a8:47:04:28:d6:9e:c5:81:6a:17: a7:46:dd:00:4d:55:4b:fb:b7:7c:e8:64:7b:30:27:d1:d8:cc: d1:80:88:a7:f1:63:06:4b:21:60:f4:b8:db:aa:f8:40:f1:df: 04:dd:19:6a:b9:06:4a:e4:66:20:be:fa:69:06:32:b1:6b:57: 4d:be:78:d9:ce:bf:d5:9c:4e:94:04:74:6a:bb:76:d3:4d:ad: 14:d6:f9:02:ad:1a:21:66:23:13:4a:aa:aa:1a:6f:94:32:5d: c8:92:89:24:6a:b6:99:71:dd:db:a5:a2:7e:97:82:4a:36:7c: 64:38:a1:91:d4:cc:10:e4:81:fc:05:4d:2b:0a:e7:23:4a:6b: cb:56:37:b8:02:ab:7e:fd:41:4c:ef:69:62:86:27:45:b6:78: 7f:69:27:97:e1:d5:7e:03:f5:93:52:db:34:57:fe:98:f9:d0: 4b:db:99:18:ae:8f:94:3f:16:d3:71:75:31:93:35:26:52:33: 40:1d:87:fe:bc:f8:22:17:ca:61:b1:91:85:61:69:d4:00:a5: 04:fc:e9:8a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPXsh8TFdzdB+OuXWARJdkYS6M3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDZaFw0yNDA5MDgxMDAwMDZaMDMxMTAvBgNV BAMTKDI5ODFBREM5NTMwRTdDMDYzMUZCNTdCNDgwRTE0NUExNTBFQUY3ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJJcjcxIOC9gH26uDWf7k6ip++ 7qwn8sm6PRgrvLNicc6Ryo5yoaoCBmA+EPIljEjorNFMOOsBsCNhuhZ13XsL0Hvu XjsF3nQAJVtO9s9hHCKrTK/jvYtev1Dxek3udXsHoHmzKBWAiR22XdbebIAzVNoR AlivFlqrLOR9DWLHsc7y+fsV//9a5d9jWwCSmZjYqaq2vJX+E+zWRsU4GTE+3f7r HeHxVkd1cXLIDOQm7vcrmAl7tUCFPaNgI+RgY4h6Lx2ol+zYaONBDnDOwF8/1bCG N0Pd6Uh4d6+Zxm5ik1/6C7kk/Y7unQSHLYEstUbLFAozTuxQbKu2JCX8wDnhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUKYGtyVMOfAYx+1e0gOFFoVDq94gwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOMwDQYJKoZIhvcN AQELBQADggEBAHV/H2NIbugcXB2BXwEg1G4eBaePekih0twyjQBLybWIWZ5GMGUw gnQPtm0NqEcEKNaexYFqF6dG3QBNVUv7t3zoZHswJ9HYzNGAiKfxYwZLIWD0uNuq +EDx3wTdGWq5BkrkZiC++mkGMrFrV02+eNnOv9WcTpQEdGq7dtNNrRTW+QKtGiFm IxNKqqoab5QyXciSiSRqtplx3dulon6Xgko2fGQ4oZHUzBDkgfwFTSsK5yNKa8tW N7gCq379QUzvaWKGJ0W2eH9pJ5fh1X4D9ZNS2zRX/pj50EvbmRiuj5Q/FtNxdTGT NSZSM0Adh/68+CIXymGxkYVhadQApQT86Yo= -----END CERTIFICATE-----Generated at Fri Apr 19 01:15:57 2024 by rpki-client on console-fra.rpki-client.org