$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: sq/JwmzghDlaGEQ8gF2PO91MQsw0bqOftQmD74dmw6g= Subject key identifier: 90:EC:7D:97:14:87:9C:88:4E:F4:1B:B2:C8:D0:A1:0D:7B:0C:7E:2D Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 6EE263C73FB2FD09256EA88F7AAFABE8C7E6913A Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:04 +0000 ROA not before: Sun 13 Jul 2025 11:55:04 +0000 ROA not after: Sun 12 Jul 2026 12:00:04 +0000 asID: 63859 IP address blocks: 66.96.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:e2:63:c7:3f:b2:fd:09:25:6e:a8:8f:7a:af:ab:e8:c7:e6:91:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:04 2025 GMT Not After : Jul 12 12:00:04 2026 GMT Subject: CN=90EC7D9714879C884EF41BB2C8D0A10D7B0C7E2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:53:48:83:f9:07:c5:68:f1:68:ea:d6:39:10: c3:87:30:92:27:41:87:ee:02:a3:d2:d3:36:c1:e2: 0d:3b:c8:e9:ad:fb:d6:fc:38:b8:4b:fb:bc:eb:08: 47:9f:ba:94:2d:b3:77:77:99:16:d0:e9:e9:ef:a7: 4c:ea:f5:66:d5:a1:04:f8:40:77:da:b2:59:80:88: d3:de:2e:0f:a0:39:4f:b8:bc:5a:1e:31:03:9b:d3: 86:69:d8:90:9a:84:e7:f2:82:19:49:0d:db:ea:bc: 32:60:41:6f:0c:b5:00:78:41:2b:9e:15:70:eb:7f: 12:ef:f6:25:96:2d:4c:02:99:1f:9b:1e:75:4b:ae: ef:c4:b8:4a:54:d2:0e:5f:e5:d7:a8:9a:df:3c:16: c7:15:60:69:77:2e:26:64:9e:e5:5d:6f:f6:c7:6b: 61:12:53:f1:f0:24:e7:b5:d8:83:04:51:63:55:aa: f1:4b:de:97:ce:6a:80:94:d3:06:ef:1a:e6:77:41: 1f:c4:de:fb:cc:07:21:be:77:a0:74:5b:3e:f3:50: 23:ee:07:5f:70:7e:1c:9f:c7:00:b5:08:86:7f:26: 94:c3:aa:ed:b0:8f:82:34:02:9b:70:20:1c:53:e7: cc:81:87:cb:c2:cc:96:e0:f7:3b:9d:20:fe:61:de: 7c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:EC:7D:97:14:87:9C:88:4E:F4:1B:B2:C8:D0:A1:0D:7B:0C:7E:2D X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.227.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:84:3f:41:a0:98:cb:18:07:1d:88:8a:18:8d:57:de:8f:58: 80:45:39:5d:54:22:74:16:42:fc:84:34:28:09:77:a2:cc:9f: 26:f0:73:7a:63:1f:da:a1:5a:61:fa:19:ce:71:a2:75:15:ce: e1:d9:bb:70:5c:b4:23:27:5a:41:0a:87:25:8c:aa:ee:da:de: 97:43:1d:0f:75:74:87:55:92:12:e8:2b:7a:5f:87:01:17:86: 8b:79:20:d9:7f:62:eb:6a:96:0f:0f:7e:c5:e1:9a:53:88:b4: ba:d4:d5:0c:e3:60:5b:d7:5e:79:9a:fa:df:7a:ac:f2:1a:03: 64:a6:48:fe:df:c6:8e:3a:e7:9c:88:fd:b3:d9:67:3d:da:a6: be:1f:d9:2d:e9:9b:4c:23:57:e9:87:ef:57:50:45:bf:99:af: 39:55:54:f8:ce:f5:51:a7:2b:27:0f:a1:a4:a6:a1:d4:11:5e: 3b:81:fd:00:9b:04:78:33:fd:f9:c9:32:14:35:fa:94:c5:9f: 74:a8:a0:71:27:c6:3e:2e:ac:4d:10:6b:7a:03:4a:c6:8a:7e: a5:1a:fd:2d:6f:ee:0e:a2:9f:94:de:c9:0e:d5:55:c5:2f:8e: a2:76:64:fa:77:55:97:66:8f:13:4a:d2:a2:31:15:44:4d:12: 63:38:77:b9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUbuJjxz+y/QklbqiPeq+r6MfmkTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDRaFw0yNjA3MTIxMjAwMDRaMDMxMTAvBgNV BAMTKDkwRUM3RDk3MTQ4NzlDODg0RUY0MUJCMkM4RDBBMTBEN0IwQzdFMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8U0iD+QfFaPFo6tY5EMOHMJIn QYfuAqPS0zbB4g07yOmt+9b8OLhL+7zrCEefupQts3d3mRbQ6envp0zq9WbVoQT4 QHfaslmAiNPeLg+gOU+4vFoeMQOb04Zp2JCahOfyghlJDdvqvDJgQW8MtQB4QSue FXDrfxLv9iWWLUwCmR+bHnVLru/EuEpU0g5f5deomt88FscVYGl3LiZknuVdb/bH a2ESU/HwJOe12IMEUWNVqvFL3pfOaoCU0wbvGuZ3QR/E3vvMByG+d6B0Wz7zUCPu B19wfhyfxwC1CIZ/JpTDqu2wj4I0AptwIBxT58yBh8vCzJbg9zudIP5h3nzBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUkOx9lxSHnIhO9BuyyNChDXsMfi0wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOMwDQYJKoZIhvcN AQELBQADggEBAA2EP0GgmMsYBx2IihiNV96PWIBFOV1UInQWQvyENCgJd6LMnybw c3pjH9qhWmH6Gc5xonUVzuHZu3BctCMnWkEKhyWMqu7a3pdDHQ91dIdVkhLoK3pf hwEXhot5INl/Yutqlg8PfsXhmlOItLrU1QzjYFvXXnma+t96rPIaA2SmSP7fxo46 55yI/bPZZz3apr4f2S3pm0wjV+mH71dQRb+ZrzlVVPjO9VGnKycPoaSmodQRXjuB /QCbBHgz/fnJMhQ1+pTFn3SooHEnxj4urE0Qa3oDSsaKfqUa/S1v7g6in5TeyQ7V VcUvjqJ2ZPp3VZdmjxNK0qIxFURNEmM4d7k= -----END CERTIFICATE-----Generated at Mon Jul 21 14:41:14 2025 by rpki-client