$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 5Fmp+O/29hY1fd9Dobid/mZcrWdv6iTcbwdBYenAQLo= Subject key identifier: 6C:21:CC:7C:1D:59:9A:DE:86:06:5D:CB:B6:09:D6:06:CC:1C:1A:1D Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 235FF9DFF5ECB52894BE02AB49CF328C9248C2B7 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 11:00:02 +0000 ROA not before: Sun 13 Jul 2025 10:55:02 +0000 ROA not after: Sun 12 Jul 2026 11:00:02 +0000 asID: 63859 IP address blocks: 66.96.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5f:f9:df:f5:ec:b5:28:94:be:02:ab:49:cf:32:8c:92:48:c2:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 10:55:02 2025 GMT Not After : Jul 12 11:00:02 2026 GMT Subject: CN=6C21CC7C1D599ADE86065DCBB609D606CC1C1A1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:68:1a:3a:f7:6f:0f:6b:0b:3a:de:9f:04:0d: 70:26:ca:ef:8c:c2:b8:6a:a2:b7:7b:fc:f2:fc:6f: 89:57:f1:fc:cb:cf:8a:13:18:13:33:1f:09:82:77: 64:87:d8:d0:55:69:19:92:b6:0a:ba:99:ab:fc:cf: b8:ef:8e:7e:5e:4a:1a:0b:e2:23:82:06:9b:80:52: 74:44:da:ed:8a:51:26:59:d2:39:20:4c:3a:80:f2: a5:9e:89:b0:6e:a8:9a:03:12:7b:cd:2b:72:1d:38: b0:7b:7a:a9:26:cf:20:5a:eb:c6:4f:0d:60:03:52: 78:b6:f4:b8:d3:68:f1:13:35:48:bd:9f:52:a0:c3: 04:3c:db:77:73:d4:78:12:3f:ff:f2:71:d0:7f:f4: e1:31:e2:17:01:4c:5c:04:60:31:91:12:f0:4c:80: f7:af:fd:76:a5:02:48:ae:63:c1:8c:3e:02:1b:9c: 57:03:03:10:50:42:26:f4:eb:78:e9:0a:3c:07:92: 00:29:d3:97:fd:3c:76:64:39:bc:9f:cc:96:98:bc: 26:9d:26:39:0b:e7:ed:8f:83:fd:03:87:8f:8a:d9: 77:7b:f6:81:c9:2e:4d:99:c2:c2:45:94:e9:eb:78: 98:6f:d0:86:dd:42:a3:f6:a6:19:1c:8d:bf:37:75: 7e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:21:CC:7C:1D:59:9A:DE:86:06:5D:CB:B6:09:D6:06:CC:1C:1A:1D X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.229.0/24 Signature Algorithm: sha256WithRSAEncryption 25:c9:42:6c:21:66:e6:ec:8d:25:ab:3c:a4:60:31:c9:41:56: 83:23:44:50:2e:75:a2:04:72:12:b0:8d:83:a0:3a:98:82:b1: 69:f6:f5:ed:55:5c:46:e7:d1:40:88:9a:02:72:58:82:9a:80: 5d:34:5a:be:05:66:4c:94:16:09:ff:23:64:3a:c1:ab:b6:00: 6c:16:50:99:a2:39:5b:df:d9:e9:46:24:ad:2c:f0:f1:31:a4: 67:7d:c6:8f:5d:4b:45:b3:ae:ee:97:40:be:f6:34:84:af:b5: 74:f9:dd:9e:64:06:dc:de:a4:97:b0:56:9c:e4:fc:88:59:3b: bb:75:c9:ed:65:46:a6:22:5a:40:da:3f:d7:7e:91:b7:83:25: 84:76:ed:9e:7d:8f:ed:0e:9b:d6:75:90:30:79:f8:ac:65:2b: 9c:64:5b:74:67:64:1a:ac:5c:fe:49:83:d2:14:1c:4f:49:c0: a8:43:17:84:a8:ed:18:79:4c:b4:0f:99:c6:b8:4e:e1:49:74: 0e:6f:a7:f2:6c:27:d4:db:3c:1d:e2:dc:37:76:b2:94:3e:6b: 67:ee:80:f8:a2:2f:a9:41:0a:bc:7d:19:9e:25:70:d8:a9:aa: 2b:95:f8:d4:2d:96:cc:93:43:10:af:8b:1a:fd:02:2d:d1:46: 90:ba:da:4b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUI1/53/XstSiUvgKrSc8yjJJIwrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMDU1MDJaFw0yNjA3MTIxMTAwMDJaMDMxMTAvBgNV BAMTKDZDMjFDQzdDMUQ1OTlBREU4NjA2NURDQkI2MDlENjA2Q0MxQzFBMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3aBo6928Paws63p8EDXAmyu+M wrhqord7/PL8b4lX8fzLz4oTGBMzHwmCd2SH2NBVaRmStgq6mav8z7jvjn5eShoL 4iOCBpuAUnRE2u2KUSZZ0jkgTDqA8qWeibBuqJoDEnvNK3IdOLB7eqkmzyBa68ZP DWADUni29LjTaPETNUi9n1KgwwQ823dz1HgSP//ycdB/9OEx4hcBTFwEYDGREvBM gPev/XalAkiuY8GMPgIbnFcDAxBQQib063jpCjwHkgAp05f9PHZkObyfzJaYvCad JjkL5+2Pg/0Dh4+K2Xd79oHJLk2ZwsJFlOnreJhv0IbdQqP2phkcjb83dX6jAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbCHMfB1Zmt6GBl3LtgnWBswcGh0wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOUwDQYJKoZIhvcN AQELBQADggEBACXJQmwhZubsjSWrPKRgMclBVoMjRFAudaIEchKwjYOgOpiCsWn2 9e1VXEbn0UCImgJyWIKagF00Wr4FZkyUFgn/I2Q6wau2AGwWUJmiOVvf2elGJK0s 8PExpGd9xo9dS0Wzru6XQL72NISvtXT53Z5kBtzepJewVpzk/IhZO7t1ye1lRqYi WkDaP9d+kbeDJYR27Z59j+0Om9Z1kDB5+KxlK5xkW3RnZBqsXP5Jg9IUHE9JwKhD F4So7Rh5TLQPmca4TuFJdA5vp/JsJ9TbPB3i3Dd2spQ+a2fugPiiL6lBCrx9GZ4l cNipqiuV+NQtlsyTQxCvixr9Ai3RRpC62ks= -----END CERTIFICATE-----Generated at Mon Jul 21 14:38:56 2025 by rpki-client