$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Z+HVBuKwzYj3z36PWVTGkQlNzCI9GkvKDZ4BFmaQ66E= Subject key identifier: F5:6C:36:1B:1B:09:2F:A0:CF:3D:0E:5F:19:9F:07:EA:A5:3A:7C:5E Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5F0C598D2C2B5C4A6F5C239B3E7000E8DD7D2F0F Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:06 +0000 ROA not before: Sun 10 Sep 2023 09:55:06 +0000 ROA not after: Sun 08 Sep 2024 10:00:06 +0000 asID: 63859 IP address blocks: 66.96.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:0c:59:8d:2c:2b:5c:4a:6f:5c:23:9b:3e:70:00:e8:dd:7d:2f:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:06 2023 GMT Not After : Sep 8 10:00:06 2024 GMT Subject: CN=F56C361B1B092FA0CF3D0E5F199F07EAA53A7C5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:17:81:2d:02:41:2d:99:4d:62:0a:21:73:28: 3b:7f:2a:4e:13:51:b0:50:ec:97:ae:24:1f:2e:6b: 11:3d:8f:91:76:d7:c3:91:f8:ff:35:8b:1f:00:8e: 7e:70:3e:f6:b5:7a:59:57:f6:b5:41:4c:c4:39:7d: 58:84:c2:57:07:5d:2f:04:2a:96:d8:9e:37:d9:40: b7:aa:5c:77:27:37:44:74:b0:46:ec:83:40:2a:2f: 13:4d:1e:2f:f6:c8:26:09:38:2b:33:e8:0e:06:98: 6c:94:a5:a4:1b:1d:7a:05:04:ad:4d:d3:1f:6a:c3: c9:0e:6e:68:f8:14:03:b4:d3:24:55:f5:ba:ca:3d: 21:57:a2:cd:a7:95:92:41:4d:48:7b:19:49:bf:bc: 09:80:94:94:12:15:8f:28:32:95:3b:12:18:d9:7c: 8c:6e:f5:28:ee:78:6b:67:a8:7c:64:4e:b4:ae:4d: 2c:e5:7e:be:58:02:fb:10:3e:5a:32:20:8c:f4:16: bd:a3:ab:91:52:40:db:b7:ba:52:66:0e:42:5c:ce: 53:9f:64:28:35:e6:ea:9b:96:8d:93:59:38:6f:00: 4c:ee:79:cf:df:37:1e:9f:a9:72:c6:d1:c7:4f:ab: 58:ee:4d:7b:f3:33:c3:9d:15:5c:2e:95:d4:bc:c4: ba:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:6C:36:1B:1B:09:2F:A0:CF:3D:0E:5F:19:9F:07:EA:A5:3A:7C:5E X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.230.0/24 Signature Algorithm: sha256WithRSAEncryption 81:a6:bd:25:11:86:ef:61:30:5a:b7:2d:14:38:a3:eb:aa:04: 04:06:c6:40:7b:a2:e2:5b:bd:19:9f:ed:a5:16:61:4c:e5:fc: 5c:45:9f:a0:1d:73:50:59:71:00:84:86:e2:58:da:f2:8e:33: 0a:01:6b:c1:35:84:30:fc:fc:47:8c:b2:81:b6:24:dc:6a:38: ae:95:17:54:84:15:ce:35:e3:4b:c3:1e:f2:48:5c:34:50:f6: 4e:87:32:77:a9:60:38:e6:be:c0:c0:7f:a8:84:32:74:a5:14: b7:4a:80:7a:cc:de:4c:eb:1c:63:01:d6:d4:31:e5:12:79:85: da:ea:37:1d:da:11:8c:20:cf:82:ff:80:ca:54:89:5a:d9:ff: 69:10:eb:37:ac:ad:90:fe:b4:6b:b6:71:57:ed:5f:e7:43:e9: 9a:1c:01:82:bd:c9:54:6d:ff:5a:f1:23:39:d3:7d:0f:b0:d5: 72:10:c1:27:d2:c3:51:45:d3:f6:0a:33:f4:37:7d:33:f3:e7: 4a:cc:3c:d2:a9:c1:8e:d7:e4:db:17:fe:8d:89:ca:96:2f:62: c1:3d:e2:b3:c5:ff:92:c6:3f:9a:d1:ab:3c:e3:73:fc:9c:d5: c0:33:96:0c:e0:53:92:cc:90:0a:32:e3:2c:c4:ff:2a:f0:b6: 72:79:6a:20 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXwxZjSwrXEpvXCObPnAA6N19Lw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDZaFw0yNDA5MDgxMDAwMDZaMDMxMTAvBgNV BAMTKEY1NkMzNjFCMUIwOTJGQTBDRjNEMEU1RjE5OUYwN0VBQTUzQTdDNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtF4EtAkEtmU1iCiFzKDt/Kk4T UbBQ7JeuJB8uaxE9j5F218OR+P81ix8Ajn5wPva1ellX9rVBTMQ5fViEwlcHXS8E KpbYnjfZQLeqXHcnN0R0sEbsg0AqLxNNHi/2yCYJOCsz6A4GmGyUpaQbHXoFBK1N 0x9qw8kObmj4FAO00yRV9brKPSFXos2nlZJBTUh7GUm/vAmAlJQSFY8oMpU7EhjZ fIxu9SjueGtnqHxkTrSuTSzlfr5YAvsQPloyIIz0Fr2jq5FSQNu3ulJmDkJczlOf ZCg15uqblo2TWThvAEzuec/fNx6fqXLG0cdPq1juTXvzM8OdFVwuldS8xLqlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU9Ww2GxsJL6DPPQ5fGZ8H6qU6fF4wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOYwDQYJKoZIhvcN AQELBQADggEBAIGmvSURhu9hMFq3LRQ4o+uqBAQGxkB7ouJbvRmf7aUWYUzl/FxF n6Adc1BZcQCEhuJY2vKOMwoBa8E1hDD8/EeMsoG2JNxqOK6VF1SEFc4140vDHvJI XDRQ9k6HMnepYDjmvsDAf6iEMnSlFLdKgHrM3kzrHGMB1tQx5RJ5hdrqNx3aEYwg z4L/gMpUiVrZ/2kQ6zesrZD+tGu2cVftX+dD6ZocAYK9yVRt/1rxIznTfQ+w1XIQ wSfSw1FF0/YKM/Q3fTPz50rMPNKpwY7X5NsX/o2JypYvYsE94rPF/5LGP5rRqzzj c/yc1cAzlgzgU5LMkAoy4yzE/yrwtnJ5aiA= -----END CERTIFICATE-----Generated at Thu Apr 25 19:09:19 2024 by rpki-client on console-ams.rpki-client.org