$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 6IzOiJcETTvUcwEywrFsbmFnebMOLFSar0/GxuBsfGQ= Subject key identifier: E7:19:84:60:71:7D:BE:42:2E:DA:E9:46:9A:71:5E:4A:5C:64:DF:DC Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 39113D517FDD5A08FAEDCE3D48710A6A3CA9F9C5 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:02 +0000 ROA not before: Sun 13 Jul 2025 11:55:02 +0000 ROA not after: Sun 12 Jul 2026 12:00:02 +0000 asID: 63859 IP address blocks: 66.96.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:11:3d:51:7f:dd:5a:08:fa:ed:ce:3d:48:71:0a:6a:3c:a9:f9:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:02 2025 GMT Not After : Jul 12 12:00:02 2026 GMT Subject: CN=E7198460717DBE422EDAE9469A715E4A5C64DFDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:98:ff:7b:8a:69:3c:87:30:cf:04:5e:f7:c5: 67:3e:57:e9:90:ee:16:fd:31:a6:1f:56:da:01:e8: 43:25:68:6e:28:df:b3:84:13:44:7c:2c:ca:bd:47: 63:40:1e:78:84:2e:ab:13:d4:d0:3e:2d:5c:a5:c7: b0:f7:9e:00:d4:47:bb:b2:11:c1:98:fd:f5:f0:55: 86:cb:fe:db:2d:b9:01:f6:84:0c:32:fe:ff:29:b8: 00:f7:46:d9:66:22:b1:39:11:53:1e:bf:da:25:24: 41:35:87:42:49:9a:1b:26:c0:d2:45:76:e4:46:f5: fc:95:96:cf:40:10:08:27:ab:43:a3:b6:5b:6c:5a: 81:29:d2:a0:4e:01:03:cc:98:48:e4:7c:f9:52:a7: 87:b6:05:3b:fd:be:bb:8d:1e:03:04:17:c3:d4:07: d2:8e:28:69:23:5b:c8:20:64:c6:b2:c2:51:fc:0c: 83:02:85:9f:04:4e:e4:77:75:e1:b8:a6:14:b3:fb: 7d:ab:05:78:d0:94:4f:f4:b2:97:78:42:8d:63:5b: 95:5b:4c:7e:bc:ea:7b:fa:2e:19:f9:f2:51:37:5d: 3a:53:ec:2d:09:05:f2:ab:fb:2d:c2:d7:a4:d8:a7: 7e:3c:93:b7:12:d8:bd:1a:94:c1:30:40:52:f6:00: 6c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:19:84:60:71:7D:BE:42:2E:DA:E9:46:9A:71:5E:4A:5C:64:DF:DC X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.230.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:da:27:d7:29:ea:dc:82:8f:61:4d:54:6d:5f:e4:59:c7:1a: 84:c7:23:04:9e:93:78:1b:70:1a:11:49:da:fc:43:46:51:87: c4:27:28:ee:71:53:72:97:5f:31:e3:47:87:d9:79:c6:d2:9d: 69:23:8f:9e:2a:75:9f:8b:1f:32:a8:21:14:ee:7c:d7:5b:2b: 8a:14:6e:7c:b2:b2:8a:43:31:f8:6f:fe:93:8b:fe:b7:5c:eb: 71:4b:ab:88:55:a4:27:33:0b:37:4e:19:ee:ec:47:aa:56:6f: ed:c4:f3:9e:5d:af:3d:77:0c:ec:79:db:c6:99:e2:12:49:59: 01:4d:f6:cf:6d:9a:39:e1:6a:3b:5a:f6:e7:8e:ae:cc:3e:18: 22:3c:d9:87:b5:5c:a3:ce:49:32:c4:6e:58:f1:0f:8a:9f:9f: 19:d9:cc:ca:e2:eb:3b:42:2f:ed:3d:12:54:86:2d:15:ed:18: 14:3e:79:eb:dd:4e:03:18:da:6b:c9:0d:48:c7:63:3a:a8:b7: 19:7b:8f:9f:1a:c8:fc:ea:61:ff:3d:8b:88:d6:98:28:c8:f1: 3b:a0:cf:f2:05:9c:2c:53:79:8a:35:44:b5:85:62:46:5c:2b: de:8a:a9:27:5e:84:fd:f1:11:b8:87:55:a1:a7:87:b2:5b:9c: 38:e3:da:cc -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUORE9UX/dWgj67c49SHEKajyp+cUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDJaFw0yNjA3MTIxMjAwMDJaMDMxMTAvBgNV BAMTKEU3MTk4NDYwNzE3REJFNDIyRURBRTk0NjlBNzE1RTRBNUM2NERGREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwmP97imk8hzDPBF73xWc+V+mQ 7hb9MaYfVtoB6EMlaG4o37OEE0R8LMq9R2NAHniELqsT1NA+LVylx7D3ngDUR7uy EcGY/fXwVYbL/tstuQH2hAwy/v8puAD3RtlmIrE5EVMev9olJEE1h0JJmhsmwNJF duRG9fyVls9AEAgnq0OjtltsWoEp0qBOAQPMmEjkfPlSp4e2BTv9vruNHgMEF8PU B9KOKGkjW8ggZMaywlH8DIMChZ8ETuR3deG4phSz+32rBXjQlE/0spd4Qo1jW5Vb TH686nv6Lhn58lE3XTpT7C0JBfKr+y3C16TYp348k7cS2L0alMEwQFL2AGwRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5xmEYHF9vkIu2ulGmnFeSlxk39wwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOYwDQYJKoZIhvcN AQELBQADggEBAG7aJ9cp6tyCj2FNVG1f5FnHGoTHIwSek3gbcBoRSdr8Q0ZRh8Qn KO5xU3KXXzHjR4fZecbSnWkjj54qdZ+LHzKoIRTufNdbK4oUbnyysopDMfhv/pOL /rdc63FLq4hVpCczCzdOGe7sR6pWb+3E855drz13DOx528aZ4hJJWQFN9s9tmjnh ajta9ueOrsw+GCI82Ye1XKPOSTLEbljxD4qfnxnZzMri6ztCL+09ElSGLRXtGBQ+ eevdTgMY2mvJDUjHYzqotxl7j58ayPzqYf89i4jWmCjI8Tugz/IFnCxTeYo1RLWF YkZcK96KqSdehP3xEbiHVaGnh7JbnDjj2sw= -----END CERTIFICATE-----Generated at Mon Jul 21 14:45:12 2025 by rpki-client