$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa File: 36362e39362e3232342e302f32302d3230203d3e203633383539.roa (raw, json) Hash identifier: hvuAWbgxBVK8cp4Lz6yUCBkZfwxOMK6Qx+IF0LsrfuI= Subject key identifier: 5E:68:18:83:64:43:45:34:3F:4B:4D:52:DC:94:85:D9:1B:30:15:BD Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 7ADF0108EFB0A0F95154E054B958736B8434F55C Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa Signing time: Fri 25 Oct 2024 05:01:31 +0000 ROA not before: Fri 25 Oct 2024 04:56:31 +0000 ROA not after: Fri 24 Oct 2025 05:01:31 +0000 asID: 63859 IP address blocks: 66.96.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:df:01:08:ef:b0:a0:f9:51:54:e0:54:b9:58:73:6b:84:34:f5:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Oct 25 04:56:31 2024 GMT Not After : Oct 24 05:01:31 2025 GMT Subject: CN=5E681883644345343F4B4D52DC9485D91B3015BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a2:fd:d1:c8:c4:89:fa:ab:62:d5:f5:b2:f1: 6e:2c:e5:aa:ab:2d:6a:0b:0f:95:b2:f4:28:eb:8b: bd:bf:82:fd:74:7c:3a:fd:db:d4:9b:b3:fc:e0:0e: 6d:1d:1b:2e:c8:63:5a:2b:39:0a:72:7f:cb:f7:67: ce:b6:d5:71:19:a4:d2:85:42:ac:5f:4a:af:f2:eb: 6d:36:3c:ad:01:39:43:11:37:02:78:9a:08:6f:93: 89:ad:ba:ab:a5:f2:97:3f:d2:11:f6:a2:3e:f9:78: a6:dc:5d:fe:07:de:14:9a:8c:f5:d4:dd:be:80:49: 58:95:82:63:a1:7f:75:41:22:f0:b1:99:1b:65:05: 9f:a1:02:ad:82:10:9d:02:97:fc:fc:fc:c0:29:98: ba:99:d2:50:d0:f2:bb:5d:94:78:ae:e1:aa:76:8c: 16:18:89:57:af:fb:0c:d8:f2:8e:3f:ef:c5:b9:64: 30:ff:a7:33:23:3b:48:52:d7:35:68:88:05:86:64: 68:ce:9d:2e:1f:cc:06:0f:31:82:c2:17:7b:82:37: 63:ef:15:9a:60:e8:0f:97:f4:d9:24:79:52:d0:be: f3:b4:a5:ce:83:85:fe:5c:1e:c1:2b:51:45:52:25: 4c:7f:ba:d1:89:97:fc:24:54:90:0e:fe:19:ee:45: 45:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:68:18:83:64:43:45:34:3F:4B:4D:52:DC:94:85:D9:1B:30:15:BD X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.224.0/20 Signature Algorithm: sha256WithRSAEncryption 8a:12:33:78:f0:99:9a:f4:40:b7:70:6a:ef:8c:94:d2:79:16: 0f:ee:c7:40:db:ea:41:55:5a:c0:74:6d:9d:52:fd:09:4a:2d: 79:a4:bc:1c:e7:b1:b3:f9:11:8f:b9:97:b3:25:81:52:a5:49: 03:d7:11:61:c8:2b:6e:0f:f5:bc:48:bd:4f:9e:96:4c:a8:7e: e7:02:28:c2:b9:0e:f0:94:fa:1b:8f:ce:ba:70:6e:11:3c:13: 1d:56:0a:8d:bb:19:09:dd:af:2c:90:37:4a:c6:3d:a8:04:8c: f1:8a:ba:9b:cb:5f:25:2b:8e:34:b1:38:97:c0:c1:6e:ae:a4: 96:fa:ed:1b:3e:20:40:7e:5c:d0:f5:31:31:11:ac:eb:8e:27: eb:38:f7:ec:d4:03:5e:7a:98:98:a6:56:ea:bb:c0:17:de:fe: 00:ef:90:b6:e2:ff:6c:12:44:c9:0b:2a:36:93:10:e2:f5:2b: bf:fa:dd:20:3e:0e:d2:22:11:24:84:cf:86:e7:68:1f:95:52: 79:9b:14:ae:f1:da:65:5d:08:51:7b:63:13:09:85:b5:29:ae: 27:17:14:70:ae:ad:cf:69:51:ec:04:86:f7:32:87:6b:ea:88: 29:2a:d2:29:c5:c2:79:8d:73:1f:e7:cf:c3:05:df:6f:16:c9: df:80:8f:38 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUet8BCO+woPlRVOBUuVhza4Q09VwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDEwMjUwNDU2MzFaFw0yNTEwMjQwNTAxMzFaMDMxMTAvBgNV BAMTKDVFNjgxODgzNjQ0MzQ1MzQzRjRCNEQ1MkRDOTQ4NUQ5MUIzMDE1QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2ov3RyMSJ+qti1fWy8W4s5aqr LWoLD5Wy9Cjri72/gv10fDr929Sbs/zgDm0dGy7IY1orOQpyf8v3Z8621XEZpNKF QqxfSq/y6202PK0BOUMRNwJ4mghvk4mtuqul8pc/0hH2oj75eKbcXf4H3hSajPXU 3b6ASViVgmOhf3VBIvCxmRtlBZ+hAq2CEJ0Cl/z8/MApmLqZ0lDQ8rtdlHiu4ap2 jBYYiVev+wzY8o4/78W5ZDD/pzMjO0hS1zVoiAWGZGjOnS4fzAYPMYLCF3uCN2Pv FZpg6A+X9NkkeVLQvvO0pc6Dhf5cHsErUUVSJUx/utGJl/wkVJAO/hnuRUXrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUXmgYg2RDRTQ/S01S3JSF2RswFb0wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNDJlMzAyZjMyMzAy ZDMyMzAyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARCYOAwDQYJKoZIhvcN AQELBQADggEBAIoSM3jwmZr0QLdwau+MlNJ5Fg/ux0Db6kFVWsB0bZ1S/QlKLXmk vBznsbP5EY+5l7MlgVKlSQPXEWHIK24P9bxIvU+elkyofucCKMK5DvCU+huPzrpw bhE8Ex1WCo27GQndryyQN0rGPagEjPGKupvLXyUrjjSxOJfAwW6upJb67Rs+IEB+ XND1MTERrOuOJ+s49+zUA156mJimVuq7wBfe/gDvkLbi/2wSRMkLKjaTEOL1K7/6 3SA+DtIiESSEz4bnaB+VUnmbFK7x2mVdCFF7YxMJhbUpricXFHCurc9pUewEhvcy h2vqiCkq0inFwnmNcx/nz8MF328Wyd+Ajzg= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org