$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Rtz7FEtSxQPbQcCKkNfayj3CkWIGrYWEiHb2SWr+0as= Subject key identifier: C1:22:B5:68:6B:79:65:44:01:39:0E:C8:0F:81:43:EB:02:92:0B:36 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 0278D73190FA60C8AA8F9143AAC0181D5C8CF464 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 10:00:02 +0000 ROA not before: Sun 11 Aug 2024 09:55:02 +0000 ROA not after: Sun 10 Aug 2025 10:00:02 +0000 asID: 63859 IP address blocks: 66.96.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:78:d7:31:90:fa:60:c8:aa:8f:91:43:aa:c0:18:1d:5c:8c:f4:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 09:55:02 2024 GMT Not After : Aug 10 10:00:02 2025 GMT Subject: CN=C122B5686B79654401390EC80F8143EB02920B36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3c:d5:f6:6f:f1:3f:3c:53:be:5d:96:fa:87: 00:b9:b2:e5:f4:75:80:a5:d5:2a:c0:84:2e:7a:45: 1e:d2:d5:87:b6:b4:9d:a8:bf:08:db:8f:d4:68:dd: c5:ec:89:e3:2f:c0:e9:53:c0:7d:2b:5a:3d:71:5f: 04:4d:08:81:f8:dd:c1:a5:64:aa:e9:75:db:e9:8f: 37:74:88:19:6b:bc:34:a8:8d:2a:da:3d:79:be:24: 39:eb:85:c2:83:b0:eb:7f:ee:56:5b:3f:22:61:26: df:6e:c5:76:cd:a4:e1:ec:7f:45:84:48:5b:08:f0: b6:61:ab:71:e3:98:36:c1:38:7a:c8:b7:e6:55:8f: 95:8f:09:0f:e1:81:0b:aa:15:d6:1b:74:6f:1b:fc: 35:6f:43:15:92:42:9a:fc:b8:f3:16:8e:dd:dc:ae: 44:be:43:8b:e5:eb:cb:0f:fc:eb:f7:df:17:96:84: 6e:07:f7:51:50:d9:1d:60:88:eb:3d:82:3d:91:63: ef:1b:a1:5d:c3:09:54:7d:f0:f4:2b:e7:db:ff:78: 28:49:0c:cd:8a:69:2a:4b:fe:ba:1a:e4:a1:3f:36: ef:d3:04:ca:4d:0c:39:32:2f:10:e5:0f:0d:9a:7c: 60:5d:4a:82:b6:86:c2:cb:07:13:ba:0a:a2:a7:3d: 83:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:22:B5:68:6B:79:65:44:01:39:0E:C8:0F:81:43:EB:02:92:0B:36 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.224.0/24 Signature Algorithm: sha256WithRSAEncryption 08:e2:45:c9:df:59:b1:20:93:15:1b:ee:3b:6c:36:7f:1f:20: 8c:e9:d1:9c:77:c4:2a:84:62:84:a1:a3:da:55:4f:5d:d6:85: ef:30:e1:a6:8f:6b:a1:64:9e:81:bb:d6:85:25:a9:f5:8c:39: cb:13:f9:eb:03:81:04:af:0f:28:ef:61:94:25:7a:03:a0:18: 01:3d:ce:7e:ab:72:ba:f6:06:d4:ee:62:47:5b:fd:d7:dc:c1: 8f:05:da:fd:f2:3b:cb:f4:40:f1:8e:f0:e0:98:15:c0:e6:4a: a0:02:99:82:aa:5e:08:44:3d:f0:8e:d7:d5:ab:cd:74:46:4a: 24:53:88:8e:e3:fb:de:a7:e0:a0:21:a2:c4:54:2e:a2:f3:44: d0:b8:c4:f6:40:91:80:48:31:d1:f6:7f:4d:01:0c:02:c5:ec: 58:65:ff:d3:90:4b:46:64:10:13:f7:16:15:e0:86:76:8b:0f: 11:dd:22:ed:9d:ef:f9:54:bc:28:64:74:4c:bd:87:a8:e1:57: b6:e4:8c:27:32:32:06:13:89:79:43:3f:05:5e:27:50:da:97: 30:33:ac:88:cf:84:50:3b:fc:cf:5e:0d:a4:fc:00:35:4b:52: 50:1a:6e:c9:64:9c:48:0b:17:87:de:36:18:c5:9c:f6:7a:1b: 6b:36:e8:e7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAnjXMZD6YMiqj5FDqsAYHVyM9GQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTEwOTU1MDJaFw0yNTA4MTAxMDAwMDJaMDMxMTAvBgNV BAMTKEMxMjJCNTY4NkI3OTY1NDQwMTM5MEVDODBGODE0M0VCMDI5MjBCMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4PNX2b/E/PFO+XZb6hwC5suX0 dYCl1SrAhC56RR7S1Ye2tJ2ovwjbj9Ro3cXsieMvwOlTwH0rWj1xXwRNCIH43cGl ZKrpddvpjzd0iBlrvDSojSraPXm+JDnrhcKDsOt/7lZbPyJhJt9uxXbNpOHsf0WE SFsI8LZhq3HjmDbBOHrIt+ZVj5WPCQ/hgQuqFdYbdG8b/DVvQxWSQpr8uPMWjt3c rkS+Q4vl68sP/Ov33xeWhG4H91FQ2R1giOs9gj2RY+8boV3DCVR98PQr59v/eChJ DM2KaSpL/roa5KE/Nu/TBMpNDDkyLxDlDw2afGBdSoK2hsLLBxO6CqKnPYN3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUwSK1aGt5ZUQBOQ7ID4FD6wKSCzYwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOAwDQYJKoZIhvcN AQELBQADggEBAAjiRcnfWbEgkxUb7jtsNn8fIIzp0Zx3xCqEYoSho9pVT13Whe8w 4aaPa6FknoG71oUlqfWMOcsT+esDgQSvDyjvYZQlegOgGAE9zn6rcrr2BtTuYkdb /dfcwY8F2v3yO8v0QPGO8OCYFcDmSqACmYKqXghEPfCO19WrzXRGSiRTiI7j+96n 4KAhosRULqLzRNC4xPZAkYBIMdH2f00BDALF7Fhl/9OQS0ZkEBP3FhXghnaLDxHd Iu2d7/lUvChkdEy9h6jhV7bkjCcyMgYTiXlDPwVeJ1DalzAzrIjPhFA7/M9eDaT8 ADVLUlAabslknEgLF4feNhjFnPZ6G2s26Oc= -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org