$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232352e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: c0NHk0zR4y7wrSNCAlXTeQkXoHb3mwr+8y6dR4m+eUE= Subject key identifier: 8E:36:0A:D3:E4:EA:16:6E:EA:5B:86:11:10:D9:D6:75:95:7C:6F:F1 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 120FD4DB19423FDCE27B8DF79845FA7716A72677 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232352e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 07:00:02 +0000 ROA not before: Sun 13 Jul 2025 06:55:02 +0000 ROA not after: Sun 12 Jul 2026 07:00:02 +0000 asID: 63859 IP address blocks: 66.96.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:0f:d4:db:19:42:3f:dc:e2:7b:8d:f7:98:45:fa:77:16:a7:26:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 06:55:02 2025 GMT Not After : Jul 12 07:00:02 2026 GMT Subject: CN=8E360AD3E4EA166EEA5B861110D9D675957C6FF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e2:2d:0c:9c:4d:08:7b:5f:5a:e6:a5:92:1c: d6:f8:a9:e4:c4:9a:99:a7:a4:ec:c4:52:25:fb:05: 46:c7:c8:de:fe:30:b4:aa:08:42:67:39:c2:68:e6: bd:46:70:f5:31:2f:33:4f:ab:c9:4d:ac:b0:b1:bd: db:d5:da:c0:9b:f0:00:5c:9c:27:08:a7:1a:d2:90: c7:d2:09:9a:6c:60:4b:7b:8b:f1:a4:fd:3e:01:aa: 94:30:f7:a8:97:d3:7a:98:5d:f4:ec:fd:3d:09:e9: 7b:72:ad:17:45:0b:92:98:1a:80:b2:5f:41:53:38: 03:b4:a6:0a:73:2b:a5:85:ec:d5:f5:26:83:4c:75: 76:57:81:55:c4:4b:54:31:a0:08:bc:eb:d4:ae:e8: a9:e2:af:27:ed:78:67:1e:64:32:ee:c9:c8:83:e7: 25:2a:fe:fe:9f:83:e5:06:c2:09:73:86:c8:95:89: 3b:d0:37:20:b5:5a:71:24:26:0f:65:c1:ef:4a:84: 0a:16:72:28:a5:5c:59:26:f9:e7:7f:5a:67:d4:a2: 12:e5:84:c3:d7:26:18:a8:1b:2d:22:80:a3:29:bb: 2d:d7:14:d3:0f:c5:9b:0c:b8:3d:05:4f:6f:e6:33: 50:3f:ad:2d:14:95:cd:1e:0f:25:2c:31:a2:56:3e: 7d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:36:0A:D3:E4:EA:16:6E:EA:5B:86:11:10:D9:D6:75:95:7C:6F:F1 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.225.0/24 Signature Algorithm: sha256WithRSAEncryption 93:09:e6:16:db:93:62:b8:c6:15:90:ca:66:6b:87:fe:b4:cd: 67:92:7c:ed:77:40:4e:51:c5:97:55:18:06:8f:4e:29:27:58: 6d:b4:a8:29:cf:bb:b8:ae:2a:b7:59:5b:77:69:b9:68:54:15: b4:b2:02:bc:46:13:45:18:ef:24:da:f4:74:ff:55:18:8b:b8: f0:61:7e:30:dc:d3:d2:88:75:2f:e3:8b:d7:20:16:f3:dd:cf: e7:a9:b5:6e:c2:ca:db:54:07:44:38:d6:01:0f:b8:cf:a9:e4: f4:23:eb:cd:e9:c3:0c:39:41:f1:64:da:da:6b:46:e7:d3:fd: 4f:f6:d5:a4:06:a7:af:59:aa:a6:50:24:a3:c6:6c:37:c3:0d: c8:a9:3a:74:07:9d:73:01:b7:0d:ef:91:98:b6:3f:7d:08:5d: 56:52:a6:24:06:22:f9:06:ea:9c:1e:69:96:6c:19:30:96:80: e2:5f:2c:2a:45:75:3e:cf:6d:5e:5b:9a:bc:c8:78:c5:23:64: 43:30:07:58:42:6c:67:3b:b9:cb:a0:11:ff:e5:11:ec:f5:88: c4:62:d6:a7:33:44:3d:8e:c3:d0:45:e0:c1:5e:36:cb:27:7b: ba:51:5e:7f:28:7b:28:b8:18:e0:a0:75:ef:4b:e7:0d:8c:72: 35:3e:d4:46 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEg/U2xlCP9zie433mEX6dxanJncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMwNjU1MDJaFw0yNjA3MTIwNzAwMDJaMDMxMTAvBgNV BAMTKDhFMzYwQUQzRTRFQTE2NkVFQTVCODYxMTEwRDlENjc1OTU3QzZGRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC04i0MnE0Ie19a5qWSHNb4qeTE mpmnpOzEUiX7BUbHyN7+MLSqCEJnOcJo5r1GcPUxLzNPq8lNrLCxvdvV2sCb8ABc nCcIpxrSkMfSCZpsYEt7i/Gk/T4BqpQw96iX03qYXfTs/T0J6XtyrRdFC5KYGoCy X0FTOAO0pgpzK6WF7NX1JoNMdXZXgVXES1QxoAi869Su6KniryfteGceZDLuyciD 5yUq/v6fg+UGwglzhsiViTvQNyC1WnEkJg9lwe9KhAoWciilXFkm+ed/WmfUohLl hMPXJhioGy0igKMpuy3XFNMPxZsMuD0FT2/mM1A/rS0Ulc0eDyUsMaJWPn3zAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjjYK0+TqFm7qW4YRENnWdZV8b/EwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOEwDQYJKoZIhvcN AQELBQADggEBAJMJ5hbbk2K4xhWQymZrh/60zWeSfO13QE5RxZdVGAaPTiknWG20 qCnPu7iuKrdZW3dpuWhUFbSyArxGE0UY7yTa9HT/VRiLuPBhfjDc09KIdS/ji9cg FvPdz+eptW7CyttUB0Q41gEPuM+p5PQj683pwww5QfFk2tprRufT/U/21aQGp69Z qqZQJKPGbDfDDcipOnQHnXMBtw3vkZi2P30IXVZSpiQGIvkG6pweaZZsGTCWgOJf LCpFdT7PbV5bmrzIeMUjZEMwB1hCbGc7ucugEf/lEez1iMRi1qczRD2Ow9BF4MFe Nssne7pRXn8oeyi4GOCgde9L5w2McjU+1EY= -----END CERTIFICATE-----Generated at Mon Jul 21 19:27:11 2025 by rpki-client