$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 1hOaqxnsz5KOgy4A6p80EK6cgfKyoAwXM0xgiYZFGxA= Subject key identifier: E6:43:FA:96:9F:20:CE:AC:B9:76:CA:41:46:CF:8D:46:82:20:82:A3 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 0311A81EE259F571868B7DDA0F2825849F297BCF Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:07 +0000 ROA not before: Sun 11 Aug 2024 10:55:07 +0000 ROA not after: Sun 10 Aug 2025 11:00:07 +0000 asID: 63859 IP address blocks: 66.96.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 19:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:11:a8:1e:e2:59:f5:71:86:8b:7d:da:0f:28:25:84:9f:29:7b:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:07 2024 GMT Not After : Aug 10 11:00:07 2025 GMT Subject: CN=E643FA969F20CEACB976CA4146CF8D46822082A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:74:d1:55:72:c3:ad:00:44:b6:f1:17:c8:b9: a2:78:42:e4:9d:f4:e2:a9:51:12:ca:bb:69:55:0d: fe:34:6a:49:7f:d0:d7:7c:08:72:44:d9:50:4f:c9: f6:08:da:ff:48:64:52:9d:ee:67:ed:15:9b:7f:80: 2f:46:f4:55:91:88:4f:90:d8:df:34:97:43:36:84: 6f:ec:53:6a:12:28:a2:45:2b:d9:83:08:ff:f3:ee: 18:ab:fb:1c:4a:d7:cf:2d:b3:45:1d:b4:2e:72:fd: 57:a1:cc:fe:e0:65:3a:73:4d:5e:b9:92:65:7c:e7: 5e:7c:7a:c2:ac:fd:a8:17:b0:39:d2:a0:59:eb:3d: 12:40:fc:8b:b0:4e:b8:d7:38:2b:7c:d4:25:4d:15: 81:32:81:57:3b:60:3c:e9:38:07:db:eb:f5:a4:99: a2:d4:f2:80:e1:e8:20:eb:06:50:11:40:41:5e:b8: 3c:73:1c:f2:ba:ea:ef:6c:30:2d:89:7a:f8:31:09: 9e:fe:d9:5d:6a:c5:45:b1:19:28:d8:56:46:fa:ed: 2b:46:81:da:e3:ed:4e:8b:0a:58:20:a2:e5:ba:23: 91:d9:0f:aa:12:42:cb:3a:1c:ae:e3:52:db:98:b1: 4f:9e:52:50:02:3d:d4:a3:42:79:32:14:7f:85:68: 0b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:43:FA:96:9F:20:CE:AC:B9:76:CA:41:46:CF:8D:46:82:20:82:A3 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.227.0/24 Signature Algorithm: sha256WithRSAEncryption 36:d7:8c:3f:00:ce:7e:8d:24:db:46:2a:2c:11:23:71:ce:c2: bb:01:62:8a:66:2d:42:8a:8d:9a:23:ce:64:56:42:53:11:1e: c0:09:9e:b4:ea:43:ff:e5:7f:f7:1b:f3:8f:00:48:6d:d8:5e: 92:c8:b7:38:a4:ef:94:52:e5:b0:84:83:7d:b4:4e:a3:db:27: 41:da:df:6f:14:91:22:9c:c9:4c:73:66:24:a8:6e:12:45:7a: f9:d2:34:d3:54:c4:8c:30:b7:5c:d8:53:9e:9c:08:d0:42:9d: a6:54:94:72:88:d2:26:92:1c:3d:cf:bb:f0:be:12:c8:01:24: 13:ee:9e:0a:c8:5d:42:f7:e6:52:8b:01:1e:52:de:b8:08:de: c2:5e:1b:19:81:c9:93:26:2c:bc:69:7d:d3:2c:87:d0:34:df: 60:30:77:29:3b:13:67:f9:e3:34:f8:12:cc:a8:5a:48:5e:30: 08:ff:a0:88:6f:a6:5b:95:1b:a3:84:ff:b6:c5:cb:29:f4:14: f1:42:e6:cc:8b:fa:ed:ef:ed:a9:bd:76:a0:d9:71:f1:41:8c: d7:7f:d3:af:8f:6d:f8:bd:0e:d9:70:f0:df:d2:72:59:ad:f6: b8:d3:48:88:09:ac:cd:ea:59:3c:57:77:3b:62:80:a5:f7:31: f6:0f:23:a1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAxGoHuJZ9XGGi33aDyglhJ8pe88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDdaFw0yNTA4MTAxMTAwMDdaMDMxMTAvBgNV BAMTKEU2NDNGQTk2OUYyMENFQUNCOTc2Q0E0MTQ2Q0Y4RDQ2ODIyMDgyQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkdNFVcsOtAES28RfIuaJ4QuSd 9OKpURLKu2lVDf40akl/0Nd8CHJE2VBPyfYI2v9IZFKd7mftFZt/gC9G9FWRiE+Q 2N80l0M2hG/sU2oSKKJFK9mDCP/z7hir+xxK188ts0UdtC5y/VehzP7gZTpzTV65 kmV85158esKs/agXsDnSoFnrPRJA/IuwTrjXOCt81CVNFYEygVc7YDzpOAfb6/Wk maLU8oDh6CDrBlARQEFeuDxzHPK66u9sMC2JevgxCZ7+2V1qxUWxGSjYVkb67StG gdrj7U6LClggouW6I5HZD6oSQss6HK7jUtuYsU+eUlACPdSjQnkyFH+FaAt/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5kP6lp8gzqy5dspBRs+NRoIggqMwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOMwDQYJKoZIhvcN AQELBQADggEBADbXjD8Azn6NJNtGKiwRI3HOwrsBYopmLUKKjZojzmRWQlMRHsAJ nrTqQ//lf/cb848ASG3YXpLItzik75RS5bCEg320TqPbJ0Ha328UkSKcyUxzZiSo bhJFevnSNNNUxIwwt1zYU56cCNBCnaZUlHKI0iaSHD3Pu/C+EsgBJBPungrIXUL3 5lKLAR5S3rgI3sJeGxmByZMmLLxpfdMsh9A032Awdyk7E2f54zT4EsyoWkheMAj/ oIhvpluVG6OE/7bFyyn0FPFC5syL+u3v7am9dqDZcfFBjNd/06+Pbfi9Dtlw8N/S clmt9rjTSIgJrM3qWTxXdztigKX3MfYPI6E= -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:18 2025 by rpki-client