$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: ueINBqCCWWZE/ZAnQyGKVZ6RIGZrmR6k4ZQ3JkM2pls= Subject key identifier: B5:3D:36:A7:61:FD:4D:6F:91:58:C2:27:53:31:24:36:90:E7:A3:9A Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 65CA05DDB225726D0A10F3C71B827DBE5DC40622 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:02 +0000 ROA not before: Sun 11 Aug 2024 10:55:02 +0000 ROA not after: Sun 10 Aug 2025 11:00:02 +0000 asID: 63859 IP address blocks: 66.96.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ca:05:dd:b2:25:72:6d:0a:10:f3:c7:1b:82:7d:be:5d:c4:06:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:02 2024 GMT Not After : Aug 10 11:00:02 2025 GMT Subject: CN=B53D36A761FD4D6F9158C2275331243690E7A39A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e8:14:64:bb:67:ae:c7:8c:67:ca:c4:26:ff: 26:3c:62:d9:97:62:a2:6c:62:e5:69:ba:67:6d:14: b6:11:77:61:ab:4b:94:50:28:cd:1f:a7:5a:37:b8: ff:d2:66:9d:02:45:be:57:51:3a:30:b5:fb:44:08: 98:16:cf:b7:cf:fe:f2:b6:3f:53:59:9a:07:1a:90: 12:a1:ed:85:9a:1f:09:53:5d:e7:b4:a9:66:47:ff: e3:5c:a6:2d:ef:69:1b:66:3b:1c:6a:31:ad:7d:de: 0f:4e:a0:35:9e:f6:99:ac:b9:f2:ed:95:c1:2b:ae: b2:2c:6c:2c:89:77:8a:fc:98:83:d8:71:70:c0:f5: 4f:cc:b3:68:34:0a:34:77:26:02:7b:02:8d:b2:e3: 17:61:0b:9e:28:29:dd:60:34:5d:6e:b0:40:b4:c1: b1:17:61:06:82:e8:34:90:66:ba:6d:de:29:af:83: 35:85:74:cc:94:ab:0f:a4:7c:a5:b4:13:47:2c:11: 7c:92:95:82:90:33:c4:fe:a3:92:55:f2:a1:ae:37: 8c:5f:eb:57:2f:a9:4d:a6:f3:44:3b:e2:73:e8:66: a2:28:76:c8:59:70:df:c3:61:c9:9d:d1:a9:f2:76: 49:89:dd:d6:5c:d4:6c:8d:13:64:f0:e3:0e:59:04: 0c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3D:36:A7:61:FD:4D:6F:91:58:C2:27:53:31:24:36:90:E7:A3:9A X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.229.0/24 Signature Algorithm: sha256WithRSAEncryption a6:c3:04:75:f7:0b:b5:ea:5c:04:f1:08:11:98:87:0f:f5:8e: 13:b9:aa:81:cf:81:3c:ab:b3:c9:85:79:5d:c0:25:ca:58:9a: 17:6c:b7:85:4f:d8:65:71:ef:11:f9:65:f4:99:5f:7f:e9:bb: ba:e4:f1:b6:0b:5d:d1:a6:08:f9:7e:80:75:a4:2a:1b:ea:3d: bc:bc:09:b2:54:73:2e:77:80:aa:aa:8f:e2:2b:9c:bb:48:7b: 8f:87:fb:b4:57:39:1e:9e:bf:3b:6e:c1:c5:74:25:f8:4a:27: f8:9d:f8:36:c6:45:a1:1e:95:d4:0d:ce:ad:20:bb:e8:34:bf: 8b:e2:b0:86:16:12:f7:42:d5:06:5e:43:7b:88:75:98:d1:1f: 63:b8:b1:70:fc:d8:77:3f:28:e2:19:4e:e5:fc:15:26:85:af: f6:02:3e:39:c0:7f:9f:7d:b5:ad:b8:8e:12:3b:7d:6f:c4:86: 1d:4f:30:f5:3b:63:19:44:d6:ea:d3:21:01:b6:92:4f:c6:74: 73:5c:4f:ba:ce:94:74:20:0c:7f:96:2d:a6:f2:c9:ea:a3:22: ca:76:88:ba:c6:85:bb:da:20:1f:36:ed:bc:12:6d:69:ab:7d: 09:6d:c8:7a:15:35:c9:02:bb:ca:13:8f:ef:65:1a:fb:bc:85: 5a:9a:ef:4d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZcoF3bIlcm0KEPPHG4J9vl3EBiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDJaFw0yNTA4MTAxMTAwMDJaMDMxMTAvBgNV BAMTKEI1M0QzNkE3NjFGRDRENkY5MTU4QzIyNzUzMzEyNDM2OTBFN0EzOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa6BRku2eux4xnysQm/yY8YtmX YqJsYuVpumdtFLYRd2GrS5RQKM0fp1o3uP/SZp0CRb5XUTowtftECJgWz7fP/vK2 P1NZmgcakBKh7YWaHwlTXee0qWZH/+Ncpi3vaRtmOxxqMa193g9OoDWe9pmsufLt lcErrrIsbCyJd4r8mIPYcXDA9U/Ms2g0CjR3JgJ7Ao2y4xdhC54oKd1gNF1usEC0 wbEXYQaC6DSQZrpt3imvgzWFdMyUqw+kfKW0E0csEXySlYKQM8T+o5JV8qGuN4xf 61cvqU2m80Q74nPoZqIodshZcN/DYcmd0anydkmJ3dZc1GyNE2Tw4w5ZBAxxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtT02p2H9TW+RWMInUzEkNpDno5owHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOUwDQYJKoZIhvcN AQELBQADggEBAKbDBHX3C7XqXATxCBGYhw/1jhO5qoHPgTyrs8mFeV3AJcpYmhds t4VP2GVx7xH5ZfSZX3/pu7rk8bYLXdGmCPl+gHWkKhvqPby8CbJUcy53gKqqj+Ir nLtIe4+H+7RXOR6evztuwcV0JfhKJ/id+DbGRaEeldQNzq0gu+g0v4visIYWEvdC 1QZeQ3uIdZjRH2O4sXD82Hc/KOIZTuX8FSaFr/YCPjnAf599ta24jhI7fW/Ehh1P MPU7YxlE1urTIQG2kk/GdHNcT7rOlHQgDH+WLabyyeqjIsp2iLrGhbvaIB827bwS bWmrfQltyHoVNckCu8oTj+9lGvu8hVqa700= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org