$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: beVAm5mEIT5TSS4KrOCof/3N0Xq6uHPn7555TIVn1VY= Subject key identifier: 20:DE:3D:F1:B4:F9:89:3F:45:8B:3F:DD:27:B0:56:F0:F0:B6:65:E0 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 11F7A4BA1B57B16D07012AE19A1A2E04AE224215 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:02 +0000 ROA not before: Sun 10 Sep 2023 09:55:02 +0000 ROA not after: Sun 08 Sep 2024 10:00:02 +0000 asID: 63859 IP address blocks: 66.96.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f7:a4:ba:1b:57:b1:6d:07:01:2a:e1:9a:1a:2e:04:ae:22:42:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:02 2023 GMT Not After : Sep 8 10:00:02 2024 GMT Subject: CN=20DE3DF1B4F9893F458B3FDD27B056F0F0B665E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e6:92:ad:c1:d2:cd:34:7b:09:40:6f:81:91: 5e:19:46:0a:40:65:e3:62:be:4f:58:15:98:c8:52: 0c:55:3e:f7:0c:b7:28:0f:43:61:af:8b:f9:cf:5c: 84:48:e4:85:22:cc:6e:56:da:26:7b:fe:c5:67:9c: 99:a4:14:b1:fb:45:ec:99:02:05:02:49:f7:1f:62: 2d:3d:b0:f5:52:2f:10:57:89:ca:d3:ca:e3:9f:22: b9:6d:4f:59:da:c3:f0:d1:3a:30:60:56:2d:dc:97: f9:52:80:1f:36:3d:e7:d1:c2:69:2d:88:69:67:fc: d2:5c:28:33:c1:6e:ec:29:ff:92:25:2e:6c:40:8e: 67:58:e8:11:48:f0:47:b1:69:f8:9b:76:6e:2a:cb: 17:78:49:2f:68:61:90:90:26:45:ac:20:09:a3:6a: 17:59:08:f2:71:80:74:24:01:49:aa:66:26:8e:16: 2a:31:c4:4d:bf:c0:a0:d5:a8:26:21:24:a6:19:dd: 1e:ff:8a:07:b2:9f:56:8f:10:b1:6e:60:cf:8f:60: 78:8e:87:c5:08:09:00:63:aa:3f:1c:2b:74:10:19: 1b:9b:f8:8a:3b:82:17:2b:85:b4:33:dc:96:1b:6d: 9d:90:7e:b8:95:c9:06:59:16:04:0f:bc:c4:4a:e9: 8e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DE:3D:F1:B4:F9:89:3F:45:8B:3F:DD:27:B0:56:F0:F0:B6:65:E0 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.229.0/24 Signature Algorithm: sha256WithRSAEncryption 67:85:02:94:d7:a4:76:25:55:f9:06:b6:32:af:8e:74:2c:71: 25:41:b0:53:8f:96:4c:7e:3d:da:df:05:8d:4a:eb:af:f6:92: 3f:c7:e1:be:29:70:38:76:ca:e7:51:8e:1d:92:a0:bb:b5:1c: 31:b3:58:9c:a6:bb:7a:cd:01:d2:f9:ec:be:e1:15:a4:50:3d: c3:73:73:7d:72:1c:12:8f:21:89:28:ce:ec:e7:e7:33:eb:bb: bb:ff:66:27:47:ca:7b:24:68:6a:d8:ba:d9:e3:93:5f:2c:1f: 6b:f5:9d:66:f1:df:2a:25:b2:68:b1:64:f7:1a:29:a6:85:d3: fd:bf:71:9a:d9:97:ce:14:13:b9:9e:12:0c:6a:ff:7e:82:32: f7:3e:00:65:c5:bf:e2:4c:c3:b1:1f:ce:d9:39:82:86:7b:92: b0:fb:cd:fa:bc:da:ac:23:e0:b3:ec:cd:c3:81:6f:e9:8b:a7: f2:5b:71:0b:8c:e2:75:92:7b:76:6f:9b:53:9e:38:c9:5f:20: 05:62:28:eb:3c:94:a9:1b:93:e8:8a:4b:cd:66:37:1a:56:2d: 9a:d0:3c:29:9c:67:9e:be:31:24:83:c4:f0:68:43:69:e7:ad: e4:c5:bf:13:b7:f1:34:ac:17:db:54:07:9a:78:74:2c:89:4f: 66:12:05:0b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEfekuhtXsW0HASrhmhouBK4iQhUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDJaFw0yNDA5MDgxMDAwMDJaMDMxMTAvBgNV BAMTKDIwREUzREYxQjRGOTg5M0Y0NThCM0ZERDI3QjA1NkYwRjBCNjY1RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp5pKtwdLNNHsJQG+BkV4ZRgpA ZeNivk9YFZjIUgxVPvcMtygPQ2Gvi/nPXIRI5IUizG5W2iZ7/sVnnJmkFLH7ReyZ AgUCSfcfYi09sPVSLxBXicrTyuOfIrltT1naw/DROjBgVi3cl/lSgB82PefRwmkt iGln/NJcKDPBbuwp/5IlLmxAjmdY6BFI8Eexafibdm4qyxd4SS9oYZCQJkWsIAmj ahdZCPJxgHQkAUmqZiaOFioxxE2/wKDVqCYhJKYZ3R7/igeyn1aPELFuYM+PYHiO h8UICQBjqj8cK3QQGRub+Io7ghcrhbQz3JYbbZ2QfriVyQZZFgQPvMRK6Y6PAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUIN498bT5iT9Fiz/dJ7BW8PC2ZeAwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOUwDQYJKoZIhvcN AQELBQADggEBAGeFApTXpHYlVfkGtjKvjnQscSVBsFOPlkx+PdrfBY1K66/2kj/H 4b4pcDh2yudRjh2SoLu1HDGzWJymu3rNAdL57L7hFaRQPcNzc31yHBKPIYkozuzn 5zPru7v/ZidHynskaGrYutnjk18sH2v1nWbx3yolsmixZPcaKaaF0/2/cZrZl84U E7meEgxq/36CMvc+AGXFv+JMw7Efztk5goZ7krD7zfq82qwj4LPszcOBb+mLp/Jb cQuM4nWSe3Zvm1OeOMlfIAViKOs8lKkbk+iKS81mNxpWLZrQPCmcZ56+MSSDxPBo Q2nnreTFvxO38TSsF9tUB5p4dCyJT2YSBQs= -----END CERTIFICATE-----Generated at Sun May 5 00:13:44 2024 by rpki-client on console-ams.rpki-client.org