$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: ppL/1yV2g6IFilRyU6A8b2YE6a7mfokbwhA7l92dl5k= Subject key identifier: 4D:1C:25:93:4E:D5:4F:07:EC:75:CC:DB:68:18:A5:C9:29:E4:35:A2 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 4F1647221B3149239DC6328A42C8F0C78288CD6B Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:06 +0000 ROA not before: Sun 11 Aug 2024 10:55:06 +0000 ROA not after: Sun 10 Aug 2025 11:00:06 +0000 asID: 63859 IP address blocks: 66.96.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:16:47:22:1b:31:49:23:9d:c6:32:8a:42:c8:f0:c7:82:88:cd:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:06 2024 GMT Not After : Aug 10 11:00:06 2025 GMT Subject: CN=4D1C25934ED54F07EC75CCDB6818A5C929E435A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bb:d9:50:67:60:f4:54:e4:6a:01:88:9e:6f: 45:95:a5:8d:4d:27:09:1a:8c:cb:48:2a:ad:88:87: ab:3f:85:98:ad:40:15:a6:77:fc:bf:97:ed:a9:a8: 40:b2:a7:45:0c:ac:c4:ee:e9:45:ef:99:5c:a3:84: b5:14:d8:59:55:28:ea:10:89:b2:95:5e:de:6f:3f: d6:1f:5d:0c:29:7e:f9:60:ba:95:3a:77:e3:47:6d: e7:e0:14:ba:f7:73:43:da:bc:34:d5:9e:11:88:19: 3d:5b:f3:8a:bb:aa:50:93:82:a1:ea:63:82:9b:40: 9b:6d:96:2c:08:bc:04:eb:cd:3e:46:5c:d7:50:f4: 60:52:2c:a2:14:58:75:ca:6e:a5:86:9f:fd:9f:6f: de:6b:13:30:14:a8:58:e0:08:aa:6a:1a:f6:ea:c6: 1b:53:88:52:39:f4:07:60:15:7a:d2:b6:83:a0:5a: 39:81:eb:2b:18:ac:38:31:e3:87:a6:6c:d7:55:66: 85:fe:1c:cc:0f:82:a6:06:05:8d:3b:6e:07:10:cc: 64:3e:95:3c:42:f1:bd:cd:0f:28:c3:d5:25:6a:bd: 6a:57:7a:a0:d6:b3:9b:94:32:c0:f2:0e:14:44:84: 33:8d:85:20:44:37:6d:a9:2a:c2:f1:10:27:08:29: 26:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:1C:25:93:4E:D5:4F:07:EC:75:CC:DB:68:18:A5:C9:29:E4:35:A2 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.230.0/24 Signature Algorithm: sha256WithRSAEncryption b3:85:54:81:cf:ed:a3:68:b4:94:a6:0d:ac:70:0f:84:2a:c6: 50:16:cc:a2:9e:bd:51:ee:08:eb:92:c3:7e:a0:7f:25:99:3f: cc:4c:d5:16:2a:f7:e8:f0:e4:eb:1f:60:c1:6a:2d:27:16:8d: fe:5f:bc:ec:e3:7b:dc:0b:a5:af:0b:8b:45:8c:e6:c8:9b:35: f1:d9:54:d5:35:0a:47:33:29:87:9f:7c:94:72:6e:56:e1:94: aa:eb:3e:c0:5c:0b:13:4d:a3:77:fd:40:0f:10:ea:d3:e3:f5: 9a:78:d9:77:1c:3b:e6:5e:c5:ab:98:19:70:df:b5:a2:61:f6: 24:d1:72:61:21:8a:c5:a4:75:85:fb:a8:4e:ed:07:83:51:a6: bb:a1:72:b7:84:bf:74:4e:07:ee:29:8b:5d:70:27:64:04:44: 51:0a:07:3f:3f:88:09:97:08:6d:0f:0c:60:72:45:05:01:71: 06:88:5b:71:33:f2:aa:3a:b3:54:12:4e:7b:03:7f:07:62:1a: 4c:d9:ed:67:ab:58:50:e4:f8:09:3c:07:e1:1c:72:71:df:2a: f6:8e:2c:d7:09:14:e8:72:7c:a7:05:48:08:4d:f6:62:ee:b1: 99:a2:d2:cd:61:46:5a:8a:a2:4d:f3:b3:43:da:b8:ba:67:70: d9:33:78:79 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUTxZHIhsxSSOdxjKKQsjwx4KIzWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDZaFw0yNTA4MTAxMTAwMDZaMDMxMTAvBgNV BAMTKDREMUMyNTkzNEVENTRGMDdFQzc1Q0NEQjY4MThBNUM5MjlFNDM1QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7u9lQZ2D0VORqAYieb0WVpY1N JwkajMtIKq2Ih6s/hZitQBWmd/y/l+2pqECyp0UMrMTu6UXvmVyjhLUU2FlVKOoQ ibKVXt5vP9YfXQwpfvlgupU6d+NHbefgFLr3c0PavDTVnhGIGT1b84q7qlCTgqHq Y4KbQJttliwIvATrzT5GXNdQ9GBSLKIUWHXKbqWGn/2fb95rEzAUqFjgCKpqGvbq xhtTiFI59AdgFXrStoOgWjmB6ysYrDgx44embNdVZoX+HMwPgqYGBY07bgcQzGQ+ lTxC8b3NDyjD1SVqvWpXeqDWs5uUMsDyDhREhDONhSBEN22pKsLxECcIKSZxAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUTRwlk07VTwfsdczbaBilySnkNaIwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOYwDQYJKoZIhvcN AQELBQADggEBALOFVIHP7aNotJSmDaxwD4QqxlAWzKKevVHuCOuSw36gfyWZP8xM 1RYq9+jw5OsfYMFqLScWjf5fvOzje9wLpa8Li0WM5sibNfHZVNU1CkczKYeffJRy blbhlKrrPsBcCxNNo3f9QA8Q6tPj9Zp42XccO+ZexauYGXDftaJh9iTRcmEhisWk dYX7qE7tB4NRpruhcreEv3ROB+4pi11wJ2QERFEKBz8/iAmXCG0PDGByRQUBcQaI W3Ez8qo6s1QSTnsDfwdiGkzZ7WerWFDk+Ak8B+EccnHfKvaOLNcJFOhyfKcFSAhN 9mLusZmi0s1hRlqKok3zs0PauLpncNkzeHk= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org