$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233312e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: N+ON+KkRxINimNgcr2X81SZ+AqyBwddVjwHElmdPjrw= Subject key identifier: EB:5A:EF:AA:8A:1E:49:24:1C:57:30:7A:F3:E9:5D:F7:0A:86:7B:6B Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 2E64B91D0AAEC5DFCD5EA6A964AF5929842C5C38 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233312e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:04 +0000 ROA not before: Sun 13 Jul 2025 11:55:04 +0000 ROA not after: Sun 12 Jul 2026 12:00:04 +0000 asID: 63859 IP address blocks: 66.96.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:64:b9:1d:0a:ae:c5:df:cd:5e:a6:a9:64:af:59:29:84:2c:5c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:04 2025 GMT Not After : Jul 12 12:00:04 2026 GMT Subject: CN=EB5AEFAA8A1E49241C57307AF3E95DF70A867B6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:66:e9:4d:5e:2a:9f:d8:ee:71:9b:3e:b4:84: 88:20:51:1c:9a:42:9f:f5:c8:3f:d4:6d:18:ed:78: 25:3c:23:d2:e4:ec:81:0b:37:96:e6:29:f0:e5:48: f9:51:c7:ac:e3:7a:7f:da:5c:59:25:1c:4d:d3:0e: d2:35:9a:b2:6f:89:d1:56:52:0d:aa:fb:22:e6:d9: be:63:95:f9:55:71:d4:5b:48:74:ca:c4:9f:c5:05: 91:90:d2:a5:ee:30:60:54:22:63:ac:59:62:59:86: b1:b0:23:42:32:3f:5f:cd:be:50:b5:38:b6:f3:0d: 2e:fb:75:4e:b7:78:53:54:0c:6d:11:cc:ac:1e:d4: 55:e1:e3:fc:b7:ef:48:e8:b2:da:b3:e3:2d:a5:99: 6e:6f:b1:ac:9c:8c:09:ff:ce:d6:5e:74:93:fe:af: b6:a6:46:0b:a5:f6:d3:c6:3f:5d:1e:f2:eb:a6:26: 68:40:a1:02:aa:24:4c:cd:8c:a6:aa:7d:b9:b0:ff: 1e:e4:80:57:c3:e9:3d:cc:60:c9:c0:1a:a4:31:af: 33:cd:6c:a2:81:c3:39:6e:f5:e2:dc:d8:3c:2d:01: dd:25:6e:04:1e:90:29:3b:2f:5c:60:ed:ca:9c:f9: 63:c4:b9:e2:dc:67:8a:59:b9:bd:d8:61:a0:91:ba: 5e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:5A:EF:AA:8A:1E:49:24:1C:57:30:7A:F3:E9:5D:F7:0A:86:7B:6B X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.231.0/24 Signature Algorithm: sha256WithRSAEncryption 12:3f:2e:02:47:6c:3b:4d:18:97:dd:19:c7:ea:2a:4d:96:68: 00:9e:f5:ed:6a:ad:e8:3d:14:63:32:bc:e6:1b:9b:72:b3:5f: 30:e3:1d:76:48:08:ad:7e:c0:01:81:f0:bc:76:fe:06:f5:dc: b2:28:c4:4d:dc:7f:f9:7d:68:4b:3a:98:29:2b:63:ce:a8:96: 7b:af:80:1f:e5:7a:61:83:8e:0c:3d:7a:98:8a:da:6c:ea:40: 81:d9:b3:9a:9e:ed:c8:f6:bb:d8:39:a2:d1:22:3c:1a:08:63: 83:a2:65:c8:01:56:45:13:9f:7c:f5:f3:33:17:a0:a5:90:a3: 52:b4:52:8b:3d:3a:3e:90:ab:a4:d5:64:19:94:6c:32:10:ee: 6e:5e:47:5e:6d:3f:f5:12:50:5e:24:b2:cb:d8:96:1a:08:ae: 4b:fd:57:84:ad:66:20:c0:13:df:2c:fe:f8:8e:c8:f2:2f:36: 96:5a:40:60:7a:ce:1c:67:af:45:dd:d7:67:fa:ad:3b:fc:e1: 39:79:5d:3b:20:a0:d6:28:c6:4a:eb:4d:55:6c:34:8d:13:b3: e7:27:cd:7a:fe:e3:5a:eb:46:21:fb:40:a4:32:55:b8:49:df: b9:f3:d5:fc:05:d7:e3:b6:c2:3d:f5:5b:97:06:f1:03:70:55: 83:c5:32:68 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULmS5HQquxd/NXqapZK9ZKYQsXDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDRaFw0yNjA3MTIxMjAwMDRaMDMxMTAvBgNV BAMTKEVCNUFFRkFBOEExRTQ5MjQxQzU3MzA3QUYzRTk1REY3MEE4NjdCNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHZulNXiqf2O5xmz60hIggURya Qp/1yD/UbRjteCU8I9Lk7IELN5bmKfDlSPlRx6zjen/aXFklHE3TDtI1mrJvidFW Ug2q+yLm2b5jlflVcdRbSHTKxJ/FBZGQ0qXuMGBUImOsWWJZhrGwI0IyP1/NvlC1 OLbzDS77dU63eFNUDG0RzKwe1FXh4/y370jostqz4y2lmW5vsaycjAn/ztZedJP+ r7amRgul9tPGP10e8uumJmhAoQKqJEzNjKaqfbmw/x7kgFfD6T3MYMnAGqQxrzPN bKKBwzlu9eLc2DwtAd0lbgQekCk7L1xg7cqc+WPEueLcZ4pZub3YYaCRul7HAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU61rvqooeSSQcVzB68+ld9wqGe2swHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOcwDQYJKoZIhvcN AQELBQADggEBABI/LgJHbDtNGJfdGcfqKk2WaACe9e1qreg9FGMyvOYbm3KzXzDj HXZICK1+wAGB8Lx2/gb13LIoxE3cf/l9aEs6mCkrY86olnuvgB/lemGDjgw9epiK 2mzqQIHZs5qe7cj2u9g5otEiPBoIY4OiZcgBVkUTn3z18zMXoKWQo1K0Uos9Oj6Q q6TVZBmUbDIQ7m5eR15tP/USUF4kssvYlhoIrkv9V4StZiDAE98s/viOyPIvNpZa QGB6zhxnr0Xd12f6rTv84Tl5XTsgoNYoxkrrTVVsNI0Ts+cnzXr+41rrRiH7QKQy VbhJ37nz1fwF1+O2wj31W5cG8QNwVYPFMmg= -----END CERTIFICATE-----Generated at Mon Jul 21 19:21:26 2025 by rpki-client