$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233312e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 7Hiv4cwjkG8kPLeVmBgtYHTyCF7ae259w/TXO9oxU0I= Subject key identifier: A4:D5:C9:E7:BA:0C:F6:B6:AA:85:CB:E8:6A:47:E4:7D:00:16:6A:29 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 1D99E30A8A4C428E0C46157AA5D7E10F4C643FBB Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233312e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:03 +0000 ROA not before: Sun 11 Aug 2024 10:55:03 +0000 ROA not after: Sun 10 Aug 2025 11:00:03 +0000 asID: 63859 IP address blocks: 66.96.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:99:e3:0a:8a:4c:42:8e:0c:46:15:7a:a5:d7:e1:0f:4c:64:3f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:03 2024 GMT Not After : Aug 10 11:00:03 2025 GMT Subject: CN=A4D5C9E7BA0CF6B6AA85CBE86A47E47D00166A29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e6:86:20:2d:a3:5c:68:00:6e:71:5b:a4:33: 6d:1a:7c:55:0a:04:64:dd:51:eb:2d:ce:44:c9:ed: 7d:ad:37:2a:34:9b:e1:cd:1e:7f:0b:a4:f5:22:39: c2:51:bb:a3:87:a2:21:5f:60:84:bb:12:74:97:e5: ee:7d:6d:e8:67:9d:3e:f6:89:f1:43:7a:a9:f7:4e: 65:73:bc:cf:61:2d:92:53:10:eb:24:17:1b:b2:78: 37:42:fd:12:3e:e6:61:61:fa:bb:fd:2a:78:6f:b1: 37:8a:b6:9a:39:43:b0:02:d0:70:c1:ff:68:fb:e3: e3:22:ec:bf:ad:55:18:0e:8c:0d:26:af:bd:85:1b: 88:7e:bf:72:08:86:d4:28:c8:d3:e3:c1:ae:6a:58: f6:64:c9:c5:2a:d4:f4:46:11:10:53:60:d5:58:76: f5:b3:ab:a1:80:d4:ee:40:25:7c:87:e9:fe:de:e1: 48:15:0f:26:e0:e1:21:9e:d1:bf:c4:7e:7f:8a:8b: e0:20:d2:fb:f4:db:d2:c0:e4:93:a9:0a:e3:e1:4b: dc:40:a7:34:6d:90:ab:b0:f7:8f:f9:74:47:33:07: 54:7d:ba:a8:f1:20:9d:6e:a8:c4:62:48:c5:7f:55: 24:1d:33:73:77:c3:5e:f6:bf:ef:07:17:2c:15:4f: 35:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:D5:C9:E7:BA:0C:F6:B6:AA:85:CB:E8:6A:47:E4:7D:00:16:6A:29 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.231.0/24 Signature Algorithm: sha256WithRSAEncryption 03:df:4b:11:59:59:08:d1:90:b8:19:52:b0:42:07:b8:52:24: 7a:7e:75:ff:54:53:7d:b6:cc:c0:75:2b:79:c9:85:36:a9:3c: 77:f0:a2:f9:c0:93:86:de:6b:d1:76:11:30:df:ba:44:82:e9: a9:a2:72:fd:ce:34:f1:6a:d2:8f:70:b2:5e:55:b5:86:7f:6f: 5a:b3:e4:f6:9a:84:30:7b:2a:e3:a6:69:28:4d:b5:18:bf:8f: c5:87:dc:cf:27:c2:9a:47:9f:f0:a2:83:32:d9:4d:28:38:59: e7:dc:aa:4b:bc:56:e0:1f:bf:db:c0:1d:b7:a8:d6:79:35:1f: 6e:a5:1a:94:b7:73:0f:cd:4f:b1:37:7b:e9:b9:0e:7d:2f:1c: 4b:98:0d:8f:62:5c:57:96:7c:08:1e:eb:d0:83:c3:aa:14:01: c2:e2:cb:7e:25:76:bc:24:6f:03:6c:83:c5:52:57:3c:c0:e4: e7:9a:23:9b:f0:10:83:c9:28:b3:73:f2:1c:73:18:23:48:b3: 93:0a:26:3e:7b:5f:62:92:1b:7c:94:ee:1b:2c:00:a6:9d:10: 67:2a:0e:aa:dd:d6:b6:23:99:d0:69:3e:3e:07:67:b7:72:77: c0:85:e8:c5:01:84:9b:76:52:16:5c:24:a0:d2:d7:36:fa:c3: e4:5e:e6:5b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHZnjCopMQo4MRhV6pdfhD0xkP7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDNaFw0yNTA4MTAxMTAwMDNaMDMxMTAvBgNV BAMTKEE0RDVDOUU3QkEwQ0Y2QjZBQTg1Q0JFODZBNDdFNDdEMDAxNjZBMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH5oYgLaNcaABucVukM20afFUK BGTdUestzkTJ7X2tNyo0m+HNHn8LpPUiOcJRu6OHoiFfYIS7EnSX5e59behnnT72 ifFDeqn3TmVzvM9hLZJTEOskFxuyeDdC/RI+5mFh+rv9KnhvsTeKtpo5Q7AC0HDB /2j74+Mi7L+tVRgOjA0mr72FG4h+v3IIhtQoyNPjwa5qWPZkycUq1PRGERBTYNVY dvWzq6GA1O5AJXyH6f7e4UgVDybg4SGe0b/Efn+Ki+Ag0vv029LA5JOpCuPhS9xA pzRtkKuw94/5dEczB1R9uqjxIJ1uqMRiSMV/VSQdM3N3w172v+8HFywVTzXVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUpNXJ57oM9raqhcvoakfkfQAWaikwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOcwDQYJKoZIhvcN AQELBQADggEBAAPfSxFZWQjRkLgZUrBCB7hSJHp+df9UU322zMB1K3nJhTapPHfw ovnAk4bea9F2ETDfukSC6amicv3ONPFq0o9wsl5VtYZ/b1qz5PaahDB7KuOmaShN tRi/j8WH3M8nwppHn/CigzLZTSg4Wefcqku8VuAfv9vAHbeo1nk1H26lGpS3cw/N T7E3e+m5Dn0vHEuYDY9iXFeWfAge69CDw6oUAcLiy34ldrwkbwNsg8VSVzzA5Oea I5vwEIPJKLNz8hxzGCNIs5MKJj57X2KSG3yU7hssAKadEGcqDqrd1rYjmdBpPj4H Z7dyd8CF6MUBhJt2UhZcJKDS1zb6w+Re5ls= -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org