$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: ToS9VJsezv+H6VydFounDKw2+BnD9HpXqOzfUjyhNRc= Subject key identifier: 6E:DA:D6:67:98:1B:4B:B4:B3:30:98:27:9C:61:E5:53:14:87:07:FB Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 31C117C706F8D94410A62B7EE27F8D58A38606B1 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:05 +0000 ROA not before: Sun 11 Aug 2024 10:55:05 +0000 ROA not after: Sun 10 Aug 2025 11:00:05 +0000 asID: 63859 IP address blocks: 66.96.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c1:17:c7:06:f8:d9:44:10:a6:2b:7e:e2:7f:8d:58:a3:86:06:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:05 2024 GMT Not After : Aug 10 11:00:05 2025 GMT Subject: CN=6EDAD667981B4BB4B33098279C61E553148707FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:66:cb:44:5d:1e:7d:36:6c:ed:75:62:7e:02: 60:dc:e2:a7:1a:5d:13:37:7a:ca:be:ce:5b:36:4a: c8:45:e9:0a:b3:19:c4:62:52:cf:f6:c3:3d:b3:3d: 05:24:8e:a5:76:d9:ef:e9:0b:5c:ab:63:91:78:9d: 21:44:f7:9d:04:c8:75:8d:39:24:4a:87:cb:6a:8b: c4:d5:58:a0:3e:75:88:22:2a:ea:53:d5:34:3e:d0: 16:81:c5:d4:74:27:71:a9:d7:7e:4b:73:f0:0c:49: 15:7a:af:dd:64:c6:42:77:ad:fa:28:26:4b:28:d4: be:03:f8:47:73:76:02:37:74:c4:17:47:9d:b4:f3: 97:3a:d1:76:40:75:96:46:c9:d4:e2:b3:f8:14:23: ce:71:26:37:17:af:ba:eb:b6:d6:5b:6c:d4:20:37: 9c:43:e4:34:1d:ff:be:6b:67:e3:39:98:f0:57:0b: 1a:0b:f4:73:91:73:c2:02:c0:e1:4b:0d:cf:bd:6e: 1d:8c:bb:60:82:b7:62:0a:89:b1:12:c2:75:75:77: ed:b8:40:40:c7:58:db:8b:1c:ed:93:17:3f:be:af: d0:1c:05:28:65:f6:87:7f:23:0e:c6:b5:0c:de:0d: bc:94:e7:c4:e1:92:9c:e9:c2:91:1b:1c:aa:95:8d: b6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DA:D6:67:98:1B:4B:B4:B3:30:98:27:9C:61:E5:53:14:87:07:FB X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.234.0/24 Signature Algorithm: sha256WithRSAEncryption 08:51:c3:c7:75:e4:b2:62:1d:63:31:9d:8d:7a:76:db:88:f8: 46:24:ee:1b:46:f1:f5:5b:46:22:cf:b5:f1:40:87:99:11:65: b5:68:0d:0a:32:98:eb:ad:1b:80:de:43:77:46:a5:3b:bd:88: 90:f0:d9:a0:50:e1:ec:41:21:82:41:5e:3d:76:41:83:cf:eb: b3:d3:9f:5d:3e:f9:08:10:bc:5a:93:13:0f:d6:e5:fb:b5:90: e6:60:07:63:7b:76:7a:c2:b0:f1:36:5c:b1:c1:7b:b6:40:71: 9f:ef:b4:b7:37:d5:81:6c:a8:f7:d8:97:ef:30:4e:95:69:e6: b9:f1:06:26:50:47:00:2d:9d:ed:0c:f2:3e:fe:2d:cb:3a:38: 61:ee:5e:c9:22:03:d9:9a:2f:76:46:5a:ed:08:c1:9e:67:5c: 5e:ec:97:01:a3:2e:b0:26:9f:ca:88:e8:fc:8d:8d:70:13:56: 83:94:cb:3b:2b:96:05:e5:83:aa:c8:47:e3:87:f2:3c:23:61: 60:b9:65:47:b3:c5:96:3b:3c:fe:71:cf:90:62:97:ce:08:0b: 8c:ca:de:5a:c8:df:39:98:fd:b8:d1:f8:0e:c0:02:65:7f:dc: da:07:ac:c5:06:00:0c:14:e6:15:c9:f6:1a:1f:72:07:40:a5: 02:f5:1c:f0 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMcEXxwb42UQQpit+4n+NWKOGBrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDVaFw0yNTA4MTAxMTAwMDVaMDMxMTAvBgNV BAMTKDZFREFENjY3OTgxQjRCQjRCMzMwOTgyNzlDNjFFNTUzMTQ4NzA3RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZstEXR59NmztdWJ+AmDc4qca XRM3esq+zls2SshF6QqzGcRiUs/2wz2zPQUkjqV22e/pC1yrY5F4nSFE950EyHWN OSRKh8tqi8TVWKA+dYgiKupT1TQ+0BaBxdR0J3Gp135Lc/AMSRV6r91kxkJ3rfoo Jkso1L4D+EdzdgI3dMQXR52085c60XZAdZZGydTis/gUI85xJjcXr7rrttZbbNQg N5xD5DQd/75rZ+M5mPBXCxoL9HORc8ICwOFLDc+9bh2Mu2CCt2IKibESwnV1d+24 QEDHWNuLHO2TFz++r9AcBShl9od/Iw7GtQzeDbyU58ThkpzpwpEbHKqVjbarAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbtrWZ5gbS7SzMJgnnGHlUxSHB/swHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOowDQYJKoZIhvcN AQELBQADggEBAAhRw8d15LJiHWMxnY16dtuI+EYk7htG8fVbRiLPtfFAh5kRZbVo DQoymOutG4DeQ3dGpTu9iJDw2aBQ4exBIYJBXj12QYPP67PTn10++QgQvFqTEw/W 5fu1kOZgB2N7dnrCsPE2XLHBe7ZAcZ/vtLc31YFsqPfYl+8wTpVp5rnxBiZQRwAt ne0M8j7+Lcs6OGHuXskiA9maL3ZGWu0IwZ5nXF7slwGjLrAmn8qI6PyNjXATVoOU yzsrlgXlg6rIR+OH8jwjYWC5ZUezxZY7PP5xz5Bil84IC4zK3lrI3zmY/bjR+A7A AmV/3NoHrMUGAAwU5hXJ9hofcgdApQL1HPA= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org