$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: dcgPtsVJCz3vRNUq6LbtpUX6wUFpepDlorRDH+lyQnw= Subject key identifier: F1:CD:45:5A:D1:AD:F0:8C:C7:10:FB:FB:85:D1:E3:D5:DE:FE:87:63 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 1414A80F63462D806DAFFDF79DC97E5ACF62B4AE Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:03 +0000 ROA not before: Sun 13 Jul 2025 11:55:03 +0000 ROA not after: Sun 12 Jul 2026 12:00:03 +0000 asID: 63859 IP address blocks: 66.96.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:14:a8:0f:63:46:2d:80:6d:af:fd:f7:9d:c9:7e:5a:cf:62:b4:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:03 2025 GMT Not After : Jul 12 12:00:03 2026 GMT Subject: CN=F1CD455AD1ADF08CC710FBFB85D1E3D5DEFE8763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2b:e2:a7:a0:77:39:56:1c:67:82:1a:a1:79: 55:19:f8:d2:7b:7a:4f:89:a7:d7:93:06:0e:25:f3: d3:d4:b8:28:bb:a2:2e:e3:2d:3b:53:ed:51:fa:5a: 49:3b:e3:37:58:b2:48:2b:5a:83:d3:3f:a9:14:5d: 7d:f7:6d:02:a1:95:59:92:2e:d2:91:dd:1f:61:11: b4:09:0d:bc:89:20:20:c4:72:32:2e:30:ed:9c:59: 3a:2b:a7:10:12:bc:17:22:fe:6f:11:9d:07:d5:f9: be:f5:31:94:d9:18:c7:76:b0:51:c1:0f:e4:62:50: 43:4f:bf:9a:29:44:26:8e:2f:db:3e:c7:93:fd:53: c5:3c:f5:0e:a7:47:89:d4:da:41:30:f8:f6:e2:31: 1e:20:41:a3:92:25:49:79:2f:21:8f:85:b3:57:15: d1:1e:e1:63:8f:33:60:20:45:4e:b6:3f:4f:5a:67: 4d:82:3c:d0:0d:9a:49:c1:7c:b8:9e:24:ea:12:bd: 13:71:45:aa:b0:42:b4:8d:82:88:54:ec:c7:75:df: ba:56:08:ba:1c:8a:63:d0:b2:8f:ed:21:1d:5d:0f: f4:26:0b:34:13:ab:77:b7:5a:4b:60:8e:e2:c0:c7: 08:d2:3a:09:b8:90:0e:ad:c5:32:36:ac:79:dc:04: 5d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CD:45:5A:D1:AD:F0:8C:C7:10:FB:FB:85:D1:E3:D5:DE:FE:87:63 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.234.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:2b:f6:5c:66:8c:9c:e0:95:e8:27:8c:31:2a:ed:9f:ac:db: 62:1e:fe:85:3c:8f:59:72:eb:fb:1b:f1:98:14:4c:4b:c4:de: 06:93:cf:2d:b6:3e:71:49:9c:a6:24:ae:b7:db:da:59:1c:3d: be:93:28:20:ad:76:31:e0:25:09:ac:42:bb:79:38:03:d3:76: 95:7e:4d:1b:17:fe:81:8c:80:90:2f:4e:0a:ca:50:ee:05:93: c5:fc:7b:3f:f7:c3:a1:72:67:10:15:de:78:70:0c:34:0c:a3: eb:a1:72:3d:ac:92:d1:d2:94:16:97:74:c7:12:dc:0b:39:dc: 91:64:08:1a:11:c2:c5:8d:9a:e9:d6:f7:45:2c:1b:95:6e:45: 89:14:b3:24:e6:be:27:2f:3e:97:d4:25:67:e6:06:ce:cd:48: 77:8e:4b:56:d1:47:53:51:a0:8c:51:d2:58:ca:d2:41:57:8a: 97:a2:70:27:bf:82:46:6c:6b:3c:6f:3c:b0:b8:9f:6c:f2:9b: 04:21:c9:57:8f:c0:e0:6c:05:e9:e9:57:f3:34:a3:18:9a:72: 2d:42:3a:9d:9f:92:d4:13:d9:60:f2:2d:c9:e4:95:8d:f8:6a: 9d:60:8a:be:94:a4:df:58:9f:5b:4f:91:0b:88:40:d1:a3:f7: fa:eb:60:41 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFBSoD2NGLYBtr/33ncl+Ws9itK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDNaFw0yNjA3MTIxMjAwMDNaMDMxMTAvBgNV BAMTKEYxQ0Q0NTVBRDFBREYwOENDNzEwRkJGQjg1RDFFM0Q1REVGRTg3NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnK+KnoHc5VhxnghqheVUZ+NJ7 ek+Jp9eTBg4l89PUuCi7oi7jLTtT7VH6Wkk74zdYskgrWoPTP6kUXX33bQKhlVmS LtKR3R9hEbQJDbyJICDEcjIuMO2cWTorpxASvBci/m8RnQfV+b71MZTZGMd2sFHB D+RiUENPv5opRCaOL9s+x5P9U8U89Q6nR4nU2kEw+PbiMR4gQaOSJUl5LyGPhbNX FdEe4WOPM2AgRU62P09aZ02CPNANmknBfLieJOoSvRNxRaqwQrSNgohU7Md137pW CLocimPQso/tIR1dD/QmCzQTq3e3WktgjuLAxwjSOgm4kA6txTI2rHncBF2rAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8c1FWtGt8IzHEPv7hdHj1d7+h2MwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOowDQYJKoZIhvcN AQELBQADggEBAGwr9lxmjJzglegnjDEq7Z+s22Ie/oU8j1ly6/sb8ZgUTEvE3gaT zy22PnFJnKYkrrfb2lkcPb6TKCCtdjHgJQmsQrt5OAPTdpV+TRsX/oGMgJAvTgrK UO4Fk8X8ez/3w6FyZxAV3nhwDDQMo+uhcj2sktHSlBaXdMcS3As53JFkCBoRwsWN munW90UsG5VuRYkUsyTmvicvPpfUJWfmBs7NSHeOS1bRR1NRoIxR0ljK0kFXipei cCe/gkZsazxvPLC4n2zymwQhyVePwOBsBenpV/M0oxiaci1COp2fktQT2WDyLcnk lY34ap1gir6UpN9Yn1tPkQuIQNGj9/rrYEE= -----END CERTIFICATE-----Generated at Mon Jul 21 19:24:15 2025 by rpki-client