$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: O87h1YASZHzPV23i/bzu+LE/T/S1GOTwBqPOaA0VDQU= Subject key identifier: AE:DB:4F:DE:2A:28:C1:4F:58:F4:70:D4:25:0D:CE:0B:55:F2:59:5B Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 1CBBA3CFAA0791CF1E4069324BDF97BD61081476 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:07 +0000 ROA not before: Sun 11 Aug 2024 10:55:07 +0000 ROA not after: Sun 10 Aug 2025 11:00:07 +0000 asID: 63859 IP address blocks: 66.96.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:bb:a3:cf:aa:07:91:cf:1e:40:69:32:4b:df:97:bd:61:08:14:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:07 2024 GMT Not After : Aug 10 11:00:07 2025 GMT Subject: CN=AEDB4FDE2A28C14F58F470D4250DCE0B55F2595B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3c:e3:78:0b:6d:e6:40:92:25:45:11:0d:16: a5:ce:e3:f7:10:b2:87:49:78:69:e0:7d:7e:8c:c3: a6:23:bb:aa:45:71:c1:ec:fb:39:dc:36:5f:11:91: 54:45:9e:30:6a:f0:e6:98:c1:88:f1:98:5d:8e:89: 71:b8:73:af:9f:ba:00:26:d5:32:d3:91:c0:82:93: 1b:c7:00:a1:2d:5a:c0:cd:d1:53:f7:23:d2:fc:90: 09:96:05:63:5e:70:69:c3:e1:20:49:4b:cb:05:06: 02:56:00:3e:6f:75:33:25:32:3a:ec:70:2d:98:1f: b1:f3:50:ee:5a:56:b1:59:0d:ed:41:89:99:5e:c3: b1:77:f4:30:fb:af:68:8c:9a:29:22:1e:78:0b:58: 89:57:ea:03:27:8f:48:03:ec:4d:ce:f9:a8:9b:52: f9:84:ec:7f:58:6e:b5:76:2b:4e:c2:cf:99:ce:f9: 72:77:61:12:0a:41:cf:0e:6f:f2:f1:a5:d1:8b:40: 5d:d2:5e:f6:6d:cd:13:bd:8c:bb:0c:c2:03:7c:f0: b2:e9:bc:87:03:32:7b:2c:fa:d7:24:ff:1f:16:ff: 5f:a6:a3:ed:95:3f:47:a2:5a:48:61:43:86:fe:6c: d5:21:f9:72:c7:08:ed:fe:75:1a:9e:23:57:d3:f7: 36:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DB:4F:DE:2A:28:C1:4F:58:F4:70:D4:25:0D:CE:0B:55:F2:59:5B X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.235.0/24 Signature Algorithm: sha256WithRSAEncryption 65:71:34:c0:a5:27:a0:ea:ac:d7:52:bf:f8:9b:c2:5e:03:b1: 9b:d2:75:12:7a:6b:08:3f:60:ec:07:5d:9e:74:25:fa:df:db: bc:db:2b:96:05:5f:73:73:b1:0f:47:86:f8:d3:67:7d:7a:eb: 37:10:24:fb:7c:05:15:c7:3c:b2:3b:bf:38:8a:a9:6a:c4:05: cf:22:7a:14:61:3f:21:6e:d2:14:29:71:b7:55:4a:3f:4b:81: 94:4c:3a:8f:b4:58:2e:c8:6f:17:68:40:7c:b8:16:db:1b:d5: 44:8a:2f:25:97:9b:ac:66:dc:8b:06:92:38:2f:dc:94:e0:b5: ce:38:be:d7:b4:15:19:48:bf:31:9c:f5:9c:21:0a:6c:4e:7d: 29:ac:cb:06:83:e8:0b:9f:6c:6d:1d:62:d0:de:ba:9b:15:8b: 16:7a:a7:3e:ee:ee:ee:a9:3c:e4:0f:11:33:29:3d:f0:ac:11: 01:65:26:79:2d:70:76:ca:44:22:00:e0:22:8e:65:63:9e:54: 2a:56:35:4b:e9:a4:e2:58:6f:55:b5:25:3e:63:c5:ee:d8:51: 8c:1d:9d:aa:a7:63:67:17:37:ea:2c:f8:4c:6c:2a:a3:a8:68: 53:53:88:f5:15:91:40:64:e2:81:36:5c:9a:44:bb:2f:b4:15: 97:7e:b2:9b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHLujz6oHkc8eQGkyS9+XvWEIFHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDdaFw0yNTA4MTAxMTAwMDdaMDMxMTAvBgNV BAMTKEFFREI0RkRFMkEyOEMxNEY1OEY0NzBENDI1MERDRTBCNTVGMjU5NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmPON4C23mQJIlRRENFqXO4/cQ sodJeGngfX6Mw6Yju6pFccHs+zncNl8RkVRFnjBq8OaYwYjxmF2OiXG4c6+fugAm 1TLTkcCCkxvHAKEtWsDN0VP3I9L8kAmWBWNecGnD4SBJS8sFBgJWAD5vdTMlMjrs cC2YH7HzUO5aVrFZDe1BiZlew7F39DD7r2iMmikiHngLWIlX6gMnj0gD7E3O+aib UvmE7H9YbrV2K07Cz5nO+XJ3YRIKQc8Ob/LxpdGLQF3SXvZtzRO9jLsMwgN88LLp vIcDMnss+tck/x8W/1+mo+2VP0eiWkhhQ4b+bNUh+XLHCO3+dRqeI1fT9zYvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUrttP3ioowU9Y9HDUJQ3OC1XyWVswHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOswDQYJKoZIhvcN AQELBQADggEBAGVxNMClJ6DqrNdSv/ibwl4DsZvSdRJ6awg/YOwHXZ50Jfrf27zb K5YFX3NzsQ9HhvjTZ3166zcQJPt8BRXHPLI7vziKqWrEBc8iehRhPyFu0hQpcbdV Sj9LgZRMOo+0WC7IbxdoQHy4Ftsb1USKLyWXm6xm3IsGkjgv3JTgtc44vte0FRlI vzGc9ZwhCmxOfSmsywaD6AufbG0dYtDeupsVixZ6pz7u7u6pPOQPETMpPfCsEQFl JnktcHbKRCIA4CKOZWOeVCpWNUvppOJYb1W1JT5jxe7YUYwdnaqnY2cXN+os+Exs KqOoaFNTiPUVkUBk4oE2XJpEuy+0FZd+sps= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org