$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: VctsYupYkWSMo6EmDNj3sRc1aiZqXFTd9a7iO1PoS3A= Subject key identifier: F8:A9:BD:C1:4E:A4:F3:CD:2F:23:F1:36:90:1A:C0:ED:0A:70:4A:D7 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 0B04CE078B9B759802E2994552AA2451E52036ED Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 10:00:06 +0000 ROA not before: Sun 10 Sep 2023 09:55:06 +0000 ROA not after: Sun 08 Sep 2024 10:00:06 +0000 asID: 63859 IP address blocks: 66.96.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 17:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:04:ce:07:8b:9b:75:98:02:e2:99:45:52:aa:24:51:e5:20:36:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 10 09:55:06 2023 GMT Not After : Sep 8 10:00:06 2024 GMT Subject: CN=F8A9BDC14EA4F3CD2F23F136901AC0ED0A704AD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b9:62:0a:dc:57:c2:74:99:d5:64:1d:8f:0c: 37:b9:45:8b:d2:dd:15:67:08:09:eb:df:f0:7b:89: 36:30:a6:7b:f5:9b:ae:7d:df:49:f3:21:91:10:96: fb:15:30:a3:04:45:5d:2b:38:a6:6b:48:d8:fa:7b: c7:d4:a0:09:57:82:9b:07:13:3d:a0:fc:86:f6:a7: 73:7a:19:8c:02:55:ab:da:d8:5f:ad:cf:3c:d8:e8: 43:84:67:07:d2:a2:01:c6:24:b6:28:e0:1b:02:0c: ea:4a:21:be:79:33:fc:03:2d:fd:44:fd:a1:6f:85: 85:45:49:43:b2:95:8f:55:a3:2a:c7:76:1f:27:2c: 72:36:7f:fd:92:19:89:e3:62:c3:4e:77:cd:81:82: 13:88:8f:7f:a8:dc:a9:12:d5:e5:f2:33:3b:e8:f4: 7e:8b:b4:39:1f:4e:2b:13:e4:23:8a:2e:8f:9b:23: c8:82:27:91:c2:e1:7d:e0:ca:10:a2:97:f5:cc:8f: cf:68:72:9f:db:d3:c6:4f:0d:cc:ad:de:d3:ef:63: a7:48:ef:20:7e:86:ae:c9:99:e9:a9:39:54:45:47: 13:d7:c9:68:c9:73:ad:e6:d5:7d:84:8c:b2:8e:b7: 4c:80:88:0f:61:5e:27:39:d6:cd:7d:a2:55:b5:56: d7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A9:BD:C1:4E:A4:F3:CD:2F:23:F1:36:90:1A:C0:ED:0A:70:4A:D7 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.235.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:4b:e4:f4:8e:52:dc:c5:35:5d:bc:11:96:70:2a:f3:8d:72: 2d:a0:13:ee:48:94:b0:f9:62:1e:ef:33:50:a8:12:f0:09:8b: f2:02:df:b8:8c:3c:1a:07:b8:36:e7:e4:10:e9:2b:89:fb:f6: 25:55:1a:05:b0:92:51:05:1e:c8:4f:66:bc:a3:96:35:d7:48: 20:6a:a2:5a:46:f0:a8:47:4a:3a:a7:9f:7f:4e:55:d1:a4:59: 8c:c3:30:5e:37:c5:da:c1:f7:4e:17:90:5f:ef:7e:ce:30:cc: 6b:ca:5b:4b:59:d2:91:14:7b:e7:97:1d:77:52:df:54:cf:d0: d6:48:8c:31:d5:a0:5c:01:96:93:e5:b1:e8:94:1b:a5:81:7c: 7e:93:e0:b6:d1:32:5f:e7:81:2d:f3:0f:0f:bf:0c:aa:44:b7: 35:48:09:50:2b:db:18:ea:28:06:8b:85:9f:6b:35:30:b7:ed: bb:ab:26:29:58:89:2b:a3:88:51:2e:33:9f:69:c3:8c:11:f3: 6d:23:0e:05:bf:ef:7d:20:06:df:b7:01:39:08:04:9e:7a:6d: c9:cc:45:fb:a1:23:d3:72:13:eb:cb:31:d5:9d:a7:44:ef:e7: 5d:49:1f:73:25:00:6f:11:77:6f:34:74:33:7b:ce:69:e4:bd: 3c:56:38:b7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUCwTOB4ubdZgC4plFUqokUeUgNu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yMzA5MTAwOTU1MDZaFw0yNDA5MDgxMDAwMDZaMDMxMTAvBgNV BAMTKEY4QTlCREMxNEVBNEYzQ0QyRjIzRjEzNjkwMUFDMEVEMEE3MDRBRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuuWIK3FfCdJnVZB2PDDe5RYvS 3RVnCAnr3/B7iTYwpnv1m65930nzIZEQlvsVMKMERV0rOKZrSNj6e8fUoAlXgpsH Ez2g/Ib2p3N6GYwCVava2F+tzzzY6EOEZwfSogHGJLYo4BsCDOpKIb55M/wDLf1E /aFvhYVFSUOylY9VoyrHdh8nLHI2f/2SGYnjYsNOd82BghOIj3+o3KkS1eXyMzvo 9H6LtDkfTisT5COKLo+bI8iCJ5HC4X3gyhCil/XMj89ocp/b08ZPDcyt3tPvY6dI 7yB+hq7JmempOVRFRxPXyWjJc63m1X2EjLKOt0yAiA9hXic51s19olW1VtexAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU+Km9wU6k880vI/E2kBrA7QpwStcwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOswDQYJKoZIhvcN AQELBQADggEBAD1L5PSOUtzFNV28EZZwKvONci2gE+5IlLD5Yh7vM1CoEvAJi/IC 37iMPBoHuDbn5BDpK4n79iVVGgWwklEFHshPZryjljXXSCBqolpG8KhHSjqnn39O VdGkWYzDMF43xdrB904XkF/vfs4wzGvKW0tZ0pEUe+eXHXdS31TP0NZIjDHVoFwB lpPlseiUG6WBfH6T4LbRMl/ngS3zDw+/DKpEtzVICVAr2xjqKAaLhZ9rNTC37bur JilYiSujiFEuM59pw4wR820jDgW/730gBt+3ATkIBJ56bcnMRfuhI9NyE+vLMdWd p0Tv511JH3MlAG8Rd280dDN7zmnkvTxWOLc= -----END CERTIFICATE-----Generated at Sun May 5 00:13:44 2024 by rpki-client on console-ams.rpki-client.org