$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233362e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: FpPvSW3NWhJZWjp6qMdZSunUWbGQ8uqbwGEhZ/9U6Og= Subject key identifier: 7B:76:32:21:06:FA:C4:06:F0:70:43:54:0F:2C:E6:64:6A:FA:21:8F Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 07A038DD680FBB845E13CF4447AAABE0FC816F1C Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233362e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 09:00:02 +0000 ROA not before: Sun 11 Aug 2024 08:55:02 +0000 ROA not after: Sun 10 Aug 2025 09:00:02 +0000 asID: 63859 IP address blocks: 66.96.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 19:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a0:38:dd:68:0f:bb:84:5e:13:cf:44:47:aa:ab:e0:fc:81:6f:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 08:55:02 2024 GMT Not After : Aug 10 09:00:02 2025 GMT Subject: CN=7B76322106FAC406F07043540F2CE6646AFA218F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a8:89:d3:1f:a5:16:72:d0:3a:06:a2:3f:db: c1:93:6b:58:e8:4b:e8:87:a7:41:8d:05:61:d8:79: a3:fe:b0:00:5e:4c:16:75:32:61:76:a3:45:0f:29: 6b:ec:f9:ba:2e:36:cf:10:14:34:40:14:04:b1:fe: cb:29:34:f5:1b:2b:26:02:22:da:d8:89:75:7c:43: d7:29:6e:61:24:32:2d:5e:7d:bc:f0:42:11:b0:ba: 84:86:ed:ca:0c:3a:e0:31:c6:9b:d7:95:a1:80:2a: 37:5f:bb:8d:5b:90:9d:7a:ab:10:fc:71:33:10:05: 4c:85:e4:09:36:74:6d:76:bd:fb:3a:67:17:6e:5f: ac:77:fd:f4:1c:40:3e:f2:b9:f7:c0:de:0b:7a:bb: 77:fe:ee:9e:18:b1:d1:8f:8d:40:4b:b0:36:20:17: d9:57:4a:38:bf:69:44:ec:6d:72:5f:fc:a1:2b:88: 25:10:dd:48:ea:4b:c2:c2:dc:5c:17:6a:05:99:fb: a0:48:67:5e:63:27:fd:b9:a2:4a:f3:1a:d3:af:86: 06:5a:95:29:c7:ab:75:a3:0f:32:1a:ec:9e:68:bb: 57:d9:7a:41:b1:70:3e:f6:21:c4:5b:98:cb:16:26: 32:e1:a2:f6:02:33:a1:5a:ae:e6:dd:79:8f:ff:3e: 17:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:76:32:21:06:FA:C4:06:F0:70:43:54:0F:2C:E6:64:6A:FA:21:8F X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.236.0/24 Signature Algorithm: sha256WithRSAEncryption b7:94:58:db:c1:60:5d:50:3f:9d:ae:e7:1f:2c:12:3e:a6:9d: d6:b3:70:5d:a1:89:a6:b4:80:cb:91:d6:11:32:e9:00:e5:92: 0c:0a:92:05:a7:4c:ec:29:47:d0:66:a2:fd:57:fb:8d:e5:3b: c8:24:8b:e0:7f:f2:84:d8:c0:b2:c8:f7:96:10:ae:4c:23:37: 47:e2:7f:22:9d:83:e5:13:9e:e7:f4:52:c2:fb:39:ce:78:09: 4b:c9:94:d4:50:72:33:e8:c2:49:4c:27:ff:84:ac:ce:53:46: dc:38:c6:92:13:59:df:1a:55:a5:18:f8:c7:67:a2:0e:be:87: 2c:ea:f0:35:79:10:a3:9e:8d:ba:63:e6:25:e6:8d:47:ba:f6: 33:0c:34:cb:f6:5a:df:96:3d:31:bc:f9:90:de:51:f5:7a:3f: 84:b3:74:1f:f3:1b:f2:b9:92:dd:e1:e5:4c:aa:c0:d0:02:a9: 8a:65:85:a9:0d:b3:ab:d6:ab:e9:c9:d0:03:55:82:b5:29:4f: 80:b2:2b:e9:cb:34:56:3e:5f:31:ec:79:e1:c2:19:90:3c:d0: 3c:c2:94:1b:c1:b5:07:f5:b4:de:2e:33:68:42:2d:bd:ca:8b: da:47:0b:2b:73:43:ac:8b:c0:f0:c4:23:22:03:98:a6:f0:f7: 3d:1d:eb:7b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUB6A43WgPu4ReE89ER6qr4PyBbxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTEwODU1MDJaFw0yNTA4MTAwOTAwMDJaMDMxMTAvBgNV BAMTKDdCNzYzMjIxMDZGQUM0MDZGMDcwNDM1NDBGMkNFNjY0NkFGQTIxOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmqInTH6UWctA6BqI/28GTa1jo S+iHp0GNBWHYeaP+sABeTBZ1MmF2o0UPKWvs+bouNs8QFDRAFASx/sspNPUbKyYC ItrYiXV8Q9cpbmEkMi1efbzwQhGwuoSG7coMOuAxxpvXlaGAKjdfu41bkJ16qxD8 cTMQBUyF5Ak2dG12vfs6ZxduX6x3/fQcQD7yuffA3gt6u3f+7p4YsdGPjUBLsDYg F9lXSji/aUTsbXJf/KEriCUQ3UjqS8LC3FwXagWZ+6BIZ15jJ/25okrzGtOvhgZa lSnHq3WjDzIa7J5ou1fZekGxcD72IcRbmMsWJjLhovYCM6FarubdeY//PherAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUe3YyIQb6xAbwcENUDyzmZGr6IY8wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOwwDQYJKoZIhvcN AQELBQADggEBALeUWNvBYF1QP52u5x8sEj6mndazcF2hiaa0gMuR1hEy6QDlkgwK kgWnTOwpR9Bmov1X+43lO8gki+B/8oTYwLLI95YQrkwjN0fifyKdg+UTnuf0UsL7 Oc54CUvJlNRQcjPowklMJ/+ErM5TRtw4xpITWd8aVaUY+Mdnog6+hyzq8DV5EKOe jbpj5iXmjUe69jMMNMv2Wt+WPTG8+ZDeUfV6P4SzdB/zG/K5kt3h5UyqwNACqYpl hakNs6vWq+nJ0ANVgrUpT4CyK+nLNFY+XzHseeHCGZA80DzClBvBtQf1tN4uM2hC Lb3Ki9pHCytzQ6yLwPDEIyIDmKbw9z0d63s= -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:11 2025 by rpki-client