$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233382e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233382e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: CNC/FMIe8dRins4573D5KJodkbtP4fzhmy9UEpwvFeM= Subject key identifier: 66:B4:32:E4:2D:BF:76:39:47:F0:B6:B0:6E:B4:A6:E0:F9:19:91:1F Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 235B642C2E14E898D54752E2EE1CC685F396921D Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233382e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 11:00:02 +0000 ROA not before: Sun 11 Aug 2024 10:55:02 +0000 ROA not after: Sun 10 Aug 2025 11:00:02 +0000 asID: 63859 IP address blocks: 66.96.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5b:64:2c:2e:14:e8:98:d5:47:52:e2:ee:1c:c6:85:f3:96:92:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Aug 11 10:55:02 2024 GMT Not After : Aug 10 11:00:02 2025 GMT Subject: CN=66B432E42DBF763947F0B6B06EB4A6E0F919911F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3c:d5:e3:72:c1:53:96:64:60:cf:26:a3:1a: 05:d3:30:8b:69:c3:68:e7:e1:85:f4:a4:2d:eb:2f: 62:ac:1e:ed:18:77:ce:ef:6a:c5:9d:54:60:cd:eb: c7:cf:0d:7e:1f:16:4f:2b:b6:0f:ee:b1:5b:b3:9c: 54:81:02:23:51:62:b5:75:73:26:42:ab:79:a3:41: 44:b3:00:dc:a4:6a:b8:82:b0:6a:cf:21:88:15:8f: 1c:3d:a6:7c:08:31:68:15:63:fb:c0:a7:fc:01:8e: 58:2a:ec:28:be:0b:83:1b:4e:74:15:8e:50:ce:a5: 65:f0:23:41:c7:61:44:1f:2a:ee:01:9c:8f:f8:48: 49:25:08:2d:d6:2b:e3:f4:b1:77:d3:e8:c0:28:84: fc:b3:c4:23:64:0f:9f:de:e0:2f:68:4e:6a:90:46: 74:4c:7f:57:a8:81:f6:94:f5:32:85:e8:f1:f9:8c: f8:90:d9:2a:11:e4:ba:49:ff:ae:2a:37:53:b6:b6: 08:a3:af:3b:d2:b2:8a:e6:13:71:8f:85:f1:d1:25: db:77:88:9e:14:02:a7:42:be:3b:16:56:19:92:a9: f2:07:dd:c9:8a:ff:45:cc:a1:24:db:a7:ed:2a:2d: 14:33:13:a6:a3:8d:fc:db:16:05:e4:d9:e1:98:8a: 59:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B4:32:E4:2D:BF:76:39:47:F0:B6:B0:6E:B4:A6:E0:F9:19:91:1F X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233382e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.238.0/24 Signature Algorithm: sha256WithRSAEncryption 52:30:68:b2:47:22:ec:48:1d:35:45:d3:72:27:7f:23:5b:93: c8:1b:06:f1:0b:29:91:73:3e:d3:ea:1d:67:53:fb:db:d2:a0: 6f:03:22:f3:19:81:b8:de:cd:2d:5b:2b:98:78:8d:36:d8:a1: 77:cb:55:04:db:fd:40:bf:6e:70:9e:ee:c1:68:0f:90:23:a0: f7:cd:60:65:01:10:5f:15:a1:b9:25:b3:91:c5:13:7e:57:45: ee:88:33:79:b8:01:aa:08:51:4f:c8:01:6b:78:45:e4:d4:f7: 48:82:66:b6:7d:1b:c0:28:6c:c1:fe:66:06:0b:03:b1:c9:f1: 82:fc:75:9c:82:c7:5f:cc:55:bb:02:6b:02:ac:55:89:e9:8b: 9a:23:3a:b5:9f:f3:8d:38:79:a4:e0:8b:66:ae:4c:a7:99:20: c4:9a:0b:d9:10:f8:af:7e:b6:28:81:d5:49:aa:75:bf:a3:ae: 75:a6:45:13:47:98:55:0e:2f:a3:02:e9:4e:32:69:3d:12:15: 86:a2:e9:71:45:26:72:bc:1b:6d:b2:ba:c0:0b:d4:c0:d8:f4: d4:fd:f0:26:ac:af:81:f3:49:8e:d4:e7:ae:57:a9:d1:61:3c: 02:a7:75:6c:1f:ee:92:10:2d:98:c8:f6:8e:d6:81:78:cf:c9: 9e:df:07:9d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUI1tkLC4U6JjVR1Li7hzGhfOWkh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNDA4MTExMDU1MDJaFw0yNTA4MTAxMTAwMDJaMDMxMTAvBgNV BAMTKDY2QjQzMkU0MkRCRjc2Mzk0N0YwQjZCMDZFQjRBNkUwRjkxOTkxMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEPNXjcsFTlmRgzyajGgXTMItp w2jn4YX0pC3rL2KsHu0Yd87vasWdVGDN68fPDX4fFk8rtg/usVuznFSBAiNRYrV1 cyZCq3mjQUSzANykariCsGrPIYgVjxw9pnwIMWgVY/vAp/wBjlgq7Ci+C4MbTnQV jlDOpWXwI0HHYUQfKu4BnI/4SEklCC3WK+P0sXfT6MAohPyzxCNkD5/e4C9oTmqQ RnRMf1eogfaU9TKF6PH5jPiQ2SoR5LpJ/64qN1O2tgijrzvSsormE3GPhfHRJdt3 iJ4UAqdCvjsWVhmSqfIH3cmK/0XMoSTbp+0qLRQzE6ajjfzbFgXk2eGYilmfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZrQy5C2/djlH8LawbrSm4PkZkR8wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYO4wDQYJKoZIhvcN AQELBQADggEBAFIwaLJHIuxIHTVF03InfyNbk8gbBvELKZFzPtPqHWdT+9vSoG8D IvMZgbjezS1bK5h4jTbYoXfLVQTb/UC/bnCe7sFoD5AjoPfNYGUBEF8Vobkls5HF E35XRe6IM3m4AaoIUU/IAWt4ReTU90iCZrZ9G8AobMH+ZgYLA7HJ8YL8dZyCx1/M VbsCawKsVYnpi5ojOrWf8404eaTgi2auTKeZIMSaC9kQ+K9+tiiB1Umqdb+jrnWm RRNHmFUOL6MC6U4yaT0SFYai6XFFJnK8G22yusAL1MDY9NT98Casr4HzSY7U565X qdFhPAKndWwf7pIQLZjI9o7WgXjPyZ7fB50= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:07 2024 by rpki-client on console-ams.rpki-client.org