$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa File: 36362e39362e3232342e302f32302d3230203d3e203633383539.roa (raw, json) Hash identifier: z8viOZfisnTgEzwkz2y57FajeItIJhI/9/v+DV3ElYQ= Subject key identifier: C4:93:03:46:56:54:0B:0C:93:95:6B:B8:E6:44:E5:B4:EE:2E:3A:46 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 68A15B78887349B380825CA058C6E249C5BFFD33 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa Signing time: Fri 26 Sep 2025 06:02:25 +0000 ROA not before: Fri 26 Sep 2025 05:57:25 +0000 ROA not after: Fri 25 Sep 2026 06:02:25 +0000 asID: 63859 IP address blocks: 66.96.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a1:5b:78:88:73:49:b3:80:82:5c:a0:58:c6:e2:49:c5:bf:fd:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Sep 26 05:57:25 2025 GMT Not After : Sep 25 06:02:25 2026 GMT Subject: CN=C493034656540B0C93956BB8E644E5B4EE2E3A46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:3d:bc:2a:9d:d7:08:44:e2:44:48:17:38: 3c:88:6a:90:40:af:65:cc:05:24:90:d2:37:43:01: c6:1d:14:e1:6e:ae:74:da:36:2e:70:7a:22:95:24: da:64:c3:6c:9d:df:e8:81:86:61:ab:99:be:a1:c7: 38:5d:ff:0a:e7:7a:06:20:c1:7b:2e:40:4f:16:8a: 9e:fa:b7:d8:5e:8a:a3:84:7d:d5:f2:72:99:fe:14: 1e:69:76:f7:6d:57:55:b4:ba:b0:5f:19:d2:f9:7a: f5:41:44:d4:b5:26:b8:75:88:a2:6b:af:27:d0:ad: fd:d3:08:29:15:5c:47:9e:0a:1d:03:82:0d:f6:4a: 6e:f5:5d:eb:c0:24:29:24:9d:0e:9d:c8:15:8c:c6: ef:f1:aa:69:62:9a:c3:c5:56:eb:60:17:a1:62:0e: 3e:ec:26:e2:ac:65:b5:0d:21:33:cf:0e:98:28:1a: f6:18:9c:f2:21:21:4e:74:0a:3e:06:3b:7a:3d:bf: 6e:40:9e:01:5e:ad:03:8e:ca:26:3f:f8:81:60:f2: d5:3d:50:9a:b6:e6:d1:62:fc:59:a7:05:66:22:66: 30:fd:bb:73:a6:a3:7a:3d:cd:55:63:3c:e5:7c:cc: a3:0d:2e:91:8f:fb:ac:6a:91:09:fc:15:c8:8f:d9: 67:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:93:03:46:56:54:0B:0C:93:95:6B:B8:E6:44:E5:B4:EE:2E:3A:46 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32302d3230203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.224.0/20 Signature Algorithm: sha256WithRSAEncryption 23:bf:f7:5d:90:c4:5d:6b:03:1f:b5:09:d9:eb:ef:73:1a:be: 75:61:e3:30:0b:42:15:6c:e0:a8:9c:36:6c:1a:86:da:27:dc: a4:d1:99:41:0d:a5:93:7d:27:54:d2:87:8d:9a:cb:bd:87:0a: 07:b4:69:a0:70:b6:23:6f:89:3e:96:59:39:72:1a:09:39:2c: 87:d2:27:1d:b3:0a:c8:0d:7d:33:d9:b7:38:d4:d4:d2:87:29: a4:c5:56:f6:31:93:5c:b4:4b:e3:d3:b5:1a:22:de:23:1c:1e: 20:e6:63:24:85:06:6e:d5:bd:68:2f:95:1b:83:32:de:5f:da: 14:86:6e:32:6d:25:02:13:8f:e3:c1:ee:4b:d5:cf:42:af:15: 56:6a:8a:e9:5b:d9:40:3b:5b:10:4b:8f:70:b9:11:e3:32:fc: e2:fc:09:96:cb:36:c9:83:f1:54:e2:84:fe:9d:98:bf:23:a0: 45:d7:5d:ba:0b:52:5f:9a:eb:0c:f4:21:d3:88:90:a3:84:36: 86:fc:bd:b1:20:87:2b:a0:05:ed:b3:54:e5:1e:84:14:a0:2c: 4a:4a:3b:15:ae:e4:16:19:39:65:17:12:76:74:fd:13:ef:a6: 74:73:25:dc:3f:cd:73:8a:68:fe:2a:16:d4:2b:a4:78:55:c5: 09:d6:8a:fe -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUaKFbeIhzSbOAglygWMbiScW//TMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA5MjYwNTU3MjVaFw0yNjA5MjUwNjAyMjVaMDMxMTAvBgNV BAMTKEM0OTMwMzQ2NTY1NDBCMEM5Mzk1NkJCOEU2NDRFNUI0RUUyRTNBNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCzz28Kp3XCETiREgXODyIapBA r2XMBSSQ0jdDAcYdFOFurnTaNi5weiKVJNpkw2yd3+iBhmGrmb6hxzhd/wrnegYg wXsuQE8Wip76t9heiqOEfdXycpn+FB5pdvdtV1W0urBfGdL5evVBRNS1Jrh1iKJr ryfQrf3TCCkVXEeeCh0Dgg32Sm71XevAJCkknQ6dyBWMxu/xqmlimsPFVutgF6Fi Dj7sJuKsZbUNITPPDpgoGvYYnPIhIU50Cj4GO3o9v25AngFerQOOyiY/+IFg8tU9 UJq25tFi/FmnBWYiZjD9u3Omo3o9zVVjPOV8zKMNLpGP+6xqkQn8FciP2WdvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUxJMDRlZUCwyTlWu45kTltO4uOkYwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNDJlMzAyZjMyMzAy ZDMyMzAyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARCYOAwDQYJKoZIhvcN AQELBQADggEBACO/912QxF1rAx+1Cdnr73MavnVh4zALQhVs4KicNmwahton3KTR mUENpZN9J1TSh42ay72HCge0aaBwtiNviT6WWTlyGgk5LIfSJx2zCsgNfTPZtzjU 1NKHKaTFVvYxk1y0S+PTtRoi3iMcHiDmYySFBm7VvWgvlRuDMt5f2hSGbjJtJQIT j+PB7kvVz0KvFVZqiulb2UA7WxBLj3C5EeMy/OL8CZbLNsmD8VTihP6dmL8joEXX XboLUl+a6wz0IdOIkKOENob8vbEghyugBe2zVOUehBSgLEpKOxWu5BYZOWUXEnZ0 /RPvpnRzJdw/zXOKaP4qFtQrpHhVxQnWiv4= -----END CERTIFICATE-----Generated at Mon Oct 20 08:05:11 2025 by rpki-client