$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: UCa9Ngub5MijWVDlwWUyWZqHhooQDXylUNqgE4xnPfg= Subject key identifier: DE:1F:E1:90:F5:BC:3B:B0:1B:28:20:92:02:BA:21:A9:FB:46:57:54 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 1C7CC088E4520A3F12C958574E6E4839D7B9030B Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 10:00:02 +0000 ROA not before: Sun 13 Jul 2025 09:55:02 +0000 ROA not after: Sun 12 Jul 2026 10:00:02 +0000 asID: 63859 IP address blocks: 66.96.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7c:c0:88:e4:52:0a:3f:12:c9:58:57:4e:6e:48:39:d7:b9:03:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 09:55:02 2025 GMT Not After : Jul 12 10:00:02 2026 GMT Subject: CN=DE1FE190F5BC3BB01B28209202BA21A9FB465754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2d:f4:68:fb:ff:ac:6c:30:d3:8f:1b:23:44: 6a:3b:b4:b8:8a:2b:b2:f0:65:07:c0:4a:76:38:6e: 24:a0:98:78:c4:db:4b:f7:91:4c:7a:5b:7e:49:98: 3a:d8:45:28:f0:b0:5e:47:b4:da:8e:15:8d:1c:29: aa:ff:5f:5f:3e:ad:31:28:32:7b:35:59:3b:4a:e0: 3e:2f:ba:ef:cb:24:78:cc:e5:dd:f9:8e:b0:75:6d: 0c:a8:9d:c0:20:28:0b:39:d5:57:df:50:e5:be:28: 51:1b:83:20:0f:77:ed:11:a8:ec:c1:8a:cf:d3:68: 96:f0:2f:25:f8:6b:35:79:c5:45:2f:2e:ce:db:0b: c9:86:a5:af:a6:1e:fe:60:39:d2:4d:f7:c9:a1:bc: 98:94:8b:28:23:fd:5d:e6:f0:d0:40:e0:68:3e:b5: 06:c8:10:8a:ea:43:94:69:df:b3:63:01:23:6c:03: c2:c2:63:86:eb:98:48:d2:9e:a0:c4:65:41:1f:d0: 5c:2b:27:8b:83:7c:c8:5f:a4:39:25:6a:8f:a7:37: aa:16:0c:eb:33:8f:63:bf:62:49:34:c8:8f:c7:08: 87:4c:d6:20:18:8c:68:de:2b:3c:cf:31:aa:aa:27: a5:4a:ea:08:00:61:56:18:ed:8c:5e:7e:10:cd:82: 8e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:1F:E1:90:F5:BC:3B:B0:1B:28:20:92:02:BA:21:A9:FB:46:57:54 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.224.0/24 Signature Algorithm: sha256WithRSAEncryption 05:34:69:02:6b:0a:d4:47:01:97:99:02:8d:d1:85:d4:78:05: 2d:14:59:65:ec:59:11:b0:58:18:cb:dd:6d:eb:64:4d:09:8a: 2a:ab:3c:9a:12:0b:57:d7:71:96:73:a1:0c:87:30:c6:d6:42: ac:1c:25:c6:b2:cd:df:3f:81:97:3b:5c:2d:74:86:03:84:20: 0d:d6:ad:dc:d3:ce:f8:67:c4:55:e0:03:d5:60:d1:f7:b7:4d: 5f:db:5d:5d:4c:79:04:d2:44:db:a3:f6:e5:28:25:29:c2:34: 5f:d6:f0:ce:d6:e6:97:2b:9b:67:45:47:4d:46:b1:1b:6e:9a: 7e:8e:1c:cc:b5:25:d4:9a:25:09:ff:ac:bc:4e:c3:44:a2:bf: 20:63:b9:91:a7:72:8b:40:73:b1:82:59:75:21:4c:b3:20:3d: 77:7b:fb:9e:87:bc:9d:7a:66:e0:a9:cb:1c:8f:1a:d6:5a:81: 60:bf:c4:6d:17:86:9b:47:1c:da:42:5d:01:44:bc:94:6d:5b: 21:a9:7e:9d:b6:90:2b:f1:5f:3d:69:17:02:21:00:11:63:99: ad:58:50:e3:ca:3f:c4:0f:d1:69:4b:b1:1c:89:5e:01:96:02: 33:a7:d9:ba:2c:7e:76:3f:40:0a:79:91:62:4c:d5:37:0f:ee: 46:c6:8f:c7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUHHzAiORSCj8SyVhXTm5IOde5AwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMwOTU1MDJaFw0yNjA3MTIxMDAwMDJaMDMxMTAvBgNV BAMTKERFMUZFMTkwRjVCQzNCQjAxQjI4MjA5MjAyQkEyMUE5RkI0NjU3NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeLfRo+/+sbDDTjxsjRGo7tLiK K7LwZQfASnY4biSgmHjE20v3kUx6W35JmDrYRSjwsF5HtNqOFY0cKar/X18+rTEo Mns1WTtK4D4vuu/LJHjM5d35jrB1bQyoncAgKAs51VffUOW+KFEbgyAPd+0RqOzB is/TaJbwLyX4azV5xUUvLs7bC8mGpa+mHv5gOdJN98mhvJiUiygj/V3m8NBA4Gg+ tQbIEIrqQ5Rp37NjASNsA8LCY4brmEjSnqDEZUEf0FwrJ4uDfMhfpDklao+nN6oW DOszj2O/Ykk0yI/HCIdM1iAYjGjeKzzPMaqqJ6VK6ggAYVYY7YxefhDNgo7fAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU3h/hkPW8O7AbKCCSArohqftGV1QwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOAwDQYJKoZIhvcN AQELBQADggEBAAU0aQJrCtRHAZeZAo3RhdR4BS0UWWXsWRGwWBjL3W3rZE0Jiiqr PJoSC1fXcZZzoQyHMMbWQqwcJcayzd8/gZc7XC10hgOEIA3WrdzTzvhnxFXgA9Vg 0fe3TV/bXV1MeQTSRNuj9uUoJSnCNF/W8M7W5pcrm2dFR01GsRtumn6OHMy1JdSa JQn/rLxOw0SivyBjuZGncotAc7GCWXUhTLMgPXd7+56HvJ16ZuCpyxyPGtZagWC/ xG0XhptHHNpCXQFEvJRtWyGpfp22kCvxXz1pFwIhABFjma1YUOPKP8QP0WlLsRyJ XgGWAjOn2bosfnY/QAp5kWJM1TcP7kbGj8c= -----END CERTIFICATE-----Generated at Sat Aug 23 21:07:19 2025 by rpki-client