$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232382e302f32342d3234203d3e203633383539.roa File: 36362e39362e3232382e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: RgXlFbP8md9HIttVlGvynl8kL4aElSWbkhqYyoAVJ98= Subject key identifier: 6A:E3:FD:A3:7A:FD:C1:78:98:4B:3F:E4:88:48:A0:8B:72:F4:06:9A Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5743ECBC678C88560F35C5669E32D9731769AE18 Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232382e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:04 +0000 ROA not before: Sun 13 Jul 2025 11:55:04 +0000 ROA not after: Sun 12 Jul 2026 12:00:04 +0000 asID: 63859 IP address blocks: 66.96.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:43:ec:bc:67:8c:88:56:0f:35:c5:66:9e:32:d9:73:17:69:ae:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:04 2025 GMT Not After : Jul 12 12:00:04 2026 GMT Subject: CN=6AE3FDA37AFDC178984B3FE48848A08B72F4069A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5d:77:c0:e2:73:9b:58:c6:e6:0c:fa:11:ca: 2d:01:c1:4e:e8:b3:d8:f6:60:b6:9b:0b:ed:3e:fa: b8:78:7a:8b:61:2f:b3:07:dd:69:0d:7c:8b:b8:f7: 4b:1d:95:d0:f5:10:e2:de:84:a9:82:2c:43:a0:33: c1:4c:fd:f0:08:84:5c:ea:8f:63:b3:2e:38:ff:f6: e8:60:49:2a:81:92:7a:0a:66:f0:09:2b:b8:c5:f6: bc:d8:ef:4c:c1:2a:63:4f:e2:59:4d:50:40:28:c3: f2:79:ff:01:f1:f6:50:4b:0d:c4:e8:1b:23:89:01: 41:7b:05:69:40:53:ba:aa:f8:e8:f2:e7:57:9b:7e: f7:49:a4:ad:87:ed:7e:95:d5:1a:41:d6:20:4b:4b: 01:95:56:e9:9a:1d:54:45:6c:b9:ca:b5:79:69:9a: 26:28:1d:81:01:20:1a:4f:c5:5d:04:ed:96:33:0d: e1:3b:e8:2e:c9:df:49:8c:1b:b5:79:16:64:72:47: 63:4f:8b:1c:68:ba:6f:f7:94:5a:5c:f5:26:e7:59: 26:01:fc:2c:02:7e:84:1e:8c:88:d7:ea:a3:e8:6f: 4c:0c:bf:8f:cb:81:c9:f4:20:1d:bf:1f:7b:54:cd: eb:48:35:da:87:28:63:cb:22:7e:d8:71:8f:e8:07: 62:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E3:FD:A3:7A:FD:C1:78:98:4B:3F:E4:88:48:A0:8B:72:F4:06:9A X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3232382e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.228.0/24 Signature Algorithm: sha256WithRSAEncryption 39:9b:93:9d:f9:05:db:80:bd:9d:90:9f:f6:96:f4:18:e6:6c: e3:90:69:e7:53:7a:e7:27:f5:81:06:30:9d:e2:cd:15:be:a4: d0:71:d1:d3:72:bc:2e:8e:a7:be:10:fb:de:26:e8:ae:05:4f: d9:6d:c6:30:ab:0e:ca:94:4b:19:90:07:ed:52:ac:2c:2a:b1: 3e:b3:b5:ac:76:68:7b:d7:07:e6:cb:4c:2a:9b:b0:cd:e0:16: dc:ff:30:a2:23:9a:97:3f:92:3a:cb:32:d8:0c:5e:ed:80:01: ff:25:43:4f:0b:c6:c6:2e:5e:49:47:93:d1:4f:af:f0:a7:78: cd:b4:99:4a:d9:1b:d1:48:20:54:1a:15:4a:92:13:05:f3:02: 4f:b5:b1:f8:5a:7e:9d:41:e7:c8:58:5e:d0:27:52:82:f7:af: 58:d0:63:88:50:ab:27:58:5f:69:d2:c4:70:d9:aa:50:50:de: e2:9d:4b:30:49:d6:3f:83:27:d9:5e:f1:95:ea:b7:89:79:13: 11:08:b2:45:e2:f1:3f:79:0e:1f:b0:c0:de:60:7b:34:51:38: d5:50:d3:48:17:88:15:db:f5:81:e8:a6:6b:86:d6:38:ab:61: 79:bc:a7:73:1c:db:e5:5e:2e:8f:39:e8:be:22:a1:74:a5:f2: ff:90:c1:4b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUV0PsvGeMiFYPNcVmnjLZcxdprhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDRaFw0yNjA3MTIxMjAwMDRaMDMxMTAvBgNV BAMTKDZBRTNGREEzN0FGREMxNzg5ODRCM0ZFNDg4NDhBMDhCNzJGNDA2OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKXXfA4nObWMbmDPoRyi0BwU7o s9j2YLabC+0++rh4eothL7MH3WkNfIu490sdldD1EOLehKmCLEOgM8FM/fAIhFzq j2OzLjj/9uhgSSqBknoKZvAJK7jF9rzY70zBKmNP4llNUEAow/J5/wHx9lBLDcTo GyOJAUF7BWlAU7qq+Ojy51ebfvdJpK2H7X6V1RpB1iBLSwGVVumaHVRFbLnKtXlp miYoHYEBIBpPxV0E7ZYzDeE76C7J30mMG7V5FmRyR2NPixxoum/3lFpc9SbnWSYB /CwCfoQejIjX6qPob0wMv4/Lgcn0IB2/H3tUzetINdqHKGPLIn7YcY/oB2KVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUauP9o3r9wXiYSz/kiEigi3L0BpowHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzIzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOQwDQYJKoZIhvcN AQELBQADggEBADmbk535BduAvZ2Qn/aW9BjmbOOQaedTeucn9YEGMJ3izRW+pNBx 0dNyvC6Op74Q+94m6K4FT9ltxjCrDsqUSxmQB+1SrCwqsT6ztax2aHvXB+bLTCqb sM3gFtz/MKIjmpc/kjrLMtgMXu2AAf8lQ08LxsYuXklHk9FPr/CneM20mUrZG9FI IFQaFUqSEwXzAk+1sfhafp1B58hYXtAnUoL3r1jQY4hQqydYX2nSxHDZqlBQ3uKd SzBJ1j+DJ9le8ZXqt4l5ExEIskXi8T95Dh+wwN5gezRRONVQ00gXiBXb9YHopmuG 1jirYXm8p3Mc2+VeLo856L4ioXSl8v+QwUs= -----END CERTIFICATE-----Generated at Sat Aug 23 16:26:45 2025 by rpki-client