$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Q4wsbp/KvMahYmQ1BbFKmr37FlsE4A5XkSDc3911a+M= Subject key identifier: 35:2C:AA:2C:01:F1:09:2F:13:19:5A:95:7D:F2:D5:9F:FF:37:EE:9D Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 5D2BB29B1D39E89E5F98096AB9E418023ACA92AE Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 12:00:05 +0000 ROA not before: Sun 13 Jul 2025 11:55:05 +0000 ROA not after: Sun 12 Jul 2026 12:00:05 +0000 asID: 63859 IP address blocks: 66.96.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:2b:b2:9b:1d:39:e8:9e:5f:98:09:6a:b9:e4:18:02:3a:ca:92:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 11:55:05 2025 GMT Not After : Jul 12 12:00:05 2026 GMT Subject: CN=352CAA2C01F1092F13195A957DF2D59FFF37EE9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:59:6a:a0:f0:6f:8b:25:78:11:0a:61:63:40: 93:e1:39:f1:89:6e:3a:0d:90:04:9f:89:63:58:9a: 04:7d:35:2d:33:43:29:9e:5c:3d:a0:7c:be:67:4e: 8f:78:6f:ca:c7:6d:90:1d:86:f8:74:e0:7e:74:2f: c3:ed:47:c2:bf:ee:f0:73:9c:3b:1e:6b:bf:8b:9d: fa:4d:b3:b5:c5:4e:0e:39:04:eb:44:89:86:e0:7b: 75:20:7c:89:1d:24:dc:91:2b:6e:8c:e6:ae:97:28: 5a:d5:bd:c0:f9:f5:08:15:1c:9e:ac:de:ad:12:3d: 35:39:53:29:6a:e2:a0:f1:27:9a:28:40:08:a2:78: 44:16:0b:8a:2e:af:62:05:16:de:60:ab:98:16:be: 96:5f:99:16:e1:af:8a:bd:b2:60:d5:ca:2d:1d:5c: 01:c8:78:fd:ff:d6:24:53:6a:e2:ed:07:a7:9a:8b: 47:0b:05:11:1b:55:de:32:0d:6e:d4:7b:70:1c:6e: 15:c7:14:fa:9c:34:c7:03:b4:6a:4a:fa:f3:9d:7f: 59:33:66:0f:41:02:5f:4a:8b:8c:5a:72:52:fe:cc: da:06:bc:99:60:a0:47:a0:f4:96:1c:13:90:cd:51: 17:69:90:a7:cc:35:02:77:bd:84:5e:6b:2f:ac:06: 99:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:2C:AA:2C:01:F1:09:2F:13:19:5A:95:7D:F2:D5:9F:FF:37:EE:9D X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.235.0/24 Signature Algorithm: sha256WithRSAEncryption 03:97:bd:6c:31:d8:19:ea:5a:93:bc:67:5b:85:76:62:e3:cb: 9f:41:f3:2d:00:9d:e6:a4:27:44:44:68:5e:fa:37:d9:9e:b8: a7:05:13:de:d1:aa:10:4c:d9:c0:ae:96:37:27:72:54:5f:1f: 26:99:5b:49:91:69:0d:88:6c:67:4d:98:00:d6:30:cd:b5:cc: f4:a1:10:46:df:36:fe:f1:d5:ac:55:89:de:77:1d:d8:79:59: 14:d7:a6:8f:f1:52:47:22:1e:ed:8d:d8:fb:be:bf:04:0a:09: 6a:41:8f:3a:f6:0d:d4:50:16:76:d7:e0:3a:fb:69:a1:9b:a4: 05:de:da:c4:b3:91:83:54:94:7b:1d:af:76:aa:4b:43:60:5a: cc:2f:09:dd:47:13:30:e9:28:66:61:a6:7b:31:6e:16:75:89: 13:d8:6e:19:50:1d:82:b4:e4:85:ed:bb:6e:f6:66:08:b7:8e: 92:07:fe:bd:ed:af:4c:7a:9f:6f:cd:e3:e9:37:20:75:2c:94: bd:0e:43:8d:0c:f8:90:b9:9c:02:79:59:11:fa:70:6e:ef:a1: 72:b1:62:d4:17:d6:ca:a2:3c:91:32:b6:33:f7:04:7d:d4:c0: 23:78:33:5f:70:ab:de:f0:1b:2b:9d:97:69:68:da:2f:37:1a: b8:9a:af:36 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXSuymx056J5fmAlqueQYAjrKkq4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMxMTU1MDVaFw0yNjA3MTIxMjAwMDVaMDMxMTAvBgNV BAMTKDM1MkNBQTJDMDFGMTA5MkYxMzE5NUE5NTdERjJENTlGRkYzN0VFOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2WWqg8G+LJXgRCmFjQJPhOfGJ bjoNkASfiWNYmgR9NS0zQymeXD2gfL5nTo94b8rHbZAdhvh04H50L8PtR8K/7vBz nDsea7+LnfpNs7XFTg45BOtEiYbge3UgfIkdJNyRK26M5q6XKFrVvcD59QgVHJ6s 3q0SPTU5Uylq4qDxJ5ooQAiieEQWC4our2IFFt5gq5gWvpZfmRbhr4q9smDVyi0d XAHIeP3/1iRTauLtB6eai0cLBREbVd4yDW7Ue3AcbhXHFPqcNMcDtGpK+vOdf1kz Zg9BAl9Ki4xaclL+zNoGvJlgoEeg9JYcE5DNURdpkKfMNQJ3vYReay+sBpnLAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUNSyqLAHxCS8TGVqVffLVn/837p0wHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOswDQYJKoZIhvcN AQELBQADggEBAAOXvWwx2BnqWpO8Z1uFdmLjy59B8y0AneakJ0REaF76N9meuKcF E97RqhBM2cCuljcnclRfHyaZW0mRaQ2IbGdNmADWMM21zPShEEbfNv7x1axVid53 Hdh5WRTXpo/xUkciHu2N2Pu+vwQKCWpBjzr2DdRQFnbX4Dr7aaGbpAXe2sSzkYNU lHsdr3aqS0NgWswvCd1HEzDpKGZhpnsxbhZ1iRPYbhlQHYK05IXtu272Zgi3jpIH /r3tr0x6n2/N4+k3IHUslL0OQ40M+JC5nAJ5WRH6cG7voXKxYtQX1sqiPJEytjP3 BH3UwCN4M19wq97wGyudl2lo2i83GriarzY= -----END CERTIFICATE-----Generated at Sat Aug 23 16:31:29 2025 by rpki-client