$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233362e302f32342d3234203d3e203633383539.roa File: 36362e39362e3233362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Tu2YLZds2fq5k6P0XWHMwM2vK13+AlPfA3za3CHaJAA= Subject key identifier: 0E:0B:EE:C5:04:D0:4F:C5:D0:E5:73:CF:73:8C:4F:83:63:25:C1:87 Certificate issuer: /CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Certificate serial: 172B0F835516F7C408251E9228478D5DF4769E4C Authority key identifier: 7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233362e302f32342d3234203d3e203633383539.roa Signing time: Sun 13 Jul 2025 09:00:20 +0000 ROA not before: Sun 13 Jul 2025 08:55:20 +0000 ROA not after: Sun 12 Jul 2026 09:00:20 +0000 asID: 63859 IP address blocks: 66.96.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 18:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:2b:0f:83:55:16:f7:c4:08:25:1e:92:28:47:8d:5d:f4:76:9e:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D0C886CFBAF0624029CCAE57824C3CF470E8FCF Validity Not Before: Jul 13 08:55:20 2025 GMT Not After : Jul 12 09:00:20 2026 GMT Subject: CN=0E0BEEC504D04FC5D0E573CF738C4F836325C187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3f:1f:e0:78:02:ab:ac:5f:c4:de:ec:99:7c: 85:10:de:e0:79:db:7e:21:48:17:e6:2d:51:70:29: 7a:64:5e:6b:e2:f7:a2:22:4c:24:86:24:1f:79:b3: 92:b6:5b:8d:23:69:cf:13:10:e6:e2:2e:cd:a0:bd: 0d:cf:75:64:1e:0a:38:d6:c0:dc:50:f3:7c:ab:e8: b0:44:2e:d7:d0:3c:26:e2:5a:d1:cf:52:11:5d:68: 75:8f:a5:b4:b1:e7:6a:f0:e2:1a:53:f5:2b:07:5e: 73:e0:d0:4b:dd:22:1f:6f:43:b5:e2:2a:71:c9:6e: d9:6f:bf:55:56:53:9e:1b:0b:96:9a:5a:de:c9:ee: 25:24:76:58:52:1a:97:58:34:30:e0:fc:d0:79:f6: 40:22:3a:3b:32:55:1c:ed:2d:08:28:dc:a1:09:80: fd:9c:0a:46:d0:27:e1:24:ce:b9:bd:0b:6b:19:69: 69:a8:56:70:f6:01:13:09:f5:0a:ae:a8:a0:6f:53: c3:f7:37:13:13:07:60:f9:54:7f:c9:64:e7:75:b5: 25:f6:b4:a0:84:0f:3a:d0:2b:a8:0a:61:6b:b8:5d: 6e:ad:26:e7:54:b7:98:0c:e0:35:2a:ba:05:54:06: 0f:a5:0b:ab:ec:b6:2b:9a:b5:56:86:b5:b6:49:37: 84:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:0B:EE:C5:04:D0:4F:C5:D0:E5:73:CF:73:8C:4F:83:63:25:C1:87 X509v3 Authority Key Identifier: keyid:7D:0C:88:6C:FB:AF:06:24:02:9C:CA:E5:78:24:C3:CF:47:0E:8F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/7D0C886CFBAF0624029CCAE57824C3CF470E8FCF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/1/36362e39362e3233362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.96.236.0/24 Signature Algorithm: sha256WithRSAEncryption 40:25:93:aa:4e:d6:3b:19:79:3a:c6:76:59:2d:21:6a:c9:cb: 3f:82:a3:9c:2d:e9:2f:af:d3:ba:ce:7a:15:58:66:af:4e:95: e8:21:67:64:d4:c3:f5:96:2c:b0:2c:3c:47:e2:7f:44:80:08: 03:36:6c:dc:87:d1:81:dd:6f:46:a2:f9:ea:6f:d8:b9:65:0e: 86:5b:95:2d:2a:71:2a:43:f1:c4:db:b4:de:e8:ff:16:e6:eb: 85:8c:1d:fc:f6:6b:31:56:df:1f:a5:04:db:97:2f:c6:df:01: 22:85:d5:98:5d:f2:7c:4d:a1:e9:a2:d8:e5:a6:28:69:05:ea: 2f:21:e5:b6:bf:c5:a9:c3:24:24:ff:31:0d:15:03:7a:45:e2: 51:7e:62:4c:13:9c:5e:78:87:e3:c7:a5:81:82:9a:eb:0a:52: b9:dd:62:0c:1f:9e:ad:28:79:5c:d7:4c:30:33:79:3c:b6:19: f4:70:e9:02:cd:bc:5b:f5:42:a4:7b:e1:2c:7b:25:24:4e:20: ad:63:2e:7a:30:29:03:8f:4b:a1:d6:a8:91:a9:e7:e6:7c:b8: 64:3f:c1:72:aa:36:46:18:81:f6:0a:40:f4:0a:fe:6b:a2:b2: 11:db:5f:9e:58:f7:21:3e:f6:1f:ea:b7:50:67:0f:34:3b:3d: ec:63:73:c9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFysPg1UW98QIJR6SKEeNXfR2nkwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0 NzBFOEZDRjAeFw0yNTA3MTMwODU1MjBaFw0yNjA3MTIwOTAwMjBaMDMxMTAvBgNV BAMTKDBFMEJFRUM1MDREMDRGQzVEMEU1NzNDRjczOEM0RjgzNjMyNUMxODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBPx/geAKrrF/E3uyZfIUQ3uB5 234hSBfmLVFwKXpkXmvi96IiTCSGJB95s5K2W40jac8TEObiLs2gvQ3PdWQeCjjW wNxQ83yr6LBELtfQPCbiWtHPUhFdaHWPpbSx52rw4hpT9SsHXnPg0EvdIh9vQ7Xi KnHJbtlvv1VWU54bC5aaWt7J7iUkdlhSGpdYNDDg/NB59kAiOjsyVRztLQgo3KEJ gP2cCkbQJ+Ekzrm9C2sZaWmoVnD2ARMJ9QquqKBvU8P3NxMTB2D5VH/JZOd1tSX2 tKCEDzrQK6gKYWu4XW6tJudUt5gM4DUqugVUBg+lC6vstiuatVaGtbZJN4S1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUDgvuxQTQT8XQ5XPPc4xPg2MlwYcwHwYDVR0j BBgwFoAUfQyIbPuvBiQCnMrleCTDz0cOj88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMS83RDBDODg2Q0ZC QUYwNjI0MDI5Q0NBRTU3ODI0QzNDRjQ3MEU4RkNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvN0QwQzg4NkNGQkFGMDYyNDAyOUNDQUU1NzgyNEMzQ0Y0NzBF OEZDRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8xLzM2MzYyZTM5MzYyZTMyMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABCYOwwDQYJKoZIhvcN AQELBQADggEBAEAlk6pO1jsZeTrGdlktIWrJyz+Co5wt6S+v07rOehVYZq9Olegh Z2TUw/WWLLAsPEfif0SACAM2bNyH0YHdb0ai+epv2LllDoZblS0qcSpD8cTbtN7o /xbm64WMHfz2azFW3x+lBNuXL8bfASKF1Zhd8nxNoemi2OWmKGkF6i8h5ba/xanD JCT/MQ0VA3pF4lF+YkwTnF54h+PHpYGCmusKUrndYgwfnq0oeVzXTDAzeTy2GfRw 6QLNvFv1QqR74Sx7JSROIK1jLnowKQOPS6HWqJGp5+Z8uGQ/wXKqNkYYgfYKQPQK /muishHbX55Y9yE+9h/qt1BnDzQ7Pexjc8k= -----END CERTIFICATE-----Generated at Sat Aug 23 18:51:57 2025 by rpki-client