$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: KKaCtaDjEIcUclNXNYIytmP/RsrCkqdUrSZZhZUhOZ8= Subject key identifier: 18:6A:3B:9B:87:11:85:7F:C7:F9:EA:2C:D8:98:3D:56:E4:B1:92:6C Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 55F156AA0744F7C76AE374488A557C1DAC69FECF Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 29 Jan 2025 05:00:01 +0000 ROA not before: Wed 29 Jan 2025 04:55:01 +0000 ROA not after: Wed 28 Jan 2026 05:00:01 +0000 asID: 38526 IP address blocks: 2405:3740:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:f1:56:aa:07:44:f7:c7:6a:e3:74:48:8a:55:7c:1d:ac:69:fe:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 29 04:55:01 2025 GMT Not After : Jan 28 05:00:01 2026 GMT Subject: CN=186A3B9B8711857FC7F9EA2CD8983D56E4B1926C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:37:95:57:3f:f5:5a:21:1d:e5:65:dd:06:f5: c0:73:c5:19:a4:72:22:a9:17:95:6f:a6:fd:cb:ff: ad:14:73:55:bf:09:26:7f:28:82:ff:fb:6f:fe:20: 15:ae:3f:e6:b2:c6:8f:85:ec:14:e6:9c:92:24:53: 24:09:52:ab:6a:3a:7a:4a:85:fd:6e:b9:bc:0a:93: 13:fd:57:76:47:77:ab:ba:e4:cb:87:de:e4:f0:5c: f2:37:e1:1c:f5:f8:50:17:31:2f:56:bc:b1:53:e9: 25:90:74:2f:cd:ba:06:1f:43:1e:88:59:43:1b:3b: 61:5b:46:a0:51:34:b5:35:ca:8c:a8:cf:f9:2d:46: 48:60:3b:58:b5:01:e3:70:03:08:57:6c:33:dc:be: 30:5d:12:51:e3:16:ea:69:06:cf:98:d6:8e:bc:2d: e5:93:7d:e9:2a:f2:40:7c:2f:99:e5:08:be:f6:9f: 80:f6:a5:64:5a:cd:92:e5:07:ad:35:5a:61:60:88: a3:3b:96:08:12:7e:d6:65:c9:d8:e9:29:1b:d4:d7: bf:e2:39:7c:6d:09:64:31:0c:96:f2:76:85:5d:9a: 5b:eb:b0:31:95:5c:18:a0:16:81:ed:b4:7c:d9:1c: a0:1b:a4:35:67:f1:cc:7a:5d:56:4e:f0:1e:ec:b6: 16:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6A:3B:9B:87:11:85:7F:C7:F9:EA:2C:D8:98:3D:56:E4:B1:92:6C X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030303a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:8000::/48 Signature Algorithm: sha256WithRSAEncryption 6d:23:d8:13:c8:e2:10:9a:11:40:47:21:a5:98:78:26:0b:6b: 09:12:5d:6e:ff:bd:f5:34:66:d2:5d:b3:48:f1:01:cf:63:76: ea:da:0b:88:3d:41:c4:25:c9:5a:1b:ea:f3:79:b1:a1:7e:4a: 23:34:c1:2a:42:c4:e0:67:42:38:74:ac:e8:13:15:70:42:ff: 45:c3:dc:41:0c:24:07:a9:6d:80:0a:1d:de:41:77:b1:23:06: 33:1c:8e:a6:ce:5f:43:2e:f2:08:a1:53:6a:0c:63:1e:de:f7: ca:3e:fb:3b:4e:c9:b7:7d:48:cb:2f:de:19:0c:66:53:39:0e: 80:00:f4:99:f5:6f:eb:1d:b4:6b:57:b9:9b:2f:86:8c:9e:f5: 5a:04:d7:b2:cc:1c:21:9d:91:24:c7:21:c2:80:02:8f:fa:7d: 39:99:e3:b5:eb:a4:3d:09:3d:3d:73:27:ed:26:38:37:ef:0c: c1:3e:1e:93:1e:50:cb:4b:39:31:70:93:56:b1:88:ee:c4:32: 58:05:4c:9a:a2:63:0b:94:16:c1:4c:1c:53:f6:88:73:04:2c: af:db:ac:fe:d6:01:74:3d:50:6a:3d:cf:bf:ca:4f:66:34:08: 03:ab:ef:8b:5b:29:b7:b8:4d:0a:f0:c7:d3:de:65:03:41:b6: 74:43:15:c3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVfFWqgdE98dq43RIilV8Haxp/s8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAxMjkwNDU1MDFaFw0yNjAxMjgwNTAwMDFaMDMxMTAvBgNV BAMTKDE4NkEzQjlCODcxMTg1N0ZDN0Y5RUEyQ0Q4OTgzRDU2RTRCMTkyNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtN5VXP/VaIR3lZd0G9cBzxRmk ciKpF5Vvpv3L/60Uc1W/CSZ/KIL/+2/+IBWuP+ayxo+F7BTmnJIkUyQJUqtqOnpK hf1uubwKkxP9V3ZHd6u65MuH3uTwXPI34Rz1+FAXMS9WvLFT6SWQdC/NugYfQx6I WUMbO2FbRqBRNLU1yoyoz/ktRkhgO1i1AeNwAwhXbDPcvjBdElHjFuppBs+Y1o68 LeWTfekq8kB8L5nlCL72n4D2pWRazZLlB601WmFgiKM7lggSftZlydjpKRvU17/i OXxtCWQxDJbydoVdmlvrsDGVXBigFoHttHzZHKAbpDVn8cx6XVZO8B7sthZxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGGo7m4cRhX/H+eos2Jg9VuSxkmwwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzgzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QIAAMA0GCSqGSIb3DQEBCwUAA4IBAQBtI9gTyOIQmhFARyGlmHgmC2sJEl1u/731 NGbSXbNI8QHPY3bq2guIPUHEJclaG+rzebGhfkojNMEqQsTgZ0I4dKzoExVwQv9F w9xBDCQHqW2ACh3eQXexIwYzHI6mzl9DLvIIoVNqDGMe3vfKPvs7Tsm3fUjLL94Z DGZTOQ6AAPSZ9W/rHbRrV7mbL4aMnvVaBNeyzBwhnZEkxyHCgAKP+n05meO166Q9 CT09cyftJjg37wzBPh6THlDLSzkxcJNWsYjuxDJYBUyaomMLlBbBTBxT9ohzBCyv 26z+1gF0PVBqPc+/yk9mNAgDq++LWym3uE0K8MfT3mUDQbZ0QxXD -----END CERTIFICATE-----Generated at Sun Apr 6 15:01:15 2025 by rpki-client