$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030333a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a383030333a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: //3BOXuqv/u9F7OjxjbDPvLhoQOhc/d175iU4KWcRCs= Subject key identifier: 26:91:A8:7E:97:7F:90:50:7F:14:A4:83:3C:9A:0E:D8:1C:A4:8E:95 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 59E9145BEE3DE6F2DBB802EB0DF2DA423630804C Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030333a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 29 Jan 2025 07:00:02 +0000 ROA not before: Wed 29 Jan 2025 06:55:02 +0000 ROA not after: Wed 28 Jan 2026 07:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:8003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e9:14:5b:ee:3d:e6:f2:db:b8:02:eb:0d:f2:da:42:36:30:80:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 29 06:55:02 2025 GMT Not After : Jan 28 07:00:02 2026 GMT Subject: CN=2691A87E977F90507F14A4833C9A0ED81CA48E95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:88:fb:5b:37:1b:cd:f4:27:ff:c1:73:42:78: 94:c1:f3:4d:a8:a9:2f:3a:3b:a1:22:b3:1b:47:7a: fb:a5:dc:c9:76:96:83:ae:69:4e:1c:f7:46:f4:09: ef:d1:bc:0d:25:1f:c9:ce:8d:78:53:1d:fd:4d:0d: 67:0a:3b:9b:e5:d9:dc:68:ef:b2:9f:05:91:d4:a1: 73:1d:8d:e6:6b:c6:08:2d:f3:ca:1f:59:77:bd:20: 4f:02:3b:25:d0:dd:43:7a:47:da:70:42:c4:45:fc: a8:95:46:25:e5:50:5b:fd:b1:97:71:46:54:20:50: c5:ba:96:3d:3f:8e:b1:0c:91:9b:9a:82:f2:fb:00: b9:9a:a0:16:a7:ff:4c:ba:83:be:79:46:ca:7b:17: 15:a2:a8:1a:1f:88:24:ed:dd:78:18:1b:c5:c0:0a: 37:8c:43:bb:cd:80:e7:18:15:d6:b0:59:c3:8b:c5: bb:75:c0:cb:a0:74:c2:8a:3f:95:37:53:ee:0e:5e: d5:9a:d3:a6:d7:86:fc:0b:ba:aa:76:42:ec:d3:98: 17:00:16:a4:f0:73:1a:9c:5a:48:6e:ad:98:54:1e: 03:34:ca:ee:c1:5d:8c:31:b4:74:93:db:70:f8:c0: 03:21:90:4e:7e:7e:0e:9d:51:d4:cf:d7:ca:98:90: 88:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:91:A8:7E:97:7F:90:50:7F:14:A4:83:3C:9A:0E:D8:1C:A4:8E:95 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a383030333a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:8003::/48 Signature Algorithm: sha256WithRSAEncryption 26:33:7a:f2:68:8f:3b:aa:ce:cf:84:38:a0:26:14:04:de:ce: bd:13:be:ae:b8:8d:76:a7:a4:3d:83:e7:df:e9:a8:4c:90:fe: 34:de:c0:1e:e5:30:9b:25:0a:20:6f:d5:c0:d0:8a:02:fb:a8: a9:d0:95:e3:81:ba:a3:31:7e:b3:d7:d4:0c:73:66:9a:1b:3c: 7d:45:ae:1a:0e:94:2a:06:16:7f:2f:4c:f1:de:1c:09:d8:a2: 67:13:8d:39:0c:8e:28:6d:51:9d:0b:9f:52:63:d1:59:05:9b: ab:59:bb:5a:d9:7f:87:d9:b2:f9:52:a0:d9:18:2b:95:b1:5c: bf:57:22:1b:9e:37:71:76:fa:eb:d7:df:6b:39:20:16:2c:9d: 98:6c:b5:6a:ba:ab:0f:5c:2d:36:c3:9d:fa:ab:96:17:d9:44: 33:8f:32:23:99:91:19:99:9a:3a:a1:dd:9f:ba:f6:26:fd:1a: 66:cd:e0:e7:99:0b:3a:97:95:64:40:c7:63:1f:f4:b1:70:ba: 78:fc:cf:05:e2:bf:1f:24:03:59:dd:c5:3c:50:43:ff:1d:16: 4d:23:12:f3:10:9c:70:eb:22:c4:a4:93:0b:90:71:32:55:eb: bb:c5:b8:f7:c1:37:aa:77:bc:15:7e:a6:a9:40:ce:ec:9b:07: 31:cd:74:7f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWekUW+495vLbuALrDfLaQjYwgEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAxMjkwNjU1MDJaFw0yNjAxMjgwNzAwMDJaMDMxMTAvBgNV BAMTKDI2OTFBODdFOTc3RjkwNTA3RjE0QTQ4MzNDOUEwRUQ4MUNBNDhFOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5iPtbNxvN9Cf/wXNCeJTB802o qS86O6EisxtHevul3Ml2loOuaU4c90b0Ce/RvA0lH8nOjXhTHf1NDWcKO5vl2dxo 77KfBZHUoXMdjeZrxggt88ofWXe9IE8COyXQ3UN6R9pwQsRF/KiVRiXlUFv9sZdx RlQgUMW6lj0/jrEMkZuagvL7ALmaoBan/0y6g755Rsp7FxWiqBofiCTt3XgYG8XA CjeMQ7vNgOcYFdawWcOLxbt1wMugdMKKP5U3U+4OXtWa06bXhvwLuqp2QuzTmBcA FqTwcxqcWkhurZhUHgM0yu7BXYwxtHST23D4wAMhkE5+fg6dUdTP18qYkIgXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJpGofpd/kFB/FKSDPJoO2BykjpUwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzgzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QIADMA0GCSqGSIb3DQEBCwUAA4IBAQAmM3ryaI87qs7PhDigJhQE3s69E76uuI12 p6Q9g+ff6ahMkP403sAe5TCbJQogb9XA0IoC+6ip0JXjgbqjMX6z19QMc2aaGzx9 Ra4aDpQqBhZ/L0zx3hwJ2KJnE405DI4obVGdC59SY9FZBZurWbta2X+H2bL5UqDZ GCuVsVy/VyIbnjdxdvrr199rOSAWLJ2YbLVquqsPXC02w536q5YX2UQzjzIjmZEZ mZo6od2fuvYm/RpmzeDnmQs6l5VkQMdjH/SxcLp4/M8F4r8fJANZ3cU8UEP/HRZN IxLzEJxw6yLEpJMLkHEyVeu7xbj3wTeqd7wVfqapQM7smwcxzXR/ -----END CERTIFICATE-----Generated at Sun Apr 6 13:59:14 2025 by rpki-client