$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030313a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030313a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 2Kdo769OXfUJZohAr30ARBQaVpRjdCGxmL0KFYH/x5k= Subject key identifier: 57:1C:2F:15:67:A9:F5:14:BC:01:78:5A:57:C8:62:43:2E:C9:5B:4E Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 11690FC54FF261687C9D85E8AD04DA53F7852596 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030313a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:03 +0000 ROA not before: Wed 26 Feb 2025 01:55:03 +0000 ROA not after: Wed 25 Feb 2026 02:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 04:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:69:0f:c5:4f:f2:61:68:7c:9d:85:e8:ad:04:da:53:f7:85:25:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:03 2025 GMT Not After : Feb 25 02:00:03 2026 GMT Subject: CN=571C2F1567A9F514BC01785A57C862432EC95B4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:31:35:4e:c0:7e:95:d7:3b:99:85:fd:e1:94: c6:96:63:1c:e8:fe:15:9d:6f:2a:ff:e1:4b:d9:b7: e9:e5:7a:2f:bf:4c:d7:24:0f:d5:93:b8:d2:b1:27: 8d:72:e0:c6:95:64:ff:c3:08:82:fb:35:38:22:09: 12:34:20:ca:8f:4e:1a:23:49:31:b2:c1:2b:d7:61: 1e:99:22:46:da:60:ec:3b:66:28:9e:92:fa:2e:37: 98:fd:aa:48:ad:7c:f9:5c:f5:cb:2a:6c:5c:95:da: 5a:17:0c:29:e0:9c:a3:12:ff:ca:f2:8c:44:10:99: e7:8b:ea:e3:91:c8:66:58:f3:b1:39:8d:12:b9:00: 62:b7:ee:14:05:37:b3:d8:31:33:39:0e:69:34:b5: 0e:9f:37:3a:ef:fc:e3:9f:35:c9:f2:1b:4a:f7:72: b5:2d:12:7e:f4:31:24:aa:83:73:23:85:bf:a0:3e: b1:02:75:0f:c4:6f:fe:6b:0c:8a:8e:9a:90:29:e2: 11:14:af:ae:ea:ec:8a:70:c6:20:04:e7:c4:f7:38: f6:8d:5e:39:cb:a1:87:6b:2a:3b:c8:51:23:e5:45: a5:79:6a:de:78:36:34:c7:01:e4:0e:59:f2:a6:e7: e6:e9:c6:b1:f2:3c:53:70:33:02:5f:81:cc:74:21: 1b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1C:2F:15:67:A9:F5:14:BC:01:78:5A:57:C8:62:43:2E:C9:5B:4E X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030313a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9001::/48 Signature Algorithm: sha256WithRSAEncryption c0:51:d5:6d:83:d4:7c:08:5e:b0:bf:a8:d3:24:ca:a9:a6:04: e1:af:e9:5f:df:5a:10:7e:28:13:85:c0:93:c9:94:ae:83:ed: 10:10:66:c9:18:2f:c6:a2:de:90:90:06:42:45:49:f8:0b:e0: 8f:4f:79:d4:5c:aa:6d:26:82:90:8c:05:84:a4:54:07:d1:b3: 4d:ee:d6:4b:1e:96:e7:e2:aa:3f:8f:a7:03:39:99:dc:4b:8a: 0d:e2:ea:2e:26:dc:1f:c8:96:e1:9c:83:73:05:eb:a9:e7:44: 49:7c:c7:bf:90:19:b4:11:a9:4e:b3:53:e7:f6:07:d1:0d:17: 3a:cf:2e:fc:c2:cf:41:3b:25:59:67:97:11:3c:69:3a:21:7c: c3:6b:19:8e:cd:53:e2:a9:59:55:8e:3e:8d:df:4e:c8:ec:0c: d1:47:64:6b:95:5a:bc:96:de:1f:7b:b9:c7:8a:ac:d7:32:02: e8:60:28:1e:45:e0:4c:1c:d5:58:88:af:19:76:39:81:95:93: d1:3b:60:9a:ec:8b:14:9d:da:cc:e6:fc:0a:03:10:f4:60:d5: 83:ec:c8:9a:90:a6:4f:1a:86:86:a9:1d:6d:74:1b:1d:f5:fc: 85:aa:30:e7:7e:72:bb:18:9b:5c:fb:24:a0:d5:b1:62:12:8d: ab:e7:fc:b3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEWkPxU/yYWh8nYXorQTaU/eFJZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDNaFw0yNjAyMjUwMjAwMDNaMDMxMTAvBgNV BAMTKDU3MUMyRjE1NjdBOUY1MTRCQzAxNzg1QTU3Qzg2MjQzMkVDOTVCNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFMTVOwH6V1zuZhf3hlMaWYxzo /hWdbyr/4UvZt+nlei+/TNckD9WTuNKxJ41y4MaVZP/DCIL7NTgiCRI0IMqPThoj STGywSvXYR6ZIkbaYOw7ZiiekvouN5j9qkitfPlc9csqbFyV2loXDCngnKMS/8ry jEQQmeeL6uORyGZY87E5jRK5AGK37hQFN7PYMTM5Dmk0tQ6fNzrv/OOfNcnyG0r3 crUtEn70MSSqg3Mjhb+gPrECdQ/Eb/5rDIqOmpAp4hEUr67q7IpwxiAE58T3OPaN XjnLoYdrKjvIUSPlRaV5at54NjTHAeQOWfKm5+bpxrHyPFNwMwJfgcx0IRsHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUVxwvFWep9RS8AXhaV8hiQy7JW04wHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJABMA0GCSqGSIb3DQEBCwUAA4IBAQDAUdVtg9R8CF6wv6jTJMqppgThr+lf31oQ figThcCTyZSug+0QEGbJGC/Got6QkAZCRUn4C+CPT3nUXKptJoKQjAWEpFQH0bNN 7tZLHpbn4qo/j6cDOZncS4oN4uouJtwfyJbhnINzBeup50RJfMe/kBm0EalOs1Pn 9gfRDRc6zy78ws9BOyVZZ5cRPGk6IXzDaxmOzVPiqVlVjj6N307I7AzRR2RrlVq8 lt4fe7nHiqzXMgLoYCgeReBMHNVYiK8ZdjmBlZPRO2Ca7IsUndrM5vwKAxD0YNWD 7MiakKZPGoaGqR1tdBsd9fyFqjDnfnK7GJtc+ySg1bFiEo2r5/yz -----END CERTIFICATE-----Generated at Tue Oct 28 06:22:28 2025 by rpki-client