$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030333a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030333a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: YbMrdqEvpVJbbkBHO8eJfzRz5dX0zJD//oFnVk6DZPM= Subject key identifier: 37:C8:8D:2A:83:B1:8B:65:E2:21:48:F8:BA:65:38:10:D7:89:CF:B1 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 641B219CCFA865BCE7368868719B2036CEADA3AB Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030333a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:03 +0000 ROA not before: Wed 26 Feb 2025 01:55:03 +0000 ROA not after: Wed 25 Feb 2026 02:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:1b:21:9c:cf:a8:65:bc:e7:36:88:68:71:9b:20:36:ce:ad:a3:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:03 2025 GMT Not After : Feb 25 02:00:03 2026 GMT Subject: CN=37C88D2A83B18B65E22148F8BA653810D789CFB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fa:1b:a4:14:d0:35:ad:0c:97:7b:69:92:64: a4:e3:a8:e5:7e:55:db:1f:54:72:d1:14:a5:96:bd: c8:77:f9:72:76:0b:a1:56:38:1d:90:aa:6c:dc:67: 3d:4a:05:16:9c:2c:5b:15:80:02:e6:de:a3:b0:23: 57:6e:a3:d9:c1:a1:58:b7:0a:3c:f1:7c:2c:9c:a1: 33:ec:4b:f7:f1:07:d0:59:b8:b9:ac:17:07:35:4b: a5:e4:64:aa:d6:5a:b7:ed:ca:c3:bb:98:9c:41:ab: 9d:ba:4c:2d:ab:83:4f:a8:07:d3:35:a7:75:3d:5b: 94:3f:f4:ea:c5:ef:83:0c:a6:e6:ed:3c:2f:fa:68: 01:58:db:c0:19:31:f5:53:92:1d:9e:c9:5b:d0:fb: b2:00:e8:1f:59:a4:ec:57:fe:50:92:a3:68:79:98: 87:42:38:67:c7:28:61:1b:c8:f4:26:c9:45:6b:1f: 9a:9f:e3:82:1b:4b:2f:49:25:94:a0:d9:b3:8d:cc: fd:3a:01:36:ff:a8:50:17:d0:f6:5d:73:66:3f:30: f5:60:78:8d:bf:76:eb:cb:82:c1:fd:b1:60:09:d0: 57:f4:ae:f4:10:0f:5f:bf:1f:db:fe:cd:b3:1b:8d: bb:2b:15:9b:5a:e7:71:c2:93:94:d7:6c:c4:5f:05: 32:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C8:8D:2A:83:B1:8B:65:E2:21:48:F8:BA:65:38:10:D7:89:CF:B1 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030333a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9003::/48 Signature Algorithm: sha256WithRSAEncryption 28:d6:d8:4b:06:70:ab:11:b6:18:bb:83:a5:ec:41:ad:c0:74: 64:6e:39:24:05:6d:72:dd:16:4f:16:97:3b:e9:57:72:fc:b8: 20:d7:43:59:67:b1:57:6f:dd:8a:09:ba:09:27:d2:ae:5e:66: 33:c7:a9:ca:1d:fd:85:84:20:a6:f6:99:88:4c:97:fe:3c:b8: ab:27:e6:c4:17:34:7d:ed:8e:a4:4d:14:4e:3d:83:75:02:73: f1:a7:80:8b:37:27:81:17:9f:5c:c8:70:ff:23:11:c9:32:7f: 6d:78:8e:90:23:73:d0:92:c1:16:ea:33:41:0c:a0:36:d4:b7: c2:01:6c:58:f2:dd:05:f4:ba:05:a2:25:68:50:67:cf:2e:22: 05:ff:d5:3e:7d:0f:44:37:47:f7:f4:40:37:b1:02:12:57:a8: c6:ed:f6:41:f5:a8:18:9e:b4:a8:6e:61:39:46:bd:54:75:32: 55:e5:97:4f:62:6a:4d:01:7c:db:7c:3d:38:eb:c5:6d:f5:94: 13:0e:48:6c:2d:03:95:53:36:8c:01:00:c9:a3:bc:7c:4e:64: 2c:13:96:22:ce:83:4d:ba:a8:a6:e3:2f:71:c5:7d:15:d5:db: 31:72:14:9b:fe:d2:d9:24:a4:3d:07:b7:ce:2c:69:e8:2e:0d: f7:0f:48:fe -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZBshnM+oZbznNohocZsgNs6to6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDNaFw0yNjAyMjUwMjAwMDNaMDMxMTAvBgNV BAMTKDM3Qzg4RDJBODNCMThCNjVFMjIxNDhGOEJBNjUzODEwRDc4OUNGQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn+hukFNA1rQyXe2mSZKTjqOV+ VdsfVHLRFKWWvch3+XJ2C6FWOB2QqmzcZz1KBRacLFsVgALm3qOwI1duo9nBoVi3 CjzxfCycoTPsS/fxB9BZuLmsFwc1S6XkZKrWWrftysO7mJxBq526TC2rg0+oB9M1 p3U9W5Q/9OrF74MMpubtPC/6aAFY28AZMfVTkh2eyVvQ+7IA6B9ZpOxX/lCSo2h5 mIdCOGfHKGEbyPQmyUVrH5qf44IbSy9JJZSg2bONzP06ATb/qFAX0PZdc2Y/MPVg eI2/duvLgsH9sWAJ0Ff0rvQQD1+/H9v+zbMbjbsrFZta53HCk5TXbMRfBTIrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUN8iNKoOxi2XiIUj4umU4ENeJz7EwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJADMA0GCSqGSIb3DQEBCwUAA4IBAQAo1thLBnCrEbYYu4Ol7EGtwHRkbjkkBW1y 3RZPFpc76Vdy/Lgg10NZZ7FXb92KCboJJ9KuXmYzx6nKHf2FhCCm9pmITJf+PLir J+bEFzR97Y6kTRROPYN1AnPxp4CLNyeBF59cyHD/IxHJMn9teI6QI3PQksEW6jNB DKA21LfCAWxY8t0F9LoFoiVoUGfPLiIF/9U+fQ9EN0f39EA3sQISV6jG7fZB9agY nrSobmE5Rr1UdTJV5ZdPYmpNAXzbfD0468Vt9ZQTDkhsLQOVUzaMAQDJo7x8TmQs E5YizoNNuqim4y9xxX0V1dsxchSb/tLZJKQ9B7fOLGnoLg33D0j+ -----END CERTIFICATE-----Generated at Sun Apr 6 08:44:02 2025 by rpki-client