$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030343a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030343a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 9YA5QupRdtRN7q8S8Eb7D12Yy/p/oU+BW1AMLfmPkzs= Subject key identifier: D5:6D:CF:83:9B:4C:8F:50:00:09:20:40:91:3B:AA:0B:BC:BE:AB:8C Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 490FF852EE77548C71E9685136BEFC434DA8FE3E Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030343a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:04 +0000 ROA not before: Wed 26 Feb 2025 01:55:04 +0000 ROA not after: Wed 25 Feb 2026 02:00:04 +0000 asID: 38526 IP address blocks: 2405:3740:9004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:0f:f8:52:ee:77:54:8c:71:e9:68:51:36:be:fc:43:4d:a8:fe:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:04 2025 GMT Not After : Feb 25 02:00:04 2026 GMT Subject: CN=D56DCF839B4C8F5000092040913BAA0BBCBEAB8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fc:65:91:0a:b7:1a:d0:33:0c:63:7b:ec:9c: 50:12:9e:4e:02:e2:62:86:bc:59:af:d7:5f:35:a3: 40:e7:64:f7:d2:09:ea:13:f5:65:fc:9e:d6:c7:ac: f0:a9:aa:3b:98:b0:58:e5:8f:fa:d8:0c:b2:21:18: 69:22:ac:b8:20:21:03:68:24:3d:a7:e2:ed:e5:7a: 41:31:a2:cc:e9:64:8b:ab:04:cc:e5:4a:b0:41:ef: 7d:d5:a7:fb:78:de:3f:4a:b1:61:a2:b1:1f:34:8e: 61:17:65:5d:95:fd:67:92:7b:83:e9:be:18:be:61: 77:d4:1c:d2:17:24:b9:9b:5c:68:ca:6f:b2:49:6d: 39:bb:16:18:35:04:96:7d:4b:d6:a6:b2:57:4e:6b: 2f:e5:62:37:e4:93:79:10:94:22:c6:7a:00:8d:6a: 01:d3:24:08:77:7d:a4:f1:14:52:33:76:3d:97:f5: 89:69:c2:0c:5e:7d:40:8a:a7:79:4a:01:f5:6d:ba: 4b:69:a9:7e:29:49:45:e9:dc:4f:03:0b:c6:92:c3: cc:b1:09:64:dc:3e:e6:fb:05:9b:af:e3:af:af:65: e8:f6:8a:7c:84:bf:72:93:0a:d1:46:05:9d:bd:d9: 25:4a:2f:ca:f6:44:29:4a:53:3a:b9:01:ae:16:9a: 89:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:6D:CF:83:9B:4C:8F:50:00:09:20:40:91:3B:AA:0B:BC:BE:AB:8C X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030343a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9004::/48 Signature Algorithm: sha256WithRSAEncryption 5f:5d:eb:a8:4b:51:3c:9a:19:39:2f:fe:e1:f3:3c:de:79:0c: fb:2c:9d:f0:b7:74:e4:de:51:ed:14:a5:85:36:1c:43:74:9b: 65:93:ba:00:6d:3a:c9:f8:75:91:0c:37:cd:af:bf:99:4a:08: 41:94:be:d6:48:b9:30:94:fc:b1:32:a1:09:f4:9a:a6:21:54: de:9d:c7:fd:fd:4b:2a:3a:d3:97:ff:90:8c:37:a4:1b:6d:45: e7:fc:40:82:83:94:3c:ec:7f:b6:3c:c5:18:95:17:49:fc:b4: fd:b5:91:d3:30:3e:49:cc:24:89:c7:c1:ad:a8:94:90:b9:2a: 30:d7:99:88:84:9d:66:71:eb:ef:de:f7:c7:65:87:ea:b6:a9: b6:41:80:bc:cc:e2:c6:20:69:61:45:5f:d1:a1:b6:83:a4:5f: ea:f8:c3:9e:79:5f:cc:6e:87:50:a1:1d:c1:22:c5:88:91:c0: 31:90:3a:f2:dc:78:e6:7f:b4:06:1b:ce:6f:47:0a:09:ca:af: 5e:06:02:49:cb:3a:5b:73:07:4a:46:19:df:86:6f:48:94:d4: e2:d1:74:1a:14:99:dc:4d:b4:cf:73:63:d8:66:2a:3f:78:e4: 59:c5:94:3f:52:22:a0:31:0a:05:91:2d:5a:8a:d8:38:8f:3d: db:b6:b1:d2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSQ/4Uu53VIxx6WhRNr78Q02o/j4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDRaFw0yNjAyMjUwMjAwMDRaMDMxMTAvBgNV BAMTKEQ1NkRDRjgzOUI0QzhGNTAwMDA5MjA0MDkxM0JBQTBCQkNCRUFCOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn/GWRCrca0DMMY3vsnFASnk4C 4mKGvFmv1181o0DnZPfSCeoT9WX8ntbHrPCpqjuYsFjlj/rYDLIhGGkirLggIQNo JD2n4u3lekExoszpZIurBMzlSrBB733Vp/t43j9KsWGisR80jmEXZV2V/WeSe4Pp vhi+YXfUHNIXJLmbXGjKb7JJbTm7Fhg1BJZ9S9amsldOay/lYjfkk3kQlCLGegCN agHTJAh3faTxFFIzdj2X9YlpwgxefUCKp3lKAfVtuktpqX4pSUXp3E8DC8aSw8yx CWTcPub7BZuv46+vZej2inyEv3KTCtFGBZ292SVKL8r2RClKUzq5Aa4WmokPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1W3Pg5tMj1AACSBAkTuqC7y+q4wwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAEMA0GCSqGSIb3DQEBCwUAA4IBAQBfXeuoS1E8mhk5L/7h8zzeeQz7LJ3wt3Tk 3lHtFKWFNhxDdJtlk7oAbTrJ+HWRDDfNr7+ZSghBlL7WSLkwlPyxMqEJ9JqmIVTe ncf9/UsqOtOX/5CMN6QbbUXn/ECCg5Q87H+2PMUYlRdJ/LT9tZHTMD5JzCSJx8Gt qJSQuSow15mIhJ1mcevv3vfHZYfqtqm2QYC8zOLGIGlhRV/RobaDpF/q+MOeeV/M bodQoR3BIsWIkcAxkDry3Hjmf7QGG85vRwoJyq9eBgJJyzpbcwdKRhnfhm9IlNTi 0XQaFJncTbTPc2PYZio/eORZxZQ/UiKgMQoFkS1aitg4jz3btrHS -----END CERTIFICATE-----Generated at Sun Apr 6 08:45:59 2025 by rpki-client