$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030353a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030353a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: ry6t2/AtiTtN5Os3+OpnT29X+Lk4qX39IMHR8j/Kv/8= Subject key identifier: BD:11:4D:98:21:49:02:D9:D5:BD:40:13:AD:1C:44:31:30:C3:59:F1 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 13762F4F6D809F129C48D76AFCD9E99110E04DC5 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030353a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:03 +0000 ROA not before: Wed 26 Feb 2025 01:55:03 +0000 ROA not after: Wed 25 Feb 2026 02:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9005::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:76:2f:4f:6d:80:9f:12:9c:48:d7:6a:fc:d9:e9:91:10:e0:4d:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:03 2025 GMT Not After : Feb 25 02:00:03 2026 GMT Subject: CN=BD114D98214902D9D5BD4013AD1C443130C359F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:c7:02:18:fe:a0:07:e7:06:b5:db:aa:6a: 87:20:c4:2f:8c:54:94:f1:36:02:75:82:a9:62:d7: 78:d5:96:05:d9:56:72:55:74:03:d3:5d:f7:70:d3: ad:59:1c:55:7e:b5:7b:0d:30:c5:d3:22:71:8e:de: 3c:5b:61:2f:52:9d:1e:af:c3:55:c5:d1:8a:ba:62: 46:66:94:da:6d:98:f3:fb:79:ef:b0:26:f8:24:64: 31:1d:2f:c5:4f:19:04:e9:d9:70:dc:1e:2e:42:5a: a2:53:28:bd:ea:4e:ff:28:5e:d3:36:cf:c5:d2:50: 82:96:aa:e1:69:55:29:48:d9:8a:aa:0a:76:23:e3: d8:ae:0b:9a:77:4a:4e:c8:90:8b:0d:47:14:3f:e3: 21:9e:15:8a:64:24:42:ac:37:a9:d5:c7:46:09:ad: 69:e1:54:dd:0e:ca:99:97:bd:d9:9a:f4:b1:f7:09: 7c:1f:19:e1:31:0d:93:26:5b:05:5d:f3:fa:a9:87: 51:fd:0e:0b:11:5a:54:9b:75:6b:88:46:e8:9b:6b: 01:c6:cd:1c:20:fe:e7:83:aa:81:49:d7:7a:a4:0a: 8d:c4:75:1f:ae:5f:c3:78:20:6b:3a:4e:03:ab:b4: e7:bc:85:98:ee:dd:9c:41:c3:43:b3:7f:4c:37:a9: 11:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:11:4D:98:21:49:02:D9:D5:BD:40:13:AD:1C:44:31:30:C3:59:F1 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030353a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9005::/48 Signature Algorithm: sha256WithRSAEncryption a1:ed:a2:01:ee:71:27:45:6a:88:05:2f:38:9a:c1:46:47:ff: 15:a1:37:60:64:f6:90:99:15:76:74:f3:07:cf:b4:1c:7d:8a: bd:ee:c2:11:ee:1c:9f:b7:0f:5a:78:2b:14:df:9c:13:ed:0e: 51:b6:73:f2:27:8c:1a:b7:02:f2:c5:2b:d8:02:d0:e5:54:66: 50:85:d8:2d:85:17:a7:2d:8b:d2:11:4e:de:d9:ce:4e:8c:58: 42:a2:07:7e:3e:64:42:65:06:6a:b9:81:2f:0e:ab:88:f4:6a: ee:3e:bb:a6:52:f1:c1:c3:f4:da:72:80:c3:a1:b6:bc:57:54: 4d:cd:78:c8:33:9e:52:21:a2:f1:29:d6:9e:4f:54:76:80:4f: c4:33:b6:ca:4c:e7:7c:eb:6d:2a:5e:2f:7b:44:fe:82:b6:69: af:6e:8d:2a:06:8a:a4:5d:b2:3e:9a:2a:3f:90:b0:8a:ca:45: 0e:13:92:bd:5f:6d:29:ba:82:e3:49:9b:8f:a9:7c:ae:9a:1d: 5a:f4:b1:f6:64:a4:10:01:ab:9a:56:99:55:47:5d:0c:3d:11: a1:21:48:f1:37:7a:60:44:f3:f6:f1:7d:b1:b9:3c:a3:78:fb: cf:11:01:c3:5f:cb:7d:cd:6c:37:6c:66:94:6e:d8:69:47:b5: 33:7e:92:58 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUE3YvT22AnxKcSNdq/NnpkRDgTcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDNaFw0yNjAyMjUwMjAwMDNaMDMxMTAvBgNV BAMTKEJEMTE0RDk4MjE0OTAyRDlENUJENDAxM0FEMUM0NDMxMzBDMzU5RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UscCGP6gB+cGtduqaocgxC+M VJTxNgJ1gqli13jVlgXZVnJVdAPTXfdw061ZHFV+tXsNMMXTInGO3jxbYS9SnR6v w1XF0Yq6YkZmlNptmPP7ee+wJvgkZDEdL8VPGQTp2XDcHi5CWqJTKL3qTv8oXtM2 z8XSUIKWquFpVSlI2YqqCnYj49iuC5p3Sk7IkIsNRxQ/4yGeFYpkJEKsN6nVx0YJ rWnhVN0OypmXvdma9LH3CXwfGeExDZMmWwVd8/qph1H9DgsRWlSbdWuIRuibawHG zRwg/ueDqoFJ13qkCo3EdR+uX8N4IGs6TgOrtOe8hZju3ZxBw0Ozf0w3qRF9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvRFNmCFJAtnVvUATrRxEMTDDWfEwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAFMA0GCSqGSIb3DQEBCwUAA4IBAQCh7aIB7nEnRWqIBS84msFGR/8VoTdgZPaQ mRV2dPMHz7QcfYq97sIR7hyftw9aeCsU35wT7Q5RtnPyJ4watwLyxSvYAtDlVGZQ hdgthRenLYvSEU7e2c5OjFhCogd+PmRCZQZquYEvDquI9GruPrumUvHBw/TacoDD oba8V1RNzXjIM55SIaLxKdaeT1R2gE/EM7bKTOd8620qXi97RP6Ctmmvbo0qBoqk XbI+mio/kLCKykUOE5K9X20puoLjSZuPqXyumh1a9LH2ZKQQAauaVplVR10MPRGh IUjxN3pgRPP28X2xuTyjePvPEQHDX8t9zWw3bGaUbthpR7UzfpJY -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:20 2025 by rpki-client