$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030363a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030363a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: uyfzUAoN65dRFuK4y2oYLW30OnbJbsLm91kc+JgXqeo= Subject key identifier: 69:24:EF:B0:69:79:8A:D3:24:7E:02:A2:43:30:CC:F4:47:6F:98:75 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 4682F5E63F9591F318AE1EDF3CEFE8765026056A Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030363a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:03 +0000 ROA not before: Wed 26 Feb 2025 01:55:03 +0000 ROA not after: Wed 25 Feb 2026 02:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9006::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:82:f5:e6:3f:95:91:f3:18:ae:1e:df:3c:ef:e8:76:50:26:05:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:03 2025 GMT Not After : Feb 25 02:00:03 2026 GMT Subject: CN=6924EFB069798AD3247E02A24330CCF4476F9875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a9:3c:11:29:7a:5c:7d:c0:82:ff:86:51:e0: 75:81:48:1c:8a:97:55:1d:06:dd:49:ab:e0:b8:3c: 1d:3c:fd:32:8b:3c:aa:77:1c:66:8f:b8:88:fb:de: 83:a2:c8:b3:0d:bf:99:8b:d7:a0:e1:9f:86:85:48: 7f:78:e6:f2:18:3d:bd:05:1c:bd:20:18:5c:69:61: a1:b4:93:13:cd:3f:21:a5:f3:ae:bd:42:b7:c1:c1: 10:66:88:0d:e5:11:7f:47:ad:67:a7:fb:37:21:63: 27:25:df:cc:05:6e:b7:fe:4d:4b:ac:c6:08:11:59: ef:9d:12:71:e3:4e:fb:c4:b4:44:9c:91:45:4f:4e: f0:17:db:1b:7b:62:4b:0c:8f:ca:68:9f:d5:e6:e5: 23:2c:a0:44:20:6f:e0:20:28:2e:50:33:e1:47:99: 9b:51:30:68:91:44:e4:0e:24:82:15:fc:02:7d:2e: 1a:d4:e7:8a:c5:bf:35:a0:f3:38:b7:a5:f6:3d:58: c1:5e:5c:4c:f5:f3:0e:b5:cb:e3:3b:13:c6:25:d0: 89:5b:31:16:5a:69:18:65:91:a7:2d:06:f7:05:30: 62:f5:9b:54:a7:30:db:46:3d:b7:5d:eb:55:e6:99: 74:cb:ec:84:87:1d:8b:5f:e2:39:5e:30:50:7d:2d: 66:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:24:EF:B0:69:79:8A:D3:24:7E:02:A2:43:30:CC:F4:47:6F:98:75 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030363a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9006::/48 Signature Algorithm: sha256WithRSAEncryption 0e:68:70:da:86:0d:c7:b1:e2:8d:03:0c:ea:b1:45:fc:84:e7: af:ef:c5:b7:0e:59:f9:61:a6:69:0a:29:db:b7:42:06:f1:c0: cd:0f:fb:51:14:44:2a:74:80:c9:7c:8e:2e:c0:43:2e:68:a0: 48:de:aa:35:95:3f:9f:5b:11:ca:d1:ef:7e:2e:4e:c5:30:eb: b9:3c:20:3c:03:f6:c1:ab:87:a3:85:9e:6a:b8:dd:ea:4c:ce: 20:ff:d2:39:fb:df:ab:1d:32:cc:c4:2f:d7:2f:c0:c5:26:81: ac:50:8d:a3:49:3a:91:a6:0c:cf:b0:54:e1:84:33:a5:18:25: 36:3a:1f:90:84:dc:04:d8:2d:0f:93:8d:30:ce:ad:93:6a:9f: 95:77:78:40:c5:50:48:25:91:31:09:e5:94:cc:b5:d4:e7:39: 71:b9:18:5f:6c:b0:fb:83:7b:c5:73:3b:1e:b3:f5:2a:a5:3e: e0:5c:47:58:c4:4f:b6:ca:c6:1a:fd:ef:49:3c:19:8a:dd:d1: ae:29:f9:97:14:20:9c:9c:06:a5:eb:e4:b0:a4:c4:0c:59:4c: 83:b3:fb:8f:fa:c1:c3:ab:3c:15:ae:29:96:c7:ba:e3:9c:28: 2a:d1:29:83:cc:39:91:a0:0b:de:c8:69:25:8c:53:50:9e:bb: cd:00:f2:32 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURoL15j+VkfMYrh7fPO/odlAmBWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDNaFw0yNjAyMjUwMjAwMDNaMDMxMTAvBgNV BAMTKDY5MjRFRkIwNjk3OThBRDMyNDdFMDJBMjQzMzBDQ0Y0NDc2Rjk4NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClqTwRKXpcfcCC/4ZR4HWBSByK l1UdBt1Jq+C4PB08/TKLPKp3HGaPuIj73oOiyLMNv5mL16Dhn4aFSH945vIYPb0F HL0gGFxpYaG0kxPNPyGl8669QrfBwRBmiA3lEX9HrWen+zchYycl38wFbrf+TUus xggRWe+dEnHjTvvEtESckUVPTvAX2xt7YksMj8pon9Xm5SMsoEQgb+AgKC5QM+FH mZtRMGiRROQOJIIV/AJ9LhrU54rFvzWg8zi3pfY9WMFeXEz18w61y+M7E8Yl0Ilb MRZaaRhlkactBvcFMGL1m1SnMNtGPbdd61XmmXTL7ISHHYtf4jleMFB9LWa7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUaSTvsGl5itMkfgKiQzDM9EdvmHUwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAGMA0GCSqGSIb3DQEBCwUAA4IBAQAOaHDahg3HseKNAwzqsUX8hOev78W3Dln5 YaZpCinbt0IG8cDND/tRFEQqdIDJfI4uwEMuaKBI3qo1lT+fWxHK0e9+Lk7FMOu5 PCA8A/bBq4ejhZ5quN3qTM4g/9I5+9+rHTLMxC/XL8DFJoGsUI2jSTqRpgzPsFTh hDOlGCU2Oh+QhNwE2C0Pk40wzq2Tap+Vd3hAxVBIJZExCeWUzLXU5zlxuRhfbLD7 g3vFczses/UqpT7gXEdYxE+2ysYa/e9JPBmK3dGuKfmXFCCcnAal6+SwpMQMWUyD s/uP+sHDqzwVrimWx7rjnCgq0SmDzDmRoAveyGkljFNQnrvNAPIy -----END CERTIFICATE-----Generated at Sun Apr 6 11:13:20 2025 by rpki-client