$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030613a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030613a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: FhnQ2VrjagiG3p3tSOdEwLQ2uFUFTtgg6VpcFjakidg= Subject key identifier: C2:EB:29:82:6B:68:2A:B0:E1:D1:88:97:47:A1:E7:B6:AB:80:F9:05 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 6848AEAA138B1FA2A858A29A1A6D706967C084BA Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030613a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:01 +0000 ROA not before: Wed 26 Feb 2025 01:55:01 +0000 ROA not after: Wed 25 Feb 2026 02:00:01 +0000 asID: 38526 IP address blocks: 2405:3740:900a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:48:ae:aa:13:8b:1f:a2:a8:58:a2:9a:1a:6d:70:69:67:c0:84:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:01 2025 GMT Not After : Feb 25 02:00:01 2026 GMT Subject: CN=C2EB29826B682AB0E1D1889747A1E7B6AB80F905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b6:3e:25:63:c5:af:a2:b6:54:9c:ec:df:97: 30:61:a6:11:fe:c3:32:91:73:b5:a5:c0:2a:af:77: 0a:da:22:a5:cb:65:46:30:40:66:78:cf:18:38:3d: 75:86:5a:ce:dc:44:da:98:3e:f2:b2:71:7e:f9:a4: d5:ef:55:d8:e5:03:6f:8c:5c:53:43:5f:55:23:26: 5c:84:18:a3:f4:01:02:1f:f1:7a:f2:9f:d0:de:70: d5:53:81:23:f3:f1:03:12:b0:67:de:af:8a:ae:5c: 3f:d6:b0:88:58:52:25:a8:4c:3e:37:ff:77:3d:60: fd:e6:2e:48:2c:14:a3:43:dc:2d:ca:08:98:10:ba: 92:7d:d4:2b:c9:d9:75:8b:a4:5c:4a:1d:e5:f7:2c: 7a:f5:a3:6b:86:07:bf:f1:81:11:f2:b7:2d:73:5c: 58:a9:4b:88:b8:1e:90:92:2f:cc:5b:22:5f:27:d3: 4a:3a:e6:f5:d4:10:02:33:cf:2f:19:9a:2e:06:56: ae:af:80:4c:c6:3a:20:66:ed:7e:fe:05:c6:07:e8: 7c:26:16:71:e2:66:81:e9:ba:4d:3f:7a:58:83:15: 87:1a:3a:1f:cc:f8:c0:7f:7b:02:be:9f:7d:d6:df: e6:cf:2e:ad:5b:2c:3e:81:6d:97:6f:96:9e:07:e2: 9c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EB:29:82:6B:68:2A:B0:E1:D1:88:97:47:A1:E7:B6:AB:80:F9:05 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030613a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900a::/48 Signature Algorithm: sha256WithRSAEncryption 7f:f0:be:86:8f:07:fb:41:a5:da:19:40:f8:42:9b:33:e8:b3: c3:d8:4b:b3:37:4e:1b:74:06:e3:f8:02:ce:18:e8:f5:72:e2: 34:40:64:2e:8e:c2:03:44:d0:fd:67:e7:34:27:e7:f0:a5:6a: c0:10:c0:ba:c9:26:b9:14:89:e9:2d:d4:68:28:bf:73:85:72: 4c:a3:59:ae:19:ae:16:6a:9e:0a:4c:0b:9d:a4:aa:f7:e4:ef: 66:9a:a7:02:01:4e:17:d4:f1:45:a9:7e:21:01:ab:06:fe:c5: ea:bc:08:36:08:0c:e7:7a:61:2d:59:2d:f1:f1:79:a4:37:66: bb:ac:c7:54:17:af:f3:78:31:cd:1b:59:ab:2c:a7:4c:e8:62: 5d:bc:ee:8f:6e:3e:5d:62:a8:1e:cc:7f:8a:8d:3b:9a:07:1b: 8d:c2:26:bd:e7:6c:ef:2a:bc:16:72:82:0c:2b:8b:08:83:ee: ef:ec:bb:a7:20:c0:33:10:f7:d6:02:0d:e1:58:82:c5:b2:c1: 34:88:61:8b:52:16:47:19:10:53:bc:d3:9e:05:a6:d7:fc:ff: 4d:8f:06:04:d7:f8:c1:c2:38:94:96:fe:04:41:d8:b4:47:57: a0:7e:06:92:57:16:88:a8:20:8a:c1:27:fd:68:8c:4b:90:3e: 8f:8c:7a:e1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaEiuqhOLH6KoWKKaGm1waWfAhLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDFaFw0yNjAyMjUwMjAwMDFaMDMxMTAvBgNV BAMTKEMyRUIyOTgyNkI2ODJBQjBFMUQxODg5NzQ3QTFFN0I2QUI4MEY5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWtj4lY8WvorZUnOzflzBhphH+ wzKRc7WlwCqvdwraIqXLZUYwQGZ4zxg4PXWGWs7cRNqYPvKycX75pNXvVdjlA2+M XFNDX1UjJlyEGKP0AQIf8Xryn9DecNVTgSPz8QMSsGfer4quXD/WsIhYUiWoTD43 /3c9YP3mLkgsFKND3C3KCJgQupJ91CvJ2XWLpFxKHeX3LHr1o2uGB7/xgRHyty1z XFipS4i4HpCSL8xbIl8n00o65vXUEAIzzy8Zmi4GVq6vgEzGOiBm7X7+BcYH6Hwm FnHiZoHpuk0/eliDFYcaOh/M+MB/ewK+n33W3+bPLq1bLD6BbZdvlp4H4py5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUwuspgmtoKrDh0YiXR6HntquA+QUwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAKMA0GCSqGSIb3DQEBCwUAA4IBAQB/8L6Gjwf7QaXaGUD4Qpsz6LPD2EuzN04b dAbj+ALOGOj1cuI0QGQujsIDRND9Z+c0J+fwpWrAEMC6ySa5FInpLdRoKL9zhXJM o1muGa4Wap4KTAudpKr35O9mmqcCAU4X1PFFqX4hAasG/sXqvAg2CAznemEtWS3x 8XmkN2a7rMdUF6/zeDHNG1mrLKdM6GJdvO6Pbj5dYqgezH+KjTuaBxuNwia952zv KrwWcoIMK4sIg+7v7LunIMAzEPfWAg3hWILFssE0iGGLUhZHGRBTvNOeBabX/P9N jwYE1/jBwjiUlv4EQdi0R1egfgaSVxaIqCCKwSf9aIxLkD6PjHrh -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:33 2025 by rpki-client