$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030623a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030623a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: hI7sm2uUMlDaRCfPnZ5SGZWCofgLqg3cFBj5Th6yPj4= Subject key identifier: C5:96:BE:CA:7F:BE:07:58:D3:A8:3B:03:EC:F6:60:64:6A:42:1E:BB Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 4749AA777A0E274B7A61F1625F8E1A28F862DA2A Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030623a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:02 +0000 ROA not before: Wed 26 Feb 2025 01:55:02 +0000 ROA not after: Wed 25 Feb 2026 02:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:900b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:49:aa:77:7a:0e:27:4b:7a:61:f1:62:5f:8e:1a:28:f8:62:da:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:02 2025 GMT Not After : Feb 25 02:00:02 2026 GMT Subject: CN=C596BECA7FBE0758D3A83B03ECF660646A421EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6f:e5:6d:a7:0d:57:3c:8f:fb:f0:2d:1e:50: 1c:e5:bf:5d:f1:70:81:9b:5b:00:2b:59:d0:0d:81: 3d:33:54:4e:57:61:45:94:84:3d:46:87:4f:f8:88: 80:91:df:f2:5a:bc:80:07:cd:88:be:c6:8c:05:95: e7:c3:2f:10:87:60:2d:bc:ac:14:72:31:c2:6c:a2: 7c:34:49:0a:fb:26:8b:a2:52:90:3c:c3:0f:bb:9d: 0c:f1:30:ff:63:08:75:16:2f:3e:be:06:e4:87:61: 63:52:63:a9:15:68:24:41:17:8d:3a:70:51:0d:eb: 18:ec:08:83:7f:80:07:56:cc:2f:08:3a:2b:9f:54: 2f:52:ad:17:0e:9b:3c:a0:2c:c8:f6:40:f7:c8:5b: a8:13:a9:76:57:8a:c6:57:21:8c:49:ad:69:96:15: 82:46:e0:e1:9b:f5:90:a5:8b:c6:21:87:30:59:20: 15:de:71:10:86:2a:0d:57:5e:e2:ea:24:4c:99:6a: 86:7d:67:4d:ea:19:78:79:4d:2f:a1:cb:38:e3:e8: ec:24:66:07:ac:e8:68:a3:db:fd:7b:a8:46:88:fb: 44:9a:9e:6e:41:64:22:fd:49:12:2d:9f:26:41:56: 53:3b:61:19:da:8f:d3:2f:00:3d:58:b4:ef:02:58: 36:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:96:BE:CA:7F:BE:07:58:D3:A8:3B:03:EC:F6:60:64:6A:42:1E:BB X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030623a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900b::/48 Signature Algorithm: sha256WithRSAEncryption 7d:63:59:b6:69:04:1e:97:91:d1:ca:d4:b9:f4:be:51:06:94: 32:3d:f0:1a:25:ba:69:6c:64:93:f0:cf:7a:c9:d4:2c:d9:08: b8:cd:40:c1:78:7b:a9:40:5b:69:5e:78:f2:ea:f9:5b:c1:81: ef:ea:8c:b2:c5:b0:74:f1:c5:36:66:85:fa:14:89:6f:3d:92: 46:a2:55:f1:54:ed:67:39:9b:fa:39:28:d0:5b:86:f2:7b:a1: 53:1d:ae:51:b0:9e:e7:c3:e6:32:66:46:10:1e:24:5a:84:f1: 68:71:b3:1a:7b:9b:40:31:0f:30:d7:a9:81:e7:86:ef:a0:87: a3:03:89:76:8a:25:5b:c1:6a:e5:33:d1:04:a7:cd:88:91:87: 04:02:23:30:7e:d4:93:e3:36:a5:dd:bd:46:7e:16:42:3e:df: f3:44:05:35:dc:2a:33:e6:a6:3f:22:75:dc:20:c6:68:4e:a2: 3e:98:5e:95:d9:a9:ec:0e:cb:61:56:ad:3e:f4:fb:94:b6:80: 0c:a4:62:bc:37:a5:23:5f:12:78:07:5f:b3:6b:82:00:bf:92: d2:e5:7f:1c:fb:46:03:35:6e:27:fe:c7:8d:4d:42:7b:3b:3f: 32:bf:4e:36:bd:7e:3e:11:2f:7a:51:2b:c5:ab:54:a9:d1:46: 9a:e7:05:1d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR0mqd3oOJ0t6YfFiX44aKPhi2iowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDJaFw0yNjAyMjUwMjAwMDJaMDMxMTAvBgNV BAMTKEM1OTZCRUNBN0ZCRTA3NThEM0E4M0IwM0VDRjY2MDY0NkE0MjFFQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDb+Vtpw1XPI/78C0eUBzlv13x cIGbWwArWdANgT0zVE5XYUWUhD1Gh0/4iICR3/JavIAHzYi+xowFlefDLxCHYC28 rBRyMcJsonw0SQr7JouiUpA8ww+7nQzxMP9jCHUWLz6+BuSHYWNSY6kVaCRBF406 cFEN6xjsCIN/gAdWzC8IOiufVC9SrRcOmzygLMj2QPfIW6gTqXZXisZXIYxJrWmW FYJG4OGb9ZCli8YhhzBZIBXecRCGKg1XXuLqJEyZaoZ9Z03qGXh5TS+hyzjj6Owk Zges6Gij2/17qEaI+0Sanm5BZCL9SRItnyZBVlM7YRnaj9MvAD1YtO8CWDYxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxZa+yn++B1jTqDsD7PZgZGpCHrswHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJALMA0GCSqGSIb3DQEBCwUAA4IBAQB9Y1m2aQQel5HRytS59L5RBpQyPfAaJbpp bGST8M96ydQs2Qi4zUDBeHupQFtpXnjy6vlbwYHv6oyyxbB08cU2ZoX6FIlvPZJG olXxVO1nOZv6OSjQW4bye6FTHa5RsJ7nw+YyZkYQHiRahPFocbMae5tAMQ8w16mB 54bvoIejA4l2iiVbwWrlM9EEp82IkYcEAiMwftST4zal3b1GfhZCPt/zRAU13Coz 5qY/InXcIMZoTqI+mF6V2ansDsthVq0+9PuUtoAMpGK8N6UjXxJ4B1+za4IAv5LS 5X8c+0YDNW4n/seNTUJ7Oz8yv042vX4+ES96USvFq1Sp0Uaa5wUd -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:30 2025 by rpki-client