$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030633a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030633a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 0yAL1gTudoa4WBanqGJ7FqKL7toA+M3b/G3Y/fWkrz4= Subject key identifier: 23:74:B7:DA:08:B9:80:EC:77:7A:79:93:BA:79:B6:86:4C:A2:5A:B9 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 2D81B3F6CB3EB32B94D2CCE4535D8FE674916599 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030633a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:02 +0000 ROA not before: Wed 26 Feb 2025 01:55:02 +0000 ROA not after: Wed 25 Feb 2026 02:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:900c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:81:b3:f6:cb:3e:b3:2b:94:d2:cc:e4:53:5d:8f:e6:74:91:65:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:02 2025 GMT Not After : Feb 25 02:00:02 2026 GMT Subject: CN=2374B7DA08B980EC777A7993BA79B6864CA25AB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f9:09:70:1f:da:a2:c8:37:0d:87:af:40:3a: c3:5b:b9:96:ed:f1:dc:ea:89:34:2f:d9:de:95:d4: 13:15:10:69:18:c4:ba:f1:8e:40:3b:9a:b3:7f:1a: c0:c6:a5:fe:35:ce:7f:7f:d5:fb:e6:04:d2:e8:14: 03:de:a5:b2:80:ab:35:08:86:2a:da:e1:2b:ec:fd: 6e:70:3e:3c:7a:1c:fe:b9:0c:d1:cc:35:95:42:66: 17:52:3b:c5:38:41:75:ae:6e:9a:f5:a2:9f:0d:fc: 23:eb:e6:97:d4:bf:cf:00:5a:3e:5f:99:4f:b0:da: 69:d8:23:8f:a4:4c:f8:4e:83:7f:88:32:cb:57:50: b8:f1:d6:3c:2b:bc:ef:f9:2b:74:a5:05:8d:73:ce: e6:20:3c:05:a8:c3:3c:e3:ef:5d:60:32:2f:2e:4f: 81:f9:d9:84:a2:ba:86:81:6c:c5:b8:6f:bb:8c:fa: f2:c2:17:57:0e:f1:96:35:37:f1:9d:fa:c3:da:72: 4e:c3:db:96:1e:5e:6e:2e:0e:07:68:82:1d:d1:6b: 7d:e4:15:61:de:ae:a8:c6:c7:71:24:0b:06:f4:33: ba:f2:87:ca:3b:b0:e8:85:0e:9d:fb:27:5c:83:bd: 62:ac:06:a1:00:f9:26:02:aa:31:cb:fa:06:5d:70: bf:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:74:B7:DA:08:B9:80:EC:77:7A:79:93:BA:79:B6:86:4C:A2:5A:B9 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030633a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900c::/48 Signature Algorithm: sha256WithRSAEncryption 23:d1:16:af:d6:17:86:f9:1b:48:32:c5:fb:3e:55:eb:d8:c9: 61:01:dc:b5:96:84:12:32:6a:60:b6:13:dc:a0:bf:56:08:e5: 9b:a8:2c:23:ed:9b:bc:5f:d9:68:c4:11:e3:9f:e9:09:ff:85: b7:de:25:da:b2:18:bf:2e:10:5a:80:8c:62:4a:55:7b:74:a7: aa:d3:24:bc:d6:4c:60:c6:93:52:3f:67:68:4c:ba:cc:cd:53: c8:bd:d6:f6:e3:59:20:bb:6c:3b:b3:1c:ec:0c:7a:85:be:83: c6:cf:73:48:1a:ba:4c:52:b0:40:da:e0:98:66:c9:96:27:9e: f3:69:52:c0:f9:47:c8:48:d3:c4:4b:66:2b:e9:c1:09:39:5b: 34:85:f0:31:17:45:21:de:ce:28:95:84:e3:24:a3:a8:7c:0b: 4e:ab:26:45:48:48:e6:c7:de:19:5c:c7:14:31:41:2a:56:a9: 8c:43:c4:14:3a:89:f5:64:e3:e9:6d:53:80:01:35:9a:52:62: 87:b5:f0:72:80:7d:a4:bd:5d:2d:c1:00:aa:cd:91:08:82:23: 3d:f4:45:07:82:49:b7:40:84:78:a9:d5:19:57:a5:22:85:9f: 96:97:1e:2a:73:37:19:da:a1:83:77:4f:b2:e5:63:5b:df:07: 27:64:89:95 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULYGz9ss+syuU0szkU12P5nSRZZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDJaFw0yNjAyMjUwMjAwMDJaMDMxMTAvBgNV BAMTKDIzNzRCN0RBMDhCOTgwRUM3NzdBNzk5M0JBNzlCNjg2NENBMjVBQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb+QlwH9qiyDcNh69AOsNbuZbt 8dzqiTQv2d6V1BMVEGkYxLrxjkA7mrN/GsDGpf41zn9/1fvmBNLoFAPepbKAqzUI hira4Svs/W5wPjx6HP65DNHMNZVCZhdSO8U4QXWubpr1op8N/CPr5pfUv88AWj5f mU+w2mnYI4+kTPhOg3+IMstXULjx1jwrvO/5K3SlBY1zzuYgPAWowzzj711gMi8u T4H52YSiuoaBbMW4b7uM+vLCF1cO8ZY1N/Gd+sPack7D25YeXm4uDgdogh3Ra33k FWHerqjGx3EkCwb0M7ryh8o7sOiFDp37J1yDvWKsBqEA+SYCqjHL+gZdcL9DAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUI3S32gi5gOx3enmTunm2hkyiWrkwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAMMA0GCSqGSIb3DQEBCwUAA4IBAQAj0Rav1heG+RtIMsX7PlXr2MlhAdy1loQS MmpgthPcoL9WCOWbqCwj7Zu8X9loxBHjn+kJ/4W33iXashi/LhBagIxiSlV7dKeq 0yS81kxgxpNSP2doTLrMzVPIvdb241kgu2w7sxzsDHqFvoPGz3NIGrpMUrBA2uCY ZsmWJ57zaVLA+UfISNPES2Yr6cEJOVs0hfAxF0Uh3s4olYTjJKOofAtOqyZFSEjm x94ZXMcUMUEqVqmMQ8QUOon1ZOPpbVOAATWaUmKHtfBygH2kvV0twQCqzZEIgiM9 9EUHgkm3QIR4qdUZV6UihZ+Wlx4qczcZ2qGDd0+y5WNb3wcnZImV -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:37 2025 by rpki-client