$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: I1BT8ZS22OXABtRGsR7qzvtvrF3w28pPlgWdq0R3QrY= Subject key identifier: 9D:F5:3E:F0:77:9E:4E:E3:F0:93:C7:4C:2A:AD:F2:65:21:CD:92:C1 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 51E6EBEE4E587C86E1209B20ACA1A2395B1D4203 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:02 +0000 ROA not before: Wed 26 Feb 2025 01:55:02 +0000 ROA not after: Wed 25 Feb 2026 02:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:900d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:e6:eb:ee:4e:58:7c:86:e1:20:9b:20:ac:a1:a2:39:5b:1d:42:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:02 2025 GMT Not After : Feb 25 02:00:02 2026 GMT Subject: CN=9DF53EF0779E4EE3F093C74C2AADF26521CD92C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e4:f6:97:70:94:fa:de:32:d5:a7:48:95:7c: a2:28:f2:3a:70:1e:34:83:14:57:3d:6a:d6:a2:5b: 72:76:cb:a2:fd:01:d4:71:a4:f0:d4:e5:a3:fa:a9: c7:c1:71:9a:ab:78:b2:04:fe:69:7f:02:20:74:3b: 3a:98:5c:e8:fd:37:7d:bd:62:f3:c9:26:a3:84:16: c5:bd:3b:f6:39:ec:1e:9d:f2:45:3b:74:27:50:ae: 3f:58:98:5b:85:6e:db:bf:81:a7:59:0f:15:03:ce: f3:64:8f:ce:95:6d:ef:a5:5f:88:a9:ec:eb:50:a0: 59:0e:9f:bf:7c:f0:c6:1b:0a:75:c1:29:7f:57:78: a2:2b:fc:d1:a8:a4:69:e7:f9:29:ff:fe:27:11:2c: 67:ba:18:da:43:ac:f8:5a:8a:3f:e5:7b:3d:24:84: 56:63:d3:03:94:bd:21:b3:6d:4f:33:e6:77:61:a8: b0:15:c7:3e:ad:e0:49:ca:6f:63:77:f7:39:94:ed: cb:d0:e7:7a:6f:17:fd:af:58:01:3b:4f:a6:22:43: b3:bc:c5:64:e2:87:98:80:fa:c7:06:4e:e3:df:54: 6b:8f:3b:71:47:fa:d4:cb:74:27:98:4a:13:aa:98: 95:96:83:70:eb:14:53:8f:06:39:14:40:51:7c:ad: 1b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F5:3E:F0:77:9E:4E:E3:F0:93:C7:4C:2A:AD:F2:65:21:CD:92:C1 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900d::/48 Signature Algorithm: sha256WithRSAEncryption 36:b9:97:92:bb:b9:c7:dd:10:63:1f:93:cb:28:90:1e:7f:a7: 19:5c:e6:4c:24:be:21:b6:8f:38:7d:a3:77:c4:9c:b4:a1:84: b7:66:37:49:75:c5:df:b3:ce:d0:19:ac:fc:d8:c3:c2:91:3d: d8:42:ca:f4:57:8b:f2:da:fa:ca:42:7d:43:89:54:fb:1a:0a: 5a:8c:52:c0:f6:66:45:02:30:28:9a:7a:70:15:4c:7b:4a:88: 0c:e7:ef:79:bc:d4:17:1f:52:07:10:15:7a:b3:fe:45:8f:ef: ed:6c:29:52:37:70:0c:9f:5d:de:a1:47:1f:77:aa:88:e1:06: ff:9e:29:f9:f3:4c:6a:3a:a0:74:02:05:87:86:3b:58:45:50: 5e:56:03:30:d0:6c:cc:7a:66:df:4b:41:00:af:46:65:b6:c1: f1:2f:c1:b2:7a:9f:12:dd:5e:19:de:6d:a8:6c:f2:d2:d3:ae: 4e:36:ad:04:bc:25:84:eb:12:9a:27:3e:36:96:a2:d3:69:69: de:e0:97:3c:0c:e7:4d:eb:e6:bd:74:97:1b:16:e9:f6:f6:b7: eb:b2:be:3d:70:d0:bb:1d:33:b6:ae:2e:a4:f2:ac:fa:74:7b: 8e:e2:3f:1a:48:88:09:63:19:39:9c:6d:02:fc:8c:8f:48:42: 01:4c:57:17 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUebr7k5YfIbhIJsgrKGiOVsdQgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDJaFw0yNjAyMjUwMjAwMDJaMDMxMTAvBgNV BAMTKDlERjUzRUYwNzc5RTRFRTNGMDkzQzc0QzJBQURGMjY1MjFDRDkyQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ5PaXcJT63jLVp0iVfKIo8jpw HjSDFFc9ataiW3J2y6L9AdRxpPDU5aP6qcfBcZqreLIE/ml/AiB0OzqYXOj9N329 YvPJJqOEFsW9O/Y57B6d8kU7dCdQrj9YmFuFbtu/gadZDxUDzvNkj86Vbe+lX4ip 7OtQoFkOn7988MYbCnXBKX9XeKIr/NGopGnn+Sn//icRLGe6GNpDrPhaij/lez0k hFZj0wOUvSGzbU8z5ndhqLAVxz6t4EnKb2N39zmU7cvQ53pvF/2vWAE7T6YiQ7O8 xWTih5iA+scGTuPfVGuPO3FH+tTLdCeYShOqmJWWg3DrFFOPBjkUQFF8rRsjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUnfU+8HeeTuPwk8dMKq3yZSHNksEwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJANMA0GCSqGSIb3DQEBCwUAA4IBAQA2uZeSu7nH3RBjH5PLKJAef6cZXOZMJL4h to84faN3xJy0oYS3ZjdJdcXfs87QGaz82MPCkT3YQsr0V4vy2vrKQn1DiVT7Ggpa jFLA9mZFAjAomnpwFUx7SogM5+95vNQXH1IHEBV6s/5Fj+/tbClSN3AMn13eoUcf d6qI4Qb/nin580xqOqB0AgWHhjtYRVBeVgMw0GzMembfS0EAr0ZltsHxL8Gyep8S 3V4Z3m2obPLS065ONq0EvCWE6xKaJz42lqLTaWne4Jc8DOdN6+a9dJcbFun29rfr sr49cNC7HTO2ri6k8qz6dHuO4j8aSIgJYxk5nG0C/IyPSEIBTFcX -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:27 2025 by rpki-client