$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030663a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030663a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: wDkNi1LNVs3p1tNGrQRLAkGKkSAXeIC50spEF+zt4UE= Subject key identifier: AD:54:56:74:9E:4E:28:AE:A9:8F:FE:C1:60:8A:9C:6C:53:70:35:9C Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 19333655B155DD72E1BDD1D433965F3FC232CD12 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030663a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:04 +0000 ROA not before: Wed 26 Feb 2025 01:55:04 +0000 ROA not after: Wed 25 Feb 2026 02:00:04 +0000 asID: 38526 IP address blocks: 2405:3740:900f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:33:36:55:b1:55:dd:72:e1:bd:d1:d4:33:96:5f:3f:c2:32:cd:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:04 2025 GMT Not After : Feb 25 02:00:04 2026 GMT Subject: CN=AD5456749E4E28AEA98FFEC1608A9C6C5370359C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:57:0e:29:a2:46:ac:a0:1d:fa:50:b1:18:a2: f1:57:ef:9e:fc:37:40:15:02:ae:91:48:a0:13:07: a1:e0:9f:61:60:f0:85:39:fe:04:7a:d5:cd:10:95: 9a:c7:16:d7:ff:ff:ea:e9:f1:c3:ae:e3:9e:0a:99: dd:50:2d:37:f8:46:ea:c9:38:c8:58:e1:b0:6d:c7: e3:29:4b:a9:01:40:15:60:b3:1b:02:7f:dc:30:9c: 8f:05:31:4e:32:54:e9:11:eb:11:2b:84:e2:d9:d8: 01:f3:3d:43:2d:52:84:5b:5f:51:ca:8f:bb:62:77: af:07:8d:31:ab:7f:72:76:c7:43:8a:5a:b0:a8:5f: 0c:65:30:6f:e2:1d:1d:65:4f:d6:65:71:21:9e:3f: ed:2b:d4:45:ff:97:d4:31:13:ee:0c:5b:4f:ed:8f: a5:55:65:17:d1:1f:ac:07:9a:04:90:95:f1:cd:2b: a7:4d:c7:ea:f4:25:7e:58:2e:b1:b5:2f:17:87:29: 02:96:ac:80:2d:f6:5f:ce:2a:10:bc:ba:53:8f:1d: 04:30:6d:61:b3:59:93:70:81:c5:b5:2d:ff:40:51: e6:9e:cb:a3:ee:c9:17:d4:7f:43:3b:c2:9d:1b:76: 94:ac:06:6a:ce:a7:51:97:f1:98:3e:47:7d:7a:ff: a8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:54:56:74:9E:4E:28:AE:A9:8F:FE:C1:60:8A:9C:6C:53:70:35:9C X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030663a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900f::/48 Signature Algorithm: sha256WithRSAEncryption 3c:9b:6f:25:98:1f:a4:bf:b7:00:74:02:e6:c2:4e:3e:90:a3: ae:55:b1:9b:27:41:ed:ba:47:85:6b:cc:14:ba:a9:29:99:28: 33:20:c3:ad:a5:da:69:90:65:5e:15:38:49:1b:38:82:48:6c: 45:28:12:d5:39:e9:24:93:75:5d:2f:b5:85:38:63:5b:0d:29: 97:3f:ed:2a:5a:cb:75:41:cc:7f:94:cc:10:57:e7:e4:9a:cf: 37:27:b6:85:3e:37:75:90:a4:14:71:45:68:02:df:5c:2f:a7: 38:25:93:30:04:ef:bd:14:3c:54:fb:af:56:85:15:eb:54:1b: 91:da:03:19:86:f9:c2:81:67:da:1b:74:6a:19:69:32:90:bb: 04:d8:be:de:01:24:6f:90:1b:1e:b9:86:87:9e:4e:61:e6:e3: f8:40:4e:94:fa:ce:d7:57:dd:9a:1a:f5:64:81:ff:7e:6d:3a: 68:54:e1:df:5c:4e:09:5c:12:56:3e:70:04:4d:6c:15:04:99: da:69:ac:4d:ac:44:40:59:50:2a:7d:e1:6d:cf:9a:c4:46:ba: 23:13:fa:05:8c:73:86:3f:86:80:02:c7:f6:79:ab:b3:1e:84: 16:ba:8c:68:7b:f9:d0:88:4a:4c:e7:f8:0a:84:20:5a:b0:38: 45:61:02:b8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGTM2VbFV3XLhvdHUM5ZfP8IyzRIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDRaFw0yNjAyMjUwMjAwMDRaMDMxMTAvBgNV BAMTKEFENTQ1Njc0OUU0RTI4QUVBOThGRkVDMTYwOEE5QzZDNTM3MDM1OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxVw4pokasoB36ULEYovFX7578 N0AVAq6RSKATB6Hgn2Fg8IU5/gR61c0QlZrHFtf//+rp8cOu454Kmd1QLTf4RurJ OMhY4bBtx+MpS6kBQBVgsxsCf9wwnI8FMU4yVOkR6xErhOLZ2AHzPUMtUoRbX1HK j7tid68HjTGrf3J2x0OKWrCoXwxlMG/iHR1lT9ZlcSGeP+0r1EX/l9QxE+4MW0/t j6VVZRfRH6wHmgSQlfHNK6dNx+r0JX5YLrG1LxeHKQKWrIAt9l/OKhC8ulOPHQQw bWGzWZNwgcW1Lf9AUeaey6PuyRfUf0M7wp0bdpSsBmrOp1GX8Zg+R316/6hDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUrVRWdJ5OKK6pj/7BYIqcbFNwNZwwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAPMA0GCSqGSIb3DQEBCwUAA4IBAQA8m28lmB+kv7cAdALmwk4+kKOuVbGbJ0Ht ukeFa8wUuqkpmSgzIMOtpdppkGVeFThJGziCSGxFKBLVOekkk3VdL7WFOGNbDSmX P+0qWst1Qcx/lMwQV+fkms83J7aFPjd1kKQUcUVoAt9cL6c4JZMwBO+9FDxU+69W hRXrVBuR2gMZhvnCgWfaG3RqGWkykLsE2L7eASRvkBseuYaHnk5h5uP4QE6U+s7X V92aGvVkgf9+bTpoVOHfXE4JXBJWPnAETWwVBJnaaaxNrERAWVAqfeFtz5rERroj E/oFjHOGP4aAAsf2eauzHoQWuoxoe/nQiEpM5/gKhCBasDhFYQK4 -----END CERTIFICATE-----Generated at Sun Apr 6 11:08:38 2025 by rpki-client