$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031303a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031303a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: rllOOW9BYHKzcoB0ZsG/iV0I/7I7ewpGldwWkO2VJhI= Subject key identifier: 37:65:0C:B8:30:7F:D0:99:21:48:8F:5B:BA:3E:8F:E9:77:C8:60:52 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 06B86864C2FCCCA273EA0C0714DB9E46549222DE Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031303a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:02 +0000 ROA not before: Wed 26 Feb 2025 01:55:02 +0000 ROA not after: Wed 25 Feb 2026 02:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:9010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b8:68:64:c2:fc:cc:a2:73:ea:0c:07:14:db:9e:46:54:92:22:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:02 2025 GMT Not After : Feb 25 02:00:02 2026 GMT Subject: CN=37650CB8307FD09921488F5BBA3E8FE977C86052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a4:da:69:b2:7b:87:cf:54:86:73:54:86:6d: 95:b6:f8:fc:a0:56:e1:fa:55:2c:5c:83:f5:b5:a4: 8e:15:a5:04:6f:92:fe:63:5e:96:f9:c7:5d:f7:49: af:ee:d2:e6:41:6a:40:88:fb:9c:01:dc:5b:fe:ce: 1b:91:2b:04:84:36:4c:62:41:0f:92:f0:a7:27:ba: 3e:ee:61:18:c3:f5:46:bf:3c:03:c3:2f:16:ca:66: 7d:e6:ca:5b:f4:98:c6:a4:f4:94:ff:5f:33:2c:d4: 4b:19:5a:60:25:d9:76:3c:8f:7b:f7:97:db:b6:37: b2:c8:b7:ee:ed:96:b8:d7:8a:34:48:f1:0e:de:ba: da:c1:47:ea:0b:cd:d1:07:ca:17:0f:b2:a2:fe:69: 77:97:89:95:52:3d:89:b4:89:8b:d9:6d:14:49:c6: 39:56:19:70:69:64:25:37:3f:5a:d7:76:da:ee:b9: 65:d0:11:e3:e0:97:be:85:3c:e2:a9:1a:03:c5:72: 82:a0:1c:53:06:ef:86:2b:f7:b0:91:e2:82:29:41: 84:f0:8c:42:c7:a6:66:52:8c:dc:2c:b6:6c:d2:15: 9e:63:57:33:83:ba:d2:be:cb:ac:b3:ea:d6:e6:7e: ad:d6:de:48:66:8b:88:0f:b4:26:f7:11:f7:32:0a: 07:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:65:0C:B8:30:7F:D0:99:21:48:8F:5B:BA:3E:8F:E9:77:C8:60:52 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031303a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9010::/48 Signature Algorithm: sha256WithRSAEncryption 77:86:76:5a:fc:bf:a2:c2:39:65:34:48:24:e3:e5:1f:a9:0c: 26:a3:78:25:0b:29:97:31:c4:88:95:87:30:3e:75:1a:a5:6b: 08:99:00:02:ad:0a:00:b6:f0:56:77:f6:d0:64:22:7e:30:e9: 65:71:d0:97:76:8c:b6:0f:06:a1:6d:8c:87:b5:01:b9:68:76: 1e:bb:8e:d3:8e:a2:71:77:52:97:79:7f:6a:c8:5b:63:73:1e: 1e:cd:7f:f5:b3:ed:3a:08:87:aa:1d:a1:c1:f6:59:29:03:89: 47:0b:62:61:b6:5a:fb:48:d7:65:2b:d3:55:b6:d9:02:d1:0b: 74:fb:ac:81:8b:3a:94:f5:00:45:34:29:18:b9:f1:70:73:0e: e9:7f:46:28:b2:2a:d7:9e:4a:3a:51:7d:4c:7e:2e:75:33:02: 1b:a3:55:a3:61:5a:37:97:c3:93:ec:e5:01:7b:b1:08:07:8a: ef:54:52:b5:5d:a4:8a:16:c6:c7:bd:3a:5b:05:13:42:43:64: ad:3b:12:e0:7d:9f:14:4b:c5:07:e3:fb:7c:ce:95:fe:3d:5e: 83:7b:35:63:40:c6:7b:95:8a:19:8b:d0:ab:06:6e:59:5b:a0: b1:4a:f8:e8:36:92:0c:ee:12:55:9c:b9:ef:7b:a4:5f:d1:df: 3d:1b:95:bb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBrhoZML8zKJz6gwHFNueRlSSIt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDJaFw0yNjAyMjUwMjAwMDJaMDMxMTAvBgNV BAMTKDM3NjUwQ0I4MzA3RkQwOTkyMTQ4OEY1QkJBM0U4RkU5NzdDODYwNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJpNppsnuHz1SGc1SGbZW2+Pyg VuH6VSxcg/W1pI4VpQRvkv5jXpb5x133Sa/u0uZBakCI+5wB3Fv+zhuRKwSENkxi QQ+S8Kcnuj7uYRjD9Ua/PAPDLxbKZn3mylv0mMak9JT/XzMs1EsZWmAl2XY8j3v3 l9u2N7LIt+7tlrjXijRI8Q7eutrBR+oLzdEHyhcPsqL+aXeXiZVSPYm0iYvZbRRJ xjlWGXBpZCU3P1rXdtruuWXQEePgl76FPOKpGgPFcoKgHFMG74Yr97CR4oIpQYTw jELHpmZSjNwstmzSFZ5jVzODutK+y6yz6tbmfq3W3khmi4gPtCb3EfcyCgfnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUN2UMuDB/0JkhSI9buj6P6XfIYFIwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAQMA0GCSqGSIb3DQEBCwUAA4IBAQB3hnZa/L+iwjllNEgk4+UfqQwmo3glCymX McSIlYcwPnUapWsImQACrQoAtvBWd/bQZCJ+MOllcdCXdoy2DwahbYyHtQG5aHYe u47TjqJxd1KXeX9qyFtjcx4ezX/1s+06CIeqHaHB9lkpA4lHC2Jhtlr7SNdlK9NV ttkC0Qt0+6yBizqU9QBFNCkYufFwcw7pf0YosirXnko6UX1Mfi51MwIbo1WjYVo3 l8OT7OUBe7EIB4rvVFK1XaSKFsbHvTpbBRNCQ2StOxLgfZ8US8UH4/t8zpX+PV6D ezVjQMZ7lYoZi9CrBm5ZW6CxSvjoNpIM7hJVnLnve6Rf0d89G5W7 -----END CERTIFICATE-----Generated at Sun Apr 6 13:56:50 2025 by rpki-client