$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031373a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031373a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 2/uVRpmHX4TpM/j4EVcohHyPlXS1M4B3yDHrp49UuM4= Subject key identifier: 69:C6:A9:22:1C:1E:87:B8:4A:0B:86:9C:37:C7:08:5D:F8:B9:0A:C5 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 067BE01A905398DBC2DC4E4FF883805DB5C4D87A Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031373a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 03:00:03 +0000 ROA not before: Wed 26 Feb 2025 02:55:03 +0000 ROA not after: Wed 25 Feb 2026 03:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9017::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:7b:e0:1a:90:53:98:db:c2:dc:4e:4f:f8:83:80:5d:b5:c4:d8:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 02:55:03 2025 GMT Not After : Feb 25 03:00:03 2026 GMT Subject: CN=69C6A9221C1E87B84A0B869C37C7085DF8B90AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f9:a0:c6:93:e3:eb:7d:98:c6:b2:a3:97:77: fb:f5:ce:26:98:ba:0a:f1:82:d1:b0:2d:e0:5a:e5: 59:97:11:24:7f:0c:33:92:77:96:05:67:6d:77:e7: b6:a1:a9:e9:cc:55:34:e8:c9:c3:be:38:40:9e:31: 66:3d:4a:39:e1:67:0a:83:91:23:d0:91:11:eb:64: 12:74:6f:6e:8a:91:3c:93:ef:55:e1:39:5d:5b:bc: d6:8c:07:51:4a:b7:24:10:94:d9:60:08:c5:b8:0a: a0:70:68:48:d2:7f:d2:7d:27:8e:1a:f3:25:20:2f: 16:57:b5:4e:50:7b:dc:f1:dc:0f:89:c8:0b:2a:89: 42:8a:0f:97:51:61:43:4d:81:8f:77:1d:81:da:4b: 79:be:9b:ba:95:8b:59:9c:a5:f9:58:fc:56:b5:f0: a0:1b:15:6b:02:0e:49:85:09:16:6c:34:02:66:18: 29:a1:7c:02:a5:2d:d0:28:5b:13:b5:14:96:75:9f: 43:41:e6:e9:be:82:fa:24:34:40:52:bb:6c:d1:f9: c0:3a:f1:ae:9e:77:68:b1:ff:54:3b:be:95:e0:ca: 3a:a6:9f:e6:8e:81:45:56:2e:88:1d:19:8e:ae:33: 8d:37:f9:a5:da:52:4a:8e:3f:06:f5:b0:50:98:2f: 6b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C6:A9:22:1C:1E:87:B8:4A:0B:86:9C:37:C7:08:5D:F8:B9:0A:C5 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031373a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9017::/48 Signature Algorithm: sha256WithRSAEncryption 90:56:b0:6a:6a:72:52:7c:c7:0a:e3:4f:b4:6f:47:5d:fb:df: 5f:2d:af:1f:97:bc:1c:dc:3c:84:53:83:1a:a9:3b:f1:b9:43: 06:bb:c8:47:ab:e7:65:46:d7:59:55:f0:71:fc:c1:75:41:d6: 2a:3b:5a:91:a1:ab:2e:d8:f3:07:8d:8f:f9:24:d1:64:05:fe: 8e:fa:73:90:22:57:41:3f:9e:b1:ca:6b:1e:48:02:c8:36:75: 4f:86:0b:a7:bd:70:b4:67:2d:8e:74:f3:40:e6:ef:20:34:22: 80:ab:f0:aa:30:41:c8:ac:7a:f7:79:5f:7c:3a:e2:d5:94:1b: 7b:69:63:72:8f:f4:e4:f4:1b:9f:c4:9d:19:67:3a:47:ef:f1: 2c:72:0b:c2:94:20:7d:55:37:31:45:aa:ea:57:b5:7b:53:71: 55:fd:be:cf:20:b1:43:c5:ef:ca:fa:8f:50:c1:01:b7:67:22: d2:00:4c:15:43:38:e2:40:62:29:c6:c9:2e:cb:dc:2f:a5:9a: 56:96:63:bd:a1:ef:4a:01:35:7e:d0:bf:4d:36:5f:de:7f:9d: fb:62:09:c6:5a:76:ad:d1:94:d9:da:f0:bf:e7:6e:87:72:4c: 42:1e:b4:7a:a0:e6:d9:1c:9d:be:e1:d3:36:72:80:4c:bc:43: 8b:d4:2c:a2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBnvgGpBTmNvC3E5P+IOAXbXE2HowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMjU1MDNaFw0yNjAyMjUwMzAwMDNaMDMxMTAvBgNV BAMTKDY5QzZBOTIyMUMxRTg3Qjg0QTBCODY5QzM3QzcwODVERjhCOTBBQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ+aDGk+PrfZjGsqOXd/v1ziaY ugrxgtGwLeBa5VmXESR/DDOSd5YFZ21357ahqenMVTToycO+OECeMWY9SjnhZwqD kSPQkRHrZBJ0b26KkTyT71XhOV1bvNaMB1FKtyQQlNlgCMW4CqBwaEjSf9J9J44a 8yUgLxZXtU5Qe9zx3A+JyAsqiUKKD5dRYUNNgY93HYHaS3m+m7qVi1mcpflY/Fa1 8KAbFWsCDkmFCRZsNAJmGCmhfAKlLdAoWxO1FJZ1n0NB5um+gvokNEBSu2zR+cA6 8a6ed2ix/1Q7vpXgyjqmn+aOgUVWLogdGY6uM403+aXaUkqOPwb1sFCYL2urAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUacapIhweh7hKC4acN8cIXfi5CsUwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAXMA0GCSqGSIb3DQEBCwUAA4IBAQCQVrBqanJSfMcK40+0b0dd+99fLa8fl7wc 3DyEU4MaqTvxuUMGu8hHq+dlRtdZVfBx/MF1QdYqO1qRoasu2PMHjY/5JNFkBf6O +nOQIldBP56xymseSALINnVPhgunvXC0Zy2OdPNA5u8gNCKAq/CqMEHIrHr3eV98 OuLVlBt7aWNyj/Tk9BufxJ0ZZzpH7/EscgvClCB9VTcxRarqV7V7U3FV/b7PILFD xe/K+o9QwQG3ZyLSAEwVQzjiQGIpxskuy9wvpZpWlmO9oe9KATV+0L9NNl/ef537 YgnGWnat0ZTZ2vC/526HckxCHrR6oObZHJ2+4dM2coBMvEOL1Cyi -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:37 2025 by rpki-client