$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031613a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031613a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: iZNJKCnQvG7VDwiYBPMQtpQW0Nz/ozX8/mYcmcvt3sc= Subject key identifier: 24:BC:67:A0:FA:29:B9:31:81:42:93:DA:5E:CD:F1:0D:43:5A:E2:DD Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 484A0BDAFA801CBEA0E89976811FD07590C95E32 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031613a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 03:00:02 +0000 ROA not before: Wed 26 Feb 2025 02:55:02 +0000 ROA not after: Wed 25 Feb 2026 03:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:901a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:4a:0b:da:fa:80:1c:be:a0:e8:99:76:81:1f:d0:75:90:c9:5e:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 02:55:02 2025 GMT Not After : Feb 25 03:00:02 2026 GMT Subject: CN=24BC67A0FA29B931814293DA5ECDF10D435AE2DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3d:ad:b5:6e:1d:cb:81:d6:2f:59:64:84:69: 3d:52:c2:21:0c:e7:3d:1d:2a:3f:8b:d3:86:57:05: 35:68:ff:7d:e0:e0:fe:16:de:e1:85:06:af:d6:46: 3c:62:3c:db:b1:3d:b1:99:8b:64:0e:85:5e:fa:3b: 82:23:b1:6f:24:5a:cf:41:87:e5:33:8f:ea:1b:4c: dd:34:59:f4:e0:ff:77:e4:e5:63:6e:a2:46:64:1f: ce:fb:4d:95:6d:2c:eb:a5:a7:d5:91:c8:de:f1:d0: e8:20:36:39:62:2a:f9:9b:af:e0:d0:1e:b1:80:3d: 5d:03:c6:74:16:ff:22:66:89:c2:1a:2e:fe:fa:fb: 55:b7:a3:6e:9b:f7:18:7f:10:6a:05:e3:7a:68:88: 35:32:95:3b:2b:5f:af:5f:fa:c5:b6:57:92:9f:81: 06:e1:bc:b6:42:e3:8a:28:fd:ec:15:07:8a:a7:18: e7:e4:d0:10:41:52:df:2b:ae:1f:1c:98:d2:94:50: 5a:5b:e1:67:ae:46:e0:91:b0:89:c2:ef:14:1b:09: 00:41:c1:cc:0b:8f:e2:e2:b6:d1:a3:15:40:a5:ae: c1:fb:79:0b:94:42:92:29:bb:0b:8f:b4:36:dc:7b: e9:56:3e:93:61:ff:c2:1e:a7:3c:2a:b6:a4:01:21: f5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BC:67:A0:FA:29:B9:31:81:42:93:DA:5E:CD:F1:0D:43:5A:E2:DD X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031613a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:901a::/48 Signature Algorithm: sha256WithRSAEncryption 61:f5:0d:b9:52:43:c7:c9:22:94:23:dc:c1:f0:82:77:6c:d2: 04:4f:30:f9:57:88:29:8c:ae:d3:9e:be:89:2a:c5:e4:72:61: 4d:60:74:03:ca:d1:d9:ce:06:29:b1:7d:32:b0:23:24:51:11: a5:e3:26:7f:3f:48:8c:f9:c2:80:f0:97:81:d0:bf:dd:bc:2d: 0c:6d:11:e3:7b:1f:86:67:c6:19:00:ae:11:de:24:4d:59:ef: 13:8e:70:96:c5:e8:07:7b:9b:67:bb:7a:6e:94:56:81:3a:f3: 42:c2:9c:41:7b:01:37:e9:77:2a:fc:19:a7:ee:f4:a2:ce:a0: 9f:eb:71:8c:f9:df:cc:0d:c4:4c:95:d2:b1:74:d2:f7:03:a2: e0:27:04:94:9c:10:50:b8:b2:42:e7:22:df:4a:06:6e:79:bf: a4:84:bd:a7:9f:71:fb:e4:28:10:ed:43:6d:32:c2:ae:6f:71: 49:17:b7:ff:ac:c1:8c:ff:e3:8d:9e:6b:84:a5:c8:af:d7:59: 06:ae:0b:6d:10:3d:7a:4a:ef:c0:72:aa:9b:cb:13:4f:40:11: cf:98:d6:b5:2c:c0:1a:c2:6f:d4:95:5f:4c:6f:4d:16:d1:01: 81:71:ec:99:bd:bf:33:fc:d4:90:67:ea:0a:60:d3:c1:48:ba: cd:ff:1b:f1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSEoL2vqAHL6g6Jl2gR/QdZDJXjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMjU1MDJaFw0yNjAyMjUwMzAwMDJaMDMxMTAvBgNV BAMTKDI0QkM2N0EwRkEyOUI5MzE4MTQyOTNEQTVFQ0RGMTBENDM1QUUyREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIPa21bh3LgdYvWWSEaT1SwiEM 5z0dKj+L04ZXBTVo/33g4P4W3uGFBq/WRjxiPNuxPbGZi2QOhV76O4IjsW8kWs9B h+Uzj+obTN00WfTg/3fk5WNuokZkH877TZVtLOulp9WRyN7x0OggNjliKvmbr+DQ HrGAPV0DxnQW/yJmicIaLv76+1W3o26b9xh/EGoF43poiDUylTsrX69f+sW2V5Kf gQbhvLZC44oo/ewVB4qnGOfk0BBBUt8rrh8cmNKUUFpb4WeuRuCRsInC7xQbCQBB wcwLj+LittGjFUClrsH7eQuUQpIpuwuPtDbce+lWPpNh/8IepzwqtqQBIfVbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJLxnoPopuTGBQpPaXs3xDUNa4t0wHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAaMA0GCSqGSIb3DQEBCwUAA4IBAQBh9Q25UkPHySKUI9zB8IJ3bNIETzD5V4gp jK7Tnr6JKsXkcmFNYHQDytHZzgYpsX0ysCMkURGl4yZ/P0iM+cKA8JeB0L/dvC0M bRHjex+GZ8YZAK4R3iRNWe8TjnCWxegHe5tnu3pulFaBOvNCwpxBewE36Xcq/Bmn 7vSizqCf63GM+d/MDcRMldKxdNL3A6LgJwSUnBBQuLJC5yLfSgZueb+khL2nn3H7 5CgQ7UNtMsKub3FJF7f/rMGM/+ONnmuEpciv11kGrgttED16Su/AcqqbyxNPQBHP mNa1LMAawm/UlV9Mb00W0QGBceyZvb8z/NSQZ+oKYNPBSLrN/xvx -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:28 2025 by rpki-client