$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031633a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031633a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 679kFPcAlG7KP3nk5d+YT+hS6HJ5tBKs2++7/kr3O/0= Subject key identifier: 60:5F:E2:3B:AD:39:83:77:D0:EB:1F:C1:B6:D0:7F:32:08:61:4F:59 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 1821217AA775F624313DAF7F0C395F6212754692 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031633a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 03:00:02 +0000 ROA not before: Wed 26 Feb 2025 02:55:02 +0000 ROA not after: Wed 25 Feb 2026 03:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:901c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:21:21:7a:a7:75:f6:24:31:3d:af:7f:0c:39:5f:62:12:75:46:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 02:55:02 2025 GMT Not After : Feb 25 03:00:02 2026 GMT Subject: CN=605FE23BAD398377D0EB1FC1B6D07F3208614F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fe:2c:dc:c5:56:79:86:b8:15:15:bf:62:ab: b6:c4:93:6a:de:28:65:41:9d:9a:d7:1a:59:8c:76: bd:3c:5d:b0:4d:b3:01:46:94:07:62:bc:00:ac:93: 5e:3a:87:f7:0f:2c:35:e2:4b:f2:87:b7:1f:d7:3e: a9:c3:63:8d:f3:57:1f:9e:e1:84:46:65:2f:34:f2: a5:95:6a:e8:c6:e4:16:14:34:72:25:25:d3:0e:78: ad:f6:ef:f4:99:0c:97:8b:8e:59:df:32:75:6a:e9: b4:8f:4d:20:72:69:59:0c:2d:e5:32:4a:d0:74:14: 51:72:52:01:0b:c7:00:28:06:bf:84:7a:9b:a3:0a: 9e:1f:f6:bf:53:60:14:c6:56:94:a3:16:0c:e1:d3: 4b:e3:fd:fd:13:50:e7:4f:c5:4f:9d:31:ed:8a:54: 22:8f:b0:d5:97:9d:60:3f:1c:9b:8c:21:4b:39:e7: 63:0c:90:d1:46:bf:f1:70:0e:86:08:59:25:fb:78: c8:07:22:e9:c2:ca:3d:a2:7d:a2:45:81:66:bf:aa: e2:82:bb:2d:9d:47:07:df:f5:ac:76:cd:03:cb:e8: 65:3d:45:c2:65:bc:11:89:66:45:fd:ca:7d:c7:f6: 7f:ca:c5:cc:fa:16:4c:21:bd:6e:7b:e4:c0:73:67: a6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:5F:E2:3B:AD:39:83:77:D0:EB:1F:C1:B6:D0:7F:32:08:61:4F:59 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031633a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:901c::/48 Signature Algorithm: sha256WithRSAEncryption 1b:ea:22:0a:63:a2:a6:5c:a0:73:da:e5:7a:f7:69:26:a5:09: 5b:c9:d0:22:ef:c9:32:6b:20:64:3b:b5:60:60:45:67:be:80: 66:80:df:20:4b:fe:5a:0e:a8:b0:c7:5a:01:43:60:0d:c5:42: f8:9d:b2:30:a1:42:63:25:13:8b:b2:2c:53:b3:53:f6:d4:8f: f8:ad:6b:3d:2a:ca:08:ed:c7:47:b6:83:a7:4e:fe:fd:38:5b: fa:4d:b7:38:ae:34:6d:d2:58:6d:a5:ca:91:48:8c:80:16:a2: 80:ac:d5:aa:b1:76:41:6f:08:42:41:0c:76:11:80:e9:74:ef: 4b:ac:4a:17:5f:53:b9:e1:e6:b5:97:56:10:2e:2c:1c:5c:c6: f3:15:4e:f8:5d:53:09:ad:05:98:98:b0:8d:b7:52:1c:e9:ca: a5:c4:6f:4d:ab:a3:cd:d2:5c:4c:62:a5:48:1c:b0:55:74:9d: e8:cf:7d:fa:73:9d:d0:45:a6:37:df:9a:29:59:13:5a:5e:ee: f2:b5:89:23:51:ea:e8:45:fb:67:6b:cf:95:7f:07:01:8f:65: 1a:91:1f:3f:32:04:66:45:c0:9e:92:09:60:b9:ac:a9:a6:e3: 50:e8:ab:84:1f:5b:5b:11:b1:02:7a:dc:ab:e0:eb:ef:1c:34: 51:bb:c9:07 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGCEheqd19iQxPa9/DDlfYhJ1RpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMjU1MDJaFw0yNjAyMjUwMzAwMDJaMDMxMTAvBgNV BAMTKDYwNUZFMjNCQUQzOTgzNzdEMEVCMUZDMUI2RDA3RjMyMDg2MTRGNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd/izcxVZ5hrgVFb9iq7bEk2re KGVBnZrXGlmMdr08XbBNswFGlAdivACsk146h/cPLDXiS/KHtx/XPqnDY43zVx+e 4YRGZS808qWVaujG5BYUNHIlJdMOeK327/SZDJeLjlnfMnVq6bSPTSByaVkMLeUy StB0FFFyUgELxwAoBr+EepujCp4f9r9TYBTGVpSjFgzh00vj/f0TUOdPxU+dMe2K VCKPsNWXnWA/HJuMIUs552MMkNFGv/FwDoYIWSX7eMgHIunCyj2ifaJFgWa/quKC uy2dRwff9ax2zQPL6GU9RcJlvBGJZkX9yn3H9n/Kxcz6FkwhvW575MBzZ6ZVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYF/iO605g3fQ6x/BttB/MghhT1kwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxNjMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAcMA0GCSqGSIb3DQEBCwUAA4IBAQAb6iIKY6KmXKBz2uV692kmpQlbydAi78ky ayBkO7VgYEVnvoBmgN8gS/5aDqiwx1oBQ2ANxUL4nbIwoUJjJROLsixTs1P21I/4 rWs9KsoI7cdHtoOnTv79OFv6Tbc4rjRt0lhtpcqRSIyAFqKArNWqsXZBbwhCQQx2 EYDpdO9LrEoXX1O54ea1l1YQLiwcXMbzFU74XVMJrQWYmLCNt1Ic6cqlxG9Nq6PN 0lxMYqVIHLBVdJ3oz336c53QRaY335opWRNaXu7ytYkjUeroRftna8+VfwcBj2Ua kR8/MgRmRcCekglguayppuNQ6KuEH1tbEbECetyr4OvvHDRRu8kH -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:24 2025 by rpki-client