$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: g8kzdcOWj6mdeFKOTTKla031fztFVNfaXnziOF2XiyA= Subject key identifier: 67:1D:71:3E:38:79:F1:D0:21:F3:47:D5:45:CB:40:43:82:47:FE:C6 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 07F4924FBD40534C84A6E1A768E46E2E35AD2535 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:03 +0000 ROA not before: Wed 26 Feb 2025 01:55:03 +0000 ROA not after: Wed 25 Feb 2026 02:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 20:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:f4:92:4f:bd:40:53:4c:84:a6:e1:a7:68:e4:6e:2e:35:ad:25:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:03 2025 GMT Not After : Feb 25 02:00:03 2026 GMT Subject: CN=671D713E3879F1D021F347D545CB40438247FEC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:59:bd:34:a5:85:9a:09:14:1f:59:24:a3:fd: ad:50:b0:63:23:83:07:7f:70:f6:76:05:ac:df:39: 13:f1:a6:bb:65:cc:74:bc:4b:7e:8a:e8:1a:0f:27: cf:8c:13:56:20:97:65:01:2e:82:34:b2:f1:f3:c1: 7f:62:30:d4:03:b7:2e:ec:42:41:ce:27:ea:d8:80: 6e:1f:d7:ea:04:68:57:e1:97:98:94:08:5a:a3:6d: 7b:bd:06:4d:34:67:ec:93:d4:7d:cc:f2:f5:4b:d2: d2:17:b0:b6:a8:9e:fa:d5:80:0f:b0:68:4e:08:82: ad:ba:dc:b9:0d:ae:b1:a3:a4:20:79:e4:cd:0a:c4: 44:3c:da:6b:76:36:c8:96:8a:f7:22:c4:6b:a6:ea: 0a:47:30:7c:0c:cf:d8:93:b2:a1:cb:2b:8d:6e:09: e4:68:91:da:1b:07:ad:fb:fa:69:50:fe:1a:72:fa: 3f:88:9f:c1:0b:98:13:74:d5:f9:ba:7d:e7:46:66: 00:21:ab:c0:12:7b:91:50:74:9f:e4:10:dd:52:01: c3:96:5e:bc:85:89:f2:52:38:ac:27:3e:72:7e:37: 84:91:1a:14:83:a4:06:a2:9b:ad:88:eb:9b:89:b2: 2f:31:33:cf:d6:f7:21:fa:aa:0f:8f:bf:bb:32:9a: e9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1D:71:3E:38:79:F1:D0:21:F3:47:D5:45:CB:40:43:82:47:FE:C6 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9000::/48 Signature Algorithm: sha256WithRSAEncryption 48:da:a8:f6:5a:80:32:23:71:fe:a8:fe:61:85:8b:9e:ff:46: 74:99:41:43:e2:fe:28:d1:b6:23:aa:90:63:12:fb:47:ae:c4: 25:ad:14:f8:9e:0b:78:19:ae:f7:5e:80:d9:d4:5e:86:62:5f: be:20:ac:1b:dc:01:3a:0f:4d:09:ca:2a:8c:f4:b4:9e:0f:b5: cc:1e:c8:d7:29:99:80:0d:5e:fb:ab:b6:ef:24:60:2d:fc:09: 9b:ba:80:b2:54:01:3b:ac:de:b6:a0:cf:36:a0:0a:4d:88:95: 37:22:ec:d1:d2:61:c9:b1:76:17:6d:78:5b:8c:f3:fc:a7:cd: 24:f5:4c:06:1d:08:e4:52:e5:2f:f5:15:b0:0a:f7:f9:61:16: 2b:47:dc:dd:0a:33:8a:42:e3:c1:0f:aa:90:83:e8:73:5a:52: a5:7b:ee:33:dd:16:b2:93:93:9e:1f:dd:48:1e:be:80:13:88: 78:f0:1f:15:1c:49:e7:60:3d:44:13:63:32:72:4c:92:40:5a: 50:40:99:b9:94:b4:aa:6e:6b:58:30:fb:f3:b1:90:39:3e:6a: d5:3d:f8:8d:1f:e5:9b:8e:8a:3e:4e:da:2a:67:cb:2a:a0:4e: c1:a7:bd:ed:7f:eb:1d:ae:21:85:94:0f:74:a1:22:dc:01:b5: 42:c6:60:1e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUB/SST71AU0yEpuGnaORuLjWtJTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDNaFw0yNjAyMjUwMjAwMDNaMDMxMTAvBgNV BAMTKDY3MUQ3MTNFMzg3OUYxRDAyMUYzNDdENTQ1Q0I0MDQzODI0N0ZFQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbWb00pYWaCRQfWSSj/a1QsGMj gwd/cPZ2BazfORPxprtlzHS8S36K6BoPJ8+ME1Ygl2UBLoI0svHzwX9iMNQDty7s QkHOJ+rYgG4f1+oEaFfhl5iUCFqjbXu9Bk00Z+yT1H3M8vVL0tIXsLaonvrVgA+w aE4Igq263LkNrrGjpCB55M0KxEQ82mt2NsiWivcixGum6gpHMHwMz9iTsqHLK41u CeRokdobB637+mlQ/hpy+j+In8ELmBN01fm6fedGZgAhq8ASe5FQdJ/kEN1SAcOW XryFifJSOKwnPnJ+N4SRGhSDpAaim62I65uJsi8xM8/W9yH6qg+Pv7symun7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZx1xPjh58dAh80fVRctAQ4JH/sYwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAAMA0GCSqGSIb3DQEBCwUAA4IBAQBI2qj2WoAyI3H+qP5hhYue/0Z0mUFD4v4o 0bYjqpBjEvtHrsQlrRT4ngt4Ga73XoDZ1F6GYl++IKwb3AE6D00JyiqM9LSeD7XM HsjXKZmADV77q7bvJGAt/AmbuoCyVAE7rN62oM82oApNiJU3IuzR0mHJsXYXbXhb jPP8p80k9UwGHQjkUuUv9RWwCvf5YRYrR9zdCjOKQuPBD6qQg+hzWlKle+4z3Ray k5OeH91IHr6AE4h48B8VHEnnYD1EE2MyckySQFpQQJm5lLSqbmtYMPvzsZA5PmrV PfiNH+Wbjoo+TtoqZ8sqoE7Bp73tf+sdriGFlA90oSLcAbVCxmAe -----END CERTIFICATE-----Generated at Sat Apr 26 22:57:40 2025 by rpki-client