$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: e41aXx1HgSU+xYVfb2PObnjPyPLVVXRvADnJ4q37EZc= Subject key identifier: 3C:8D:C1:C6:F1:DE:FB:72:2B:6D:A8:FA:8B:A1:DF:29:47:F6:6A:97 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 55B10C1FA0831FBEDA5EAC0ECB5CE4D90685AAB1 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:36 +0000 ROA not before: Wed 28 Jan 2026 01:57:36 +0000 ROA not after: Wed 27 Jan 2027 02:02:36 +0000 asID: 38526 IP address blocks: 2405:3740:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b1:0c:1f:a0:83:1f:be:da:5e:ac:0e:cb:5c:e4:d9:06:85:aa:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:36 2026 GMT Not After : Jan 27 02:02:36 2027 GMT Subject: CN=3C8DC1C6F1DEFB722B6DA8FA8BA1DF2947F66A97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:cb:54:d1:05:54:72:f4:92:a1:37:12:7e:d4: aa:5d:4c:b2:a8:34:1b:5e:dd:d4:6d:82:39:da:ee: 1b:54:d8:15:07:76:68:84:11:2d:e0:63:9b:a5:7f: 5c:b1:06:6c:06:db:20:76:7b:51:97:e1:87:35:6c: e7:80:02:15:4f:46:82:8b:69:4f:1f:41:68:05:78: 7c:20:f8:d7:71:db:87:37:0f:1b:15:fe:c8:e6:30: 89:46:1b:3b:9b:00:fe:9a:6c:56:41:ae:f9:4a:ed: 06:bb:cd:46:57:66:bf:cb:c9:7b:63:25:b3:d9:eb: 7e:ed:93:98:e9:6c:8d:9a:03:10:3a:de:da:b2:fc: e1:ba:67:d6:2c:5a:dd:99:07:47:9c:46:1f:35:1f: b6:cc:17:15:22:53:05:72:63:80:92:db:7e:50:b7: 28:f8:ac:98:15:4b:fc:fd:e6:e8:c5:10:17:79:42: 42:5c:96:c6:eb:f7:76:fb:44:c2:95:63:9f:23:75: ef:b2:b3:67:6f:17:01:cc:e1:4a:54:f6:fe:9b:2a: fa:12:9e:b0:c8:a7:e6:64:f1:b0:4e:c3:03:93:10: 46:2a:fd:a7:36:a4:97:80:b9:60:71:88:2d:21:28: 47:fb:2c:89:6e:0a:a3:3f:9a:24:72:19:b4:3d:27: 04:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8D:C1:C6:F1:DE:FB:72:2B:6D:A8:FA:8B:A1:DF:29:47:F6:6A:97 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030303a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9000::/48 Signature Algorithm: sha256WithRSAEncryption 5a:92:52:a2:97:52:ca:ab:aa:67:a8:08:79:06:60:d9:c6:1a: 08:6a:14:1f:83:37:a5:d1:b5:0b:b3:53:e6:65:8e:91:8e:e9: 20:a3:e6:e7:f2:b2:07:fd:8e:93:a2:59:77:50:de:7f:25:eb: 6c:b2:16:97:bd:3c:a4:73:4b:86:bb:89:5d:ee:59:0d:e8:29: 45:ad:a5:7b:06:93:ce:b3:d6:70:e6:a8:d5:a1:15:67:73:d6: 2b:e9:ba:2b:72:da:1e:0c:4d:8d:3f:98:67:79:2f:27:56:eb: e7:bd:63:d0:17:ef:0d:80:e9:95:c7:84:10:a2:ad:21:c3:58: 5a:73:92:03:ce:e7:ab:9c:1b:a2:23:f1:a6:6b:86:06:42:4e: 9f:fd:74:a1:c3:06:84:31:82:ca:e3:e6:4f:f6:5f:dd:d7:9e: 49:ff:56:05:38:c8:3c:35:78:fd:42:d3:d1:cb:57:45:84:a9: c2:8e:18:7c:61:9d:0d:cd:c9:32:fa:2e:93:e6:79:48:c7:11: 43:42:15:a2:8c:19:72:3c:94:03:af:ee:27:60:82:a1:99:50: 8d:a7:15:f1:eb:79:f4:b8:23:c2:95:c9:ca:bd:d2:d4:f8:1b: 50:cf:84:90:81:67:f9:cb:3a:1c:3f:07:0d:d7:43:b6:c5:a0: 82:fd:52:30 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVbEMH6CDH77aXqwOy1zk2QaFqrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzZaFw0yNzAxMjcwMjAyMzZaMDMxMTAvBgNV BAMTKDNDOERDMUM2RjFERUZCNzIyQjZEQThGQThCQTFERjI5NDdGNjZBOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1y1TRBVRy9JKhNxJ+1KpdTLKo NBte3dRtgjna7htU2BUHdmiEES3gY5ulf1yxBmwG2yB2e1GX4Yc1bOeAAhVPRoKL aU8fQWgFeHwg+Ndx24c3DxsV/sjmMIlGGzubAP6abFZBrvlK7Qa7zUZXZr/LyXtj JbPZ637tk5jpbI2aAxA63tqy/OG6Z9YsWt2ZB0ecRh81H7bMFxUiUwVyY4CS235Q tyj4rJgVS/z95ujFEBd5QkJclsbr93b7RMKVY58jde+ys2dvFwHM4UpU9v6bKvoS nrDIp+Zk8bBOwwOTEEYq/ac2pJeAuWBxiC0hKEf7LIluCqM/miRyGbQ9JwQvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPI3BxvHe+3Irbaj6i6HfKUf2apcwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAAMA0GCSqGSIb3DQEBCwUAA4IBAQBaklKil1LKq6pnqAh5BmDZxhoIahQfgzel 0bULs1PmZY6Rjukgo+bn8rIH/Y6Toll3UN5/JetsshaXvTykc0uGu4ld7lkN6ClF raV7BpPOs9Zw5qjVoRVnc9Yr6borctoeDE2NP5hneS8nVuvnvWPQF+8NgOmVx4QQ oq0hw1hac5IDzuernBuiI/Gma4YGQk6f/XShwwaEMYLK4+ZP9l/d155J/1YFOMg8 NXj9QtPRy1dFhKnCjhh8YZ0Nzcky+i6T5nlIxxFDQhWijBlyPJQDr+4nYIKhmVCN pxXx63n0uCPClcnKvdLU+BtQz4SQgWf5yzocPwcN10O2xaCC/VIw -----END CERTIFICATE-----Generated at Mon Mar 2 19:43:07 2026 by rpki-client