$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030313a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030313a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: yezp4c9ypNhi65mk9CFp2muAX/2rLTPAnmosllHS/8g= Subject key identifier: B1:6B:FE:92:8E:AD:10:3C:21:2F:DB:F2:76:30:36:A9:EB:51:67:7B Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 6748F37DC616663FE61697823F1B26B18C79426E Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030313a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:36 +0000 ROA not before: Wed 28 Jan 2026 01:57:36 +0000 ROA not after: Wed 27 Jan 2027 02:02:36 +0000 asID: 38526 IP address blocks: 2405:3740:9001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:48:f3:7d:c6:16:66:3f:e6:16:97:82:3f:1b:26:b1:8c:79:42:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:36 2026 GMT Not After : Jan 27 02:02:36 2027 GMT Subject: CN=B16BFE928EAD103C212FDBF2763036A9EB51677B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cd:09:da:26:8d:fb:fd:75:b7:5d:53:82:63: 49:0c:84:35:73:74:d2:3f:0f:ad:64:13:07:14:bb: 7f:5b:7b:92:6e:1d:b4:fa:3b:20:03:72:59:43:ce: d0:7e:c0:42:e0:b9:5b:67:cf:f7:12:d2:98:04:ec: d0:de:f2:4b:89:81:9c:ce:ad:61:ec:29:61:13:67: e5:20:d5:8a:7b:19:ce:bd:29:70:8c:43:8c:70:ee: 57:5d:97:2e:f9:ae:f4:d3:1e:28:5b:42:30:35:ed: 0d:52:0d:2a:34:24:db:26:6b:bd:b8:96:fc:45:f0: d3:d7:71:f0:ef:19:f6:bd:da:d6:27:1e:7a:81:a5: e0:7f:17:bc:d1:91:2a:56:8d:04:bb:7f:cc:61:a4: e3:27:43:9a:11:6e:08:74:cf:5c:e7:98:e2:43:38: 96:40:03:06:3a:bb:9d:e1:b6:15:ec:21:66:09:f3: 76:a3:00:6e:20:86:5b:f2:78:dc:05:32:e2:46:4b: 25:81:e6:0e:f4:f5:17:a8:e5:cd:05:33:9d:56:6f: 0e:77:49:9d:f7:a5:5b:58:25:4e:c0:76:83:87:a5: c8:bf:20:f2:4e:a9:97:9d:19:ee:58:86:94:86:81: 10:de:54:5c:56:69:40:7d:b1:3f:8d:aa:af:df:b1: 7e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6B:FE:92:8E:AD:10:3C:21:2F:DB:F2:76:30:36:A9:EB:51:67:7B X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030313a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9001::/48 Signature Algorithm: sha256WithRSAEncryption 93:d2:2b:e2:a9:a6:07:6c:30:ae:20:e7:17:9e:c6:15:2b:f4: 9a:e6:90:01:a7:e7:8d:5f:d6:7a:60:0a:80:60:8e:89:e1:f8: 05:a8:21:46:7f:b0:17:9e:77:cc:af:fd:13:b7:63:a4:50:3e: e0:3c:17:6b:36:09:43:18:70:8d:3b:d3:1b:5f:d0:a8:f7:37: 63:9a:78:26:d4:73:0c:22:88:6b:a2:f5:28:83:06:de:31:bf: f8:c7:f2:00:be:61:34:a3:20:06:66:b4:80:0c:ad:01:71:a1: c3:9b:96:c2:c9:c4:57:b9:26:ee:24:8a:a3:d8:21:0e:80:a2: 6b:78:5b:4d:0d:72:2a:fb:bb:d2:da:b4:9e:59:44:ed:96:4e: c2:6b:19:d0:75:f1:c2:48:23:b5:90:c5:1e:3f:98:9c:6f:79: 48:e9:e2:d9:5d:6b:7f:5c:28:bb:aa:3b:80:2b:44:e9:22:79: b6:97:44:35:aa:94:24:c7:cb:96:78:51:99:45:83:cf:85:b9: f3:71:90:d1:64:ef:94:ea:94:dd:ff:51:7d:9d:ed:7f:5b:e7: 42:29:60:27:a8:bc:b9:44:62:63:c6:8a:d4:91:42:80:4c:3d: 58:b7:35:88:f4:75:80:e2:1c:24:cb:bb:f7:77:f5:87:a3:da: 85:b7:7f:88 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZ0jzfcYWZj/mFpeCPxsmsYx5Qm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzZaFw0yNzAxMjcwMjAyMzZaMDMxMTAvBgNV BAMTKEIxNkJGRTkyOEVBRDEwM0MyMTJGREJGMjc2MzAzNkE5RUI1MTY3N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4zQnaJo37/XW3XVOCY0kMhDVz dNI/D61kEwcUu39be5JuHbT6OyADcllDztB+wELguVtnz/cS0pgE7NDe8kuJgZzO rWHsKWETZ+Ug1Yp7Gc69KXCMQ4xw7lddly75rvTTHihbQjA17Q1SDSo0JNsma724 lvxF8NPXcfDvGfa92tYnHnqBpeB/F7zRkSpWjQS7f8xhpOMnQ5oRbgh0z1znmOJD OJZAAwY6u53hthXsIWYJ83ajAG4ghlvyeNwFMuJGSyWB5g709Reo5c0FM51Wbw53 SZ33pVtYJU7AdoOHpci/IPJOqZedGe5YhpSGgRDeVFxWaUB9sT+Nqq/fsX6nAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsWv+ko6tEDwhL9vydjA2qetRZ3swHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJABMA0GCSqGSIb3DQEBCwUAA4IBAQCT0iviqaYHbDCuIOcXnsYVK/Sa5pABp+eN X9Z6YAqAYI6J4fgFqCFGf7AXnnfMr/0Tt2OkUD7gPBdrNglDGHCNO9MbX9Co9zdj mngm1HMMIohrovUogwbeMb/4x/IAvmE0oyAGZrSADK0BcaHDm5bCycRXuSbuJIqj 2CEOgKJreFtNDXIq+7vS2rSeWUTtlk7CaxnQdfHCSCO1kMUeP5icb3lI6eLZXWt/ XCi7qjuAK0TpInm2l0Q1qpQkx8uWeFGZRYPPhbnzcZDRZO+U6pTd/1F9ne1/W+dC KWAnqLy5RGJjxorUkUKATD1YtzWI9HWA4hwky7v3d/WHo9qFt3+I -----END CERTIFICATE-----Generated at Mon Mar 2 17:58:38 2026 by rpki-client