$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030333a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030333a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 1r1CzhpmI2bHzPOo6uC5eHincsmbYvXKsWcgveL476w= Subject key identifier: BC:12:5B:87:1D:30:88:BE:64:27:15:0D:03:51:F4:C3:04:3F:BA:3C Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 1F03ABC84EAD7BDF6F93FAF412D282D218493BEA Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030333a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:36 +0000 ROA not before: Wed 28 Jan 2026 01:57:36 +0000 ROA not after: Wed 27 Jan 2027 02:02:36 +0000 asID: 38526 IP address blocks: 2405:3740:9003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:03:ab:c8:4e:ad:7b:df:6f:93:fa:f4:12:d2:82:d2:18:49:3b:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:36 2026 GMT Not After : Jan 27 02:02:36 2027 GMT Subject: CN=BC125B871D3088BE6427150D0351F4C3043FBA3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:35:46:b9:8b:30:6e:6f:64:6a:3f:33:b1:cc: 70:18:c8:c6:ff:c6:05:d6:e8:a9:27:df:cb:fc:68: 19:cc:d1:64:b4:a4:01:93:ad:95:5d:80:6c:32:ca: 66:61:28:8c:86:71:93:6f:9e:7a:49:21:3c:33:b6: c7:25:6f:54:da:90:63:1f:49:0c:52:ac:75:03:7a: 3f:d8:92:ef:f6:31:74:09:bf:47:d3:8d:50:67:78: a8:5f:af:ad:5a:2e:70:aa:ba:06:a6:1a:b4:6c:2b: 1e:33:1b:f2:92:7f:5e:61:85:bc:66:4f:5d:70:67: a1:b0:51:bc:67:cb:f1:26:61:12:75:5a:84:d6:0b: d9:6c:f0:2e:e0:f0:1f:f2:87:21:74:98:08:df:42: 56:1c:4e:41:c7:5b:5a:ef:12:a6:95:00:86:71:f6: 91:ca:8e:8f:b8:a5:d1:e2:06:79:61:dd:28:7d:d4: 70:3f:50:24:8a:a5:69:9c:27:a1:fd:b3:ae:60:2a: ce:54:d0:aa:18:f6:0b:87:97:6b:2f:91:c5:33:89: dc:d4:f6:bf:7a:4f:8e:74:78:56:66:c7:7a:04:85: a1:52:cf:5b:79:75:1f:fc:73:5b:a3:9a:eb:5b:08: f8:c0:40:40:43:89:48:22:6b:32:3a:92:30:d3:f1: 94:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:12:5B:87:1D:30:88:BE:64:27:15:0D:03:51:F4:C3:04:3F:BA:3C X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030333a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9003::/48 Signature Algorithm: sha256WithRSAEncryption 10:d5:f1:18:ab:9a:01:97:c0:6f:d9:05:a3:82:6d:95:a3:9e: 5b:30:d0:9b:cb:e4:47:67:40:ef:53:9f:1d:9d:e5:62:4c:03: 43:94:66:4c:fa:1c:52:7e:b9:59:e8:9f:74:7b:3d:f6:67:73: 33:d2:56:3d:08:dd:59:56:47:4f:62:0a:04:f5:8d:b5:b6:fb: 3b:63:72:b9:a5:2f:4c:a7:e3:04:4b:21:f4:ec:47:88:53:8d: 9e:fe:e8:a1:51:b0:29:c5:7e:a1:80:26:51:b8:ab:ee:76:18: 64:88:1a:c4:b0:50:28:8c:b5:64:f6:d0:90:8c:95:35:d6:74: ac:26:39:20:c0:2a:3d:59:60:21:37:e4:02:15:26:02:eb:b2: ed:21:32:19:22:1e:c7:7a:dd:f5:7d:e1:b8:25:01:39:69:ec: d1:e1:17:21:6d:bf:6c:16:93:68:be:33:4f:57:00:c6:01:a3: 92:24:74:b0:0b:8d:22:ea:aa:25:a5:02:6c:6e:58:0d:fd:6d: 78:d2:65:1a:5f:88:6d:a3:7a:1f:b6:ef:87:9d:e4:4e:a2:8e: d0:0e:9f:15:3e:3f:9f:bd:06:9e:ed:f6:ea:db:f5:2b:00:0b: 19:0c:1d:74:e6:14:39:f5:82:05:b4:e3:7d:3d:f0:bb:e2:1c: 43:fb:68:f8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHwOryE6te99vk/r0EtKC0hhJO+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzZaFw0yNzAxMjcwMjAyMzZaMDMxMTAvBgNV BAMTKEJDMTI1Qjg3MUQzMDg4QkU2NDI3MTUwRDAzNTFGNEMzMDQzRkJBM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7NUa5izBub2RqPzOxzHAYyMb/ xgXW6Kkn38v8aBnM0WS0pAGTrZVdgGwyymZhKIyGcZNvnnpJITwztsclb1TakGMf SQxSrHUDej/Yku/2MXQJv0fTjVBneKhfr61aLnCqugamGrRsKx4zG/KSf15hhbxm T11wZ6GwUbxny/EmYRJ1WoTWC9ls8C7g8B/yhyF0mAjfQlYcTkHHW1rvEqaVAIZx 9pHKjo+4pdHiBnlh3Sh91HA/UCSKpWmcJ6H9s65gKs5U0KoY9guHl2svkcUzidzU 9r96T450eFZmx3oEhaFSz1t5dR/8c1ujmutbCPjAQEBDiUgiazI6kjDT8ZSnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvBJbhx0wiL5kJxUNA1H0wwQ/ujwwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJADMA0GCSqGSIb3DQEBCwUAA4IBAQAQ1fEYq5oBl8Bv2QWjgm2Vo55bMNCby+RH Z0DvU58dneViTANDlGZM+hxSfrlZ6J90ez32Z3Mz0lY9CN1ZVkdPYgoE9Y21tvs7 Y3K5pS9Mp+MESyH07EeIU42e/uihUbApxX6hgCZRuKvudhhkiBrEsFAojLVk9tCQ jJU11nSsJjkgwCo9WWAhN+QCFSYC67LtITIZIh7Het31feG4JQE5aezR4Rchbb9s FpNovjNPVwDGAaOSJHSwC40i6qolpQJsblgN/W140mUaX4hto3oftu+HneROoo7Q Dp8VPj+fvQae7fbq2/UrAAsZDB105hQ59YIFtON9PfC74hxD+2j4 -----END CERTIFICATE-----Generated at Mon Mar 2 21:58:08 2026 by rpki-client