$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030343a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030343a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: X8Z/VuhI/MmWf7NCGET9THm+wGSKxHsV1djd70K96oE= Subject key identifier: 04:E2:44:FA:6A:38:35:1B:12:83:B7:AB:29:8C:00:DD:F7:38:AC:AA Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 12909111706F39A9D9BE4653472EF31A611E9B62 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030343a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:37 +0000 ROA not before: Wed 28 Jan 2026 01:57:37 +0000 ROA not after: Wed 27 Jan 2027 02:02:37 +0000 asID: 38526 IP address blocks: 2405:3740:9004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:90:91:11:70:6f:39:a9:d9:be:46:53:47:2e:f3:1a:61:1e:9b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:37 2026 GMT Not After : Jan 27 02:02:37 2027 GMT Subject: CN=04E244FA6A38351B1283B7AB298C00DDF738ACAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2d:92:34:dc:7f:bf:35:e8:ff:54:ba:cb:0f: 48:8c:9d:c1:f2:be:d1:14:f7:8d:47:2f:3c:25:6f: ad:3b:4e:0e:60:86:97:66:aa:88:46:4e:9d:b1:e6: dc:aa:96:e8:73:6d:d2:07:b1:0a:f6:8b:14:a0:01: 6b:ea:20:ce:b3:f7:d9:70:3b:74:6d:98:20:77:c4: 6d:67:0a:67:5b:0b:68:0f:94:45:af:67:d2:a4:23: 87:d0:49:23:16:e1:fc:78:3f:39:1a:6b:b7:ec:c3: 9e:97:30:3c:fe:2b:fd:26:28:68:27:c0:af:32:14: 48:4a:71:75:f8:39:56:b6:83:0d:ae:e9:2e:d5:bf: 2f:f3:5e:08:7c:e9:22:49:c3:01:eb:67:3c:95:0a: 7b:e2:ca:10:0e:14:a1:a8:20:53:5f:74:c1:00:5c: af:b6:dc:a4:01:6e:53:dc:7c:1c:2f:d4:ef:2a:e6: 37:2b:32:3a:b0:34:90:30:1a:3f:db:ad:d0:38:73: 11:77:4b:8b:46:f0:13:02:1c:74:9e:d9:dd:b4:d2: 07:47:1f:b3:99:7b:04:8c:ff:37:bd:a4:6a:65:c6: 81:32:17:d2:11:92:eb:57:ec:60:a5:aa:44:6e:93: 9e:1c:04:fc:95:e7:d4:64:8f:6b:bd:8f:0d:27:59: a0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E2:44:FA:6A:38:35:1B:12:83:B7:AB:29:8C:00:DD:F7:38:AC:AA X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030343a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9004::/48 Signature Algorithm: sha256WithRSAEncryption 39:e1:f0:b4:e4:aa:4f:94:12:50:31:0f:cf:ae:99:a2:2c:34: 7d:00:36:06:a3:16:fc:27:34:4a:f7:99:c8:07:9b:17:11:53: 56:b0:50:4d:da:8c:04:5b:31:7d:be:da:b5:59:bc:04:b7:26: 04:99:68:e4:77:e1:d9:bc:dc:25:d6:4b:51:e2:cf:a6:01:df: f9:54:fc:73:bc:39:05:84:5a:63:40:31:7a:33:03:4f:74:db: ba:b8:3b:58:9d:71:59:30:e0:f9:aa:5c:8e:4b:1f:5e:d3:a4: 6a:96:f6:02:a9:90:18:56:70:c5:f0:c6:e9:ff:e8:ea:01:39: 8b:44:44:c9:df:52:62:f0:5d:da:21:03:b3:82:43:9c:63:b0: 29:df:a8:0c:7b:cd:26:ac:6f:8f:c1:96:c8:cd:01:2a:73:e1: 49:9c:76:60:f4:eb:28:a3:82:74:5e:d3:64:d1:fd:f8:35:26: 10:e5:38:af:44:bf:bf:2f:2c:95:46:30:f5:32:eb:9a:48:94: 15:15:5b:1e:5e:11:f0:14:df:7e:7e:1b:bd:38:9e:26:fb:dd: 4e:e7:03:88:f5:f6:9a:1d:78:09:03:a9:7c:98:28:27:0e:f9: 51:76:65:7a:b5:a6:4b:2b:e7:54:e5:e7:67:fb:49:b6:83:a9: 06:1a:b3:0a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEpCREXBvOanZvkZTRy7zGmEem2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzdaFw0yNzAxMjcwMjAyMzdaMDMxMTAvBgNV BAMTKDA0RTI0NEZBNkEzODM1MUIxMjgzQjdBQjI5OEMwMERERjczOEFDQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLLZI03H+/Nej/VLrLD0iMncHy vtEU941HLzwlb607Tg5ghpdmqohGTp2x5tyqluhzbdIHsQr2ixSgAWvqIM6z99lw O3RtmCB3xG1nCmdbC2gPlEWvZ9KkI4fQSSMW4fx4Pzkaa7fsw56XMDz+K/0mKGgn wK8yFEhKcXX4OVa2gw2u6S7Vvy/zXgh86SJJwwHrZzyVCnviyhAOFKGoIFNfdMEA XK+23KQBblPcfBwv1O8q5jcrMjqwNJAwGj/brdA4cxF3S4tG8BMCHHSe2d200gdH H7OZewSM/ze9pGplxoEyF9IRkutX7GClqkRuk54cBPyV59Rkj2u9jw0nWaDpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUBOJE+mo4NRsSg7erKYwA3fc4rKowHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAEMA0GCSqGSIb3DQEBCwUAA4IBAQA54fC05KpPlBJQMQ/PrpmiLDR9ADYGoxb8 JzRK95nIB5sXEVNWsFBN2owEWzF9vtq1WbwEtyYEmWjkd+HZvNwl1ktR4s+mAd/5 VPxzvDkFhFpjQDF6MwNPdNu6uDtYnXFZMOD5qlyOSx9e06RqlvYCqZAYVnDF8Mbp /+jqATmLRETJ31Ji8F3aIQOzgkOcY7Ap36gMe80mrG+PwZbIzQEqc+FJnHZg9Oso o4J0XtNk0f34NSYQ5TivRL+/LyyVRjD1MuuaSJQVFVseXhHwFN9+fhu9OJ4m+91O 5wOI9faaHXgJA6l8mCgnDvlRdmV6taZLK+dU5edn+0m2g6kGGrMK -----END CERTIFICATE-----Generated at Mon Mar 2 15:44:03 2026 by rpki-client