$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030363a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030363a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: ybUua6sZ186L2gEulWXFs9FB0fAgE4O0HuCtYp8gbHw= Subject key identifier: 09:89:BE:36:5E:00:D4:32:8D:DC:BC:3B:92:87:E7:65:05:A2:4C:7A Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 34DBF1180F0B3FA2C546AB958CA787434F747C6D Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030363a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:37 +0000 ROA not before: Wed 28 Jan 2026 01:57:37 +0000 ROA not after: Wed 27 Jan 2027 02:02:37 +0000 asID: 38526 IP address blocks: 2405:3740:9006::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:db:f1:18:0f:0b:3f:a2:c5:46:ab:95:8c:a7:87:43:4f:74:7c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:37 2026 GMT Not After : Jan 27 02:02:37 2027 GMT Subject: CN=0989BE365E00D4328DDCBC3B9287E76505A24C7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a6:dc:80:cd:27:30:34:f6:6d:9f:ed:5d:f1: b6:16:c7:ba:69:fb:3a:d0:b3:9e:19:c6:ce:44:25: f4:ef:d7:79:78:29:7b:b3:9b:f4:4c:01:72:90:0d: 71:0b:a1:29:9b:44:ec:12:55:dc:4c:41:85:70:89: 75:55:94:8b:00:3f:95:47:c1:72:18:a9:6d:e9:bd: 70:65:80:36:15:27:81:22:6f:66:97:f0:07:45:5a: e9:39:10:37:77:7e:32:9d:ad:ad:33:f6:3c:e7:b4: 81:bf:6a:e5:a8:63:8c:38:67:bf:d4:06:07:27:70: 55:67:e0:01:12:a8:29:e6:33:42:9c:62:29:36:bd: 8e:8a:45:bd:43:17:80:b6:94:ac:37:be:dd:00:5b: fd:44:a8:e5:db:58:06:a8:28:39:5e:80:e2:ed:9c: c9:7b:4d:90:a7:11:8b:86:cc:f8:78:bb:55:b8:f8: 94:63:a0:d7:c8:cc:98:3d:ee:86:cb:14:cb:8f:5e: ef:6a:d6:52:88:fd:a4:d3:be:b8:a8:4f:7f:db:47: 33:4b:28:76:48:c5:d8:bc:2a:87:29:75:9a:30:af: 39:73:5d:ad:63:b6:6c:75:0d:93:17:55:55:fc:c9: a3:71:d2:39:42:5b:90:ba:b5:da:93:0d:39:4a:04: 19:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:89:BE:36:5E:00:D4:32:8D:DC:BC:3B:92:87:E7:65:05:A2:4C:7A X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030363a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9006::/48 Signature Algorithm: sha256WithRSAEncryption 4f:08:f2:97:45:1a:85:da:4d:58:86:74:0a:34:d6:b7:9d:b3: fd:93:28:31:cc:9e:32:8f:81:ef:fe:57:8d:c4:dc:b8:44:bf: 16:44:5d:8d:6d:78:73:c0:09:4d:10:3c:7f:ee:c0:20:5d:37: 5b:95:91:32:d1:04:54:ed:cb:b5:ac:af:c6:eb:35:01:48:8f: 71:d9:ff:68:19:14:ca:8c:24:d0:22:55:25:52:d8:30:d1:20: ac:b4:d7:0b:ed:3b:1f:51:5c:18:9c:ff:40:d7:81:9a:87:21: d5:4b:5f:01:79:2f:1b:c7:72:38:1c:d5:b0:7d:40:ef:b9:11: a2:c9:01:5e:20:45:8d:1f:87:42:a6:ff:67:2b:cd:80:c4:19: 2d:93:a1:f6:eb:20:c2:98:23:8c:6e:0c:d5:bf:16:e0:e9:03: d0:2b:4a:91:0b:0c:13:50:a1:b0:38:f2:f6:80:a9:4b:3f:6a: 32:f8:6a:56:4c:e4:6c:51:b2:34:25:6f:30:4c:25:6a:02:e3: 6f:e5:6c:37:f2:67:ce:19:58:41:9e:02:9c:3d:df:d3:b1:22: 0b:cd:bd:d8:6a:3e:ba:0b:5b:47:1f:2d:55:58:60:f5:fd:2b: 04:d1:8a:82:14:47:ae:62:6b:a6:ba:2d:e6:b2:19:cc:3c:d7: 13:dc:18:9c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNNvxGA8LP6LFRquVjKeHQ090fG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzdaFw0yNzAxMjcwMjAyMzdaMDMxMTAvBgNV BAMTKDA5ODlCRTM2NUUwMEQ0MzI4RERDQkMzQjkyODdFNzY1MDVBMjRDN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHptyAzScwNPZtn+1d8bYWx7pp +zrQs54Zxs5EJfTv13l4KXuzm/RMAXKQDXELoSmbROwSVdxMQYVwiXVVlIsAP5VH wXIYqW3pvXBlgDYVJ4Eib2aX8AdFWuk5EDd3fjKdra0z9jzntIG/auWoY4w4Z7/U BgcncFVn4AESqCnmM0KcYik2vY6KRb1DF4C2lKw3vt0AW/1EqOXbWAaoKDlegOLt nMl7TZCnEYuGzPh4u1W4+JRjoNfIzJg97obLFMuPXu9q1lKI/aTTvrioT3/bRzNL KHZIxdi8KocpdZowrzlzXa1jtmx1DZMXVVX8yaNx0jlCW5C6tdqTDTlKBBkHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCYm+Nl4A1DKN3Lw7kofnZQWiTHowHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAGMA0GCSqGSIb3DQEBCwUAA4IBAQBPCPKXRRqF2k1YhnQKNNa3nbP9kygxzJ4y j4Hv/leNxNy4RL8WRF2NbXhzwAlNEDx/7sAgXTdblZEy0QRU7cu1rK/G6zUBSI9x 2f9oGRTKjCTQIlUlUtgw0SCstNcL7TsfUVwYnP9A14GahyHVS18BeS8bx3I4HNWw fUDvuRGiyQFeIEWNH4dCpv9nK82AxBktk6H26yDCmCOMbgzVvxbg6QPQK0qRCwwT UKGwOPL2gKlLP2oy+GpWTORsUbI0JW8wTCVqAuNv5Ww38mfOGVhBngKcPd/TsSIL zb3Yaj66C1tHHy1VWGD1/SsE0YqCFEeuYmumui3mshnMPNcT3Bic -----END CERTIFICATE-----Generated at Mon Mar 2 23:42:47 2026 by rpki-client