$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: gdl2opcqy93y04k7cz8mj9XjRrR4iMZNm32kn1x/raw= Subject key identifier: 99:5B:FA:FA:C2:57:0A:2C:0C:3E:F0:EB:CA:D8:EC:CB:BB:B9:FA:78 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 37BDEC1C9163972D2384353DF641420298B9B70E Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 02:00:04 +0000 ROA not before: Wed 26 Feb 2025 01:55:04 +0000 ROA not after: Wed 25 Feb 2026 02:00:04 +0000 asID: 38526 IP address blocks: 2405:3740:9008::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 20:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:bd:ec:1c:91:63:97:2d:23:84:35:3d:f6:41:42:02:98:b9:b7:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 01:55:04 2025 GMT Not After : Feb 25 02:00:04 2026 GMT Subject: CN=995BFAFAC2570A2C0C3EF0EBCAD8ECCBBBB9FA78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fd:f9:75:31:21:e4:ab:a8:da:9c:69:33:82: 5e:50:90:39:69:bc:b7:dd:9f:b6:6b:ea:0c:69:f8: 41:59:35:61:6b:db:98:ea:53:2c:93:f0:7d:8a:ca: 90:ec:05:5f:eb:69:c5:e1:d7:be:eb:0b:c7:fe:f5: cc:3b:8d:cf:db:67:45:b9:0b:94:00:e3:b2:ba:f1: 1c:02:7f:d2:b1:39:09:11:b5:a2:9d:82:44:87:11: 1c:98:1f:af:9f:96:a5:17:05:72:7f:b9:23:89:8a: 34:b3:68:df:b9:ba:79:d5:0e:14:3d:bc:80:42:07: 6e:98:4e:5b:e5:ee:aa:dd:b9:9b:c3:00:a0:d7:0c: a6:93:b5:70:c6:c9:62:04:87:d5:23:31:0e:28:fe: 8b:7a:b5:51:ce:35:35:9e:22:e7:7d:c0:59:1e:ac: 18:b3:8b:50:4f:aa:66:1f:42:4c:df:24:9e:7b:f5: 96:33:cd:90:98:1c:45:e9:5a:00:01:26:1e:e6:17: 5d:fb:74:39:30:42:a1:fe:4f:45:24:b1:3c:58:0d: cd:76:04:51:79:34:5c:a7:73:8a:7d:10:f4:ee:3b: 4a:62:dc:f0:0e:23:ce:cf:a9:84:c2:2f:79:43:75: 78:e7:ec:7b:d6:17:ea:48:72:1e:b4:92:32:fe:62: 02:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5B:FA:FA:C2:57:0A:2C:0C:3E:F0:EB:CA:D8:EC:CB:BB:B9:FA:78 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9008::/48 Signature Algorithm: sha256WithRSAEncryption b3:2a:85:a0:43:d6:94:84:88:e2:ac:70:66:f9:85:b1:5b:de: 82:ba:6c:88:89:d3:cc:5d:4a:a9:50:6d:07:3e:c6:13:00:f1: 65:ac:a2:49:4a:96:91:24:fc:9a:08:f2:75:70:c2:9f:12:f0: bf:6b:7b:c3:48:23:98:54:e3:6e:cb:5d:42:10:7e:08:53:21: 04:fe:3c:41:da:e6:51:74:eb:6a:1f:cf:ce:99:51:9f:2f:db: f5:92:a4:96:86:d2:8e:2d:4d:5e:38:23:66:48:9d:90:4e:57: 03:f5:20:c8:72:ff:23:77:97:da:d6:97:a2:ff:48:75:cc:e8: f0:07:a4:0e:89:2a:a4:da:7c:40:4e:81:b2:72:9f:26:3c:91: c9:cc:17:50:78:74:fe:7e:b2:99:85:08:1b:46:2c:39:0d:e7: a6:5a:8f:64:10:52:47:58:61:bc:0f:0a:e5:13:5b:cd:bf:68: 31:31:6f:48:bd:aa:91:9c:71:f4:ff:3a:0e:cc:88:20:fe:dd: bc:8e:d1:23:0a:21:1a:1b:05:9a:f8:9a:7f:02:31:a3:26:6c: 71:56:7f:89:85:ac:10:10:27:d8:52:06:87:1a:ca:f2:27:d6: c3:24:94:61:b3:2e:e8:07:3f:e0:77:0f:64:5c:a3:1c:d3:91: 00:e3:1c:05 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUN73sHJFjly0jhDU99kFCApi5tw4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMTU1MDRaFw0yNjAyMjUwMjAwMDRaMDMxMTAvBgNV BAMTKDk5NUJGQUZBQzI1NzBBMkMwQzNFRjBFQkNBRDhFQ0NCQkJCOUZBNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC/fl1MSHkq6janGkzgl5QkDlp vLfdn7Zr6gxp+EFZNWFr25jqUyyT8H2KypDsBV/racXh177rC8f+9cw7jc/bZ0W5 C5QA47K68RwCf9KxOQkRtaKdgkSHERyYH6+flqUXBXJ/uSOJijSzaN+5unnVDhQ9 vIBCB26YTlvl7qrduZvDAKDXDKaTtXDGyWIEh9UjMQ4o/ot6tVHONTWeIud9wFke rBizi1BPqmYfQkzfJJ579ZYzzZCYHEXpWgABJh7mF137dDkwQqH+T0UksTxYDc12 BFF5NFync4p9EPTuO0pi3PAOI87PqYTCL3lDdXjn7HvWF+pIch60kjL+YgKVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUmVv6+sJXCiwMPvDrytjsy7u5+ngwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAIMA0GCSqGSIb3DQEBCwUAA4IBAQCzKoWgQ9aUhIjirHBm+YWxW96CumyIidPM XUqpUG0HPsYTAPFlrKJJSpaRJPyaCPJ1cMKfEvC/a3vDSCOYVONuy11CEH4IUyEE /jxB2uZRdOtqH8/OmVGfL9v1kqSWhtKOLU1eOCNmSJ2QTlcD9SDIcv8jd5fa1pei /0h1zOjwB6QOiSqk2nxAToGycp8mPJHJzBdQeHT+frKZhQgbRiw5DeemWo9kEFJH WGG8DwrlE1vNv2gxMW9IvaqRnHH0/zoOzIgg/t28jtEjCiEaGwWa+Jp/AjGjJmxx Vn+JhawQECfYUgaHGsryJ9bDJJRhsy7oBz/gdw9kXKMc05EA4xwF -----END CERTIFICATE-----Generated at Sat Apr 26 22:54:57 2025 by rpki-client