$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: nOpxU/fLRA0BPP0zprt2zBMaK4Mx6lPoOZnFUwctIoY= Subject key identifier: 37:32:0B:67:67:FF:28:04:92:D3:84:26:38:BE:EB:9B:A0:16:32:BD Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 7EC9C0F2D752C6F4134F0FC6C5D4A03F6E45FACC Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:38 +0000 ROA not before: Wed 28 Jan 2026 01:57:38 +0000 ROA not after: Wed 27 Jan 2027 02:02:38 +0000 asID: 38526 IP address blocks: 2405:3740:9008::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:c9:c0:f2:d7:52:c6:f4:13:4f:0f:c6:c5:d4:a0:3f:6e:45:fa:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:38 2026 GMT Not After : Jan 27 02:02:38 2027 GMT Subject: CN=37320B6767FF280492D3842638BEEB9BA01632BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3f:88:2c:6b:2a:63:61:70:80:2d:a6:b0:8a: a3:00:8c:80:de:5e:47:7f:d9:ce:68:ca:30:9d:18: ca:aa:24:48:45:56:fd:d9:f6:43:3f:59:23:c0:82: b9:33:b9:39:31:4d:3e:ef:b7:fb:6d:ff:f0:7a:83: 72:2a:16:dc:c1:ff:7b:a2:40:cd:60:60:b0:e3:db: 6e:0d:da:54:e2:9c:fb:f7:66:fb:66:4e:63:6a:c0: db:1a:f4:0a:54:09:b8:2e:8c:14:85:7d:20:03:96: 61:fc:2c:2a:8f:2f:13:52:b3:db:3b:ec:0b:23:55: 16:d4:5e:30:c7:97:34:47:e1:67:4c:2e:4f:d0:6a: c7:89:5f:35:84:6e:8e:93:1e:84:62:09:1e:95:7a: dc:76:2a:88:2e:45:32:fd:ec:6c:ce:82:74:4f:6f: c5:f4:e1:b1:aa:48:d8:86:77:e0:5a:f9:e2:9f:8a: fd:d4:ed:77:7b:a0:78:e1:b3:a4:2c:42:9b:1e:ad: fa:af:f7:fc:a4:3c:60:7d:f8:f0:2e:aa:94:05:9d: 54:f5:b8:6c:ed:0e:6f:3d:48:ec:6e:3c:59:ea:ee: f2:1e:55:a4:13:9c:fd:69:4e:81:3a:95:c8:10:10: c9:66:23:bd:f8:bf:46:56:44:9f:6f:ac:15:ea:3e: 31:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:32:0B:67:67:FF:28:04:92:D3:84:26:38:BE:EB:9B:A0:16:32:BD X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030383a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9008::/48 Signature Algorithm: sha256WithRSAEncryption a4:db:0b:80:2e:21:d6:2f:ec:b7:40:a5:94:13:4b:34:b5:6d: b8:35:18:eb:86:42:38:a3:72:c0:8e:ba:8e:1b:76:41:7e:a8: 37:ef:f0:b0:41:35:b3:db:b2:b5:59:37:75:46:be:be:8b:e5: 8c:b8:e4:57:86:20:d8:a7:62:d4:74:0b:c7:d5:dd:18:4e:30: c3:95:56:95:85:1b:f6:21:4a:bc:20:97:d5:c6:46:d5:2a:cb: 32:e7:8e:7d:c0:35:fe:03:15:86:83:7e:0b:68:0b:cc:e4:6e: 91:ac:65:d8:4f:d7:79:08:bf:3a:5f:33:6f:8b:1c:bb:6a:cc: 71:3e:20:90:38:a5:25:25:f8:d7:0f:ab:9e:73:e5:aa:97:a9: 09:7f:61:0d:eb:c7:41:58:33:5a:72:40:39:72:d1:c6:2c:d5: 73:e3:0d:40:ef:5a:4e:51:b1:35:1e:15:fe:f8:ac:97:0d:36: 9d:74:f6:45:7f:bf:9f:4d:54:17:62:46:71:b4:07:31:24:a7: 8c:83:90:51:de:e4:7d:3f:10:77:a9:0d:d3:c1:78:5a:49:29: 12:6f:bb:b3:b7:8c:b7:4d:c5:33:d4:1f:e2:04:a5:ff:7c:df: c7:6e:ea:58:9a:40:f6:75:4e:55:83:72:78:a9:b1:ef:be:40: 3d:3e:99:fe -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfsnA8tdSxvQTTw/GxdSgP25F+swwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzhaFw0yNzAxMjcwMjAyMzhaMDMxMTAvBgNV BAMTKDM3MzIwQjY3NjdGRjI4MDQ5MkQzODQyNjM4QkVFQjlCQTAxNjMyQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzP4gsaypjYXCALaawiqMAjIDe Xkd/2c5oyjCdGMqqJEhFVv3Z9kM/WSPAgrkzuTkxTT7vt/tt//B6g3IqFtzB/3ui QM1gYLDj224N2lTinPv3ZvtmTmNqwNsa9ApUCbgujBSFfSADlmH8LCqPLxNSs9s7 7AsjVRbUXjDHlzRH4WdMLk/QaseJXzWEbo6THoRiCR6Vetx2KoguRTL97GzOgnRP b8X04bGqSNiGd+Ba+eKfiv3U7Xd7oHjhs6QsQpserfqv9/ykPGB9+PAuqpQFnVT1 uGztDm89SOxuPFnq7vIeVaQTnP1pToE6lcgQEMlmI734v0ZWRJ9vrBXqPjHTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNzILZ2f/KASS04QmOL7rm6AWMr0wHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAIMA0GCSqGSIb3DQEBCwUAA4IBAQCk2wuALiHWL+y3QKWUE0s0tW24NRjrhkI4 o3LAjrqOG3ZBfqg37/CwQTWz27K1WTd1Rr6+i+WMuORXhiDYp2LUdAvH1d0YTjDD lVaVhRv2IUq8IJfVxkbVKssy5459wDX+AxWGg34LaAvM5G6RrGXYT9d5CL86XzNv ixy7asxxPiCQOKUlJfjXD6uec+Wql6kJf2EN68dBWDNackA5ctHGLNVz4w1A71pO UbE1HhX++KyXDTaddPZFf7+fTVQXYkZxtAcxJKeMg5BR3uR9PxB3qQ3TwXhaSSkS b7uzt4y3TcUz1B/iBKX/fN/HbupYmkD2dU5Vg3J4qbHvvkA9Ppn+ -----END CERTIFICATE-----Generated at Mon Mar 2 22:22:26 2026 by rpki-client