$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: yg7fHxc9tBjzqGZyKX+AAfWGDncgccglSDF0QeXY1lo= Subject key identifier: 1F:42:60:FD:32:A8:E2:F8:E1:26:99:55:19:58:83:02:5E:2A:4B:92 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 7BECEC45B9EFADB313F5F947BEEB1BB674FC68D2 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:35 +0000 ROA not before: Wed 28 Jan 2026 01:57:35 +0000 ROA not after: Wed 27 Jan 2027 02:02:35 +0000 asID: 38526 IP address blocks: 2405:3740:900d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ec:ec:45:b9:ef:ad:b3:13:f5:f9:47:be:eb:1b:b6:74:fc:68:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:35 2026 GMT Not After : Jan 27 02:02:35 2027 GMT Subject: CN=1F4260FD32A8E2F8E1269955195883025E2A4B92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:01:ab:cd:e3:26:ce:01:da:9b:13:2d:e7:c7: ae:c4:11:2f:08:4e:12:bb:7b:3f:a9:e7:29:14:cf: 7b:e1:63:cb:0d:54:be:ef:1f:24:ba:7f:52:e9:65: 04:0d:40:2c:10:6a:fa:8b:cb:d3:1f:46:08:12:25: e2:5f:6d:e4:37:88:91:07:f7:4d:d1:e7:56:fe:d1: 7e:17:40:be:48:2e:da:7b:a7:a3:20:54:94:4c:ca: 7d:10:38:68:73:25:09:66:b6:4d:b9:5f:d4:8e:02: 8a:85:8b:14:18:a0:b4:77:a5:68:1b:06:9b:dc:81: cd:77:3e:0a:6c:6d:9e:ac:75:49:f2:c5:b3:cc:8d: b7:29:bd:37:3a:d7:a7:25:02:8f:c1:51:db:77:ed: 04:ac:b2:04:d6:2a:3b:bb:8f:16:81:3a:4a:67:09: 71:3c:d1:ca:c1:a1:ed:04:49:5d:c0:50:22:0e:ca: fb:2c:88:df:d9:1d:4a:b6:ed:d1:07:f9:aa:82:e7: 06:91:1d:b5:e7:bb:31:80:5f:aa:3f:3e:f5:f3:48: 6a:38:76:05:db:cd:f7:2a:99:e5:6b:2b:34:a3:c4: a3:3d:31:b2:29:43:33:29:da:4c:ce:1b:3d:23:47: 8b:01:64:75:3e:04:f1:92:29:ec:a6:fb:68:a7:5d: 0b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:42:60:FD:32:A8:E2:F8:E1:26:99:55:19:58:83:02:5E:2A:4B:92 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393030643a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:900d::/48 Signature Algorithm: sha256WithRSAEncryption 3c:be:e7:a7:65:ba:94:37:c1:8d:a8:38:3d:fa:af:b9:98:32: c0:e6:88:64:e7:f3:19:f9:c6:c5:94:0e:37:d8:09:6c:ea:4d: e6:f9:a3:9c:0b:bf:65:f1:b1:08:62:a1:fa:b8:59:2d:14:4c: 62:b2:ce:6c:12:ce:45:ee:45:be:45:09:0f:72:4a:07:77:92: 69:0e:0d:85:d0:43:e6:63:c5:08:09:16:b2:0f:66:cd:04:36: f7:c8:7a:75:4a:8c:3d:76:a1:d9:7c:1d:4f:dc:4a:db:5f:98: 3e:0c:a2:dd:35:f3:83:73:e3:a6:50:d8:40:ff:63:16:b3:1e: 8b:35:c9:11:d0:e8:4d:d4:d6:ec:54:90:1f:61:49:05:28:5f: eb:d2:79:65:31:90:8c:df:ff:e9:23:a5:7b:3e:39:d9:c1:67: ea:13:5d:ec:3e:aa:20:0e:a6:0d:b4:37:18:c1:cc:58:aa:40: ab:6c:ef:74:92:2c:6c:9b:3a:ef:67:8c:14:00:92:8b:5c:32: 71:b5:56:16:95:ea:ac:2a:f2:dc:6a:4e:f1:ea:40:7d:7c:73: ef:fd:22:3e:1a:b0:9b:ed:ab:03:36:0a:c0:1c:d8:10:0c:56: 5c:ce:9a:3e:89:ec:94:0f:e1:84:9b:5d:7e:91:23:fa:52:7a: b9:0f:8f:9a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUe+zsRbnvrbMT9flHvusbtnT8aNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzVaFw0yNzAxMjcwMjAyMzVaMDMxMTAvBgNV BAMTKDFGNDI2MEZEMzJBOEUyRjhFMTI2OTk1NTE5NTg4MzAyNUUyQTRCOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4AavN4ybOAdqbEy3nx67EES8I ThK7ez+p5ykUz3vhY8sNVL7vHyS6f1LpZQQNQCwQavqLy9MfRggSJeJfbeQ3iJEH 903R51b+0X4XQL5ILtp7p6MgVJRMyn0QOGhzJQlmtk25X9SOAoqFixQYoLR3pWgb Bpvcgc13PgpsbZ6sdUnyxbPMjbcpvTc616clAo/BUdt37QSssgTWKju7jxaBOkpn CXE80crBoe0ESV3AUCIOyvssiN/ZHUq27dEH+aqC5waRHbXnuzGAX6o/PvXzSGo4 dgXbzfcqmeVrKzSjxKM9MbIpQzMp2kzOGz0jR4sBZHU+BPGSKeym+2inXQtzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUH0Jg/TKo4vjhJplVGViDAl4qS5IwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMwNjQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJANMA0GCSqGSIb3DQEBCwUAA4IBAQA8vuenZbqUN8GNqDg9+q+5mDLA5ohk5/MZ +cbFlA432Als6k3m+aOcC79l8bEIYqH6uFktFExiss5sEs5F7kW+RQkPckoHd5Jp Dg2F0EPmY8UICRayD2bNBDb3yHp1Sow9dqHZfB1P3ErbX5g+DKLdNfODc+OmUNhA /2MWsx6LNckR0OhN1NbsVJAfYUkFKF/r0nllMZCM3//pI6V7PjnZwWfqE13sPqog DqYNtDcYwcxYqkCrbO90kixsmzrvZ4wUAJKLXDJxtVYWleqsKvLcak7x6kB9fHPv /SI+GrCb7asDNgrAHNgQDFZczpo+ieyUD+GEm11+kSP6Unq5D4+a -----END CERTIFICATE-----Generated at Mon Mar 2 15:41:32 2026 by rpki-client