$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031303a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031303a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 332g4hprO/hEhm0Mv9QWKuYLENRooENUZQn4Ku+5TvQ= Subject key identifier: 26:54:39:B8:21:CA:E2:06:D4:AB:2A:F4:BA:18:DD:32:4A:49:13:71 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 1E3589B5D5CCEAB07FBD322A6B014C04DCC6F83D Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031303a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:35 +0000 ROA not before: Wed 28 Jan 2026 01:57:35 +0000 ROA not after: Wed 27 Jan 2027 02:02:35 +0000 asID: 38526 IP address blocks: 2405:3740:9010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:35:89:b5:d5:cc:ea:b0:7f:bd:32:2a:6b:01:4c:04:dc:c6:f8:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:35 2026 GMT Not After : Jan 27 02:02:35 2027 GMT Subject: CN=265439B821CAE206D4AB2AF4BA18DD324A491371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:26:ad:4d:55:59:36:0e:7b:ea:bb:6a:2c:5e: cc:55:0c:f2:26:cf:58:ba:39:30:40:51:ff:37:43: 4e:dd:2c:0c:89:27:08:de:fa:cd:9c:f8:65:7a:2c: 09:26:83:42:2c:27:c2:1c:1a:29:5e:4b:02:a9:e8: b1:6a:64:a7:ea:e4:0b:ed:f3:41:2c:ee:90:a0:87: 0d:18:72:9f:04:ac:0a:bd:da:66:27:f9:65:8c:2a: 55:65:f3:bc:e2:0e:1e:3e:72:6a:22:c1:8a:ad:9a: 7b:57:c3:b1:63:6b:86:51:7c:2a:e9:77:10:6e:8f: c5:4a:af:f2:df:13:a3:61:0c:a6:45:3a:26:fe:89: 2e:7b:36:2e:12:39:63:2d:8b:06:be:b2:c6:e0:94: e7:ea:21:cf:58:fa:c7:dc:c6:56:1b:65:81:02:1a: 83:94:76:3d:ef:a9:fd:e4:e1:a8:ff:ca:9a:4e:f1: 24:ed:06:f4:53:00:4e:a3:58:02:a4:6e:8b:3e:fb: c6:7e:fa:99:51:5a:0c:d7:92:a9:a5:ef:8d:0b:5d: 38:b6:57:f3:0b:cd:06:11:8a:df:1e:66:94:e8:4d: 18:ff:8e:e4:d0:bb:3a:cf:31:cd:db:3f:93:64:00: 06:cc:2e:88:85:d7:ce:12:1c:a3:26:b6:03:d1:7f: 55:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:54:39:B8:21:CA:E2:06:D4:AB:2A:F4:BA:18:DD:32:4A:49:13:71 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031303a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9010::/48 Signature Algorithm: sha256WithRSAEncryption 66:df:3f:bf:8a:95:e8:07:55:5b:4f:08:85:87:a4:26:c0:5f: 45:9e:5e:96:3d:a9:23:cd:71:9f:06:11:40:92:a7:f9:09:d0: 10:e4:4c:fb:aa:cc:0c:5a:67:84:8b:52:c6:89:e5:ec:a8:4b: 3b:f6:38:1a:1a:1e:93:05:e2:9b:b0:72:65:d9:22:3a:3e:ef: 8e:38:01:ef:ba:61:9d:00:cb:02:77:45:a0:0f:c9:d3:a2:51: f7:c5:07:3f:e8:e4:b6:56:d5:2b:df:de:cc:9b:f7:80:1d:45: 6a:b7:7e:6f:62:5d:8c:f5:dc:0e:f5:e6:1a:d1:9a:70:5f:49: 28:76:12:c6:a1:63:d4:9e:52:44:1b:69:e0:9d:01:7c:34:20: b3:9b:e2:92:71:91:5b:fa:bc:6a:c8:d2:d8:53:df:3c:0d:59: 71:f9:a4:37:6c:83:17:58:02:6e:3a:9e:2b:4c:e6:cf:9e:0a: d9:f9:49:ea:1e:49:7b:35:72:32:ea:19:ea:a1:4a:17:08:07: 58:da:76:7f:a2:d3:dc:dc:4f:04:59:30:8d:4b:cb:07:66:a9: 48:35:d2:ca:21:ec:50:da:b0:5c:ea:2a:33:a2:18:af:3b:fa: 7b:e7:8a:cc:3d:dd:61:a1:a8:15:65:a3:3f:4d:05:44:87:41: e5:92:bd:2c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHjWJtdXM6rB/vTIqawFMBNzG+D0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzVaFw0yNzAxMjcwMjAyMzVaMDMxMTAvBgNV BAMTKDI2NTQzOUI4MjFDQUUyMDZENEFCMkFGNEJBMThERDMyNEE0OTEzNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmJq1NVVk2Dnvqu2osXsxVDPIm z1i6OTBAUf83Q07dLAyJJwje+s2c+GV6LAkmg0IsJ8IcGileSwKp6LFqZKfq5Avt 80Es7pCghw0Ycp8ErAq92mYn+WWMKlVl87ziDh4+cmoiwYqtmntXw7Fja4ZRfCrp dxBuj8VKr/LfE6NhDKZFOib+iS57Ni4SOWMtiwa+ssbglOfqIc9Y+sfcxlYbZYEC GoOUdj3vqf3k4aj/yppO8STtBvRTAE6jWAKkbos++8Z++plRWgzXkqml740LXTi2 V/MLzQYRit8eZpToTRj/juTQuzrPMc3bP5NkAAbMLoiF184SHKMmtgPRf1U/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJlQ5uCHK4gbUqyr0uhjdMkpJE3EwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAQMA0GCSqGSIb3DQEBCwUAA4IBAQBm3z+/ipXoB1VbTwiFh6QmwF9Fnl6WPakj zXGfBhFAkqf5CdAQ5Ez7qswMWmeEi1LGieXsqEs79jgaGh6TBeKbsHJl2SI6Pu+O OAHvumGdAMsCd0WgD8nTolH3xQc/6OS2VtUr397Mm/eAHUVqt35vYl2M9dwO9eYa 0ZpwX0kodhLGoWPUnlJEG2ngnQF8NCCzm+KScZFb+rxqyNLYU988DVlx+aQ3bIMX WAJuOp4rTObPngrZ+UnqHkl7NXIy6hnqoUoXCAdY2nZ/otPc3E8EWTCNS8sHZqlI NdLKIexQ2rBc6iozohivO/p754rMPd1hoagVZaM/TQVEh0Hlkr0s -----END CERTIFICATE-----Generated at Mon Mar 2 21:58:02 2026 by rpki-client