$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031313a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031313a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: 9o1+VSCA6uxZYXHS2fLQRltjjChsyqWVVv/ipQSu4fs= Subject key identifier: 1E:08:65:CD:68:7A:DA:2A:66:A4:2D:C2:A9:68:FC:AD:1C:CD:15:F6 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 358FB2C2327F2B5D124BCB12FB2B8F9F7548E3B1 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031313a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:35 +0000 ROA not before: Wed 28 Jan 2026 01:57:35 +0000 ROA not after: Wed 27 Jan 2027 02:02:35 +0000 asID: 38526 IP address blocks: 2405:3740:9011::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:8f:b2:c2:32:7f:2b:5d:12:4b:cb:12:fb:2b:8f:9f:75:48:e3:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:35 2026 GMT Not After : Jan 27 02:02:35 2027 GMT Subject: CN=1E0865CD687ADA2A66A42DC2A968FCAD1CCD15F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:44:3b:1f:87:24:6a:23:3c:b5:81:83:45:05: 12:f8:94:4f:1d:4b:ef:fa:fc:2a:7d:c3:aa:67:96: 3d:c1:f2:ca:97:95:c7:5c:76:e2:db:36:4e:27:d5: d2:a8:ac:98:e4:0e:f1:f8:fd:55:d6:34:e8:fb:68: 60:56:10:7e:51:db:7e:f6:5b:4f:13:e8:5f:93:e5: 60:9e:fd:b7:17:7e:f7:c7:78:89:2c:cc:e5:f8:4c: 1f:d5:31:6e:1e:c3:56:05:ba:b0:09:58:c4:1c:43: 2d:21:e1:14:05:b6:f0:1a:13:5a:44:fc:57:2d:f8: 5d:be:d2:ab:b4:45:7c:bd:0a:07:a1:fc:95:ca:e1: 9d:12:c5:68:13:b1:d3:86:68:fa:f1:ff:e8:2d:4c: 4a:d3:5f:81:a3:e2:ea:41:3f:f9:cb:70:13:d3:92: 5b:0f:75:72:28:f8:cf:7b:3e:e6:57:42:9b:82:36: 60:0d:4e:68:e4:a7:bc:a9:60:db:ed:89:3b:80:33: e9:ac:38:25:06:7a:a3:0f:ae:20:a4:2e:3e:1a:16: 7a:89:b1:c2:6f:7d:fd:7c:28:6d:06:94:76:a1:d2: f8:c8:f3:86:03:ee:37:02:c6:5b:0b:b8:45:27:ca: 8c:1c:d7:1d:f7:5c:dd:4c:33:a2:bc:13:2e:05:e7: fa:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:08:65:CD:68:7A:DA:2A:66:A4:2D:C2:A9:68:FC:AD:1C:CD:15:F6 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031313a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9011::/48 Signature Algorithm: sha256WithRSAEncryption 82:b5:0b:1d:07:74:83:c4:a7:f6:5e:e5:1c:77:0c:c4:10:e8: e8:97:fc:08:b0:5e:e8:97:bc:90:e7:65:6d:57:24:f6:f3:83: 16:83:9c:7d:9c:74:18:55:06:34:ff:6a:f0:bc:57:0d:20:5f: 0c:21:a7:7d:88:76:97:98:fc:ee:63:87:fa:2b:09:f5:16:c0: 9b:87:2b:c1:bb:1b:9b:9d:18:d4:dd:24:b3:d5:45:17:4c:2a: e2:fb:f1:07:2b:51:12:41:79:f4:6a:ae:32:97:ae:c6:6c:a2: 47:43:7b:79:a7:03:7f:f3:e9:86:e3:88:b3:f0:a3:18:7a:6b: 18:26:30:ea:57:d1:51:24:3c:2e:19:03:79:23:a7:c7:2d:b8: 92:46:1a:df:ee:09:14:2d:4e:26:4d:fb:ea:05:9d:de:ae:be: 3d:4e:c5:b0:fe:cf:6c:9e:01:4e:f9:92:e7:1d:05:41:7f:86: 47:a2:ab:2a:6a:4f:72:91:d6:ea:36:2d:70:e5:49:e5:b9:f4: de:ee:dc:ed:89:7e:a7:09:f8:c9:98:34:20:56:70:a2:d9:6f: e1:63:e6:d3:2f:82:88:e6:11:c8:1a:95:47:bf:dc:bf:9b:3c: bf:fd:48:16:ab:3d:b9:fb:5f:1c:bb:03:53:0a:ef:50:50:c5: 42:21:35:8d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNY+ywjJ/K10SS8sS+yuPn3VI47EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzVaFw0yNzAxMjcwMjAyMzVaMDMxMTAvBgNV BAMTKDFFMDg2NUNENjg3QURBMkE2NkE0MkRDMkE5NjhGQ0FEMUNDRDE1RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0RDsfhyRqIzy1gYNFBRL4lE8d S+/6/Cp9w6pnlj3B8sqXlcdcduLbNk4n1dKorJjkDvH4/VXWNOj7aGBWEH5R2372 W08T6F+T5WCe/bcXfvfHeIkszOX4TB/VMW4ew1YFurAJWMQcQy0h4RQFtvAaE1pE /Fct+F2+0qu0RXy9Cgeh/JXK4Z0SxWgTsdOGaPrx/+gtTErTX4Gj4upBP/nLcBPT klsPdXIo+M97PuZXQpuCNmANTmjkp7ypYNvtiTuAM+msOCUGeqMPriCkLj4aFnqJ scJvff18KG0GlHah0vjI84YD7jcCxlsLuEUnyowc1x33XN1MM6K8Ey4F5/qHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHghlzWh62ipmpC3CqWj8rRzNFfYwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJARMA0GCSqGSIb3DQEBCwUAA4IBAQCCtQsdB3SDxKf2XuUcdwzEEOjol/wIsF7o l7yQ52VtVyT284MWg5x9nHQYVQY0/2rwvFcNIF8MIad9iHaXmPzuY4f6Kwn1FsCb hyvBuxubnRjU3SSz1UUXTCri+/EHK1ESQXn0aq4yl67GbKJHQ3t5pwN/8+mG44iz 8KMYemsYJjDqV9FRJDwuGQN5I6fHLbiSRhrf7gkULU4mTfvqBZ3err49TsWw/s9s ngFO+ZLnHQVBf4ZHoqsqak9ykdbqNi1w5UnlufTe7tztiX6nCfjJmDQgVnCi2W/h Y+bTL4KI5hHIGpVHv9y/mzy//UgWqz25+18cuwNTCu9QUMVCITWN -----END CERTIFICATE-----Generated at Mon Mar 2 15:57:08 2026 by rpki-client