$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031323a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031323a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: WUMy/wX5wJYTLfWoZ0v6Kmi19QvNybyBnth2dg5phWQ= Subject key identifier: 14:8B:02:F4:BB:BE:0E:EC:6B:20:71:2F:76:14:E3:46:45:A1:26:4F Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 6114DBBAF6AA78F99E8D00AEB0CA1A438953D79C Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031323a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 02:02:37 +0000 ROA not before: Wed 28 Jan 2026 01:57:37 +0000 ROA not after: Wed 27 Jan 2027 02:02:37 +0000 asID: 38526 IP address blocks: 2405:3740:9012::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:14:db:ba:f6:aa:78:f9:9e:8d:00:ae:b0:ca:1a:43:89:53:d7:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 01:57:37 2026 GMT Not After : Jan 27 02:02:37 2027 GMT Subject: CN=148B02F4BBBE0EEC6B20712F7614E34645A1264F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:97:35:c4:da:6a:fa:3d:be:2c:da:48:5c:ea: dd:8c:21:96:f2:f9:ae:0a:24:bd:3e:83:fa:79:5d: 54:35:bd:95:17:3b:f9:dc:01:b4:98:6d:a6:95:af: e4:86:40:06:80:0a:11:e4:53:67:f0:75:90:0d:e3: 04:b7:18:cd:fd:97:12:af:ec:52:fe:fa:a3:9f:f6: 01:ac:a3:f4:10:7c:dd:5a:7d:61:7f:bc:b6:b9:5d: b6:52:10:fa:c4:a4:a2:4a:0f:19:2d:15:92:08:56: 52:e9:54:92:ee:f6:78:1e:b4:3d:e8:f3:ce:6b:d0: fd:8e:de:4f:0f:10:ec:ec:c4:00:d8:f7:9a:27:2e: ea:bb:b4:6d:0f:c4:d6:97:c2:90:78:85:f7:88:48: 1e:e8:d2:19:45:f3:42:c5:f2:9c:ef:5c:1e:b1:18: a9:76:2c:15:10:e3:14:03:64:d7:1a:6f:00:6e:bc: 2d:8a:5b:60:0e:7a:a8:4f:97:0a:59:c3:06:de:6e: 04:be:24:80:93:3a:c1:15:05:3c:dc:4f:b6:11:01: 09:e0:2d:2e:7e:82:89:83:2e:e3:6a:fc:cf:b9:a4: ac:ee:b5:63:95:97:0e:c2:85:bb:19:19:2d:2c:36: 9b:5b:75:e1:9d:a7:80:f2:cb:cd:3a:36:cf:a4:df: 2d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8B:02:F4:BB:BE:0E:EC:6B:20:71:2F:76:14:E3:46:45:A1:26:4F X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031323a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9012::/48 Signature Algorithm: sha256WithRSAEncryption 00:79:70:da:f7:57:01:94:cc:d1:77:cc:38:35:7c:46:76:14: 4e:07:6e:5a:69:f0:a8:08:e1:d3:a1:69:79:ca:5c:89:2d:db: ce:60:10:f9:b0:f5:4d:ae:a5:74:d1:25:5c:54:a2:56:87:34: 23:1e:ea:90:be:13:79:aa:50:13:02:ed:73:ac:16:71:90:7d: 3b:19:7a:6d:8c:58:14:40:9a:f5:4c:b2:f7:d8:54:73:78:be: 73:ab:7f:51:bf:c6:df:23:5d:64:fc:f1:b3:a9:3c:1b:a3:6b: d1:5b:20:19:7a:23:62:2a:36:c7:b5:91:f5:a2:6c:d9:d3:70: 66:58:2d:8a:fc:df:d2:10:58:01:7b:be:4e:2a:05:8e:9d:5b: d8:ed:fa:73:3b:f6:db:b8:21:54:0b:4f:5e:6d:6d:e3:7a:0f: ac:c1:74:d9:f4:51:d1:68:33:17:62:27:d9:c9:12:12:43:95: d5:df:46:df:9d:88:8d:fa:34:ac:34:01:9a:00:fd:ee:73:ae: 3f:c7:00:2f:1d:a8:3a:86:42:61:de:be:ca:16:39:d4:3d:ca: 67:68:00:1b:f5:24:7a:7a:d2:66:63:3b:92:74:f8:4b:69:fd: 79:6d:9d:f3:41:a1:7a:d1:58:68:a4:ff:12:1d:74:74:bf:e8: 50:d1:63:37 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYRTbuvaqePmejQCusMoaQ4lT15wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMTU3MzdaFw0yNzAxMjcwMjAyMzdaMDMxMTAvBgNV BAMTKDE0OEIwMkY0QkJCRTBFRUM2QjIwNzEyRjc2MTRFMzQ2NDVBMTI2NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCklzXE2mr6Pb4s2khc6t2MIZby +a4KJL0+g/p5XVQ1vZUXO/ncAbSYbaaVr+SGQAaAChHkU2fwdZAN4wS3GM39lxKv 7FL++qOf9gGso/QQfN1afWF/vLa5XbZSEPrEpKJKDxktFZIIVlLpVJLu9ngetD3o 885r0P2O3k8PEOzsxADY95onLuq7tG0PxNaXwpB4hfeISB7o0hlF80LF8pzvXB6x GKl2LBUQ4xQDZNcabwBuvC2KW2AOeqhPlwpZwwbebgS+JICTOsEVBTzcT7YRAQng LS5+gomDLuNq/M+5pKzutWOVlw7ChbsZGS0sNptbdeGdp4Dyy806Ns+k3y2zAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFIsC9Lu+DuxrIHEvdhTjRkWhJk8wHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJASMA0GCSqGSIb3DQEBCwUAA4IBAQAAeXDa91cBlMzRd8w4NXxGdhROB25aafCo COHToWl5ylyJLdvOYBD5sPVNrqV00SVcVKJWhzQjHuqQvhN5qlATAu1zrBZxkH07 GXptjFgUQJr1TLL32FRzeL5zq39Rv8bfI11k/PGzqTwbo2vRWyAZeiNiKjbHtZH1 omzZ03BmWC2K/N/SEFgBe75OKgWOnVvY7fpzO/bbuCFUC09ebW3jeg+swXTZ9FHR aDMXYifZyRISQ5XV30bfnYiN+jSsNAGaAP3uc64/xwAvHag6hkJh3r7KFjnUPcpn aAAb9SR6etJmYzuSdPhLaf15bZ3zQaF60VhopP8SHXR0v+hQ0WM3 -----END CERTIFICATE-----Generated at Mon Mar 2 15:57:31 2026 by rpki-client