$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031333a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031333a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: yRbDJFB97hkhs8uFbV5VKIo+B4uxVUY6rOWhc0j3ElQ= Subject key identifier: 6A:29:1E:C0:EF:FF:E4:38:2C:D9:B1:5C:87:46:AD:DD:B3:D1:C3:8A Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 09C1904439D185DFC664478A8748A2CF6C778AD1 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031333a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 04:00:03 +0000 ROA not before: Wed 28 Jan 2026 03:55:03 +0000 ROA not after: Wed 27 Jan 2027 04:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9013::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:c1:90:44:39:d1:85:df:c6:64:47:8a:87:48:a2:cf:6c:77:8a:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 03:55:03 2026 GMT Not After : Jan 27 04:00:03 2027 GMT Subject: CN=6A291EC0EFFFE4382CD9B15C8746ADDDB3D1C38A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1c:47:51:58:42:4a:43:d1:fe:dd:1b:fb:09: dc:6d:44:75:31:b1:1f:be:74:d6:25:c6:ad:c4:25: a1:2e:64:03:f5:a6:8a:df:2b:2b:8b:21:25:d1:84: a3:d1:11:67:9e:79:73:de:b4:1a:19:8f:95:99:67: 5c:f3:55:44:50:60:b2:47:26:7a:7f:9b:1e:26:b5: e9:9c:83:ac:49:7d:63:49:58:80:e9:d6:d1:b0:76: 14:bc:23:86:79:8e:23:2e:d8:cc:ba:73:3a:8c:e2: 03:12:45:b5:5e:0d:88:95:84:42:33:e6:ef:cf:a2: a5:46:77:44:71:68:1f:ee:14:0e:07:e9:39:04:51: ee:ca:54:e4:2c:b5:da:e1:ba:6c:c6:06:35:46:7b: b6:53:55:4a:7e:c5:b9:7c:6b:3a:6c:f2:11:63:59: 44:0a:74:ad:ad:25:83:66:d6:d7:54:f9:8d:ec:aa: 79:e4:38:24:6a:db:bc:02:3b:d6:3f:95:8e:17:70: 45:cd:fe:7b:99:5a:85:c8:17:49:7d:fc:82:8f:08: 09:ed:64:fc:d5:eb:ce:14:33:92:03:cc:a6:bc:20: 73:ae:66:3e:02:16:73:40:99:c6:f0:bf:92:68:20: dd:9b:31:03:26:0c:30:eb:f1:fd:18:d7:95:6d:dc: 8f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:29:1E:C0:EF:FF:E4:38:2C:D9:B1:5C:87:46:AD:DD:B3:D1:C3:8A X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031333a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9013::/48 Signature Algorithm: sha256WithRSAEncryption d3:09:8e:79:10:d5:19:ff:31:de:19:f9:23:6a:e3:3a:6c:c9: d5:5f:6d:12:21:64:aa:d9:78:6c:83:78:1f:c8:be:88:ff:50: e5:b5:19:98:6b:24:27:57:41:68:14:a4:fb:10:1b:d9:bc:76: ca:52:b2:89:fa:86:2b:6d:e0:9a:9b:96:5e:36:fe:fd:a6:71: 5c:f2:8d:56:dc:bf:65:54:65:c9:56:69:e7:77:50:c1:35:ab: 01:4e:11:d4:cd:87:0c:07:b2:79:f0:66:ae:ce:06:33:74:86: b4:82:b9:d4:d2:a8:49:98:c7:4b:a0:a5:ee:8c:49:6b:8a:fb: 34:79:90:6f:89:db:d3:41:61:19:2f:46:fb:1f:57:ae:4c:da: 97:ad:c3:dc:78:f5:5a:9f:14:e8:26:db:d4:27:3b:99:8f:37: dc:b6:b7:0e:5e:22:04:56:77:74:fa:3d:93:0a:fd:8d:d9:9e: f7:5d:1b:e9:03:7b:e3:8c:62:ce:85:c2:85:9c:a1:d9:8a:9d: c5:95:f4:a3:9a:13:0b:35:87:c6:71:1c:72:e9:28:65:26:9f: 6b:5a:c2:c8:01:8b:fe:4c:b4:32:5e:7f:a8:89:f9:8a:4c:76: 21:b0:a4:0d:ec:a2:e4:94:0d:d8:98:73:09:3e:47:0a:48:7e: 68:a1:58:c7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCcGQRDnRhd/GZEeKh0iiz2x3itEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMzU1MDNaFw0yNzAxMjcwNDAwMDNaMDMxMTAvBgNV BAMTKDZBMjkxRUMwRUZGRkU0MzgyQ0Q5QjE1Qzg3NDZBREREQjNEMUMzOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpHEdRWEJKQ9H+3Rv7CdxtRHUx sR++dNYlxq3EJaEuZAP1porfKyuLISXRhKPREWeeeXPetBoZj5WZZ1zzVURQYLJH Jnp/mx4mtemcg6xJfWNJWIDp1tGwdhS8I4Z5jiMu2My6czqM4gMSRbVeDYiVhEIz 5u/PoqVGd0RxaB/uFA4H6TkEUe7KVOQstdrhumzGBjVGe7ZTVUp+xbl8azps8hFj WUQKdK2tJYNm1tdU+Y3sqnnkOCRq27wCO9Y/lY4XcEXN/nuZWoXIF0l9/IKPCAnt ZPzV684UM5IDzKa8IHOuZj4CFnNAmcbwv5JoIN2bMQMmDDDr8f0Y15Vt3I9FAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUaikewO//5Dgs2bFch0at3bPRw4owHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJATMA0GCSqGSIb3DQEBCwUAA4IBAQDTCY55ENUZ/zHeGfkjauM6bMnVX20SIWSq 2Xhsg3gfyL6I/1DltRmYayQnV0FoFKT7EBvZvHbKUrKJ+oYrbeCam5ZeNv79pnFc 8o1W3L9lVGXJVmnnd1DBNasBThHUzYcMB7J58GauzgYzdIa0grnU0qhJmMdLoKXu jElrivs0eZBvidvTQWEZL0b7H1euTNqXrcPcePVanxToJtvUJzuZjzfctrcOXiIE Vnd0+j2TCv2N2Z73XRvpA3vjjGLOhcKFnKHZip3FlfSjmhMLNYfGcRxy6ShlJp9r WsLIAYv+TLQyXn+oifmKTHYhsKQN7KLklA3YmHMJPkcKSH5ooVjH -----END CERTIFICATE-----Generated at Mon Mar 2 21:58:03 2026 by rpki-client