$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031343a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031343a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: N/3VVH2EmI1GbcoJdxm0CvCvmnCebQQp13tKx6tcjCw= Subject key identifier: 8E:D8:EB:14:CB:7C:C8:2A:89:26:18:DD:37:03:56:8A:CD:09:42:74 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 66BB234332D28FD4E5D36B3BFFCEB1D6F754568C Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031343a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 04:00:03 +0000 ROA not before: Wed 28 Jan 2026 03:55:03 +0000 ROA not after: Wed 27 Jan 2027 04:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9014::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:bb:23:43:32:d2:8f:d4:e5:d3:6b:3b:ff:ce:b1:d6:f7:54:56:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 03:55:03 2026 GMT Not After : Jan 27 04:00:03 2027 GMT Subject: CN=8ED8EB14CB7CC82A892618DD3703568ACD094274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a6:65:e0:80:56:dd:db:ec:6d:e7:a7:8f:2a: 33:78:ed:fe:be:52:be:76:b5:65:0c:f6:9d:f4:18: 14:d6:42:a9:b7:d9:dd:eb:29:b0:7b:62:e5:ae:9c: 78:80:19:8a:78:ff:ae:a2:bc:01:03:ee:84:d5:5c: 96:06:54:b7:5e:93:a4:3f:2c:a5:be:0d:a8:01:6e: e1:c1:af:04:a9:ad:5d:d1:a8:f0:07:06:a4:52:25: 89:42:73:4d:c4:d0:3a:41:dc:ed:b3:a5:83:59:df: 5c:e9:87:e4:8a:4a:01:3c:78:7d:50:db:5a:27:6d: b8:9d:3e:4f:c9:b9:f6:5d:4d:d2:35:2f:e4:15:ff: f6:ef:79:60:2f:77:66:5a:7b:52:bb:53:9c:65:35: 27:85:cf:af:0c:e7:26:68:e3:04:56:92:7a:cc:81: a8:db:67:67:93:d2:55:90:3c:e3:91:57:21:25:f6: 45:70:3e:97:1e:e5:f2:0d:49:4c:66:10:e1:80:bc: 73:27:0f:df:c3:7b:c3:b9:5d:d1:45:28:5d:4b:39: cc:14:1d:ef:80:f2:76:68:56:e0:d9:94:aa:46:63: b5:97:32:6b:5c:c2:c6:d8:b6:b5:52:44:f5:5e:d4: 5a:f0:b7:96:18:dc:a8:94:9e:96:ae:81:9a:1d:e2: 6b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D8:EB:14:CB:7C:C8:2A:89:26:18:DD:37:03:56:8A:CD:09:42:74 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031343a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9014::/48 Signature Algorithm: sha256WithRSAEncryption af:5d:49:aa:37:a6:cf:58:88:c7:d7:f9:9a:bb:f2:e4:df:b4: c9:7e:83:51:42:40:be:4b:70:e6:8d:ac:cc:48:9e:e9:b4:af: f2:2e:28:f5:fd:e8:17:3e:a0:a2:58:4d:68:86:6c:6c:d8:45: 07:f1:11:1c:ce:5a:31:49:31:e5:02:af:ab:95:34:b4:f4:b1: bc:4b:59:f2:71:14:10:32:20:81:d0:e1:df:73:d7:61:80:b2: 4b:4c:fa:71:e2:ec:62:7c:82:03:3c:01:f7:b3:ab:bd:88:7d: b3:c3:dd:eb:30:27:16:a8:b1:67:58:5a:e1:62:e6:e4:69:7d: 7c:59:cb:b7:11:ee:56:97:bd:c7:1b:6a:59:06:8a:d6:5b:3a: bb:6f:52:df:0d:4b:6a:ed:c5:a6:59:6f:e9:3b:b1:56:6f:11: 2d:e4:12:00:00:be:c7:45:3f:c1:77:5a:d6:ce:b9:89:b4:60: 03:66:c8:70:ad:86:b1:b5:58:34:71:fa:04:19:39:5c:8a:0a: b0:33:c3:35:27:d3:ea:c6:c4:97:de:52:b4:c2:ce:ec:18:08: 32:e1:e6:b1:c9:4c:52:a2:5c:47:be:51:18:e1:41:a3:c8:17: 5d:56:06:12:33:d4:50:b6:42:33:97:1b:28:32:5e:25:fc:d6: be:de:50:02 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZrsjQzLSj9Tl02s7/86x1vdUVowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMzU1MDNaFw0yNzAxMjcwNDAwMDNaMDMxMTAvBgNV BAMTKDhFRDhFQjE0Q0I3Q0M4MkE4OTI2MThERDM3MDM1NjhBQ0QwOTQyNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCepmXggFbd2+xt56ePKjN47f6+ Ur52tWUM9p30GBTWQqm32d3rKbB7YuWunHiAGYp4/66ivAED7oTVXJYGVLdek6Q/ LKW+DagBbuHBrwSprV3RqPAHBqRSJYlCc03E0DpB3O2zpYNZ31zph+SKSgE8eH1Q 21onbbidPk/JufZdTdI1L+QV//bveWAvd2Zae1K7U5xlNSeFz68M5yZo4wRWknrM gajbZ2eT0lWQPOORVyEl9kVwPpce5fINSUxmEOGAvHMnD9/De8O5XdFFKF1LOcwU He+A8nZoVuDZlKpGY7WXMmtcwsbYtrVSRPVe1Frwt5YY3KiUnpaugZod4mvvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjtjrFMt8yCqJJhjdNwNWis0JQnQwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAUMA0GCSqGSIb3DQEBCwUAA4IBAQCvXUmqN6bPWIjH1/mau/Lk37TJfoNRQkC+ S3DmjazMSJ7ptK/yLij1/egXPqCiWE1ohmxs2EUH8REczloxSTHlAq+rlTS09LG8 S1nycRQQMiCB0OHfc9dhgLJLTPpx4uxifIIDPAH3s6u9iH2zw93rMCcWqLFnWFrh YubkaX18Wcu3Ee5Wl73HG2pZBorWWzq7b1LfDUtq7cWmWW/pO7FWbxEt5BIAAL7H RT/Bd1rWzrmJtGADZshwrYaxtVg0cfoEGTlcigqwM8M1J9PqxsSX3lK0ws7sGAgy 4eaxyUxSolxHvlEY4UGjyBddVgYSM9RQtkIzlxsoMl4l/Na+3lAC -----END CERTIFICATE-----Generated at Mon Mar 2 15:58:21 2026 by rpki-client