$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031373a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031373a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: zssfS/2jpdnHLhr8eLRKxw6pgNSk8sj75A1ZXTKAgN0= Subject key identifier: 40:5A:8F:8B:A1:20:C5:D9:DF:9A:43:C6:42:15:A1:0B:F9:5F:AE:0F Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 6431FCEB1E6BCB4C21026185C26DA7A8EA652407 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031373a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 04:00:02 +0000 ROA not before: Wed 28 Jan 2026 03:55:02 +0000 ROA not after: Wed 27 Jan 2027 04:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:9017::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:31:fc:eb:1e:6b:cb:4c:21:02:61:85:c2:6d:a7:a8:ea:65:24:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 03:55:02 2026 GMT Not After : Jan 27 04:00:02 2027 GMT Subject: CN=405A8F8BA120C5D9DF9A43C64215A10BF95FAE0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:79:7d:e0:77:b1:b0:67:06:93:04:05:04:70: 50:9a:34:9c:1e:48:a1:b6:de:27:ea:a1:88:af:ea: ab:7b:73:b4:d1:c0:1a:c7:a1:37:3c:31:34:66:8b: ed:02:e8:a1:d6:31:d1:82:28:c8:96:c0:e2:16:d8: 88:51:9c:6a:32:c8:c0:c6:e5:c5:56:13:f3:9e:6b: b3:18:4e:44:56:d1:b9:e3:4e:ac:36:5c:d9:58:dd: a0:0a:a7:3c:6c:bf:bd:3b:31:2f:be:3c:2b:6e:45: dd:79:32:4e:53:d1:c4:a9:b2:0e:93:0b:86:9d:80: 45:7c:7d:b5:5b:75:78:67:e8:b6:00:f7:5b:1c:4e: b6:79:ae:c7:8f:e3:d2:eb:97:0c:18:2f:93:24:83: c3:e4:9a:24:70:7b:23:0b:5b:86:52:54:98:21:c9: 81:63:eb:db:c9:27:8c:5e:be:ae:d9:b3:f9:f7:8c: 32:68:3d:3d:50:3f:a3:d4:c9:74:2a:64:88:74:c2: 0b:8c:b0:44:fa:84:29:e4:25:a2:1b:1d:00:cb:26: 10:c3:13:46:68:cd:73:69:e6:f7:e9:f2:16:e5:c6: de:67:5f:97:c4:c7:f7:0b:8c:02:8d:8a:ac:b1:72: d7:f4:e0:00:a6:fb:60:38:d2:23:7c:45:09:e3:cc: 3e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5A:8F:8B:A1:20:C5:D9:DF:9A:43:C6:42:15:A1:0B:F9:5F:AE:0F X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031373a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9017::/48 Signature Algorithm: sha256WithRSAEncryption 9a:a2:c0:21:18:d6:e7:86:f1:bf:f2:ff:f1:dd:2c:46:1b:24: 7d:6b:b2:5a:76:c8:c6:d8:8d:4a:52:91:8c:4e:82:d0:34:bd: c3:b7:59:de:b1:0e:0a:cd:95:6a:ef:a5:97:3e:d4:8c:f1:c0: e1:cf:af:c7:66:c9:8c:69:6a:ca:b7:83:e0:31:c2:74:78:72: 94:1c:f3:cb:33:31:91:5e:a4:0e:63:2f:eb:88:ca:1d:67:d9: 54:13:0d:37:83:5b:86:54:d0:39:c6:b2:7e:6a:cb:89:de:ef: b9:14:60:17:43:4f:f9:d5:a0:00:ca:c0:16:c4:48:8c:69:6c: bd:b5:70:2c:e2:e1:c6:00:2c:9d:21:98:b0:ee:04:b9:22:cd: 6b:f3:0d:38:4f:5e:b0:e1:fb:e1:4b:6a:b4:c6:37:eb:d4:26: 44:c8:ac:3f:4c:60:29:0f:10:17:2a:d5:4d:a1:cc:bc:71:c9: d0:04:db:01:d0:c4:cb:0a:4b:0e:94:e5:9a:6e:eb:72:d5:ee: 48:46:6d:e5:35:2c:2f:5f:87:09:1b:da:aa:33:51:15:1c:fa: 5b:5a:db:97:36:38:9e:33:6d:0e:f4:01:1f:92:90:06:09:1a: c7:ff:a2:bc:8d:63:1a:c1:23:f7:24:ce:c4:d4:60:e0:dc:d0: 0f:82:1c:cd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZDH86x5ry0whAmGFwm2nqOplJAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMzU1MDJaFw0yNzAxMjcwNDAwMDJaMDMxMTAvBgNV BAMTKDQwNUE4RjhCQTEyMEM1RDlERjlBNDNDNjQyMTVBMTBCRjk1RkFFMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVeX3gd7GwZwaTBAUEcFCaNJwe SKG23ifqoYiv6qt7c7TRwBrHoTc8MTRmi+0C6KHWMdGCKMiWwOIW2IhRnGoyyMDG 5cVWE/Oea7MYTkRW0bnjTqw2XNlY3aAKpzxsv707MS++PCtuRd15Mk5T0cSpsg6T C4adgEV8fbVbdXhn6LYA91scTrZ5rseP49LrlwwYL5Mkg8PkmiRweyMLW4ZSVJgh yYFj69vJJ4xevq7Zs/n3jDJoPT1QP6PUyXQqZIh0wguMsET6hCnkJaIbHQDLJhDD E0ZozXNp5vfp8hblxt5nX5fEx/cLjAKNiqyxctf04ACm+2A40iN8RQnjzD61AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQFqPi6EgxdnfmkPGQhWhC/lfrg8wHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAXMA0GCSqGSIb3DQEBCwUAA4IBAQCaosAhGNbnhvG/8v/x3SxGGyR9a7JadsjG 2I1KUpGMToLQNL3Dt1nesQ4KzZVq76WXPtSM8cDhz6/HZsmMaWrKt4PgMcJ0eHKU HPPLMzGRXqQOYy/riModZ9lUEw03g1uGVNA5xrJ+asuJ3u+5FGAXQ0/51aAAysAW xEiMaWy9tXAs4uHGACydIZiw7gS5Is1r8w04T16w4fvhS2q0xjfr1CZEyKw/TGAp DxAXKtVNocy8ccnQBNsB0MTLCksOlOWabuty1e5IRm3lNSwvX4cJG9qqM1EVHPpb WtuXNjieM20O9AEfkpAGCRrH/6K8jWMawSP3JM7E1GDg3NAPghzN -----END CERTIFICATE-----Generated at Mon Mar 2 17:59:08 2026 by rpki-client