$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031383a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031383a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: HwZoFdrTeA2LQncZKTD5R0Fv7BUHuzJGazsbOZlDoEw= Subject key identifier: 7C:8A:88:9C:77:46:99:71:71:90:AB:26:24:AC:51:DB:B9:CA:7D:1D Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 37FD16F5F9B35F1BEBCE8C305171DEDD1F5C9534 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031383a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 03:00:02 +0000 ROA not before: Wed 28 Jan 2026 02:55:02 +0000 ROA not after: Wed 27 Jan 2027 03:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:9018::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:fd:16:f5:f9:b3:5f:1b:eb:ce:8c:30:51:71:de:dd:1f:5c:95:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 02:55:02 2026 GMT Not After : Jan 27 03:00:02 2027 GMT Subject: CN=7C8A889C774699717190AB2624AC51DBB9CA7D1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d6:5b:a0:65:72:dc:79:46:dd:5f:2d:47:d3: 0c:41:94:e2:fb:3c:6b:a4:fa:6e:c9:1d:10:42:f8: 09:22:e1:69:5d:13:c5:59:6e:2c:d3:0f:a9:5f:12: 0d:cc:7b:e6:e6:88:4e:c5:63:77:ec:02:f2:7c:5e: 1a:b4:bd:a6:d5:a4:8e:d8:cb:32:29:21:24:ff:38: de:d4:76:a2:3b:bb:ba:a3:49:64:c8:aa:ff:37:12: f0:0e:41:15:ac:7d:d7:0f:a5:f8:b2:f1:42:21:da: a3:f0:47:a6:11:a3:e8:09:de:cf:e1:19:ce:8a:e4: 5b:5c:4d:0e:2f:41:c5:f7:e3:6d:75:0b:b3:d2:4e: 82:52:6a:08:28:5c:2e:f6:97:fc:4c:0d:7e:54:a6: b4:02:d9:84:53:7f:ae:eb:e5:f7:b2:6f:df:d5:d8: 6b:05:64:bf:8a:52:b9:f9:68:58:76:5a:f5:82:5a: 25:3c:67:a9:f3:1c:02:77:0a:49:09:0b:2b:40:73: 57:94:1e:d0:e4:e7:e9:01:6c:a3:51:9d:2e:82:f8: 67:8c:1b:15:12:60:3f:4b:9e:79:6e:ce:e2:bb:23: 93:f7:1c:04:55:f7:db:c5:bb:9e:d1:fa:fe:58:93: 98:a9:19:0d:a8:f8:bb:32:fd:14:c7:3a:c6:02:bc: d5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:8A:88:9C:77:46:99:71:71:90:AB:26:24:AC:51:DB:B9:CA:7D:1D X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031383a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9018::/48 Signature Algorithm: sha256WithRSAEncryption 1a:45:9f:62:9e:6e:0b:0a:5f:65:24:50:79:cd:d4:f6:e5:01: 66:17:36:c0:03:ef:2f:6f:3c:f7:14:03:1a:24:d8:4a:14:51: f2:de:b6:97:86:79:88:9d:18:71:21:09:64:6f:ad:22:b9:18: 61:9a:4a:df:ec:2f:a9:78:2b:df:28:63:3d:47:95:95:a2:0f: 70:6a:7c:04:3b:39:16:6e:f1:23:54:1a:36:87:07:36:e1:a9: 35:9d:b1:eb:b4:ca:3d:70:41:d3:c0:95:95:87:f9:57:a3:ae: 47:fc:71:fe:3b:3c:6d:23:77:4b:cf:34:1c:73:47:b2:f5:80: ff:07:44:9d:c2:0c:e3:76:8d:4f:5a:98:88:de:07:4a:11:19: 43:be:2f:18:4e:f8:32:c0:cb:1c:d0:dd:90:f2:c5:a8:d3:c8: 4a:ae:00:63:eb:44:4e:47:71:de:c2:3b:74:50:3d:44:ac:d0: 90:50:41:34:9c:2f:1a:92:9e:06:dd:3d:aa:f7:e4:79:4e:fa: af:50:c6:f6:6b:79:a8:7a:9b:df:7d:60:b3:0f:d4:d8:e7:3a: 33:c7:2f:23:23:19:26:ae:5f:1d:88:dc:10:86:e2:cc:02:09: 78:70:3d:96:62:b7:dd:6e:c4:26:5c:02:90:36:86:6d:a1:d6: fd:06:22:44 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUN/0W9fmzXxvrzowwUXHe3R9clTQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMjU1MDJaFw0yNzAxMjcwMzAwMDJaMDMxMTAvBgNV BAMTKDdDOEE4ODlDNzc0Njk5NzE3MTkwQUIyNjI0QUM1MURCQjlDQTdEMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY1lugZXLceUbdXy1H0wxBlOL7 PGuk+m7JHRBC+Aki4WldE8VZbizTD6lfEg3Me+bmiE7FY3fsAvJ8Xhq0vabVpI7Y yzIpIST/ON7UdqI7u7qjSWTIqv83EvAOQRWsfdcPpfiy8UIh2qPwR6YRo+gJ3s/h Gc6K5FtcTQ4vQcX34211C7PSToJSaggoXC72l/xMDX5UprQC2YRTf67r5feyb9/V 2GsFZL+KUrn5aFh2WvWCWiU8Z6nzHAJ3CkkJCytAc1eUHtDk5+kBbKNRnS6C+GeM GxUSYD9LnnluzuK7I5P3HARV99vFu57R+v5Yk5ipGQ2o+Lsy/RTHOsYCvNUVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUfIqInHdGmXFxkKsmJKxR27nKfR0wHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAYMA0GCSqGSIb3DQEBCwUAA4IBAQAaRZ9inm4LCl9lJFB5zdT25QFmFzbAA+8v bzz3FAMaJNhKFFHy3raXhnmInRhxIQlkb60iuRhhmkrf7C+peCvfKGM9R5WVog9w anwEOzkWbvEjVBo2hwc24ak1nbHrtMo9cEHTwJWVh/lXo65H/HH+OzxtI3dLzzQc c0ey9YD/B0Sdwgzjdo1PWpiI3gdKERlDvi8YTvgywMsc0N2Q8sWo08hKrgBj60RO R3Hewjt0UD1ErNCQUEE0nC8akp4G3T2q9+R5TvqvUMb2a3moepvffWCzD9TY5zoz xy8jIxkmrl8diNwQhuLMAgl4cD2WYrfdbsQmXAKQNoZtodb9BiJE -----END CERTIFICATE-----Generated at Mon Mar 2 15:58:24 2026 by rpki-client