$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: Xw0P4CdsJNFwsWzqj1y1Mz2A5KaLM9Vb6CjB40D5XZs= Subject key identifier: ED:3A:0E:8D:FF:28:60:6B:81:DD:14:3A:6A:4D:37:19:31:44:6D:B7 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 5AF2C680BCA45649323961B5C5DDF339408669AF Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 03:00:02 +0000 ROA not before: Wed 28 Jan 2026 02:55:02 +0000 ROA not after: Wed 27 Jan 2027 03:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:9019::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f2:c6:80:bc:a4:56:49:32:39:61:b5:c5:dd:f3:39:40:86:69:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 02:55:02 2026 GMT Not After : Jan 27 03:00:02 2027 GMT Subject: CN=ED3A0E8DFF28606B81DD143A6A4D371931446DB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:24:fd:cd:85:8e:f6:a2:66:ce:22:0a:8f:63: 2a:e7:35:a3:0c:ef:11:da:a1:1d:25:45:f4:0d:35: dd:81:ea:0b:12:f4:02:cc:7d:6a:e8:8c:17:1c:60: 18:ca:b1:a8:6c:72:ea:a7:5f:9b:b5:e3:bc:e6:ea: ee:04:b2:e5:6a:03:7e:91:f7:a7:f0:ec:a5:73:3c: 20:bf:48:14:5b:3e:09:a3:51:07:73:1a:5c:6e:09: f5:3c:44:38:aa:8d:98:af:02:7d:97:b9:21:01:16: c8:c6:ca:45:51:d4:b3:48:19:cc:cd:31:91:f9:94: 0c:c4:42:a8:5b:a5:65:85:8e:3f:ec:3f:09:46:38: b4:bd:67:0e:83:59:19:19:9f:30:16:e2:15:0a:05: 04:a4:3b:b8:66:9b:ea:eb:aa:f1:a5:f4:b0:2f:32: 72:8d:a6:8c:e1:1b:17:4d:1d:22:76:9a:3e:a3:7e: 49:1e:18:17:f3:81:37:cb:4b:ef:72:30:6c:f4:55: 2d:c9:3d:3f:e5:fe:31:80:35:fc:fd:55:a4:74:f7: 4f:ca:bf:3a:21:d4:8c:d6:15:62:6d:a7:33:24:fc: 3b:ad:81:8b:f6:4d:26:62:d7:fa:10:ac:16:3e:44: cf:80:e6:50:f6:18:2a:d4:12:e7:68:d9:27:16:7f: 39:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:3A:0E:8D:FF:28:60:6B:81:DD:14:3A:6A:4D:37:19:31:44:6D:B7 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9019::/48 Signature Algorithm: sha256WithRSAEncryption 6c:89:34:68:15:23:3c:d6:94:ae:ae:c3:0e:54:95:8b:b0:03: ae:4d:3c:f1:bf:ce:da:08:88:87:cb:a0:a8:9f:a6:53:55:93: 23:66:12:0b:e1:f1:44:b5:c5:30:5b:cf:94:f7:5b:b8:64:c3: 2c:26:26:8e:ad:e9:5d:5b:90:29:87:83:25:0f:3e:3a:f2:2b: ba:29:bc:f7:09:d8:78:0c:85:11:e7:60:3d:82:09:7b:fa:d8: 74:a0:c8:12:47:d7:91:a4:bf:9b:b8:3a:51:3f:e4:45:b0:80: c3:a9:b3:1e:b4:65:1a:12:83:7d:07:1c:fb:0e:a6:82:0d:d1: 21:28:cc:81:8a:40:1e:92:8c:c5:9e:a8:7b:27:4d:b4:51:9d: ef:d5:7f:dd:d9:b5:ab:69:6e:1e:06:70:67:ed:f2:23:eb:1e: 71:d1:30:7f:80:84:83:c3:be:4c:a6:f2:cb:d0:0c:02:be:4d: 89:df:10:6b:57:dc:05:69:60:98:22:ec:dd:f5:99:d6:5e:58: 00:16:e8:ef:33:53:ed:e1:79:09:16:0f:d3:f8:a8:9c:b5:e6: 82:6b:2a:66:a8:38:f7:6b:47:45:1c:43:56:68:68:32:fa:6c: ed:17:16:0f:94:89:ea:6f:b7:b4:23:a1:74:81:90:0c:eb:61: 36:b5:09:a4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWvLGgLykVkkyOWG1xd3zOUCGaa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMjU1MDJaFw0yNzAxMjcwMzAwMDJaMDMxMTAvBgNV BAMTKEVEM0EwRThERkYyODYwNkI4MUREMTQzQTZBNEQzNzE5MzE0NDZEQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClJP3NhY72ombOIgqPYyrnNaMM 7xHaoR0lRfQNNd2B6gsS9ALMfWrojBccYBjKsahscuqnX5u147zm6u4EsuVqA36R 96fw7KVzPCC/SBRbPgmjUQdzGlxuCfU8RDiqjZivAn2XuSEBFsjGykVR1LNIGczN MZH5lAzEQqhbpWWFjj/sPwlGOLS9Zw6DWRkZnzAW4hUKBQSkO7hmm+rrqvGl9LAv MnKNpozhGxdNHSJ2mj6jfkkeGBfzgTfLS+9yMGz0VS3JPT/l/jGANfz9VaR090/K vzoh1IzWFWJtpzMk/DutgYv2TSZi1/oQrBY+RM+A5lD2GCrUEudo2ScWfzllAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7ToOjf8oYGuB3RQ6ak03GTFEbbcwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAZMA0GCSqGSIb3DQEBCwUAA4IBAQBsiTRoFSM81pSursMOVJWLsAOuTTzxv87a CIiHy6Con6ZTVZMjZhIL4fFEtcUwW8+U91u4ZMMsJiaOreldW5Aph4MlDz468iu6 Kbz3Cdh4DIUR52A9ggl7+th0oMgSR9eRpL+buDpRP+RFsIDDqbMetGUaEoN9Bxz7 DqaCDdEhKMyBikAekozFnqh7J020UZ3v1X/d2bWraW4eBnBn7fIj6x5x0TB/gISD w75MpvLL0AwCvk2J3xBrV9wFaWCYIuzd9ZnWXlgAFujvM1Pt4XkJFg/T+KicteaC aypmqDj3a0dFHENWaGgy+mztFxYPlInqb7e0I6F0gZAM62E2tQmk -----END CERTIFICATE-----Generated at Mon Mar 2 15:58:41 2026 by rpki-client