$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: hXn0i7Nh2/rLMoCIDgyO5o3VucIUe6Jz3aHYSBC9lDA= Subject key identifier: 64:C4:4D:9C:19:F8:66:DD:C6:A2:EC:E9:2C:08:F7:07:2A:68:54:02 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 12111DF4626A3B05D57E301F349D23025F653D51 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 03:00:02 +0000 ROA not before: Wed 26 Feb 2025 02:55:02 +0000 ROA not after: Wed 25 Feb 2026 03:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:9019::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 20:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:11:1d:f4:62:6a:3b:05:d5:7e:30:1f:34:9d:23:02:5f:65:3d:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 02:55:02 2025 GMT Not After : Feb 25 03:00:02 2026 GMT Subject: CN=64C44D9C19F866DDC6A2ECE92C08F7072A685402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5f:7b:1b:6a:44:89:36:5d:bc:b5:e4:c6:44: b0:91:6b:8d:74:bf:4a:83:7e:65:7b:b8:15:68:0a: 72:94:c6:a4:50:85:7f:4f:d2:2b:27:10:d9:aa:1c: 4a:e8:2e:4f:fe:a3:31:0b:fe:4e:15:a5:c5:fe:63: 0a:db:fc:f4:37:e0:eb:ea:a2:e5:39:75:e4:6c:e2: 70:71:30:07:98:16:da:1b:49:0f:69:d8:d6:0c:f6: 05:2b:d8:7f:a6:61:78:69:e8:64:c6:0a:8e:3b:bd: aa:83:36:b9:c3:6d:92:94:ef:d0:31:16:36:f1:0c: ff:ed:aa:bf:62:10:7d:40:ff:fd:3f:da:ee:ad:7b: ee:bb:a0:f9:b8:b8:8a:77:45:bd:00:3c:10:a7:bc: de:d7:11:51:ad:e7:89:b9:89:94:fe:85:bb:2f:77: d0:11:db:76:03:07:aa:68:fd:c5:d4:cb:31:27:b2: b6:f4:91:2d:b1:a5:74:4a:66:f6:ea:f6:bd:2f:d9: df:77:43:37:5e:92:4b:fb:b1:81:a1:05:ae:c2:f0: 7a:80:82:e2:42:01:a7:2c:2c:46:6b:02:16:61:50: 86:ac:0e:d7:f4:08:99:f9:5b:06:ca:fc:3f:6c:d5: 75:52:8e:a7:a5:3a:18:ee:ca:d3:62:0c:a6:ae:87: d2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C4:4D:9C:19:F8:66:DD:C6:A2:EC:E9:2C:08:F7:07:2A:68:54:02 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031393a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9019::/48 Signature Algorithm: sha256WithRSAEncryption d7:bf:ec:37:69:57:e4:8c:25:2d:55:a0:b4:af:d4:24:20:43: 1b:63:a1:d1:29:33:37:45:59:5d:2c:a2:11:e9:ac:e9:c3:0d: a1:f4:2e:c4:dc:3b:6c:a9:43:e6:63:e6:e3:fa:95:ca:5e:0c: 64:d5:91:2a:e9:be:9d:67:eb:02:4c:a0:77:06:6f:73:44:0d: a6:99:38:80:28:f9:53:a8:95:ef:32:fb:6c:ce:06:0b:9b:e9: 81:12:67:95:7a:8c:a0:55:06:6a:2d:35:c4:47:be:72:3b:63: c5:ee:d6:55:cb:a7:7d:f1:b4:94:5c:e8:50:f3:b7:0f:18:57: b7:55:34:d1:27:08:7e:70:05:76:a8:05:d4:2c:ec:86:b8:04: 6c:26:0e:21:4e:78:df:56:73:f9:65:70:30:31:f0:48:32:a3: 7d:dd:5b:47:c0:83:84:e3:5a:95:03:cb:d2:e6:38:05:15:26: 35:bd:88:0f:64:62:09:3d:02:07:49:63:14:75:2d:ad:fb:f1: 9f:93:6f:5b:25:bd:95:29:b6:3e:46:0d:01:98:00:12:16:34: 0d:0e:0d:c9:d0:6c:81:ac:29:77:e1:7b:b4:cd:28:00:14:59: 3e:90:d6:d4:45:15:53:0f:8b:fc:2a:a9:d3:39:04:91:8d:de: 45:d6:58:8b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEhEd9GJqOwXVfjAfNJ0jAl9lPVEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMjU1MDJaFw0yNjAyMjUwMzAwMDJaMDMxMTAvBgNV BAMTKDY0QzQ0RDlDMTlGODY2RERDNkEyRUNFOTJDMDhGNzA3MkE2ODU0MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVX3sbakSJNl28teTGRLCRa410 v0qDfmV7uBVoCnKUxqRQhX9P0isnENmqHEroLk/+ozEL/k4VpcX+Ywrb/PQ34Ovq ouU5deRs4nBxMAeYFtobSQ9p2NYM9gUr2H+mYXhp6GTGCo47vaqDNrnDbZKU79Ax FjbxDP/tqr9iEH1A//0/2u6te+67oPm4uIp3Rb0APBCnvN7XEVGt54m5iZT+hbsv d9AR23YDB6po/cXUyzEnsrb0kS2xpXRKZvbq9r0v2d93Qzdekkv7sYGhBa7C8HqA guJCAacsLEZrAhZhUIasDtf0CJn5WwbK/D9s1XVSjqelOhjuytNiDKauh9JTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZMRNnBn4Zt3GouzpLAj3BypoVAIwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAZMA0GCSqGSIb3DQEBCwUAA4IBAQDXv+w3aVfkjCUtVaC0r9QkIEMbY6HRKTM3 RVldLKIR6azpww2h9C7E3DtsqUPmY+bj+pXKXgxk1ZEq6b6dZ+sCTKB3Bm9zRA2m mTiAKPlTqJXvMvtszgYLm+mBEmeVeoygVQZqLTXER75yO2PF7tZVy6d98bSUXOhQ 87cPGFe3VTTRJwh+cAV2qAXULOyGuARsJg4hTnjfVnP5ZXAwMfBIMqN93VtHwIOE 41qVA8vS5jgFFSY1vYgPZGIJPQIHSWMUdS2t+/Gfk29bJb2VKbY+Rg0BmAASFjQN Dg3J0GyBrCl34Xu0zSgAFFk+kNbURRVTD4v8KqnTOQSRjd5F1liL -----END CERTIFICATE-----Generated at Sat Apr 26 22:52:35 2025 by rpki-client