$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031623a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031623a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: STIzVSiHvTNMUFcb7HW4/HEFgu7LV/uolISdEhhl7rI= Subject key identifier: 58:97:DD:89:C2:86:F7:73:C3:AF:07:7B:F9:91:AB:52:59:1E:18:A2 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 6DA36A8DB05D17B4064495AB67A802EC011CFFEF Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031623a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 04:00:03 +0000 ROA not before: Wed 28 Jan 2026 03:55:03 +0000 ROA not after: Wed 27 Jan 2027 04:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:901b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a3:6a:8d:b0:5d:17:b4:06:44:95:ab:67:a8:02:ec:01:1c:ff:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 03:55:03 2026 GMT Not After : Jan 27 04:00:03 2027 GMT Subject: CN=5897DD89C286F773C3AF077BF991AB52591E18A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3f:52:10:b1:0b:37:b3:9b:37:68:f5:ff:85: a9:c4:53:97:bb:94:f2:2f:dc:0b:4d:75:f0:3a:02: dc:75:eb:db:a7:91:21:d3:8a:ff:aa:25:cb:ee:b6: 95:52:1d:81:a5:cb:aa:a6:00:66:24:b0:d7:8d:88: 7b:68:40:ce:d3:c3:d0:0a:46:06:9e:a6:28:f9:dd: 0a:ce:61:1f:50:85:40:74:77:ae:77:61:72:47:86: cf:2c:ca:20:34:dd:8b:a9:9f:44:7f:5f:81:44:79: 7c:ef:ca:fa:b3:3e:f1:38:6f:c2:17:dd:35:51:fd: 5b:2d:de:2a:c9:c0:98:fe:72:7a:f5:09:33:73:1f: 3e:1a:c7:03:d1:11:ee:fc:d2:42:69:87:d1:7e:67: 2e:e6:08:ca:02:5b:2a:83:9b:3e:4b:96:56:b4:73: c8:b3:68:0d:6f:5f:e0:32:3e:24:d8:bb:27:b4:72: 0d:1c:01:b9:80:f9:5f:ba:e0:13:ee:da:b0:f7:a2: 43:7f:5b:8a:86:e8:fe:95:a5:e5:75:9a:f5:9f:f9: b7:1c:9c:af:32:88:bc:7f:29:61:ff:c0:45:7f:8e: c0:49:ae:78:8e:88:d1:42:55:1d:52:fb:25:5d:f8: 2a:57:00:85:a6:12:82:a7:ef:59:36:10:49:a8:76: a5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:97:DD:89:C2:86:F7:73:C3:AF:07:7B:F9:91:AB:52:59:1E:18:A2 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031623a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:901b::/48 Signature Algorithm: sha256WithRSAEncryption d2:f8:6c:e5:36:0e:f7:cc:fa:38:81:2e:bf:83:ea:e8:09:a3: 6f:a6:91:a0:27:0e:b4:d3:2c:ed:12:73:63:02:c5:84:a8:10: 6e:b2:b1:ec:97:c1:fe:9c:95:dd:b9:3d:44:e9:1f:b9:1a:0d: 1f:36:1e:16:6e:1f:a9:80:3e:77:91:89:c8:a1:3a:49:51:ab: 6d:ff:bd:c5:1c:06:3d:bd:61:7f:c3:84:0f:7b:c1:4e:43:0d: e9:d4:97:f3:12:b3:31:9f:b2:eb:8d:e0:a8:72:83:7c:9d:6d: a6:aa:a5:35:89:78:d3:f3:9a:6b:7c:7b:63:68:29:9d:d5:e0: e2:20:30:2e:75:d6:5d:92:ba:02:0e:d3:02:5d:c6:9a:cb:54: de:c1:eb:2f:fb:8b:91:15:96:5d:56:f3:2d:89:c8:cf:0d:8d: a9:9b:03:78:2e:58:ee:e5:7b:e9:a5:35:44:35:19:c5:55:1f: 92:15:ab:39:39:41:9b:18:0f:be:1e:65:cd:f6:f9:5f:4d:e2: ad:f7:d7:fb:23:2d:d2:b7:8a:a7:1f:3c:c3:01:0e:4d:4d:7d: 92:19:3b:ca:ae:45:2a:55:f8:ff:d5:78:b0:13:94:c4:07:36: c5:3c:d2:a6:9a:b8:d0:4f:e5:ac:ad:47:63:c3:c0:ec:41:8c: d6:b8:67:10 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbaNqjbBdF7QGRJWrZ6gC7AEc/+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMzU1MDNaFw0yNzAxMjcwNDAwMDNaMDMxMTAvBgNV BAMTKDU4OTdERDg5QzI4NkY3NzNDM0FGMDc3QkY5OTFBQjUyNTkxRTE4QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsP1IQsQs3s5s3aPX/hanEU5e7 lPIv3AtNdfA6Atx169unkSHTiv+qJcvutpVSHYGly6qmAGYksNeNiHtoQM7Tw9AK Rgaepij53QrOYR9QhUB0d653YXJHhs8syiA03Yupn0R/X4FEeXzvyvqzPvE4b8IX 3TVR/Vst3irJwJj+cnr1CTNzHz4axwPREe780kJph9F+Zy7mCMoCWyqDmz5Llla0 c8izaA1vX+AyPiTYuye0cg0cAbmA+V+64BPu2rD3okN/W4qG6P6VpeV1mvWf+bcc nK8yiLx/KWH/wEV/jsBJrniOiNFCVR1S+yVd+CpXAIWmEoKn71k2EEmodqX9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWJfdicKG93PDrwd7+ZGrUlkeGKIwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxNjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAbMA0GCSqGSIb3DQEBCwUAA4IBAQDS+GzlNg73zPo4gS6/g+roCaNvppGgJw60 0yztEnNjAsWEqBBusrHsl8H+nJXduT1E6R+5Gg0fNh4Wbh+pgD53kYnIoTpJUatt /73FHAY9vWF/w4QPe8FOQw3p1JfzErMxn7LrjeCocoN8nW2mqqU1iXjT85prfHtj aCmd1eDiIDAuddZdkroCDtMCXcaay1Tewesv+4uRFZZdVvMticjPDY2pmwN4Llju 5XvppTVENRnFVR+SFas5OUGbGA++HmXN9vlfTeKt99f7Iy3St4qnHzzDAQ5NTX2S GTvKrkUqVfj/1XiwE5TEBzbFPNKmmrjQT+WsrUdjw8DsQYzWuGcQ -----END CERTIFICATE-----Generated at Mon Mar 2 17:58:27 2026 by rpki-client