$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031633a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031633a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: eR4CYVeqTNAw4+meh4yb63RvyrEr7h8VKTKq0njb0pc= Subject key identifier: FE:90:5E:43:39:82:11:C3:22:0A:22:C6:05:EE:72:1F:28:09:A6:8C Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 1A6A1301050B82533C2294AFE8FC11D74F57A16F Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031633a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 28 Jan 2026 03:00:02 +0000 ROA not before: Wed 28 Jan 2026 02:55:02 +0000 ROA not after: Wed 27 Jan 2027 03:00:02 +0000 asID: 38526 IP address blocks: 2405:3740:901c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 20:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:6a:13:01:05:0b:82:53:3c:22:94:af:e8:fc:11:d7:4f:57:a1:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jan 28 02:55:02 2026 GMT Not After : Jan 27 03:00:02 2027 GMT Subject: CN=FE905E43398211C3220A22C605EE721F2809A68C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:38:f1:fe:54:13:00:69:00:f1:59:e9:ff:84: 86:9b:fd:4d:60:a2:6e:8a:f9:f8:1d:34:23:2c:25: 44:53:4d:6b:27:55:4f:e7:7c:dd:b4:7b:c6:e6:5f: 2b:47:72:49:22:cf:85:2c:8a:57:f5:eb:01:7b:09: fa:0e:5d:39:a2:f0:c3:9d:8b:02:11:48:21:0c:5d: c9:90:64:1e:c7:84:f1:3e:6d:38:b2:12:ae:a6:ab: 5c:84:4c:c8:c6:21:69:bd:3f:01:c2:6c:55:76:06: 4a:25:33:c5:67:13:a4:da:ad:06:a0:77:18:ce:71: 0c:4e:d8:0d:d8:54:7e:e8:dd:a9:ca:ab:71:54:43: 35:c1:51:df:9b:41:c8:83:23:47:78:31:ca:25:49: e4:19:9f:f1:78:d0:76:b4:31:78:37:eb:cf:9d:35: ed:f9:c4:04:e7:fc:6c:7a:ca:2d:28:e2:41:0f:71: 0a:cd:e9:db:3d:c8:db:a8:31:3c:e5:ef:0f:30:85: b0:cc:fa:e5:33:c5:4d:19:14:e1:c0:2c:60:b9:11: ff:59:33:0e:ea:63:ac:17:05:22:43:e6:54:4d:c0: e9:85:e3:c1:ff:32:08:7c:f1:94:f0:e8:c6:43:40: ae:e9:89:8c:a3:cd:1a:32:4d:7f:fa:7b:bc:0e:2c: 4f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:90:5E:43:39:82:11:C3:22:0A:22:C6:05:EE:72:1F:28:09:A6:8C X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031633a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:901c::/48 Signature Algorithm: sha256WithRSAEncryption 7c:71:6a:be:f4:f0:a7:b3:08:4f:37:62:51:a3:50:1e:b9:f5: 10:b7:f2:60:c5:03:0b:a1:f4:72:d0:ba:8d:b5:e9:48:7f:75: de:d9:1c:b3:cd:e7:07:c1:30:e5:73:f7:21:cb:e3:91:6b:9c: cf:5e:41:af:9c:7e:b6:3f:ab:fb:60:d8:9f:9e:db:18:0c:66: f3:5d:9b:e7:b0:13:ac:07:ab:60:4d:4f:1a:21:7a:4a:35:99: 7a:d7:3a:9d:51:dc:42:23:4b:5b:00:ed:0a:d9:d1:68:c3:c1: 30:c1:28:64:1c:cb:3d:b3:d7:4c:9d:3b:c2:2f:3f:00:ab:62: 66:b4:50:ba:4c:b4:2e:81:1b:82:58:fe:57:80:44:a1:62:ae: a8:07:f2:d9:6b:d3:f6:4e:e5:e7:dd:8f:3d:6d:e7:93:5f:ca: 64:3e:a6:0a:89:a2:30:d4:06:e8:ac:44:15:52:16:05:ec:92: 75:44:76:a4:84:cd:21:97:a6:34:97:bb:9c:7d:62:c9:8d:35: f8:23:fc:b4:8e:5e:5e:a9:00:87:d1:a8:55:07:9c:ce:75:c6: 9e:1d:85:3d:c6:7a:06:25:91:73:1d:19:0e:6b:32:bd:c6:78: 08:ec:fa:0b:f9:3b:eb:1e:95:e6:d9:dc:dc:15:21:f6:78:2f: ed:06:6b:19 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGmoTAQULglM8IpSv6PwR109XoW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNjAxMjgwMjU1MDJaFw0yNzAxMjcwMzAwMDJaMDMxMTAvBgNV BAMTKEZFOTA1RTQzMzk4MjExQzMyMjBBMjJDNjA1RUU3MjFGMjgwOUE2OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVOPH+VBMAaQDxWen/hIab/U1g om6K+fgdNCMsJURTTWsnVU/nfN20e8bmXytHckkiz4Usilf16wF7CfoOXTmi8MOd iwIRSCEMXcmQZB7HhPE+bTiyEq6mq1yETMjGIWm9PwHCbFV2BkolM8VnE6TarQag dxjOcQxO2A3YVH7o3anKq3FUQzXBUd+bQciDI0d4McolSeQZn/F40Ha0MXg368+d Ne35xATn/Gx6yi0o4kEPcQrN6ds9yNuoMTzl7w8whbDM+uUzxU0ZFOHALGC5Ef9Z Mw7qY6wXBSJD5lRNwOmF48H/Mgh88ZTw6MZDQK7piYyjzRoyTX/6e7wOLE+dAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU/pBeQzmCEcMiCiLGBe5yHygJpowwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxNjMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAcMA0GCSqGSIb3DQEBCwUAA4IBAQB8cWq+9PCnswhPN2JRo1AeufUQt/JgxQML ofRy0LqNtelIf3Xe2RyzzecHwTDlc/chy+ORa5zPXkGvnH62P6v7YNifntsYDGbz XZvnsBOsB6tgTU8aIXpKNZl61zqdUdxCI0tbAO0K2dFow8EwwShkHMs9s9dMnTvC Lz8Aq2JmtFC6TLQugRuCWP5XgEShYq6oB/LZa9P2TuXn3Y89beeTX8pkPqYKiaIw 1AborEQVUhYF7JJ1RHakhM0hl6Y0l7ucfWLJjTX4I/y0jl5eqQCH0ahVB5zOdcae HYU9xnoGJZFzHRkOazK9xngI7PoL+TvrHpXm2dzcFSH2eC/tBmsZ -----END CERTIFICATE-----Generated at Mon Mar 2 21:58:11 2026 by rpki-client