$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a3a2f33322d3438203d3e203338353236.roa File: 323430353a333734303a3a2f33322d3438203d3e203338353236.roa (raw, json) Hash identifier: P4m/UM3AyMTBHNlxf7RHOpOyzuUkXvAN4RTNTNe3ktI= Subject key identifier: C8:D2:59:89:F4:96:84:D9:D2:A6:17:73:A2:AE:B8:EE:D9:D4:EF:C7 Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 5FC24423197C193953CD97BABD580D4DB7B6AF56 Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a3a2f33322d3438203d3e203338353236.roa Signing time: Sat 28 Jun 2025 04:00:01 +0000 ROA not before: Sat 28 Jun 2025 03:55:01 +0000 ROA not after: Sat 27 Jun 2026 04:00:01 +0000 asID: 38526 IP address blocks: 2405:3740::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 06:46:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c2:44:23:19:7c:19:39:53:cd:97:ba:bd:58:0d:4d:b7:b6:af:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Jun 28 03:55:01 2025 GMT Not After : Jun 27 04:00:01 2026 GMT Subject: CN=C8D25989F49684D9D2A61773A2AEB8EED9D4EFC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ba:7f:0d:15:9c:5b:8b:b3:4e:d9:7a:67:b8: cb:11:7f:64:89:f1:9e:78:83:ca:6f:a8:3d:bb:09: 3c:73:6f:bf:94:56:03:7e:ac:ca:0e:66:b5:28:90: 79:46:36:a0:2b:84:4b:d8:a3:59:a2:dd:af:af:cb: f4:96:ec:bc:40:49:4b:4b:a6:5d:f6:5d:69:46:ba: 1a:e9:d8:51:ee:54:46:cb:27:dc:fa:39:ce:9a:fe: 78:15:7e:59:ae:97:36:a3:1e:f4:d3:8f:2f:ad:66: e8:a2:d2:8c:7d:06:da:c5:b4:4c:7d:49:5a:3e:d5: f5:90:0d:67:d1:f1:02:5a:76:7e:82:78:4c:7f:f7: 48:10:b5:1a:d6:c1:be:ec:82:b9:7d:24:89:1e:7f: b9:90:9f:b6:20:f5:90:66:fe:68:77:6f:6d:50:0d: 85:5c:c6:fb:bd:b5:a4:69:79:9d:4e:72:91:6e:bd: 9d:d6:1a:e4:54:c2:8a:cc:d7:89:62:c3:1c:1d:62: 24:fb:a5:8d:3c:ea:ab:d4:3c:6d:4a:32:b3:ef:de: e4:b7:56:fe:b2:90:d6:56:c0:d0:d2:fa:85:2d:6e: 72:ed:90:30:46:7d:33:b2:f7:04:f4:87:a1:3b:74: b1:60:d3:8a:9b:16:10:a9:83:32:ad:52:5d:68:b3: c7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D2:59:89:F4:96:84:D9:D2:A6:17:73:A2:AE:B8:EE:D9:D4:EF:C7 X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a3a2f33322d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740::/32 Signature Algorithm: sha256WithRSAEncryption 0a:5e:00:16:e2:2d:9b:7c:76:61:8f:67:b1:aa:d8:21:4c:f1: 89:3a:42:cf:d1:0d:90:b9:d9:73:cd:23:ec:6f:68:c2:6c:77: 36:e1:57:13:5d:7a:db:3e:f9:28:46:80:78:a1:1b:ec:a5:61: e8:4f:19:e5:ea:e9:9c:90:d4:2f:8c:5b:c0:f6:bb:5c:f0:cc: 60:27:b4:1d:f5:35:e7:61:59:7f:6d:c5:60:47:e4:ee:53:52: 07:6c:58:5d:bc:12:0f:83:d0:e6:3a:3b:5c:ff:a5:2d:44:66: 03:64:2d:59:4c:10:dc:1c:48:4e:05:67:61:e8:76:0f:1e:b1: bf:b7:23:d4:08:a4:60:4f:6e:28:34:74:29:68:17:85:0c:bc: 37:dd:10:c3:98:e3:a1:4b:5d:6f:33:96:da:5d:61:4a:d9:a5: 6f:41:f4:4f:3e:1f:18:d0:25:0f:4a:9a:59:10:80:60:56:bf: 3d:8e:f1:7c:34:1a:f8:bb:d3:de:87:ec:a1:45:5b:05:7d:88: 82:9c:41:bf:92:be:38:aa:81:56:20:82:c0:cc:7b:07:9e:93: 75:36:a7:62:ad:74:10:5a:db:6f:69:59:5d:11:9b:c3:41:d8: 69:93:c3:b0:81:43:06:d2:67:0f:06:5c:47:b9:21:6e:cb:a6: 8a:6d:ca:d2 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUX8JEIxl8GTlTzZe6vVgNTbe2r1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTA2MjgwMzU1MDFaFw0yNjA2MjcwNDAwMDFaMDMxMTAvBgNV BAMTKEM4RDI1OTg5RjQ5Njg0RDlEMkE2MTc3M0EyQUVCOEVFRDlENEVGQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEun8NFZxbi7NO2XpnuMsRf2SJ 8Z54g8pvqD27CTxzb7+UVgN+rMoOZrUokHlGNqArhEvYo1mi3a+vy/SW7LxASUtL pl32XWlGuhrp2FHuVEbLJ9z6Oc6a/ngVflmulzajHvTTjy+tZuii0ox9BtrFtEx9 SVo+1fWQDWfR8QJadn6CeEx/90gQtRrWwb7sgrl9JIkef7mQn7Yg9ZBm/mh3b21Q DYVcxvu9taRpeZ1OcpFuvZ3WGuRUworM14liwxwdYiT7pY086qvUPG1KMrPv3uS3 Vv6ykNZWwNDS+oUtbnLtkDBGfTOy9wT0h6E7dLFg04qbFhCpgzKtUl1os8dJAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUyNJZifSWhNnSphdzoq647tnU78cwHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzNTMyMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBTdAMA0GCSqGSIb3 DQEBCwUAA4IBAQAKXgAW4i2bfHZhj2exqtghTPGJOkLP0Q2QudlzzSPsb2jCbHc2 4VcTXXrbPvkoRoB4oRvspWHoTxnl6umckNQvjFvA9rtc8MxgJ7Qd9TXnYVl/bcVg R+TuU1IHbFhdvBIPg9DmOjtc/6UtRGYDZC1ZTBDcHEhOBWdh6HYPHrG/tyPUCKRg T24oNHQpaBeFDLw33RDDmOOhS11vM5baXWFK2aVvQfRPPh8Y0CUPSppZEIBgVr89 jvF8NBr4u9Peh+yhRVsFfYiCnEG/kr44qoFWIILAzHsHnpN1NqdirXQQWttvaVld EZvDQdhpk8OwgUMG0mcPBlxHuSFuy6aKbcrS -----END CERTIFICATE-----Generated at Tue Jul 1 09:46:31 2025 by rpki-client