$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: 7PC5yUWVkxaFBFncB8YjDQwXNAyIGFxj1rN/Th2rMIE= Subject key identifier: EF:D6:E5:6C:7B:EB:64:23:07:D6:20:54:DD:72:B0:9D:04:7D:C6:02 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 03B470BEBFF19AE4E27AB0DE3EBB69A0659374C3 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:57 +0000 ROA not before: Sun 03 May 2026 02:42:57 +0000 ROA not after: Sun 02 May 2027 02:47:57 +0000 asID: 55685 IP address blocks: 2404:e100:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b4:70:be:bf:f1:9a:e4:e2:7a:b0:de:3e:bb:69:a0:65:93:74:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:57 2026 GMT Not After : May 2 02:47:57 2027 GMT Subject: CN=EFD6E56C7BEB642307D62054DD72B09D047DC602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fb:c7:b5:7d:e7:fc:bd:4a:75:11:92:88:86: a0:da:de:73:29:3b:a5:48:d6:17:d4:3b:fb:48:51: ec:be:67:36:5a:b4:6a:9b:07:fb:92:5e:e8:77:cf: 49:d9:4b:6e:ff:66:0c:e9:6b:a1:3d:ae:fd:ba:6f: 4f:13:b5:1d:32:8c:c8:ca:45:ad:8e:c9:6c:1d:e3: cd:14:44:ee:a0:ce:cd:8b:18:1a:bb:9f:37:e4:ae: 84:35:0b:b7:16:56:e7:af:24:62:81:d7:6e:d3:e6: 96:4e:ac:3e:fd:12:2a:0e:57:f1:f6:32:c0:33:a0: 3b:59:1d:18:fc:a8:c1:95:d7:98:ad:d2:95:49:40: c2:61:a1:84:f6:38:58:ae:80:b6:d5:0f:aa:1e:9a: d5:ad:9c:5a:6f:ff:e2:db:90:ea:12:60:79:5b:92: 44:9e:75:e3:ce:40:f6:47:9b:8a:d8:67:6a:e8:e7: d6:1b:fe:f8:d3:86:fe:65:e6:76:6a:fb:19:3d:a8: 66:77:6d:0f:4b:29:6f:88:b7:ad:f6:b2:33:41:c7: d3:99:a8:f4:78:85:35:93:e9:68:36:f5:9e:4a:da: 00:e1:54:04:8f:70:90:dc:1f:94:f0:f3:6c:9f:20: b6:82:7c:19:e7:d9:45:f2:7a:56:3d:8c:8b:a9:37: d6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D6:E5:6C:7B:EB:64:23:07:D6:20:54:DD:72:B0:9D:04:7D:C6:02 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:2::/48 Signature Algorithm: sha256WithRSAEncryption 78:d8:a1:28:d4:2f:be:57:1a:a8:2c:95:4e:d5:cd:6c:b8:77: fe:b4:35:b1:65:e2:ca:76:2c:cd:3c:56:78:8f:aa:81:a5:7c: 72:69:80:91:6a:52:56:ae:72:ff:6a:b0:37:44:ea:c5:63:5a: ec:8c:e4:7e:8c:50:ce:b9:e5:41:fe:71:cc:75:48:ef:a5:42: 1e:87:9b:19:5c:99:50:c2:30:7d:b2:c0:94:7d:86:f3:f5:f9: 1f:ab:e0:74:ea:ee:3e:9a:83:86:f6:cf:ea:10:65:5e:85:55: bb:e1:26:e4:a6:d3:f9:bd:24:74:6f:41:c2:d5:e7:53:75:2b: 97:6a:b8:f0:d9:98:a9:81:04:41:74:eb:7d:7a:34:a1:b9:a6: eb:48:c0:cb:07:83:00:00:f7:d5:6b:ac:46:e6:f5:53:18:29: 66:4d:79:ae:f9:1b:45:a8:df:e4:79:da:1e:3b:75:f1:78:b2: e5:7d:76:aa:c6:4a:6c:1d:74:41:1d:f0:9c:e6:37:00:bb:32: 2c:2b:a0:c9:ef:c8:e4:b7:42:65:fd:ec:3d:25:b8:b9:0f:35: ac:cc:d3:96:c0:bf:f3:c7:3a:8b:36:e5:f4:5f:89:c5:a5:8c: 80:93:f1:b5:84:d3:61:15:95:e2:c6:cb:7a:59:3b:ea:08:d2: c9:25:01:fa -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUA7Rwvr/xmuTierDePrtpoGWTdMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTdaFw0yNzA1MDIwMjQ3NTdaMDMxMTAvBgNV BAMTKEVGRDZFNTZDN0JFQjY0MjMwN0Q2MjA1NERENzJCMDlEMDQ3REM2MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb+8e1fef8vUp1EZKIhqDa3nMp O6VI1hfUO/tIUey+ZzZatGqbB/uSXuh3z0nZS27/Zgzpa6E9rv26b08TtR0yjMjK Ra2OyWwd480URO6gzs2LGBq7nzfkroQ1C7cWVuevJGKB127T5pZOrD79EioOV/H2 MsAzoDtZHRj8qMGV15it0pVJQMJhoYT2OFiugLbVD6oemtWtnFpv/+LbkOoSYHlb kkSedePOQPZHm4rYZ2ro59Yb/vjThv5l5nZq+xk9qGZ3bQ9LKW+It632sjNBx9OZ qPR4hTWT6Wg29Z5K2gDhVASPcJDcH5Tw82yfILaCfBnn2UXyelY9jIupN9ZLAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU79blbHvrZCMH1iBU3XKwnQR9xgIwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAACMA0G CSqGSIb3DQEBCwUAA4IBAQB42KEo1C++VxqoLJVO1c1suHf+tDWxZeLKdizNPFZ4 j6qBpXxyaYCRalJWrnL/arA3ROrFY1rsjOR+jFDOueVB/nHMdUjvpUIeh5sZXJlQ wjB9ssCUfYbz9fkfq+B06u4+moOG9s/qEGVehVW74SbkptP5vSR0b0HC1edTdSuX arjw2ZipgQRBdOt9ejShuabrSMDLB4MAAPfVa6xG5vVTGClmTXmu+RtFqN/kedoe O3XxeLLlfXaqxkpsHXRBHfCc5jcAuzIsK6DJ78jkt0Jl/ew9Jbi5DzWszNOWwL/z xzqLNuX0X4nFpYyAk/G1hNNhFZXixst6WTvqCNLJJQH6 -----END CERTIFICATE-----Generated at Wed May 13 03:15:29 2026 by rpki-client