$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030313a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a333030313a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: gxqVgyPUiSzwf0u2VTIvrDekpuZp70wS4sOOjZvw6YQ= Subject key identifier: 00:68:B8:67:BF:C5:0F:B8:77:6F:04:E2:BC:10:D5:CB:13:52:20:A4 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 2488DC3881228674E6A05679A3CD4B979592373D Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030313a3a2f34382d3438203d3e20313333383430.roa Signing time: Sun 03 May 2026 02:47:55 +0000 ROA not before: Sun 03 May 2026 02:42:55 +0000 ROA not after: Sun 02 May 2027 02:47:55 +0000 asID: 133840 IP address blocks: 2404:e100:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:88:dc:38:81:22:86:74:e6:a0:56:79:a3:cd:4b:97:95:92:37:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:55 2026 GMT Not After : May 2 02:47:55 2027 GMT Subject: CN=0068B867BFC50FB8776F04E2BC10D5CB135220A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f0:13:e2:1f:07:f3:36:8d:a9:22:c4:71:2f: c6:f8:5d:4a:39:c7:2b:15:26:58:cb:cf:c6:b6:65: ca:a4:d8:82:85:21:20:5a:ba:0a:00:a4:e9:33:3c: 1b:47:1f:be:7c:48:d4:f9:53:6c:df:46:d9:c9:68: df:49:13:a2:f2:6b:25:88:87:bb:cb:76:31:ab:d4: 00:d1:40:bf:77:22:db:9b:6f:1e:d7:c1:58:b3:b3: 4a:39:a2:65:ab:9e:61:66:00:4a:6d:c2:66:2e:f4: 75:ff:82:71:7c:27:8b:70:8e:5f:1b:3b:8f:f6:89: 9d:fe:a3:da:3f:d1:a2:f8:81:00:3e:6b:c4:80:88: 47:ce:d0:29:9f:0a:f7:a4:e7:50:a0:ac:86:07:3c: a0:00:74:42:a5:52:6e:88:4d:3f:f6:52:9b:00:14: eb:38:54:a4:95:12:48:e4:79:c7:8a:e4:47:47:98: 6c:6d:d6:bf:f5:ec:e4:1c:09:5a:6b:01:91:0f:fb: 6a:90:4c:bf:c9:61:9a:b0:99:75:62:ea:63:89:48: 14:a8:6d:69:b9:9e:42:10:3a:79:21:88:46:95:83: 4a:a1:1b:ee:75:8a:0f:08:08:48:b1:85:2a:40:ff: 8b:a1:d0:02:ed:48:87:cf:6a:a4:54:36:24:4b:ae: 8f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:68:B8:67:BF:C5:0F:B8:77:6F:04:E2:BC:10:D5:CB:13:52:20:A4 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030313a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3001::/48 Signature Algorithm: sha256WithRSAEncryption ce:bd:96:20:aa:e5:a2:18:de:f9:91:f5:ca:4f:a2:78:a0:39: f9:90:29:73:de:61:be:53:27:ac:d8:f6:6b:5d:38:c3:43:04: 10:69:40:cc:d7:25:3a:c4:1d:2f:5f:36:34:53:0d:b3:bc:32: 89:13:10:08:5b:fe:2e:e1:6d:66:ee:97:36:48:66:91:21:63: 44:f5:c6:18:fa:70:29:6b:9d:e1:55:77:f1:ce:62:da:9f:43: 7b:21:b1:bb:7e:9b:cc:57:79:2d:63:d5:86:c0:c5:fb:9f:9b: 34:f6:8e:fc:e2:77:9b:dd:ee:f4:3a:10:58:f3:3c:20:7a:b1: f4:df:81:8d:e1:97:c2:ce:eb:8f:67:7a:20:da:2d:ea:2f:52: 6e:c4:ec:80:a3:ff:57:df:84:cb:ef:92:31:b0:06:15:87:2e: 3b:10:53:7d:3a:29:bb:be:ab:94:6b:c3:37:41:24:32:ab:a6: 49:8e:bf:85:57:b8:c5:13:b9:01:5f:b5:0f:a9:fd:b1:af:d9: 99:15:56:cd:9a:8b:a8:79:8d:3e:23:cf:17:b6:97:aa:35:b2: 88:45:80:eb:41:89:50:1a:4d:e5:16:e0:a0:3b:81:af:6e:76: e4:91:de:ef:41:c3:aa:ad:eb:99:93:99:b8:65:28:10:1c:c9: 03:e8:13:b8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJIjcOIEihnTmoFZ5o81Ll5WSNz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTVaFw0yNzA1MDIwMjQ3NTVaMDMxMTAvBgNV BAMTKDAwNjhCODY3QkZDNTBGQjg3NzZGMDRFMkJDMTBENUNCMTM1MjIwQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs8BPiHwfzNo2pIsRxL8b4XUo5 xysVJljLz8a2Zcqk2IKFISBaugoApOkzPBtHH758SNT5U2zfRtnJaN9JE6LyayWI h7vLdjGr1ADRQL93Itubbx7XwVizs0o5omWrnmFmAEptwmYu9HX/gnF8J4twjl8b O4/2iZ3+o9o/0aL4gQA+a8SAiEfO0CmfCvek51CgrIYHPKAAdEKlUm6ITT/2UpsA FOs4VKSVEkjkeceK5EdHmGxt1r/17OQcCVprAZEP+2qQTL/JYZqwmXVi6mOJSBSo bWm5nkIQOnkhiEaVg0qhG+51ig8ICEixhSpA/4uh0ALtSIfPaqRUNiRLro9VAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUAGi4Z7/FD7h3bwTivBDVyxNSIKQwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAMAEwDQYJKoZIhvcNAQELBQADggEBAM69liCq5aIY3vmR9cpPonigOfmQKXPe Yb5TJ6zY9mtdOMNDBBBpQMzXJTrEHS9fNjRTDbO8MokTEAhb/i7hbWbulzZIZpEh Y0T1xhj6cClrneFVd/HOYtqfQ3shsbt+m8xXeS1j1YbAxfufmzT2jvzid5vd7vQ6 EFjzPCB6sfTfgY3hl8LO649neiDaLeovUm7E7ICj/1ffhMvvkjGwBhWHLjsQU306 Kbu+q5RrwzdBJDKrpkmOv4VXuMUTuQFftQ+p/bGv2ZkVVs2ai6h5jT4jzxe2l6o1 sohFgOtBiVAaTeUW4KA7ga9uduSR3u9Bw6qt65mTmbhlKBAcyQPoE7g= -----END CERTIFICATE-----Generated at Wed May 13 09:09:03 2026 by rpki-client