$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030343a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a333030343a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: l3Xe9DJNocb+9zSuPJro4YyXKCYcVdP6Ug2kux/i4oI= Subject key identifier: 1B:AA:83:17:03:EE:43:BA:81:2E:E9:CD:3A:09:C9:F5:E9:AC:46:C4 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 0B9468E82DB19CFD19E9F7920728ACA172B07E18 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030343a3a2f34382d3438203d3e20313333383430.roa Signing time: Sun 03 May 2026 02:47:50 +0000 ROA not before: Sun 03 May 2026 02:42:50 +0000 ROA not after: Sun 02 May 2027 02:47:50 +0000 asID: 133840 IP address blocks: 2404:e100:3004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:94:68:e8:2d:b1:9c:fd:19:e9:f7:92:07:28:ac:a1:72:b0:7e:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:50 2026 GMT Not After : May 2 02:47:50 2027 GMT Subject: CN=1BAA831703EE43BA812EE9CD3A09C9F5E9AC46C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d7:3f:7f:56:55:e1:c0:13:5a:15:7a:7b:80: 75:43:32:b3:49:35:78:63:47:42:6c:9d:0b:ba:0f: 5d:13:f2:b0:42:9a:8d:d6:cb:c4:6d:eb:44:23:3d: dc:89:6b:5b:06:dc:10:e9:60:bd:de:43:fb:7a:63: 77:89:c5:a3:d0:3b:db:68:e2:be:d4:f1:e3:72:3e: 30:f5:e9:9e:1f:d8:ce:04:5f:3c:59:f6:aa:13:27: 78:81:ec:8f:ee:cf:71:c3:af:22:b2:db:af:3d:85: 5d:65:be:5f:74:79:77:e9:63:d4:4b:a0:0b:f7:78: 73:a6:b1:4a:ae:f5:3d:4e:3d:bc:63:8d:3d:fc:0c: 59:1b:63:0a:40:09:97:89:24:d6:8a:4f:2a:ad:2f: 82:63:87:3c:db:2c:e6:04:71:4b:71:3f:8e:cc:b0: 1b:9b:a6:44:b4:09:0a:49:5e:12:43:3d:72:5d:df: 6e:46:a2:0a:2d:cb:be:79:8a:ca:4d:54:f0:9c:d8: 3e:ea:95:80:a8:15:ea:c0:e9:cb:a0:88:44:43:54: bc:b0:d9:6d:56:ce:b9:96:2a:d0:c2:3f:20:2d:d1: 29:fe:81:3f:96:a7:40:28:85:97:16:02:1c:b8:85: 66:56:b6:4e:9b:84:ad:2c:24:70:2a:83:17:bb:c0: d3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AA:83:17:03:EE:43:BA:81:2E:E9:CD:3A:09:C9:F5:E9:AC:46:C4 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030343a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3004::/48 Signature Algorithm: sha256WithRSAEncryption 6a:39:11:11:cb:31:69:ff:65:53:4c:42:3a:df:6a:3e:e5:5f: 41:c8:64:b0:67:cd:78:42:2a:fd:13:25:1e:37:3d:e5:4e:7e: 9a:81:05:b1:5a:39:63:73:cb:41:c5:04:a2:af:b5:c1:2a:c1: 34:6f:e3:4a:1a:74:7f:9e:bb:9e:8e:36:f7:a2:8f:ad:34:27: 1f:eb:d8:6c:9b:78:1f:08:14:fd:12:b0:ca:e0:a3:b3:02:52: 12:b6:7f:66:d2:27:f6:55:93:ac:e3:07:aa:eb:50:0f:87:8b: 64:21:01:4c:de:68:71:37:f3:8a:65:b2:7d:bf:50:34:70:fb: df:cf:62:3b:15:8c:d0:ad:75:1e:3e:49:87:76:71:3e:92:c5: 78:49:e2:c3:6f:5e:ab:25:ef:0b:62:91:ff:ed:26:2b:d5:af: ed:10:55:3a:50:de:c1:27:ed:4f:82:ec:43:3c:a3:7d:d8:3b: 33:08:a9:7f:7f:b0:d0:60:b6:8a:60:54:79:3b:c4:1c:a4:d2: 05:0d:3c:ff:a2:91:0c:c0:1a:2f:56:36:b9:ec:af:7e:cc:b0: b3:d5:63:11:c7:19:0e:43:47:d2:d1:a4:30:2f:35:bb:02:2d: 63:38:fc:03:a5:e1:18:06:9e:af:34:89:26:71:8f:fa:01:5c: 23:fa:f0:ba -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUC5Ro6C2xnP0Z6feSByisoXKwfhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTBaFw0yNzA1MDIwMjQ3NTBaMDMxMTAvBgNV BAMTKDFCQUE4MzE3MDNFRTQzQkE4MTJFRTlDRDNBMDlDOUY1RTlBQzQ2QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ1z9/VlXhwBNaFXp7gHVDMrNJ NXhjR0JsnQu6D10T8rBCmo3Wy8Rt60QjPdyJa1sG3BDpYL3eQ/t6Y3eJxaPQO9to 4r7U8eNyPjD16Z4f2M4EXzxZ9qoTJ3iB7I/uz3HDryKy2689hV1lvl90eXfpY9RL oAv3eHOmsUqu9T1OPbxjjT38DFkbYwpACZeJJNaKTyqtL4JjhzzbLOYEcUtxP47M sBubpkS0CQpJXhJDPXJd325Gogoty755ispNVPCc2D7qlYCoFerA6cugiERDVLyw 2W1WzrmWKtDCPyAt0Sn+gT+Wp0AohZcWAhy4hWZWtk6bhK0sJHAqgxe7wNOPAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUG6qDFwPuQ7qBLunNOgnJ9emsRsQwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAMAQwDQYJKoZIhvcNAQELBQADggEBAGo5ERHLMWn/ZVNMQjrfaj7lX0HIZLBn zXhCKv0TJR43PeVOfpqBBbFaOWNzy0HFBKKvtcEqwTRv40oadH+eu56ONveij600 Jx/r2GybeB8IFP0SsMrgo7MCUhK2f2bSJ/ZVk6zjB6rrUA+Hi2QhAUzeaHE384pl sn2/UDRw+9/PYjsVjNCtdR4+SYd2cT6SxXhJ4sNvXqsl7wtikf/tJivVr+0QVTpQ 3sEn7U+C7EM8o33YOzMIqX9/sNBgtopgVHk7xByk0gUNPP+ikQzAGi9WNrnsr37M sLPVYxHHGQ5DR9LRpDAvNbsCLWM4/AOl4RgGnq80iSZxj/oBXCP68Lo= -----END CERTIFICATE-----Generated at Wed May 13 07:01:20 2026 by rpki-client