$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030373a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a333030373a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: ZinyWF6/OyM+qIB4ybFpsxZf4hZ/U3ElqALdBB5MFdU= Subject key identifier: 77:D2:FD:FC:43:03:6D:9B:3B:3B:69:43:8F:8C:66:B0:FC:47:EB:0C Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 1DD8C8DF5E703D66B08804BC4C4BA36BCE9A8024 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030373a3a2f34382d3438203d3e20313333383430.roa Signing time: Sun 03 May 2026 02:47:49 +0000 ROA not before: Sun 03 May 2026 02:42:49 +0000 ROA not after: Sun 02 May 2027 02:47:49 +0000 asID: 133840 IP address blocks: 2404:e100:3007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d8:c8:df:5e:70:3d:66:b0:88:04:bc:4c:4b:a3:6b:ce:9a:80:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:49 2026 GMT Not After : May 2 02:47:49 2027 GMT Subject: CN=77D2FDFC43036D9B3B3B69438F8C66B0FC47EB0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:33:ba:0b:de:b2:3a:46:7f:05:49:aa:a0:6c: 49:f1:96:a4:18:50:f3:f5:29:42:09:26:c5:4f:6d: 8d:6c:ad:6e:63:e0:9f:95:19:8b:b9:4e:1e:a5:a9: 1c:27:f3:cd:26:6d:37:d9:ba:43:20:52:cc:31:b6: 15:4a:69:9e:74:29:62:e6:97:8d:1c:d0:fb:47:6b: c0:0b:40:57:cd:75:b0:05:16:ce:27:78:11:73:c8: f1:4a:bc:f9:9c:f7:3a:b5:8e:2e:a9:96:7c:79:0e: 96:24:c5:8f:da:f4:8b:09:69:4b:d8:68:f1:a0:3d: fa:ca:4b:be:2f:8b:f2:97:af:ba:45:3b:d9:01:cc: c9:ec:6e:41:7c:a2:8a:94:36:1f:33:c1:18:9c:89: 38:5a:1e:7f:65:b2:06:19:9b:24:75:ab:29:63:40: 03:d3:b8:da:cd:3c:5f:f1:a4:4a:8c:14:7f:6f:fd: 46:d4:2d:06:f4:f7:88:66:e4:98:aa:1b:48:c4:34: 84:68:e7:f0:46:85:df:65:b4:51:ba:cd:6d:e2:cf: d4:e0:44:72:dc:9a:85:0c:3b:78:28:90:ac:18:29: 94:41:45:47:4a:58:e2:95:5f:e0:6d:00:8e:f7:b7: a3:c0:5c:b1:57:d8:f3:aa:02:3d:48:42:7e:a4:8a: f9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D2:FD:FC:43:03:6D:9B:3B:3B:69:43:8F:8C:66:B0:FC:47:EB:0C X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030373a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3007::/48 Signature Algorithm: sha256WithRSAEncryption 74:8c:28:3b:d3:65:be:03:50:a9:a1:81:00:d9:de:26:f8:8d: 2a:e0:d3:eb:cb:24:34:ba:07:12:95:2f:01:54:ed:e2:6c:b7: c8:c8:74:4d:a4:de:c9:8e:5b:92:f6:16:aa:81:56:9c:73:c1: 88:91:0a:42:4a:f9:71:06:94:ee:6a:35:3f:51:e6:08:61:4b: a4:42:d6:d7:76:fe:50:c5:e4:da:cf:36:e0:3e:97:7a:f4:cb: f4:dc:82:ac:94:84:25:6b:b4:a0:ff:12:ee:67:01:6f:ff:2b: 9e:06:34:87:24:b5:f8:26:71:b3:a2:32:8e:c5:d6:49:d6:15: 73:f8:91:e0:05:bf:33:a6:0f:63:47:d6:62:b9:fd:45:f1:5e: b9:80:6c:e4:31:01:09:d0:b7:cd:18:af:bc:43:7d:ba:5d:d7: e8:4a:d6:b7:ad:e0:88:59:7f:54:f5:1b:18:81:36:7e:7e:20: 3f:25:81:2f:c8:79:37:f4:d6:0c:1f:31:84:f4:29:19:95:1c: f6:8c:8d:ab:a5:bd:2b:dd:15:e6:2c:d2:b6:7f:e1:69:71:69: d6:a9:e8:f6:08:55:34:44:6d:a4:50:b6:c4:36:d8:c8:81:06: 53:ad:4a:3c:0e:70:93:28:d8:21:ee:93:fd:a4:a7:39:57:e9: 70:95:c1:40 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUHdjI315wPWawiAS8TEuja86agCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNDlaFw0yNzA1MDIwMjQ3NDlaMDMxMTAvBgNV BAMTKDc3RDJGREZDNDMwMzZEOUIzQjNCNjk0MzhGOEM2NkIwRkM0N0VCMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6M7oL3rI6Rn8FSaqgbEnxlqQY UPP1KUIJJsVPbY1srW5j4J+VGYu5Th6lqRwn880mbTfZukMgUswxthVKaZ50KWLm l40c0PtHa8ALQFfNdbAFFs4neBFzyPFKvPmc9zq1ji6plnx5DpYkxY/a9IsJaUvY aPGgPfrKS74vi/KXr7pFO9kBzMnsbkF8ooqUNh8zwRiciThaHn9lsgYZmyR1qylj QAPTuNrNPF/xpEqMFH9v/UbULQb094hm5JiqG0jENIRo5/BGhd9ltFG6zW3iz9Tg RHLcmoUMO3gokKwYKZRBRUdKWOKVX+BtAI73t6PAXLFX2POqAj1IQn6kivnZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUd9L9/EMDbZs7O2lDj4xmsPxH6wwwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAMAcwDQYJKoZIhvcNAQELBQADggEBAHSMKDvTZb4DUKmhgQDZ3ib4jSrg0+vL JDS6BxKVLwFU7eJst8jIdE2k3smOW5L2FqqBVpxzwYiRCkJK+XEGlO5qNT9R5ghh S6RC1td2/lDF5NrPNuA+l3r0y/TcgqyUhCVrtKD/Eu5nAW//K54GNIcktfgmcbOi Mo7F1knWFXP4keAFvzOmD2NH1mK5/UXxXrmAbOQxAQnQt80Yr7xDfbpd1+hK1ret 4IhZf1T1GxiBNn5+ID8lgS/IeTf01gwfMYT0KRmVHPaMjaulvSvdFeYs0rZ/4Wlx adap6PYIVTREbaRQtsQ22MiBBlOtSjwOcJMo2CHuk/2kpzlX6XCVwUA= -----END CERTIFICATE-----Generated at Wed May 13 07:35:08 2026 by rpki-client