$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: K1j1r8p8lnDILuK7N/NcJkBJvu7iEEFMc675if0S3WQ= Subject key identifier: 80:37:D6:65:17:70:19:1B:54:D4:17:54:84:DF:AE:CC:45:71:56:5D Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 13310048B764AE9C02930374099E1AD00119CAA4 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:57 +0000 ROA not before: Sun 03 May 2026 02:42:57 +0000 ROA not after: Sun 02 May 2027 02:47:57 +0000 asID: 55685 IP address blocks: 2404:e100:3010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:31:00:48:b7:64:ae:9c:02:93:03:74:09:9e:1a:d0:01:19:ca:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:57 2026 GMT Not After : May 2 02:47:57 2027 GMT Subject: CN=8037D6651770191B54D4175484DFAECC4571565D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:05:5c:56:78:b3:a8:59:a9:a4:42:c8:95:e0: 1d:38:3c:85:a4:77:68:e9:64:34:f1:08:f0:d8:f7: 04:94:60:ba:ac:b4:2f:5a:a3:78:1f:15:10:3b:3a: 2b:1b:0f:f4:4b:30:9e:2b:ab:dc:9c:ca:46:f0:70: 56:c5:05:63:fd:f9:73:53:e2:55:1e:f5:ac:f9:f5: e1:65:ee:1e:28:f9:c7:67:a3:f7:a2:99:93:43:52: 8d:d9:7e:5b:1a:df:3b:e7:67:ad:45:49:66:d7:08: 5e:49:b1:7b:8c:30:12:0e:66:bd:ac:8b:c2:af:ea: 98:a3:3f:ac:35:90:a2:b4:95:71:26:4e:49:eb:e8: 5a:04:55:08:ed:2a:82:01:bc:7e:15:b7:14:61:67: 2b:87:7d:36:6e:fd:f3:98:74:93:4b:b4:72:e9:56: 7c:23:f2:4b:a0:7e:f1:82:7b:4b:66:06:10:6e:10: 59:bf:bb:1b:36:90:3b:f6:66:cc:a1:3d:47:74:1a: 20:43:33:6d:a1:ee:bf:58:b2:81:a7:50:3a:e9:61: 92:2d:19:61:47:91:6e:78:ff:62:76:c6:5a:3a:ec: 0a:57:eb:77:bf:60:d2:90:bf:bb:6c:b9:87:80:ce: dc:46:2a:15:e1:a2:6c:43:6e:8b:3b:a6:10:a9:c9: 1e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:37:D6:65:17:70:19:1B:54:D4:17:54:84:DF:AE:CC:45:71:56:5D X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3010::/48 Signature Algorithm: sha256WithRSAEncryption 7e:6e:6d:3f:bc:d9:40:07:d7:3d:ec:3a:b4:8a:ad:66:09:07: 81:02:2e:74:1c:15:ce:74:f5:7d:5c:ee:01:2f:b7:f9:e2:f9: ed:5e:99:ff:aa:2c:34:69:db:8e:8d:9f:b1:72:fa:f1:80:fa: b6:a0:db:27:a4:b3:d0:1d:93:ed:21:f6:6a:e5:8d:75:90:4d: d9:c2:ac:18:79:7c:63:22:69:f0:1c:d2:80:af:46:0b:b2:75: 7f:5b:22:83:7c:ee:4b:62:fe:7a:21:66:f1:0b:14:ab:6c:b8: 23:61:63:a5:ab:26:3a:98:2c:b8:5c:9e:49:51:47:f8:34:6a: a5:d3:1c:94:f2:f4:e6:89:32:e1:d1:81:02:6c:5b:70:42:8a: 70:2d:5a:0a:2a:25:f5:87:e4:98:95:a4:bf:12:79:92:52:d9: 70:0e:c6:f9:14:fc:f5:97:69:90:e9:c5:9e:af:a3:6a:1b:38: 56:5f:29:38:53:2b:89:0d:03:b9:91:e7:67:f4:2e:35:a8:7c: 76:b7:93:71:27:23:88:41:d4:58:d4:6e:27:30:db:80:b4:43: ed:63:c2:40:7d:68:20:b5:c1:6d:53:ef:0b:05:42:6b:28:34: 59:9a:ba:f6:60:96:03:8a:f2:2c:71:53:19:e4:02:1b:ed:ce: fa:93:50:3d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEzEASLdkrpwCkwN0CZ4a0AEZyqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTdaFw0yNzA1MDIwMjQ3NTdaMDMxMTAvBgNV BAMTKDgwMzdENjY1MTc3MDE5MUI1NEQ0MTc1NDg0REZBRUNDNDU3MTU2NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBVxWeLOoWamkQsiV4B04PIWk d2jpZDTxCPDY9wSUYLqstC9ao3gfFRA7OisbD/RLMJ4rq9ycykbwcFbFBWP9+XNT 4lUe9az59eFl7h4o+cdno/eimZNDUo3Zflsa3zvnZ61FSWbXCF5JsXuMMBIOZr2s i8Kv6pijP6w1kKK0lXEmTknr6FoEVQjtKoIBvH4VtxRhZyuHfTZu/fOYdJNLtHLp Vnwj8kugfvGCe0tmBhBuEFm/uxs2kDv2ZsyhPUd0GiBDM22h7r9YsoGnUDrpYZIt GWFHkW54/2J2xlo67ApX63e/YNKQv7tsuYeAztxGKhXhomxDbos7phCpyR5ZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgDfWZRdwGRtU1BdUhN+uzEVxVl0wHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh ADAQMA0GCSqGSIb3DQEBCwUAA4IBAQB+bm0/vNlAB9c97Dq0iq1mCQeBAi50HBXO dPV9XO4BL7f54vntXpn/qiw0aduOjZ+xcvrxgPq2oNsnpLPQHZPtIfZq5Y11kE3Z wqwYeXxjImnwHNKAr0YLsnV/WyKDfO5LYv56IWbxCxSrbLgjYWOlqyY6mCy4XJ5J UUf4NGql0xyU8vTmiTLh0YECbFtwQopwLVoKKiX1h+SYlaS/EnmSUtlwDsb5FPz1 l2mQ6cWer6NqGzhWXyk4UyuJDQO5kedn9C41qHx2t5NxJyOIQdRY1G4nMNuAtEPt Y8JAfWggtcFtU+8LBUJrKDRZmrr2YJYDivIscVMZ5AIb7c76k1A9 -----END CERTIFICATE-----Generated at Wed May 13 05:35:56 2026 by rpki-client