$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030303a3a2f34372d3438203d3e203535363835.roa File: 323430343a653130303a343030303a3a2f34372d3438203d3e203535363835.roa (raw, json) Hash identifier: chn/BLH6sXxVIJc1U2zEaLzRzrKSbG3qdCfk7lXO83s= Subject key identifier: B4:D3:2F:78:ED:80:24:86:B8:EB:4B:59:D2:D3:E6:76:3A:C1:A1:79 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 40F92E155A0F1F82841F38280D930C5F64DA9301 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030303a3a2f34372d3438203d3e203535363835.roa Signing time: Sun 03 May 2026 02:48:05 +0000 ROA not before: Sun 03 May 2026 02:43:05 +0000 ROA not after: Sun 02 May 2027 02:48:05 +0000 asID: 55685 IP address blocks: 2404:e100:4000::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:f9:2e:15:5a:0f:1f:82:84:1f:38:28:0d:93:0c:5f:64:da:93:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:43:05 2026 GMT Not After : May 2 02:48:05 2027 GMT Subject: CN=B4D32F78ED802486B8EB4B59D2D3E6763AC1A179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5e:58:e2:ef:bd:11:f2:0f:48:63:5f:a0:c6: d5:78:6b:60:dc:bc:c3:2b:c7:7f:9e:ec:c7:09:9e: e6:98:48:ee:7a:7c:5e:74:1f:aa:3d:e5:c3:56:48: 6e:15:8e:92:30:3a:d4:f9:de:bf:5a:2a:c0:58:06: 84:f8:b1:6a:86:ae:94:8f:57:85:10:46:fd:da:b1: cb:08:27:53:9c:18:d0:3a:7e:ae:b8:93:8b:dc:01: 8b:05:e8:e0:db:d1:a7:43:55:11:0a:57:2a:87:d6: 02:2d:d8:5f:e7:cf:3c:df:bf:da:df:a7:6d:e2:19: 84:32:18:41:b5:83:50:74:08:bc:a6:4a:99:8e:55: 54:3e:40:eb:8a:79:db:f3:ea:b8:7d:81:bd:4f:ef: ca:0d:fc:08:63:31:f2:df:ba:eb:7d:1c:32:3f:59: f7:aa:9a:2b:ba:17:79:0b:c1:8a:35:45:c1:8a:69: 18:3b:37:dd:22:7e:7c:35:bb:16:c2:1b:51:4f:86: d7:8b:80:24:3f:bf:95:67:4e:f1:13:0a:e0:a8:6f: 5a:d3:ce:b7:a2:6d:cb:84:5a:ec:8d:c2:1c:f6:79: 54:8d:dd:e5:70:01:d5:0c:cc:d3:92:e3:da:3b:63: 8d:b4:3e:40:3f:a9:dc:60:34:c2:d5:a6:3e:f1:21: b5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D3:2F:78:ED:80:24:86:B8:EB:4B:59:D2:D3:E6:76:3A:C1:A1:79 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030303a3a2f34372d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4000::/47 Signature Algorithm: sha256WithRSAEncryption d3:27:65:57:85:b3:c5:d4:17:4a:2c:4b:c9:a7:f8:9b:a5:e8: aa:a6:06:7e:b4:34:99:58:0e:c4:c2:e2:62:b0:0e:0e:a1:7a: 71:8c:6e:b2:36:da:ce:25:cb:0a:c2:28:0b:2c:47:be:6c:7a: ea:d0:27:2a:1a:a2:77:73:3c:b9:d5:84:ea:68:e8:aa:52:9a: 0e:54:00:d8:20:73:30:48:86:86:db:16:53:86:90:de:0c:ca: 33:4d:c9:e3:bd:6c:82:98:cb:58:35:59:c4:01:cb:2f:7b:67: b9:c4:93:e9:d6:ac:06:57:6d:93:97:bb:c7:47:59:cb:f7:28: 07:de:3e:00:7c:76:72:0d:dd:b5:89:da:97:28:f3:a5:4c:b6: 65:c6:ba:d7:a0:1b:33:2a:79:43:1d:c9:b6:d5:9d:a2:9c:25: e8:ff:0f:ac:25:dc:d6:62:31:2f:34:23:64:b3:d4:e9:91:ef: bd:d4:ac:6d:7f:f6:59:1b:a9:8a:25:68:d8:c3:b8:1f:61:86: 14:12:11:6a:23:4e:28:6e:4b:41:38:61:46:5e:63:96:62:29: 05:d8:48:c6:61:17:79:cc:8e:7e:97:92:69:cc:8a:e9:f5:70: fd:e1:67:23:4c:aa:c5:29:26:dd:c2:cc:a9:22:af:6f:53:fb: d7:17:91:7a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQPkuFVoPH4KEHzgoDZMMX2TakwEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQzMDVaFw0yNzA1MDIwMjQ4MDVaMDMxMTAvBgNV BAMTKEI0RDMyRjc4RUQ4MDI0ODZCOEVCNEI1OUQyRDNFNjc2M0FDMUExNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwXlji770R8g9IY1+gxtV4a2Dc vMMrx3+e7McJnuaYSO56fF50H6o95cNWSG4VjpIwOtT53r9aKsBYBoT4sWqGrpSP V4UQRv3ascsIJ1OcGNA6fq64k4vcAYsF6ODb0adDVREKVyqH1gIt2F/nzzzfv9rf p23iGYQyGEG1g1B0CLymSpmOVVQ+QOuKedvz6rh9gb1P78oN/AhjMfLfuut9HDI/ Wfeqmiu6F3kLwYo1RcGKaRg7N90ifnw1uxbCG1FPhteLgCQ/v5VnTvETCuCob1rT zreibcuEWuyNwhz2eVSN3eVwAdUMzNOS49o7Y420PkA/qdxgNMLVpj7xIbV3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtNMveO2AJIa460tZ0tPmdjrBoXkwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzAz YTNhMmYzNDM3MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATh AEAAMA0GCSqGSIb3DQEBCwUAA4IBAQDTJ2VXhbPF1BdKLEvJp/ibpeiqpgZ+tDSZ WA7EwuJisA4OoXpxjG6yNtrOJcsKwigLLEe+bHrq0CcqGqJ3czy51YTqaOiqUpoO VADYIHMwSIaG2xZThpDeDMozTcnjvWyCmMtYNVnEAcsve2e5xJPp1qwGV22Tl7vH R1nL9ygH3j4AfHZyDd21idqXKPOlTLZlxrrXoBszKnlDHcm21Z2inCXo/w+sJdzW YjEvNCNks9Tpke+91Kxtf/ZZG6mKJWjYw7gfYYYUEhFqI04obktBOGFGXmOWYikF 2EjGYRd5zI5+l5JpzIrp9XD94WcjTKrFKSbdwsypIq9vU/vXF5F6 -----END CERTIFICATE-----Generated at Wed May 13 04:47:53 2026 by rpki-client