$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030353a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a343030353a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: xm6j+Wu4h+hoeaN0WgsoUOVNWLd/rLgh2h75IOTgBxg= Subject key identifier: D6:27:DD:22:0A:93:78:78:29:52:CB:01:B1:16:41:0A:1B:CE:63:BE Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 47DD92D39C31345864AB6B1EF60139DCAEDCA912 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030353a3a2f34382d3438203d3e20313333383430.roa Signing time: Sun 03 May 2026 02:48:01 +0000 ROA not before: Sun 03 May 2026 02:43:01 +0000 ROA not after: Sun 02 May 2027 02:48:01 +0000 asID: 133840 IP address blocks: 2404:e100:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:dd:92:d3:9c:31:34:58:64:ab:6b:1e:f6:01:39:dc:ae:dc:a9:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:43:01 2026 GMT Not After : May 2 02:48:01 2027 GMT Subject: CN=D627DD220A9378782952CB01B116410A1BCE63BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b9:fc:5a:d3:fa:d9:a7:3d:fb:30:a0:4a:1b: 1d:5d:3b:30:2b:f6:f6:13:95:58:9f:c9:42:3a:b7: 9e:f1:56:4c:95:69:51:5d:96:9f:ca:cc:d0:67:91: 5f:08:44:25:96:85:47:37:3b:be:69:26:eb:de:77: c5:78:d3:0c:96:3e:12:7c:70:72:e7:31:61:12:b6: f3:cd:c1:04:ab:a6:b2:63:2e:ee:1b:12:42:77:3d: c0:97:ba:ee:1c:06:f1:91:76:6a:50:8d:9d:2a:de: be:bd:d0:8f:bd:24:86:64:36:86:90:6e:a9:82:74: 01:88:06:4e:68:db:5e:e5:95:d3:8d:a7:1f:35:14: 89:0f:aa:c6:80:7b:2f:39:51:da:dc:ba:ab:0b:85: ef:c7:85:9c:9b:95:e8:20:65:a8:8d:bc:b4:d7:7a: a4:be:42:df:f2:f4:ee:3b:73:e1:14:65:bc:53:5d: 6c:bd:d8:54:ab:d0:7d:6e:43:38:c1:97:d8:63:cb: ef:42:7f:19:a7:6e:02:d6:2a:1f:1d:f1:02:2b:cd: d2:77:09:8f:90:1c:bc:92:c8:e8:84:79:60:39:b1: 50:a5:93:e4:2e:24:d3:0a:90:bc:c5:cc:cf:b2:fb: d8:ff:af:c7:8b:b0:1d:78:c0:cb:2b:7b:48:73:86: 89:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:27:DD:22:0A:93:78:78:29:52:CB:01:B1:16:41:0A:1B:CE:63:BE X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030353a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4005::/48 Signature Algorithm: sha256WithRSAEncryption 10:3e:92:91:f6:f6:a6:87:df:a0:87:1a:c7:25:14:47:63:fd: 60:b3:40:25:93:11:25:62:92:91:c6:69:75:85:2a:0b:96:41: ff:9c:9e:05:4d:95:5a:45:3d:37:43:ca:bd:af:70:bd:27:67: ff:6f:ba:7a:81:b6:64:fa:da:ef:17:6c:15:0e:7f:8a:18:83: 71:ef:2a:80:c6:2e:93:76:a4:94:d1:8f:1b:46:52:8d:0c:79: bf:f4:a4:e3:c4:99:d1:4d:5f:b9:0d:21:18:cd:e7:42:e6:b8: 3e:e8:e4:98:2a:5d:72:3e:ee:1e:ba:3c:51:f0:f1:c9:b8:f5: e0:5c:ef:88:52:74:ed:cf:83:ca:bb:36:63:c1:31:08:bf:d4: 8e:40:f7:cc:65:76:65:94:80:df:f6:44:07:23:c8:5b:73:d4: ec:1c:ca:fb:65:75:2c:b7:41:79:da:44:3a:36:aa:56:4e:9e: 65:26:19:32:7d:d2:91:3d:22:8e:7e:8f:a9:e3:a7:e2:89:eb: 69:61:e5:8a:48:a9:78:2c:95:5c:1a:0d:8e:82:2f:7e:0e:4f: 51:0c:ba:16:35:5e:17:dc:3e:d9:49:83:8e:34:92:8c:c1:f0: 35:fb:b0:fa:11:35:d2:13:ba:6f:9e:c9:0d:21:aa:17:6f:bd: 93:cd:66:76 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUR92S05wxNFhkq2se9gE53K7cqRIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQzMDFaFw0yNzA1MDIwMjQ4MDFaMDMxMTAvBgNV BAMTKEQ2MjdERDIyMEE5Mzc4NzgyOTUyQ0IwMUIxMTY0MTBBMUJDRTYzQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXufxa0/rZpz37MKBKGx1dOzAr 9vYTlVifyUI6t57xVkyVaVFdlp/KzNBnkV8IRCWWhUc3O75pJuved8V40wyWPhJ8 cHLnMWEStvPNwQSrprJjLu4bEkJ3PcCXuu4cBvGRdmpQjZ0q3r690I+9JIZkNoaQ bqmCdAGIBk5o217lldONpx81FIkPqsaAey85UdrcuqsLhe/HhZybleggZaiNvLTX eqS+Qt/y9O47c+EUZbxTXWy92FSr0H1uQzjBl9hjy+9CfxmnbgLWKh8d8QIrzdJ3 CY+QHLySyOiEeWA5sVClk+QuJNMKkLzFzM+y+9j/r8eLsB14wMsre0hzholBAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU1ifdIgqTeHgpUssBsRZBChvOY74wHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAQAUwDQYJKoZIhvcNAQELBQADggEBABA+kpH29qaH36CHGsclFEdj/WCzQCWT ESVikpHGaXWFKguWQf+cngVNlVpFPTdDyr2vcL0nZ/9vunqBtmT62u8XbBUOf4oY g3HvKoDGLpN2pJTRjxtGUo0Meb/0pOPEmdFNX7kNIRjN50LmuD7o5JgqXXI+7h66 PFHw8cm49eBc74hSdO3Pg8q7NmPBMQi/1I5A98xldmWUgN/2RAcjyFtz1Owcyvtl dSy3QXnaRDo2qlZOnmUmGTJ90pE9Io5+j6njp+KJ62lh5YpIqXgslVwaDY6CL34O T1EMuhY1XhfcPtlJg440kozB8DX7sPoRNdITum+eyQ0hqhdvvZPNZnY= -----END CERTIFICATE-----Generated at Wed May 13 07:56:52 2026 by rpki-client