$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030393a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a343030393a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: qypDEJsbz1mzm/kOIX1QhPELxPdwjqkZ2S0DHXOUXL0= Subject key identifier: 22:A2:84:4F:4F:1A:1D:87:0A:72:8D:3A:C7:E5:E7:A9:D2:76:A5:96 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: AE3766C357E590F78C30BF95C88E797C17AEFD Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030393a3a2f34382d3438203d3e20313333383430.roa Signing time: Sun 03 May 2026 02:48:03 +0000 ROA not before: Sun 03 May 2026 02:43:03 +0000 ROA not after: Sun 02 May 2027 02:48:03 +0000 asID: 133840 IP address blocks: 2404:e100:4009::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ae:37:66:c3:57:e5:90:f7:8c:30:bf:95:c8:8e:79:7c:17:ae:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:43:03 2026 GMT Not After : May 2 02:48:03 2027 GMT Subject: CN=22A2844F4F1A1D870A728D3AC7E5E7A9D276A596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3f:e6:f2:b8:e2:81:c3:9a:ba:e9:6e:c1:50: 37:fd:1a:72:a9:59:9d:80:fb:31:58:ac:f8:26:d8: 97:bb:9c:96:33:02:5a:38:05:de:7c:c4:18:29:79: 43:ec:57:33:17:85:51:f1:9b:b4:22:52:25:8f:33: e6:9b:9e:c1:21:23:d1:61:38:d2:db:6a:1a:32:20: 0c:92:f3:10:eb:92:04:63:75:c3:c1:6e:49:4f:17: 70:80:19:67:13:76:0b:18:9f:d6:c2:6e:39:74:38: b4:11:fd:7f:fc:fa:c1:af:31:6d:01:c2:f7:91:37: a4:7e:38:d0:0c:57:85:b6:a1:1d:a1:89:46:5e:79: b6:63:88:72:4c:45:bb:a6:eb:65:2e:00:97:76:c5: fc:ea:f5:a2:52:fb:ad:02:44:3d:c0:09:71:4a:40: 03:90:87:6a:f6:d4:8a:61:d5:a3:7a:05:24:36:97: d5:9c:13:86:5e:48:b9:35:bd:72:b6:04:71:4b:ef: 02:e6:be:c4:ed:70:88:34:10:01:d0:6e:ce:a8:e7: 42:74:47:8f:2e:b5:5c:3e:13:98:34:38:3b:11:49: ea:02:6a:35:a0:ae:ce:ee:3f:5f:a4:6b:66:6b:36: 56:ea:d3:84:11:52:f2:a4:44:f9:8e:4b:2a:e5:90: e4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A2:84:4F:4F:1A:1D:87:0A:72:8D:3A:C7:E5:E7:A9:D2:76:A5:96 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030393a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4009::/48 Signature Algorithm: sha256WithRSAEncryption 77:de:a7:b1:66:48:8c:85:cb:af:c1:da:e6:1a:e8:01:28:1b: 86:3b:a7:3c:fc:63:a6:9d:1d:38:be:ff:bb:91:ff:f9:15:1d: 7b:6b:e6:4c:5b:c3:de:c0:d5:b0:9f:fa:89:19:53:71:62:97: 60:e5:f3:5a:88:4a:59:cb:42:a3:d3:42:d0:2b:0e:82:25:8a: db:58:e5:59:67:80:bb:f3:3e:cc:65:2b:c4:02:cb:1e:2d:c5: 25:23:8e:24:f5:02:55:89:81:bf:c0:c7:1f:93:45:18:26:b6: 6d:5f:da:34:d5:84:f7:db:ae:f7:5a:51:9a:87:81:50:b8:c9: a8:ff:96:e7:32:59:be:ca:15:ec:fe:81:60:29:aa:86:be:bb: cf:90:fa:c0:a1:1e:a5:92:3f:d6:fe:c9:d6:fb:bf:e0:3c:7c: 1c:8a:21:64:7e:ba:74:8a:4b:59:67:a4:82:5c:db:33:eb:9f: 58:50:9d:4d:4c:47:87:36:d8:44:3a:b6:79:6f:c4:d8:63:80: 00:26:b8:cc:04:31:2d:2f:5b:99:d0:71:89:58:0a:32:aa:f5: 6f:24:9f:18:b3:51:a7:e8:00:9d:0c:cb:df:db:49:a9:ec:88: 58:76:a2:49:7f:e3:8b:f6:74:f1:ed:bb:a3:f1:6b:ff:cc:13: ec:06:c9:5f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUAK43ZsNX5ZD3jDC/lciOeXwXrv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQzMDNaFw0yNzA1MDIwMjQ4MDNaMDMxMTAvBgNV BAMTKDIyQTI4NDRGNEYxQTFEODcwQTcyOEQzQUM3RTVFN0E5RDI3NkE1OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkP+byuOKBw5q66W7BUDf9GnKp WZ2A+zFYrPgm2Je7nJYzAlo4Bd58xBgpeUPsVzMXhVHxm7QiUiWPM+abnsEhI9Fh ONLbahoyIAyS8xDrkgRjdcPBbklPF3CAGWcTdgsYn9bCbjl0OLQR/X/8+sGvMW0B wveRN6R+ONAMV4W2oR2hiUZeebZjiHJMRbum62UuAJd2xfzq9aJS+60CRD3ACXFK QAOQh2r21Iph1aN6BSQ2l9WcE4ZeSLk1vXK2BHFL7wLmvsTtcIg0EAHQbs6o50J0 R48utVw+E5g0ODsRSeoCajWgrs7uP1+ka2ZrNlbq04QRUvKkRPmOSyrlkOSzAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUIqKET08aHYcKco06x+XnqdJ2pZYwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAQAkwDQYJKoZIhvcNAQELBQADggEBAHfep7FmSIyFy6/B2uYa6AEoG4Y7pzz8 Y6adHTi+/7uR//kVHXtr5kxbw97A1bCf+okZU3Fil2Dl81qISlnLQqPTQtArDoIl ittY5VlngLvzPsxlK8QCyx4txSUjjiT1AlWJgb/Axx+TRRgmtm1f2jTVhPfbrvda UZqHgVC4yaj/lucyWb7KFez+gWApqoa+u8+Q+sChHqWSP9b+ydb7v+A8fByKIWR+ unSKS1lnpIJc2zPrn1hQnU1MR4c22EQ6tnlvxNhjgAAmuMwEMS0vW5nQcYlYCjKq 9W8knxizUafoAJ0My9/bSansiFh2okl/44v2dPHtu6Pxa//ME+wGyV8= -----END CERTIFICATE-----Generated at Wed May 13 07:56:13 2026 by rpki-client