$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353030303a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a353030303a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: 6qJvADM7TnokbPeZ7qdt3vQLtnl3NVZtxOSj18q09CQ= Subject key identifier: 31:8F:51:1D:1B:0A:37:80:83:AE:67:C1:4D:60:76:6E:15:B1:85:1B Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 672F1DC78D6ED4F3D6CE014273C02EE1F28F9784 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353030303a3a2f34382d3438203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:51 +0000 ROA not before: Sun 03 May 2026 02:42:51 +0000 ROA not after: Sun 02 May 2027 02:47:51 +0000 asID: 55685 IP address blocks: 2404:e100:5000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2f:1d:c7:8d:6e:d4:f3:d6:ce:01:42:73:c0:2e:e1:f2:8f:97:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:51 2026 GMT Not After : May 2 02:47:51 2027 GMT Subject: CN=318F511D1B0A378083AE67C14D60766E15B1851B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:78:8d:d8:80:dd:d1:fa:1f:b4:2e:4d:37:00: 73:a4:64:12:27:10:e1:6d:8a:bf:f5:6b:ec:b5:27: 9a:3b:86:64:c8:95:98:47:af:1a:7b:b4:ca:71:bd: 44:cb:2c:c8:48:b7:4e:d2:6c:95:4a:6f:ff:67:ad: 80:f7:d8:69:e0:4f:e9:8f:6a:16:72:8f:42:a5:43: 94:a3:93:30:58:9f:25:4d:3c:1c:e7:5b:41:a5:12: f4:ae:44:b2:f4:89:8f:4e:2a:fe:d3:8e:3c:cf:de: 56:ef:dc:98:8f:a1:1b:8d:a6:25:7a:41:c7:18:3f: fa:9a:0d:c0:8c:44:eb:9d:70:82:b7:f7:07:5d:78: 43:7c:33:9d:17:78:dd:f9:6a:0a:a3:b3:74:4c:dd: be:31:26:40:70:87:c3:f2:74:4d:99:99:b7:97:86: 36:75:71:f5:9f:ac:02:b3:8e:27:a7:81:71:4b:3e: a5:80:58:df:dc:4c:ee:39:eb:2b:f7:17:6b:74:b9: c8:61:33:92:92:6f:25:cc:71:80:ab:66:ff:30:c2: 14:87:9e:a4:bc:39:5a:5a:e8:e7:ba:0e:a6:c2:a6: 81:b8:76:ec:b7:de:b2:e0:ff:66:b8:d7:5d:b9:06: 41:56:3d:cc:af:99:a8:6d:c9:70:e5:c4:ba:1e:17: b6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:8F:51:1D:1B:0A:37:80:83:AE:67:C1:4D:60:76:6E:15:B1:85:1B X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353030303a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:5000::/48 Signature Algorithm: sha256WithRSAEncryption 24:54:5c:fe:aa:d4:09:84:f5:f5:dc:a8:fd:4c:c4:2d:a8:24: 67:52:44:0d:04:9d:d9:10:7f:24:b8:31:e0:f0:39:b8:2c:b7: ff:70:34:98:78:14:e4:44:79:20:37:ad:f4:df:5e:81:b0:6a: ba:d7:43:be:e9:35:3c:33:7c:98:f4:c3:3c:ae:58:c9:0a:fb: 68:a8:87:b0:ee:9f:af:0a:06:8e:a8:da:9e:7f:04:3c:af:df: fb:63:00:2f:93:75:77:c0:1a:c8:a0:59:65:63:8b:6c:77:16: a4:08:b6:61:a9:4e:c4:fd:64:37:25:03:e2:8e:6c:b4:cf:d9: 24:b8:04:63:96:a9:15:90:75:00:ad:cb:24:af:33:30:8e:72: 5b:cd:72:81:dc:59:a0:06:81:7c:22:2a:02:7f:0f:6a:85:5d: 69:f1:3b:32:6b:c8:a3:0a:64:4a:d5:26:3a:51:43:fc:f3:66: d3:2b:24:4c:d2:18:5c:08:76:92:14:00:0f:fc:c3:7f:c5:93: aa:de:95:fd:96:14:2a:a6:2c:aa:f6:fc:9c:e4:1f:59:ba:90: bc:1f:58:9b:f5:c4:4c:08:d7:ba:79:ac:54:eb:8c:8f:d3:e0: d9:cc:8b:98:7a:34:bf:a0:5a:e8:95:3d:91:25:ea:bd:b6:43: 48:ce:4b:de -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZy8dx41u1PPWzgFCc8Au4fKPl4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTFaFw0yNzA1MDIwMjQ3NTFaMDMxMTAvBgNV BAMTKDMxOEY1MTFEMUIwQTM3ODA4M0FFNjdDMTRENjA3NjZFMTVCMTg1MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDceI3YgN3R+h+0Lk03AHOkZBIn EOFtir/1a+y1J5o7hmTIlZhHrxp7tMpxvUTLLMhIt07SbJVKb/9nrYD32GngT+mP ahZyj0KlQ5SjkzBYnyVNPBznW0GlEvSuRLL0iY9OKv7TjjzP3lbv3JiPoRuNpiV6 QccYP/qaDcCMROudcIK39wddeEN8M50XeN35agqjs3RM3b4xJkBwh8PydE2ZmbeX hjZ1cfWfrAKzjiengXFLPqWAWN/cTO456yv3F2t0uchhM5KSbyXMcYCrZv8wwhSH nqS8OVpa6Oe6DqbCpoG4duy33rLg/2a41125BkFWPcyvmahtyXDlxLoeF7ZbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMY9RHRsKN4CDrmfBTWB2bhWxhRswHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUFBzALhoGLcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzUzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh AFAAMA0GCSqGSIb3DQEBCwUAA4IBAQAkVFz+qtQJhPX13Kj9TMQtqCRnUkQNBJ3Z EH8kuDHg8Dm4LLf/cDSYeBTkRHkgN630316BsGq610O+6TU8M3yY9MM8rljJCvto qIew7p+vCgaOqNqefwQ8r9/7YwAvk3V3wBrIoFllY4tsdxakCLZhqU7E/WQ3JQPi jmy0z9kkuARjlqkVkHUArcskrzMwjnJbzXKB3FmgBoF8IioCfw9qhV1p8Tsya8ij CmRK1SY6UUP882bTKyRM0hhcCHaSFAAP/MN/xZOq3pX9lhQqpiyq9vyc5B9ZupC8 H1ib9cRMCNe6eaxU64yP0+DZzIuYejS/oFrolT2RJeq9tkNIzkve -----END CERTIFICATE-----Generated at Wed May 13 04:47:26 2026 by rpki-client