$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: iOnEWVuE24LYVCdnoa6iFEPJSCFOuf4sXHNPg/SHFs0= Subject key identifier: D4:B0:1B:90:BB:18:CF:66:B5:0B:CA:D3:CA:A2:34:6E:6F:39:92:FA Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 084AD678BCF73ADD908B25139B35CB87C5EDCA3C Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa Signing time: Sun 03 May 2026 02:47:52 +0000 ROA not before: Sun 03 May 2026 02:42:52 +0000 ROA not after: Sun 02 May 2027 02:47:52 +0000 asID: 55685 IP address blocks: 2404:e100:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:4a:d6:78:bc:f7:3a:dd:90:8b:25:13:9b:35:cb:87:c5:ed:ca:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:42:52 2026 GMT Not After : May 2 02:47:52 2027 GMT Subject: CN=D4B01B90BB18CF66B50BCAD3CAA2346E6F3992FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f4:69:58:4c:37:36:b4:40:89:c4:ae:30:29: f6:c1:f3:5b:59:65:93:ec:de:91:7a:0f:ba:1b:54: 6d:a5:69:01:69:4b:4b:7b:e1:29:78:b3:bb:d4:da: 93:92:ff:08:59:c6:d5:d3:79:3e:29:1a:36:f8:f3: 96:c0:e5:25:55:b0:ae:0f:75:86:ca:ff:eb:a9:08: 59:c5:7e:07:b5:0b:c2:7c:f0:b1:62:81:1b:e9:1f: f1:fa:24:3a:63:29:20:b8:6c:55:b8:84:e5:77:b3: 62:8d:da:87:c4:03:c4:57:95:ec:db:93:0e:72:aa: 30:6e:1f:c4:6b:df:67:39:be:b8:2b:5f:50:48:01: c0:ea:5a:29:47:b0:94:86:ef:df:b1:99:1a:d0:12: 38:a9:8a:d8:5e:34:1c:49:b9:ec:cd:2d:b6:ab:aa: 2a:e9:a0:40:77:ce:ba:8b:f9:73:65:dd:9d:99:52: ea:5d:22:71:4f:a7:f6:b0:96:41:ef:dd:73:3b:83: 8a:53:e5:97:db:1e:b4:f8:8b:b7:f5:e3:22:08:b2: 54:5a:27:d9:c8:c6:20:94:b4:fb:7d:d4:e8:2e:ab: e7:ac:5c:41:72:c2:31:ab:32:39:b0:77:8e:88:b8: d4:3b:3a:69:02:fa:0d:5d:94:6b:64:dd:f9:22:c7: 82:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B0:1B:90:BB:18:CF:66:B5:0B:CA:D3:CA:A2:34:6E:6F:39:92:FA X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:5::/48 Signature Algorithm: sha256WithRSAEncryption cf:e6:38:65:b8:0a:d2:b7:68:fe:19:c3:9c:79:7f:52:a8:c7: 1c:95:a7:9b:5d:86:1b:93:b2:e8:42:f8:c2:6e:21:5b:a3:c8: f3:22:79:63:3d:56:19:86:1d:e8:7b:8a:af:6b:9c:74:c8:c7: 39:3b:88:0b:5f:9e:d4:e0:07:b6:31:32:0c:fb:31:24:94:01: 67:89:e3:2f:6e:61:b0:17:c4:8c:a5:bf:fc:ef:01:da:8e:34: 8e:a6:9a:4e:f2:76:03:b3:5b:f0:35:4e:4b:f8:90:b6:7c:db: 11:7b:8b:46:26:48:c0:59:81:b0:80:dc:d6:b7:23:c5:d7:1f: 48:1a:48:10:c8:0e:42:0e:be:7c:fa:77:9f:85:12:1f:90:e1: 3e:b8:ea:71:16:e9:7e:ea:0e:09:a3:fb:e4:c1:b0:5a:07:aa: 0f:fb:53:55:52:dc:39:ca:50:5c:d0:15:53:75:2c:11:b5:f3: 36:c7:64:9a:6d:a6:33:5e:0b:f8:6a:d8:db:b0:30:ef:b3:b6: 07:ab:59:b9:15:8c:96:2b:8c:92:7f:93:32:93:b8:61:f7:01: 48:2b:c3:72:5a:7b:82:1c:3b:98:b5:94:c8:7a:17:29:e2:5b: 4d:9e:c9:82:84:5f:4b:4c:28:7c:31:4c:52:e0:4a:be:d3:de: a6:9a:aa:0e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUCErWeLz3Ot2QiyUTmzXLh8XtyjwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQyNTJaFw0yNzA1MDIwMjQ3NTJaMDMxMTAvBgNV BAMTKEQ0QjAxQjkwQkIxOENGNjZCNTBCQ0FEM0NBQTIzNDZFNkYzOTkyRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn9GlYTDc2tECJxK4wKfbB81tZ ZZPs3pF6D7obVG2laQFpS0t74Sl4s7vU2pOS/whZxtXTeT4pGjb485bA5SVVsK4P dYbK/+upCFnFfge1C8J88LFigRvpH/H6JDpjKSC4bFW4hOV3s2KN2ofEA8RXlezb kw5yqjBuH8Rr32c5vrgrX1BIAcDqWilHsJSG79+xmRrQEjipitheNBxJuezNLbar qirpoEB3zrqL+XNl3Z2ZUupdInFPp/awlkHv3XM7g4pT5ZfbHrT4i7f14yIIslRa J9nIxiCUtPt91Oguq+esXEFywjGrMjmwd46IuNQ7OmkC+g1dlGtk3fkix4JPAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU1LAbkLsYz2a1C8rTyqI0bm85kvowHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAFMA0G CSqGSIb3DQEBCwUAA4IBAQDP5jhluArSt2j+GcOceX9SqMcclaebXYYbk7LoQvjC biFbo8jzInljPVYZhh3oe4qva5x0yMc5O4gLX57U4Ae2MTIM+zEklAFnieMvbmGw F8SMpb/87wHajjSOpppO8nYDs1vwNU5L+JC2fNsRe4tGJkjAWYGwgNzWtyPF1x9I GkgQyA5CDr58+nefhRIfkOE+uOpxFul+6g4Jo/vkwbBaB6oP+1NVUtw5ylBc0BVT dSwRtfM2x2SabaYzXgv4atjbsDDvs7YHq1m5FYyWK4ySf5Myk7hh9wFIK8NyWnuC HDuYtZTIehcp4ltNnsmChF9LTCh8MUxS4Eq+096mmqoO -----END CERTIFICATE-----Generated at Wed May 13 02:59:41 2026 by rpki-client