$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a373a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a373a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: pTxDsPkyo1tDRr1vmTJQTYR/ssBoeqKcFE0P3tWEh38= Subject key identifier: 4F:7A:97:31:CA:23:A3:D1:F3:B2:DE:39:ED:D3:C5:FE:B0:3A:28:C0 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 0EC102E3194E5261CE6C3B979B22A97201D2975C Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a373a3a2f34382d3438203d3e203535363835.roa Signing time: Sun 03 May 2026 02:48:04 +0000 ROA not before: Sun 03 May 2026 02:43:04 +0000 ROA not after: Sun 02 May 2027 02:48:04 +0000 asID: 55685 IP address blocks: 2404:e100:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:c1:02:e3:19:4e:52:61:ce:6c:3b:97:9b:22:a9:72:01:d2:97:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:43:04 2026 GMT Not After : May 2 02:48:04 2027 GMT Subject: CN=4F7A9731CA23A3D1F3B2DE39EDD3C5FEB03A28C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:bb:62:5e:72:f2:1a:d6:5c:26:db:85:0b:7a: b4:d9:19:4a:1f:86:d6:ca:df:e6:65:5d:6d:2a:52: 74:eb:d6:ae:70:d4:9d:5a:bb:83:ee:56:a2:e2:b1: 6e:ba:75:56:86:30:f4:98:33:3a:d4:2a:69:e8:75: 89:e3:da:90:dc:fe:66:e7:6f:50:95:c1:5c:6f:14: 04:97:82:62:04:5b:76:30:01:9d:5a:ec:33:5e:dd: db:6d:d7:a3:05:2e:a5:fe:a5:8a:df:50:e4:12:89: 57:36:d8:7d:70:3a:ae:cf:5d:26:ff:68:ae:5e:3d: 85:a5:17:ab:9c:d8:1d:d1:38:7e:0f:56:e8:ff:58: 0b:a5:9c:58:65:41:82:fd:50:ef:49:51:18:a5:64: 5b:24:c9:02:fd:5e:70:96:6c:8a:a8:1d:0a:13:7c: c8:63:37:e5:f1:9a:bd:f4:a0:72:68:3d:0d:d9:7e: f5:1c:0a:ec:7a:38:50:4a:25:6d:09:80:f9:a6:16: c9:f8:12:67:e4:75:02:6b:c1:ac:10:53:1d:08:e1: 6b:a1:08:2e:9b:1a:ef:ba:4e:1a:85:68:3f:46:12: 2f:a8:b2:64:ce:7c:99:d1:38:80:ab:08:82:0f:40: 3e:cd:dc:98:dc:d1:54:67:8a:11:ac:0c:b7:2f:8d: c4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7A:97:31:CA:23:A3:D1:F3:B2:DE:39:ED:D3:C5:FE:B0:3A:28:C0 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a373a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:7::/48 Signature Algorithm: sha256WithRSAEncryption 50:a8:f9:f3:b1:fc:85:4c:2e:e9:b1:b7:c0:b2:e9:0f:4b:d3: 63:15:28:f5:bb:6c:f2:b6:e2:d5:2e:db:db:19:92:95:99:27: 46:f9:e8:fd:1a:23:45:f5:0c:5b:0c:86:f7:c1:91:f6:53:ad: 0e:71:09:10:29:67:ec:76:02:4d:33:d2:ef:03:70:98:8d:fe: 1d:8e:50:6a:38:fb:3d:bc:a2:23:68:20:ab:5f:8f:8e:66:70: 04:e3:b4:3b:52:df:ae:d5:15:2b:52:56:35:ae:57:1d:3b:7c: 42:47:b0:c4:11:ec:08:5c:7a:c8:07:8a:9f:aa:3f:7b:50:76: 2a:8e:09:00:d2:d4:bb:51:8f:39:c0:bd:06:f5:cf:c1:9a:1b: 06:44:5d:c6:84:90:88:73:04:11:fe:64:70:57:69:1a:41:53: 67:f0:28:bc:94:35:37:86:70:fb:55:17:0e:dd:ae:68:7b:90: ef:67:5d:19:b2:e8:3e:b0:70:8b:86:f5:1a:30:e2:78:4d:10: a8:76:8e:97:18:69:e4:95:e5:c0:53:cf:f9:f1:6a:a6:41:69: e8:4e:7f:f8:ed:ea:ca:f7:17:f4:76:8e:51:c4:03:ed:53:78: 75:d7:9c:41:b9:9a:88:e0:08:d5:27:54:ca:c3:c1:4e:7d:11: 23:ce:b1:ec -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUDsEC4xlOUmHObDuXmyKpcgHSl1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQzMDRaFw0yNzA1MDIwMjQ4MDRaMDMxMTAvBgNV BAMTKDRGN0E5NzMxQ0EyM0EzRDFGM0IyREUzOUVERDNDNUZFQjAzQTI4QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcu2JecvIa1lwm24ULerTZGUof htbK3+ZlXW0qUnTr1q5w1J1au4PuVqLisW66dVaGMPSYMzrUKmnodYnj2pDc/mbn b1CVwVxvFASXgmIEW3YwAZ1a7DNe3dtt16MFLqX+pYrfUOQSiVc22H1wOq7PXSb/ aK5ePYWlF6uc2B3ROH4PVuj/WAulnFhlQYL9UO9JURilZFskyQL9XnCWbIqoHQoT fMhjN+Xxmr30oHJoPQ3ZfvUcCux6OFBKJW0JgPmmFsn4EmfkdQJrwawQUx0I4Wuh CC6bGu+6ThqFaD9GEi+osmTOfJnROICrCIIPQD7N3Jjc0VRnihGsDLcvjcS9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUT3qXMcojo9Hzst457dPF/rA6KMAwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAHMA0G CSqGSIb3DQEBCwUAA4IBAQBQqPnzsfyFTC7psbfAsukPS9NjFSj1u2zytuLVLtvb GZKVmSdG+ej9GiNF9QxbDIb3wZH2U60OcQkQKWfsdgJNM9LvA3CYjf4djlBqOPs9 vKIjaCCrX4+OZnAE47Q7Ut+u1RUrUlY1rlcdO3xCR7DEEewIXHrIB4qfqj97UHYq jgkA0tS7UY85wL0G9c/BmhsGRF3GhJCIcwQR/mRwV2kaQVNn8Ci8lDU3hnD7VRcO 3a5oe5DvZ10Zsug+sHCLhvUaMOJ4TRCodo6XGGnkleXAU8/58WqmQWnoTn/47erK 9xf0do5RxAPtU3h115xBuZqI4AjVJ1TKw8FOfREjzrHs -----END CERTIFICATE-----Generated at Wed May 13 03:48:35 2026 by rpki-client