$ rpki-client -vvf rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: eGRMhnLTnT3YYCWJW4I3KHNEEhYQTAAoRoCU9ewEbU0= Subject key identifier: 84:27:0F:24:72:02:0A:9D:F0:A6:78:5C:8B:4D:05:98:F2:5B:80:26 Certificate issuer: /CN=408DEB7465856EE053B64340FA814B862FA5ED30 Certificate serial: 586137D69524F95458E0C9BF6281C25872291544 Authority key identifier: 40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa Signing time: Sun 03 May 2026 02:48:04 +0000 ROA not before: Sun 03 May 2026 02:43:04 +0000 ROA not after: Sun 02 May 2027 02:48:04 +0000 asID: 55685 IP address blocks: 2404:e100:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:61:37:d6:95:24:f9:54:58:e0:c9:bf:62:81:c2:58:72:29:15:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408DEB7465856EE053B64340FA814B862FA5ED30 Validity Not Before: May 3 02:43:04 2026 GMT Not After : May 2 02:48:04 2027 GMT Subject: CN=84270F2472020A9DF0A6785C8B4D0598F25B8026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b3:a1:ec:82:98:85:75:8c:4e:c3:fd:95:bd: 53:9c:31:28:b8:40:3f:bb:12:c6:9a:0d:f2:3c:fe: 70:92:a5:35:55:f2:32:9d:2a:b2:52:6a:a7:35:06: 5c:f6:51:00:dc:b9:b0:7d:a0:60:51:dc:37:03:ba: d5:61:84:88:b4:3d:4f:0f:b2:6f:a1:3a:b7:98:83: 95:bb:ed:d6:31:25:09:16:0b:ce:1a:99:04:58:50: 42:51:97:9a:fa:a5:b8:b0:6c:3b:97:05:9a:81:da: 80:1c:62:e3:11:69:c4:eb:5e:81:aa:ca:b9:94:b4: 95:76:ef:dd:7e:c1:9f:01:d3:cc:16:3f:66:ee:37: 02:81:2c:f5:9a:a7:07:e6:5f:e8:40:ac:83:79:64: f6:0d:6f:f1:8a:42:6c:46:49:7f:08:6a:3a:55:db: 2a:ae:f8:56:39:f3:2a:9f:a4:01:e3:d4:9a:f7:63: 05:bd:dd:1a:77:20:fe:74:07:aa:e3:0a:c5:d8:4b: 01:7c:f6:3d:21:da:72:e6:85:2a:3f:ce:6f:58:6d: 65:7d:b7:43:e8:3b:fd:65:9d:4c:35:dc:2f:ca:cf: a6:49:87:f5:d9:15:61:49:ca:18:18:fd:a0:29:3e: f8:05:bf:4f:cc:3f:fd:24:39:f9:03:81:ca:3b:a9: 20:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:27:0F:24:72:02:0A:9D:F0:A6:78:5C:8B:4D:05:98:F2:5B:80:26 X509v3 Authority Key Identifier: keyid:40:8D:EB:74:65:85:6E:E0:53:B6:43:40:FA:81:4B:86:2F:A5:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/408DEB7465856EE053B64340FA814B862FA5ED30.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/408DEB7465856EE053B64340FA814B862FA5ED30.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:9::/48 Signature Algorithm: sha256WithRSAEncryption 89:ba:6e:6c:0f:e5:f7:3e:14:2b:70:47:d6:27:87:00:1e:99: 84:42:f5:14:15:ff:26:78:b5:19:0c:3c:64:a4:0d:f7:15:13: 2a:9a:35:3d:7f:18:e3:c5:6a:3c:37:64:d7:18:81:a5:a3:01: 2e:b4:6c:5a:f7:18:b4:4d:68:cc:a0:87:ac:f1:47:5f:8a:7f: 34:90:1b:d6:14:ee:95:84:b3:cd:33:ff:6b:c8:af:17:8b:49: 1f:00:42:7e:8b:04:78:ce:24:6f:5c:7d:b8:51:1b:13:ec:3c: 86:c6:3e:15:89:0b:42:3a:ef:6d:c4:c6:3a:0c:71:a4:1b:3a: b5:71:c3:d8:4d:7c:60:11:9e:53:6b:83:62:41:a4:d1:77:5d: 9a:71:61:e5:fd:30:f6:30:8f:51:b1:19:c0:01:a0:e1:2b:f8: d9:f0:4d:f1:aa:a8:c9:fb:87:57:ee:dd:0f:11:a9:34:72:23: 6b:60:e0:ec:ba:4a:33:94:14:ee:60:e9:d3:f0:0f:77:e8:33: d7:06:87:a5:a9:ed:a8:0c:46:01:7f:38:4e:40:22:dc:c4:2c: 16:43:85:4a:ca:2b:6b:5a:a2:2c:b0:08:32:5d:6a:09:cc:82: 1b:9d:74:9a:4c:1c:d5:2c:4c:68:9f:c1:79:27:7d:45:a5:e5: b9:18:9b:a6 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUWGE31pUk+VRY4Mm/YoHCWHIpFUQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4REVCNzQ2NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYy RkE1RUQzMDAeFw0yNjA1MDMwMjQzMDRaFw0yNzA1MDIwMjQ4MDRaMDMxMTAvBgNV BAMTKDg0MjcwRjI0NzIwMjBBOURGMEE2Nzg1QzhCNEQwNTk4RjI1QjgwMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGs6HsgpiFdYxOw/2VvVOcMSi4 QD+7EsaaDfI8/nCSpTVV8jKdKrJSaqc1Blz2UQDcubB9oGBR3DcDutVhhIi0PU8P sm+hOreYg5W77dYxJQkWC84amQRYUEJRl5r6pbiwbDuXBZqB2oAcYuMRacTrXoGq yrmUtJV2791+wZ8B08wWP2buNwKBLPWapwfmX+hArIN5ZPYNb/GKQmxGSX8IajpV 2yqu+FY58yqfpAHj1Jr3YwW93Rp3IP50B6rjCsXYSwF89j0h2nLmhSo/zm9YbWV9 t0PoO/1lnUw13C/Kz6ZJh/XZFWFJyhgY/aApPvgFv0/MP/0kOfkDgco7qSBFAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUhCcPJHICCp3wpnhci00FmPJbgCYwHwYDVR0j BBgwFoAUQI3rdGWFbuBTtkNA+oFLhi+l7TAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODVkOGRhYjQtOGJiNi00ZWQwLThkYWItNWE0MDYxNjdiOTlkLzAvNDA4REVCNzQ2 NTg1NkVFMDUzQjY0MzQwRkE4MTRCODYyRkE1RUQzMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80MDhERUI3NDY1ODU2RUUwNTNCNjQzNDBGQTgxNEI4NjJGQTVF RDMwLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAJMA0G CSqGSIb3DQEBCwUAA4IBAQCJum5sD+X3PhQrcEfWJ4cAHpmEQvUUFf8meLUZDDxk pA33FRMqmjU9fxjjxWo8N2TXGIGlowEutGxa9xi0TWjMoIes8Udfin80kBvWFO6V hLPNM/9ryK8Xi0kfAEJ+iwR4ziRvXH24URsT7DyGxj4ViQtCOu9txMY6DHGkGzq1 ccPYTXxgEZ5Ta4NiQaTRd12acWHl/TD2MI9RsRnAAaDhK/jZ8E3xqqjJ+4dX7t0P Eak0ciNrYODsukozlBTuYOnT8A936DPXBoelqe2oDEYBfzhOQCLcxCwWQ4VKyitr WqIssAgyXWoJzIIbnXSaTBzVLExon8F5J31FpeW5GJum -----END CERTIFICATE-----Generated at Wed May 13 02:59:01 2026 by rpki-client