I would like to understand the content of root.json generated by notary init [GUN], more specifically the keyids under roles → rules → root.

I can tell that the keyids of snapshot and targets corresponds to keys under .docker/trust/private/tuf_keys/ folder. So my question is what is the keyids of the root role and how is it generated?

Thanks in advance.