$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: YrcrjsPujPk9x5ckszQwJZ63IFSIKlLJdxO+TFh39OQ= Subject key identifier: 37:EA:5B:51:2F:1F:3E:F5:66:22:9E:9D:38:E2:1A:D2:6E:B5:BA:E8 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 79B33B1549ACF684D5AE37838CE7E470EC10A2EA Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:31 +0000 ROA not before: Sun 03 May 2026 02:22:31 +0000 ROA not after: Sun 02 May 2027 02:27:31 +0000 asID: 63859 IP address blocks: 158.140.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:b3:3b:15:49:ac:f6:84:d5:ae:37:83:8c:e7:e4:70:ec:10:a2:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:31 2026 GMT Not After : May 2 02:27:31 2027 GMT Subject: CN=37EA5B512F1F3EF566229E9D38E21AD26EB5BAE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:56:29:b6:77:cf:fa:f8:2d:89:72:c0:2e:d2: 5e:59:e6:e9:ae:79:37:16:d1:c3:0f:0c:db:d6:b4: e8:55:d1:9d:8b:0d:5f:ee:19:65:0c:9d:df:10:ba: b6:ed:19:da:3b:15:84:6b:e4:9d:46:c5:22:2a:57: 3b:b9:b6:7f:d8:35:48:96:2c:37:1d:ab:57:47:96: 4f:ae:ce:bb:78:bc:17:ad:f6:65:6e:f7:e4:4c:1a: 91:7b:0e:93:43:22:7e:c1:b6:fb:21:29:fb:46:82: 49:46:38:6f:3e:82:01:a0:87:5e:a0:08:a6:18:2c: 1f:e6:4c:4c:c7:27:d3:29:2f:cb:64:e0:9a:b7:5b: 37:d4:88:58:bc:22:03:2c:71:38:74:ef:77:d3:9b: dd:5e:11:52:5a:19:75:09:95:9e:b0:e0:c7:00:09: 70:6c:2a:a6:b0:f1:93:9c:5a:b2:f8:5c:62:d3:9b: 69:ad:55:94:91:be:98:4a:38:11:5e:c7:c0:3f:d3: 8a:d0:09:c2:c4:c9:2b:b7:6f:16:ae:1a:ea:16:13: b4:83:8e:e0:ec:ac:bf:f6:80:e1:fb:42:33:73:f1: 2c:c4:14:bc:fb:28:d2:4b:d7:a3:23:62:1d:79:03: 97:8b:88:59:fb:ec:04:ad:58:25:4f:65:b0:b1:39: 36:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:EA:5B:51:2F:1F:3E:F5:66:22:9E:9D:38:E2:1A:D2:6E:B5:BA:E8 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.161.0/24 Signature Algorithm: sha256WithRSAEncryption 75:34:fe:92:f0:02:c0:a5:c2:4e:23:72:e9:ed:bb:2f:44:f9: da:b0:88:e9:41:8b:23:bb:f7:e5:26:46:2c:5c:23:c9:02:ca: f7:34:b4:ac:81:85:1b:e4:d5:b1:fa:b4:1f:f3:5e:51:51:3c: 31:c8:d8:4d:b5:7c:b6:fb:dd:47:fa:84:05:ee:34:5e:78:41: 06:5f:7e:2f:e4:68:a0:2e:6e:63:c2:ed:c0:d0:57:05:a1:bc: 35:18:d9:35:49:1d:f6:2f:28:98:ea:ef:59:17:cf:a6:5f:df: 21:38:68:8e:d1:d1:9a:8e:59:89:17:a1:58:9b:71:72:1e:af: aa:34:c5:70:02:ba:49:8f:03:67:ee:0d:97:81:3e:6c:8e:63: fe:e7:04:52:d7:c3:34:17:cb:3b:a8:79:9e:3e:4e:cb:f8:4f: c4:3f:72:20:45:eb:73:c0:ed:d2:51:03:0f:7f:27:ce:5c:2f: 5d:13:60:0e:65:e2:d8:c3:68:d2:b5:44:03:62:b1:c3:94:92: 5e:79:31:f1:8f:87:d2:31:49:f8:84:3d:57:7f:eb:3d:2a:8f: 05:9a:a1:c0:09:50:f9:ef:96:63:b6:e4:d4:c0:c2:58:f4:a7: c9:90:e4:4c:51:43:9a:63:ea:3b:95:5a:77:e7:28:0f:80:18: df:b8:24:ea -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUebM7FUms9oTVrjeDjOfkcOwQouowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzFaFw0yNzA1MDIwMjI3MzFaMDMxMTAvBgNV BAMTKDM3RUE1QjUxMkYxRjNFRjU2NjIyOUU5RDM4RTIxQUQyNkVCNUJBRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvVim2d8/6+C2JcsAu0l5Z5umu eTcW0cMPDNvWtOhV0Z2LDV/uGWUMnd8QurbtGdo7FYRr5J1GxSIqVzu5tn/YNUiW LDcdq1dHlk+uzrt4vBet9mVu9+RMGpF7DpNDIn7BtvshKftGgklGOG8+ggGgh16g CKYYLB/mTEzHJ9MpL8tk4Jq3WzfUiFi8IgMscTh073fTm91eEVJaGXUJlZ6w4McA CXBsKqaw8ZOcWrL4XGLTm2mtVZSRvphKOBFex8A/04rQCcLEySu3bxauGuoWE7SD juDsrL/2gOH7QjNz8SzEFLz7KNJL16MjYh15A5eLiFn77AStWCVPZbCxOTaBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUN+pbUS8fPvVmIp6dOOIa0m61uugwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyhMA0GCSqG SIb3DQEBCwUAA4IBAQB1NP6S8ALApcJOI3Lp7bsvRPnasIjpQYsju/flJkYsXCPJ Asr3NLSsgYUb5NWx+rQf815RUTwxyNhNtXy2+91H+oQF7jReeEEGX34v5GigLm5j wu3A0FcFobw1GNk1SR32LyiY6u9ZF8+mX98hOGiO0dGajlmJF6FYm3FyHq+qNMVw ArpJjwNn7g2XgT5sjmP+5wRS18M0F8s7qHmePk7L+E/EP3IgRetzwO3SUQMPfyfO XC9dE2AOZeLYw2jStUQDYrHDlJJeeTHxj4fSMUn4hD1Xf+s9Ko8FmqHACVD575Zj tuTUwMJY9KfJkORMUUOaY+o7lVp35ygPgBjfuCTq -----END CERTIFICATE-----Generated at Wed May 13 23:07:13 2026 by rpki-client