$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136322e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136322e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: bNlxX32lMMCAV9oIEXnjvCXAvI9u1vuYvpVVD2AHZ6Q= Subject key identifier: 1A:DA:44:FF:EC:6F:76:D0:9F:74:95:32:5B:EA:9E:4F:AC:4F:DA:68 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 1042BF6D088106162520683EB2ACCE40E960DAD8 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136322e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:17 +0000 ROA not before: Sun 03 May 2026 02:22:17 +0000 ROA not after: Sun 02 May 2027 02:27:17 +0000 asID: 63859 IP address blocks: 158.140.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:42:bf:6d:08:81:06:16:25:20:68:3e:b2:ac:ce:40:e9:60:da:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:17 2026 GMT Not After : May 2 02:27:17 2027 GMT Subject: CN=1ADA44FFEC6F76D09F7495325BEA9E4FAC4FDA68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bc:fd:2a:7f:f0:3f:64:1e:dc:93:7a:a3:07: bf:46:8f:83:12:da:fe:ba:cf:8e:51:78:a8:f4:f4: 92:64:89:94:80:ab:44:09:90:1e:11:66:fa:7d:fe: 3a:83:54:d4:b4:1c:44:a5:69:ea:ec:19:7e:f4:03: f0:9b:1d:ad:12:8c:7a:44:f7:7d:37:a4:e7:73:45: 12:d3:6d:29:e9:91:1c:9f:9d:00:04:d5:88:8b:73: 1b:0c:11:48:87:71:01:ae:ac:18:c3:d8:d2:5e:3f: a9:ae:14:b8:1d:0a:06:d4:80:a0:9e:6c:99:af:9b: 4f:a9:9b:5d:f6:f3:aa:69:99:13:c5:12:a5:93:46: 8a:77:72:b0:5e:4f:a1:19:6d:e1:f3:bb:80:db:0f: 79:f0:cc:4e:3a:47:b6:b4:79:2b:97:f3:e3:2f:28: 3d:9b:9d:6f:78:9b:7b:ab:d6:e2:b1:01:33:0e:5c: 72:8d:34:05:43:98:a6:d0:f2:45:49:8e:ca:0d:74: 87:16:d7:3f:b0:e5:9d:5d:d4:2a:2d:71:90:0f:55: 92:e3:6f:53:c5:d6:dd:fb:ff:03:94:b4:e2:8a:39: 94:2d:2a:ed:55:1e:1f:cc:8b:c3:a6:ef:91:95:b5: ba:d6:78:fc:1a:30:01:da:0c:e3:35:d6:ac:13:26: 71:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:DA:44:FF:EC:6F:76:D0:9F:74:95:32:5B:EA:9E:4F:AC:4F:DA:68 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136322e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.162.0/24 Signature Algorithm: sha256WithRSAEncryption 37:ed:d1:c9:a1:ad:b0:3e:33:fa:d3:ae:83:18:80:be:57:23: 2c:55:d4:67:e5:c3:2b:9f:09:73:95:49:21:ce:ce:b5:fc:64: da:2d:9a:c2:2f:15:7f:63:61:83:bd:c9:ea:33:5a:bd:fb:7c: cc:ac:49:2f:5d:11:06:56:65:af:d7:ed:02:3c:ae:c2:51:b6: d0:2b:10:b3:38:62:4c:9e:b7:c3:bd:2e:df:01:cc:46:47:e3: 45:a7:22:04:51:ec:b6:c0:49:b7:44:e2:d8:cd:bf:8a:11:48: ec:7b:56:8f:9d:19:01:9b:1d:af:8d:2b:37:f3:47:1c:9d:bf: 32:48:53:ba:dc:7a:a3:7f:d0:e7:c4:a8:09:af:0c:59:f0:c6: 4d:ee:a5:2b:22:01:1b:45:a5:c7:1d:d3:fe:5f:2b:08:5a:03: 15:ff:df:29:7c:71:69:9c:1d:b7:f4:60:0d:7a:65:f4:b1:16: ba:bf:9d:1e:61:46:2a:c4:62:6c:ec:dd:54:1b:07:53:f5:d2: e8:3d:9c:c8:89:ee:f7:62:2f:e4:00:40:6f:ed:3e:a1:b3:f1: 13:5e:7a:46:3e:1c:89:8f:f9:95:dc:3d:c4:74:71:27:ec:6c: 4a:82:0b:55:17:2b:41:71:95:93:ae:03:5c:ec:f9:55:a7:f2: bb:8b:55:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEEK/bQiBBhYlIGg+sqzOQOlg2tgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMTdaFw0yNzA1MDIwMjI3MTdaMDMxMTAvBgNV BAMTKDFBREE0NEZGRUM2Rjc2RDA5Rjc0OTUzMjVCRUE5RTRGQUM0RkRBNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyvP0qf/A/ZB7ck3qjB79Gj4MS 2v66z45ReKj09JJkiZSAq0QJkB4RZvp9/jqDVNS0HESlaersGX70A/CbHa0SjHpE 9303pOdzRRLTbSnpkRyfnQAE1YiLcxsMEUiHcQGurBjD2NJeP6muFLgdCgbUgKCe bJmvm0+pm13286ppmRPFEqWTRop3crBeT6EZbeHzu4DbD3nwzE46R7a0eSuX8+Mv KD2bnW94m3ur1uKxATMOXHKNNAVDmKbQ8kVJjsoNdIcW1z+w5Z1d1CotcZAPVZLj b1PF1t37/wOUtOKKOZQtKu1VHh/Mi8Om75GVtbrWePwaMAHaDOM11qwTJnHvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGtpE/+xvdtCfdJUyW+qeT6xP2mgwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM2MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyiMA0GCSqG SIb3DQEBCwUAA4IBAQA37dHJoa2wPjP6066DGIC+VyMsVdRn5cMrnwlzlUkhzs61 /GTaLZrCLxV/Y2GDvcnqM1q9+3zMrEkvXREGVmWv1+0CPK7CUbbQKxCzOGJMnrfD vS7fAcxGR+NFpyIEUey2wEm3ROLYzb+KEUjse1aPnRkBmx2vjSs380ccnb8ySFO6 3Hqjf9DnxKgJrwxZ8MZN7qUrIgEbRaXHHdP+XysIWgMV/98pfHFpnB239GANemX0 sRa6v50eYUYqxGJs7N1UGwdT9dLoPZzIie73Yi/kAEBv7T6hs/ETXnpGPhyJj/mV 3D3EdHEn7GxKggtVFytBcZWTrgNc7PlVp/K7i1XX -----END CERTIFICATE-----Generated at Wed May 13 23:07:12 2026 by rpki-client