$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136342e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: OWETgPh7dQJLZYAerIQDxJAg19tAzg5KDs23Kcf3fS0= Subject key identifier: D3:43:B1:1F:70:57:F7:78:69:FD:99:E4:BE:E7:53:02:7F:9F:79:BA Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 22F5AEF2AE324805E836EF8592BEDE2DA0596C10 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136342e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:30 +0000 ROA not before: Sun 03 May 2026 02:22:30 +0000 ROA not after: Sun 02 May 2027 02:27:30 +0000 asID: 63859 IP address blocks: 158.140.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f5:ae:f2:ae:32:48:05:e8:36:ef:85:92:be:de:2d:a0:59:6c:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:30 2026 GMT Not After : May 2 02:27:30 2027 GMT Subject: CN=D343B11F7057F77869FD99E4BEE753027F9F79BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:90:38:7e:d7:c1:30:09:4a:a1:86:fa:31:90: aa:d1:b6:5a:c3:d3:e7:cf:3e:e2:50:36:1a:e3:0c: aa:03:90:98:1b:f9:29:6d:72:e3:74:29:a8:ea:21: e5:54:b4:2c:5a:70:c0:b4:7b:98:12:59:12:7f:5c: 36:89:2d:cc:53:5d:f1:f5:a3:71:e1:c4:76:cf:46: ea:30:e7:c7:27:31:65:1c:b5:84:8e:f3:6f:65:18: 11:c2:0a:4c:66:6e:ac:8e:34:d7:93:dd:bd:2f:a7: 22:c2:e7:3a:04:e2:6d:2e:80:00:12:c5:0d:26:e1: db:b5:1a:34:dc:08:ed:29:19:f0:f8:e9:fa:aa:0f: d9:53:6e:b6:4c:3a:17:bc:a0:d2:90:52:bb:84:c5: 95:92:a7:24:a9:3f:71:30:aa:a4:99:3b:ce:fa:57: 73:ea:13:40:4f:65:c8:b8:ec:4d:30:18:c8:29:6d: 61:d6:e5:8d:99:05:d4:74:1d:c1:ed:33:6d:dc:e8: 43:5a:79:d1:8c:e8:03:71:90:f5:a8:f2:58:e1:6f: e3:34:61:f9:1a:0c:37:36:4d:33:04:40:7e:7f:c5: a8:71:66:5a:21:53:b3:8c:1d:19:ee:81:8d:f6:6e: 57:91:99:5f:81:68:cd:e4:ff:17:02:19:7e:af:7c: 7d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:43:B1:1F:70:57:F7:78:69:FD:99:E4:BE:E7:53:02:7F:9F:79:BA X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.164.0/24 Signature Algorithm: sha256WithRSAEncryption 37:32:03:c1:a7:4c:ca:00:37:fd:01:4e:b3:d7:81:f4:e1:b2: 49:d1:01:aa:66:a6:ba:df:f6:6b:44:57:16:19:8d:54:f7:f2: f7:0e:63:bc:3b:6b:88:e2:0a:54:b0:6e:85:5a:c3:ad:9c:46: 6e:29:38:40:37:21:5e:f9:ce:81:3a:2c:d4:82:50:d1:41:44: 16:70:f2:04:d1:66:aa:7a:9e:f9:a6:65:1c:8d:ae:29:e0:1a: ae:05:e5:11:5f:06:15:d1:99:c0:6a:2a:e3:78:d7:74:4c:db: aa:fb:fa:ed:91:22:22:d7:85:94:13:8f:2f:e0:59:20:81:16: 38:c7:c6:fb:6f:dc:c6:d7:fb:de:76:19:8d:35:7b:48:21:25: 7d:62:bf:af:a2:22:c6:4c:f2:e7:75:18:13:71:20:85:fd:dc: aa:02:69:76:6d:1a:11:84:7b:94:80:03:b5:92:5a:c3:79:cb: 33:e9:2e:60:56:df:39:26:b0:aa:e9:89:6d:a3:7a:b1:82:bd: d9:b3:b9:d7:d2:af:22:f3:22:bc:72:1c:0d:21:a1:e2:fa:2a: a6:bf:20:ae:88:39:9e:21:9c:6f:df:54:9c:a0:f4:4e:eb:ec: a3:fd:d6:67:46:d8:d0:5a:2c:ba:ac:0c:8b:26:f7:02:58:88: 4b:4f:bd:f5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIvWu8q4ySAXoNu+Fkr7eLaBZbBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzBaFw0yNzA1MDIwMjI3MzBaMDMxMTAvBgNV BAMTKEQzNDNCMTFGNzA1N0Y3Nzg2OUZEOTlFNEJFRTc1MzAyN0Y5Rjc5QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQkDh+18EwCUqhhvoxkKrRtlrD 0+fPPuJQNhrjDKoDkJgb+SltcuN0KajqIeVUtCxacMC0e5gSWRJ/XDaJLcxTXfH1 o3HhxHbPRuow58cnMWUctYSO829lGBHCCkxmbqyONNeT3b0vpyLC5zoE4m0ugAAS xQ0m4du1GjTcCO0pGfD46fqqD9lTbrZMOhe8oNKQUruExZWSpySpP3EwqqSZO876 V3PqE0BPZci47E0wGMgpbWHW5Y2ZBdR0HcHtM23c6ENaedGM6ANxkPWo8ljhb+M0 YfkaDDc2TTMEQH5/xahxZlohU7OMHRnugY32bleRmV+BaM3k/xcCGX6vfH2NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU00OxH3BX93hp/ZnkvudTAn+febowHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM2MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoykMA0GCSqG SIb3DQEBCwUAA4IBAQA3MgPBp0zKADf9AU6z14H04bJJ0QGqZqa63/ZrRFcWGY1U 9/L3DmO8O2uI4gpUsG6FWsOtnEZuKThANyFe+c6BOizUglDRQUQWcPIE0Waqep75 pmUcja4p4BquBeURXwYV0ZnAairjeNd0TNuq+/rtkSIi14WUE48v4FkggRY4x8b7 b9zG1/vedhmNNXtIISV9Yr+voiLGTPLndRgTcSCF/dyqAml2bRoRhHuUgAO1klrD ecsz6S5gVt85JrCq6Ylto3qxgr3Zs7nX0q8i8yK8chwNIaHi+iqmvyCuiDmeIZxv 31ScoPRO6+yj/dZnRtjQWiy6rAyLJvcCWIhLT731 -----END CERTIFICATE-----Generated at Wed May 13 23:07:33 2026 by rpki-client