$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136382e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136382e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: LnoSm2jRb8L3z/giIhjlB5nnqhV9Of7hiovBIJBjtDc= Subject key identifier: D0:57:36:80:2B:8C:26:42:64:F8:71:58:45:74:DC:80:3A:C6:34:27 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 3D27B8332871761C25999DD34FFBAE3C76BF4045 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136382e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:22 +0000 ROA not before: Sun 03 May 2026 02:22:22 +0000 ROA not after: Sun 02 May 2027 02:27:22 +0000 asID: 63859 IP address blocks: 158.140.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:27:b8:33:28:71:76:1c:25:99:9d:d3:4f:fb:ae:3c:76:bf:40:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:22 2026 GMT Not After : May 2 02:27:22 2027 GMT Subject: CN=D05736802B8C264264F871584574DC803AC63427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b1:73:8e:91:02:8a:fe:ec:83:5d:2e:52:0c: 2e:c8:f3:5e:88:d2:b2:7a:78:bf:49:af:d1:a8:45: 4b:36:e0:f4:59:e4:59:b5:8f:4c:1a:c5:50:9b:e3: fb:a1:59:3a:ec:f8:5f:cd:79:a3:4a:2f:15:ee:d6: 05:7e:50:66:14:20:4b:79:4a:12:19:6e:dc:72:1e: b3:af:d2:96:e6:91:d9:e3:c2:84:a1:de:90:9f:88: 31:7e:ab:8b:f2:69:e0:0d:cb:b7:a6:ee:42:28:ba: 2c:df:3d:42:14:28:b9:c0:1d:ed:bb:bd:f7:5d:f3: ec:8f:43:c1:7f:b4:68:71:64:40:21:67:f7:d0:ac: 99:6a:da:1e:70:0a:95:d5:2a:16:51:e3:84:5c:d5: 11:41:7f:70:0f:50:b8:34:56:a0:2a:bb:f5:7d:00: ee:b3:19:e0:62:f4:6b:6b:8c:cb:84:ba:36:1a:31: 9b:d4:98:57:f0:4e:2f:20:78:f2:2c:30:e6:1a:21: 48:3a:13:59:d0:0a:b7:14:b2:be:d8:d0:0e:4d:5a: 2b:49:3e:0d:66:41:40:e6:9a:0f:5a:89:ee:ed:d4: b3:14:7c:15:f0:78:1c:fe:6e:8b:08:47:7c:7f:53: b5:b5:7d:01:ef:b1:33:26:5c:ac:55:68:f9:87:c3: 0a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:57:36:80:2B:8C:26:42:64:F8:71:58:45:74:DC:80:3A:C6:34:27 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136382e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.168.0/24 Signature Algorithm: sha256WithRSAEncryption 94:fc:fc:cf:10:e4:36:f4:5d:75:3b:94:1b:5b:d8:2e:0b:2b: a2:bd:49:92:21:dd:89:15:57:db:86:3b:7f:55:a9:1a:6b:f2: 65:93:bf:36:9b:bb:fe:7f:cf:29:5a:c9:b2:b0:11:d4:af:bd: da:e2:87:6c:ef:e8:56:e2:86:23:f2:f3:5e:b0:d0:49:88:5a: f6:70:b6:e6:ff:eb:32:f1:0d:15:6c:39:73:e3:59:56:3f:6c: 87:95:53:d1:84:c9:ad:6a:4e:dc:4a:2b:ad:99:0b:5d:55:11: 55:7c:78:cd:4f:ab:4e:e9:2a:5d:e5:3a:b6:f0:6a:48:e7:f8: 08:af:b3:b8:4d:03:60:e1:5f:7b:24:3d:35:a7:a0:87:88:9a: 74:4d:85:4d:14:0e:b3:2a:c3:9c:9a:47:5e:32:21:8e:8b:30: d9:f1:72:fa:6a:c3:61:33:90:49:ed:cd:b9:74:cf:c4:8f:6c: 82:f7:de:22:f3:20:a1:15:c3:47:64:8b:df:e8:b3:21:09:63: 0d:2c:80:0a:84:f2:c2:05:0a:7b:31:9d:fc:e8:2e:c0:e9:ce: bb:31:12:a5:dc:d3:38:1c:c7:09:6a:47:0d:a8:26:56:c2:29: ea:e0:c6:7a:98:55:ef:1c:53:c5:80:5c:11:66:2d:4f:bb:3c: 9c:61:8c:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPSe4MyhxdhwlmZ3TT/uuPHa/QEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjJaFw0yNzA1MDIwMjI3MjJaMDMxMTAvBgNV BAMTKEQwNTczNjgwMkI4QzI2NDI2NEY4NzE1ODQ1NzREQzgwM0FDNjM0MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCosXOOkQKK/uyDXS5SDC7I816I 0rJ6eL9Jr9GoRUs24PRZ5Fm1j0waxVCb4/uhWTrs+F/NeaNKLxXu1gV+UGYUIEt5 ShIZbtxyHrOv0pbmkdnjwoSh3pCfiDF+q4vyaeANy7em7kIouizfPUIUKLnAHe27 vfdd8+yPQ8F/tGhxZEAhZ/fQrJlq2h5wCpXVKhZR44Rc1RFBf3APULg0VqAqu/V9 AO6zGeBi9GtrjMuEujYaMZvUmFfwTi8gePIsMOYaIUg6E1nQCrcUsr7Y0A5NWitJ Pg1mQUDmmg9aie7t1LMUfBXweBz+bosIR3x/U7W1fQHvsTMmXKxVaPmHwwpfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0Fc2gCuMJkJk+HFYRXTcgDrGNCcwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyoMA0GCSqG SIb3DQEBCwUAA4IBAQCU/PzPEOQ29F11O5QbW9guCyuivUmSId2JFVfbhjt/Vaka a/Jlk782m7v+f88pWsmysBHUr73a4ods7+hW4oYj8vNesNBJiFr2cLbm/+sy8Q0V bDlz41lWP2yHlVPRhMmtak7cSiutmQtdVRFVfHjNT6tO6Spd5Tq28GpI5/gIr7O4 TQNg4V97JD01p6CHiJp0TYVNFA6zKsOcmkdeMiGOizDZ8XL6asNhM5BJ7c25dM/E j2yC994i8yChFcNHZIvf6LMhCWMNLIAKhPLCBQp7MZ386C7A6c67MRKl3NM4HMcJ akcNqCZWwinq4MZ6mFXvHFPFgFwRZi1PuzycYYyD -----END CERTIFICATE-----Generated at Wed May 13 23:07:31 2026 by rpki-client