$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: C/EShKD/S3tz9sAJIZWI8D9dUv1K0V0/33mxzeiA+J4= Subject key identifier: 52:72:16:3B:BD:50:59:17:71:2B:EF:17:01:76:8B:F9:02:FE:C6:30 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 4234E20539FF672A67ED5AAA87F51AE821F868C1 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:19 +0000 ROA not before: Sun 03 May 2026 02:22:19 +0000 ROA not after: Sun 02 May 2027 02:27:19 +0000 asID: 63859 IP address blocks: 158.140.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:34:e2:05:39:ff:67:2a:67:ed:5a:aa:87:f5:1a:e8:21:f8:68:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:19 2026 GMT Not After : May 2 02:27:19 2027 GMT Subject: CN=5272163BBD505917712BEF1701768BF902FEC630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ba:37:1c:87:f9:80:29:95:95:af:b2:4b:19: ec:5f:6a:a4:36:33:bf:49:72:1e:32:32:db:d9:85: 30:75:f5:46:ab:e0:ac:67:00:a1:c0:85:ee:ff:97: 7b:9f:34:81:e6:5b:ad:d4:4a:a8:43:fd:77:25:20: aa:31:2d:34:5f:89:6b:45:33:36:81:8c:83:a9:91: 01:41:17:21:39:fd:68:77:f4:58:b4:2a:2d:c2:bc: 05:3c:20:fe:cf:ce:13:af:ed:48:cd:51:29:93:0b: 63:e9:c3:8a:a6:7e:0c:8d:7d:a6:ac:dc:a7:2d:ef: ad:1f:69:8b:ef:84:6e:10:88:aa:82:4c:b2:27:ed: 32:57:7c:32:69:c2:fd:c5:33:9e:b2:3f:8c:50:d2: 7d:66:21:0a:01:72:7f:87:38:a8:63:64:7b:69:be: 65:7e:e4:d8:28:e7:69:e3:a3:68:05:fe:e0:9b:f5: ed:27:9e:7b:6b:d5:ad:d5:ee:4d:9a:ea:80:ba:c5: 8a:f6:10:0d:a8:cc:e0:21:de:4d:c8:09:96:e6:af: b0:c8:77:98:36:4a:ae:f7:5d:e5:86:ef:56:75:ce: 97:6b:4f:8d:d9:2a:91:b1:24:47:00:69:5e:f5:8c: cf:5e:b1:cb:83:13:d3:2b:82:5e:cf:54:75:62:e5: d0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:72:16:3B:BD:50:59:17:71:2B:EF:17:01:76:8B:F9:02:FE:C6:30 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136392e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.169.0/24 Signature Algorithm: sha256WithRSAEncryption 24:e6:8c:8d:14:23:c9:62:cf:1c:1e:be:48:1f:f1:ec:cf:86: 98:ed:97:eb:e9:5c:e1:b4:5e:2d:60:e8:11:3a:fe:2a:94:20: 0c:ef:c9:1b:f4:a2:b2:22:4c:0b:06:cd:00:83:33:b3:37:a3: 55:f2:b5:33:9b:1f:17:eb:2c:f0:cb:2b:5c:c7:72:e7:97:40: 3d:5d:f3:e6:61:98:68:2b:07:cd:e3:fb:e3:b2:be:ae:e9:70: e0:e5:45:ac:8f:b7:33:95:a1:94:64:56:78:74:62:ac:56:34: bc:9e:e9:28:73:d6:53:17:62:a4:2b:18:72:18:d8:10:59:a3: 63:3b:77:f4:25:7c:99:58:82:a6:08:6b:bc:6e:40:03:0d:5c: c8:b0:c5:38:4d:92:3b:84:d8:2d:15:30:f0:8a:ce:85:41:91: 91:ee:77:50:7c:f3:7a:3f:7e:dd:80:da:9b:c7:47:33:3b:c5: b7:d4:5f:bb:35:7b:ca:12:01:1e:85:bd:0f:c7:9f:2a:a6:ac: f7:dd:6d:3a:24:c6:9b:e2:bd:18:a9:a0:77:f1:84:fb:1b:e0: a2:f2:58:8c:69:29:11:c9:f2:2c:b0:33:6b:07:19:2c:5e:dc: 14:fd:f3:c2:4c:ca:0e:a9:ea:eb:fb:79:80:a2:78:ce:7a:90: 5d:ca:e4:aa -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQjTiBTn/Zypn7Vqqh/Ua6CH4aMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMTlaFw0yNzA1MDIwMjI3MTlaMDMxMTAvBgNV BAMTKDUyNzIxNjNCQkQ1MDU5MTc3MTJCRUYxNzAxNzY4QkY5MDJGRUM2MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaujcch/mAKZWVr7JLGexfaqQ2 M79Jch4yMtvZhTB19Uar4KxnAKHAhe7/l3ufNIHmW63USqhD/XclIKoxLTRfiWtF MzaBjIOpkQFBFyE5/Wh39Fi0Ki3CvAU8IP7PzhOv7UjNUSmTC2Ppw4qmfgyNfaas 3Kct760faYvvhG4QiKqCTLIn7TJXfDJpwv3FM56yP4xQ0n1mIQoBcn+HOKhjZHtp vmV+5Ngo52njo2gF/uCb9e0nnntr1a3V7k2a6oC6xYr2EA2ozOAh3k3ICZbmr7DI d5g2Sq73XeWG71Z1zpdrT43ZKpGxJEcAaV71jM9escuDE9Mrgl7PVHVi5dArAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUnIWO71QWRdxK+8XAXaL+QL+xjAwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoypMA0GCSqG SIb3DQEBCwUAA4IBAQAk5oyNFCPJYs8cHr5IH/Hsz4aY7Zfr6VzhtF4tYOgROv4q lCAM78kb9KKyIkwLBs0AgzOzN6NV8rUzmx8X6yzwyytcx3Lnl0A9XfPmYZhoKwfN 4/vjsr6u6XDg5UWsj7czlaGUZFZ4dGKsVjS8nukoc9ZTF2KkKxhyGNgQWaNjO3f0 JXyZWIKmCGu8bkADDVzIsMU4TZI7hNgtFTDwis6FQZGR7ndQfPN6P37dgNqbx0cz O8W31F+7NXvKEgEehb0Px58qpqz33W06JMab4r0YqaB38YT7G+Ci8liMaSkRyfIs sDNrBxksXtwU/fPCTMoOqerr+3mAonjOepBdyuSq -----END CERTIFICATE-----Generated at Wed May 13 23:07:31 2026 by rpki-client