$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: /VM+d+whRae4yJ6m7QaekPQsEP448x6cZ4diYWA+YEI= Subject key identifier: 89:B8:1D:3F:7A:99:33:45:E9:A8:7A:C6:97:2A:28:8F:76:D8:68:E8 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 5FB0A2F3D7326FABE2D3FCC246753515526F9351 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:31 +0000 ROA not before: Sun 03 May 2026 02:22:31 +0000 ROA not after: Sun 02 May 2027 02:27:31 +0000 asID: 63859 IP address blocks: 158.140.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b0:a2:f3:d7:32:6f:ab:e2:d3:fc:c2:46:75:35:15:52:6f:93:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:31 2026 GMT Not After : May 2 02:27:31 2027 GMT Subject: CN=89B81D3F7A993345E9A87AC6972A288F76D868E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ef:5c:95:e3:d1:19:c2:79:c1:2d:97:ee:28: ac:e3:fe:a8:4c:80:a5:1f:2a:7f:45:16:66:6e:01: ca:13:f2:7d:5a:0e:cb:83:9b:bd:ae:76:ff:46:30: 59:a8:11:08:10:a9:15:96:da:2d:dd:dc:e6:e2:b3: da:57:56:3e:2f:c1:06:b7:ff:c7:97:a3:84:c3:98: 76:86:dd:f7:45:df:7b:90:7d:dd:eb:19:3b:83:2e: f6:fb:b4:2e:b2:3c:e5:28:82:79:d2:46:dd:00:5c: 8b:2b:e9:89:fd:e6:1c:18:25:27:84:2c:aa:a0:f1: cb:e5:a8:9e:8d:f3:8b:70:78:01:f2:e7:2d:2c:f9: e6:92:8f:79:54:9c:94:96:70:f9:1d:e4:a2:56:b0: 45:17:e8:9c:91:24:10:61:15:c2:eb:77:79:66:28: a8:51:29:02:7e:63:cf:17:4d:c7:d5:23:99:06:94: 2d:78:5c:5a:2e:b9:cf:e6:1c:cb:ca:84:59:fe:d8: 4a:39:a6:72:02:ad:04:e0:43:92:b1:03:4f:5d:ef: 59:11:02:60:fb:5b:f9:3d:9c:f8:9b:d6:f7:26:5b: 3a:19:67:88:8c:22:40:8d:1b:ee:b2:4a:22:e8:78: a8:fe:45:c3:a6:62:27:95:f2:94:ee:aa:bc:cf:c5: 45:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B8:1D:3F:7A:99:33:45:E9:A8:7A:C6:97:2A:28:8F:76:D8:68:E8 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.170.0/24 Signature Algorithm: sha256WithRSAEncryption 66:77:30:84:4e:ef:fc:7e:48:6e:c4:3b:0e:72:18:03:fb:fc: 1a:88:e8:6f:48:9d:c9:db:a8:0f:60:c0:83:bc:2c:ea:52:a6: 83:66:2b:09:b9:c3:17:c2:19:db:16:92:0b:71:9a:42:b4:66: 9a:45:d3:d8:b7:09:86:d6:f4:6a:4c:67:cc:9e:93:be:a4:1f: 72:a5:e9:77:96:a0:21:1d:91:28:c3:10:8a:76:1c:85:57:f1: ed:41:73:90:f2:44:21:3b:6a:55:81:60:44:e1:a6:09:c6:55: 21:06:53:3c:48:b6:83:ae:3b:68:aa:64:e3:16:a8:41:18:71: 83:b9:4c:50:8e:d8:6f:98:7c:89:dd:b3:34:61:ee:dd:6c:8f: 37:6d:e4:9f:e1:15:ba:61:b8:25:da:af:8b:26:a3:6a:7d:56: 70:c2:d5:b7:cf:b7:3e:2d:3b:b5:22:ba:e3:07:85:38:62:99: ec:5b:ca:cc:71:7d:fb:34:7f:a8:de:e1:93:18:70:b3:d5:86: 55:ac:25:d3:e5:5b:a5:9d:16:ed:ae:12:fb:55:36:1d:87:6a: b7:2f:9b:10:84:68:03:41:9c:43:32:15:a6:93:9b:d8:99:7e: 1d:f4:58:88:b6:cc:34:59:1d:6b:ea:1e:7e:9e:f8:9b:5b:53: cf:82:a2:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUX7Ci89cyb6vi0/zCRnU1FVJvk1EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzFaFw0yNzA1MDIwMjI3MzFaMDMxMTAvBgNV BAMTKDg5QjgxRDNGN0E5OTMzNDVFOUE4N0FDNjk3MkEyODhGNzZEODY4RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa71yV49EZwnnBLZfuKKzj/qhM gKUfKn9FFmZuAcoT8n1aDsuDm72udv9GMFmoEQgQqRWW2i3d3Obis9pXVj4vwQa3 /8eXo4TDmHaG3fdF33uQfd3rGTuDLvb7tC6yPOUognnSRt0AXIsr6Yn95hwYJSeE LKqg8cvlqJ6N84tweAHy5y0s+eaSj3lUnJSWcPkd5KJWsEUX6JyRJBBhFcLrd3lm KKhRKQJ+Y88XTcfVI5kGlC14XFouuc/mHMvKhFn+2Eo5pnICrQTgQ5KxA09d71kR AmD7W/k9nPib1vcmWzoZZ4iMIkCNG+6ySiLoeKj+RcOmYieV8pTuqrzPxUWjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUibgdP3qZM0XpqHrGlyooj3bYaOgwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyqMA0GCSqG SIb3DQEBCwUAA4IBAQBmdzCETu/8fkhuxDsOchgD+/waiOhvSJ3J26gPYMCDvCzq UqaDZisJucMXwhnbFpILcZpCtGaaRdPYtwmG1vRqTGfMnpO+pB9ypel3lqAhHZEo wxCKdhyFV/HtQXOQ8kQhO2pVgWBE4aYJxlUhBlM8SLaDrjtoqmTjFqhBGHGDuUxQ jthvmHyJ3bM0Ye7dbI83beSf4RW6Ybgl2q+LJqNqfVZwwtW3z7c+LTu1IrrjB4U4 YpnsW8rMcX37NH+o3uGTGHCz1YZVrCXT5VulnRbtrhL7VTYdh2q3L5sQhGgDQZxD MhWmk5vYmX4d9FiItsw0WR1r6h5+nvibW1PPgqJQ -----END CERTIFICATE-----Generated at Wed May 13 23:07:32 2026 by rpki-client