$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: lslpBlKuc/1fzlp6ZneFuiY+BM4LWncHKbwRlZipgRQ= Subject key identifier: 14:D7:33:1B:42:D0:FF:90:23:12:5D:75:0B:22:34:A9:5A:1B:B4:57 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 4F02E2B729EA8A44AB6C269F8F1082AE9DAEAA58 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137312e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:20 +0000 ROA not before: Sun 03 May 2026 02:22:20 +0000 ROA not after: Sun 02 May 2027 02:27:20 +0000 asID: 63859 IP address blocks: 158.140.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:02:e2:b7:29:ea:8a:44:ab:6c:26:9f:8f:10:82:ae:9d:ae:aa:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:20 2026 GMT Not After : May 2 02:27:20 2027 GMT Subject: CN=14D7331B42D0FF9023125D750B2234A95A1BB457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7f:b6:d1:ac:12:52:a3:9c:2e:74:41:16:ad: 63:0d:1e:be:2b:ed:83:40:da:2b:90:69:ae:df:35: f3:ac:64:de:be:8e:c6:5a:35:1d:90:50:f8:5c:d1: 69:f9:94:82:8a:98:ef:28:70:8d:b3:20:ba:1b:40: 0e:52:17:a3:a4:39:d9:8a:24:ae:de:ea:e7:a1:57: c0:bb:84:86:22:f3:4a:b3:be:8b:86:df:b8:0d:7b: c1:0a:ae:95:77:6a:46:2f:15:30:32:02:86:ea:42: ec:50:3f:1b:d1:08:26:f9:1b:39:88:5e:02:fb:ea: f1:1e:93:a1:5d:7e:ad:d0:78:f6:58:7a:dc:84:8e: 43:94:a5:28:b6:0f:5e:ac:6b:db:45:fd:5b:cf:cc: fc:9c:d2:99:86:6a:ac:6e:23:d3:39:94:a1:73:23: 96:a6:03:2e:e4:58:96:1c:b2:83:77:3e:76:50:9b: c0:ce:83:a1:ac:82:51:c2:c2:5f:31:6d:aa:e5:9e: 65:9e:3c:53:0d:ca:12:ec:58:6f:9b:9a:d2:8b:63: 00:36:3c:2e:9a:df:9e:c2:6c:00:25:4a:fb:86:f9: c7:04:df:a5:3f:92:3a:5e:b3:4c:63:22:f0:9a:9f: 5c:a8:8c:33:b0:57:4c:86:12:b3:f2:08:a6:f8:55: 86:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D7:33:1B:42:D0:FF:90:23:12:5D:75:0B:22:34:A9:5A:1B:B4:57 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.171.0/24 Signature Algorithm: sha256WithRSAEncryption 88:38:f4:66:a4:ef:f1:40:27:b8:eb:30:8b:a6:bf:6d:91:31: b7:9b:a6:9f:d8:0d:57:cd:e1:3b:06:0c:80:04:38:92:3f:f1: 5a:5e:55:fb:2b:83:92:91:76:40:87:f0:a8:52:73:81:7e:8b: 5b:d1:c6:1d:33:3c:f5:08:fb:53:07:ae:b0:f1:44:1a:b9:6c: a0:fa:3c:ea:50:29:19:ba:2a:d2:66:ad:ef:fb:fa:96:d2:2c: 07:da:12:a7:db:83:50:07:49:a8:27:1f:d7:2c:8b:cf:46:b3: 17:2f:91:1b:22:8c:90:a2:98:b2:29:df:40:cf:5c:d4:3c:c1: d1:4e:b0:0d:67:fa:47:20:73:43:a0:9f:f2:e6:e0:62:e5:28: 97:43:c3:34:7f:3b:c6:ae:f0:3d:b7:98:ca:f8:e4:e6:d9:b3: 87:65:37:3b:5e:5e:74:61:13:7b:dd:63:0a:6f:45:99:da:82: e6:3d:88:bd:d0:b1:57:86:c0:eb:87:74:9c:a7:9e:b7:27:99: 3c:44:cc:34:e8:9e:87:95:3e:b4:d2:f5:0e:13:53:ab:c2:29: b1:57:8a:3f:5a:50:1d:f2:c9:07:97:f5:bc:93:8b:0b:4d:31: 29:55:8e:ad:2e:ae:0e:a1:5e:a8:3a:2e:50:99:7e:82:6a:ca: 16:c9:9d:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTwLitynqikSrbCafjxCCrp2uqlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjBaFw0yNzA1MDIwMjI3MjBaMDMxMTAvBgNV BAMTKDE0RDczMzFCNDJEMEZGOTAyMzEyNUQ3NTBCMjIzNEE5NUExQkI0NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIf7bRrBJSo5wudEEWrWMNHr4r 7YNA2iuQaa7fNfOsZN6+jsZaNR2QUPhc0Wn5lIKKmO8ocI2zILobQA5SF6OkOdmK JK7e6uehV8C7hIYi80qzvouG37gNe8EKrpV3akYvFTAyAobqQuxQPxvRCCb5GzmI XgL76vEek6Fdfq3QePZYetyEjkOUpSi2D16sa9tF/VvPzPyc0pmGaqxuI9M5lKFz I5amAy7kWJYcsoN3PnZQm8DOg6GsglHCwl8xbarlnmWePFMNyhLsWG+bmtKLYwA2 PC6a357CbAAlSvuG+ccE36U/kjpes0xjIvCan1yojDOwV0yGErPyCKb4VYY5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFNczG0LQ/5AjEl11CyI0qVobtFcwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyrMA0GCSqG SIb3DQEBCwUAA4IBAQCIOPRmpO/xQCe46zCLpr9tkTG3m6af2A1XzeE7BgyABDiS P/FaXlX7K4OSkXZAh/CoUnOBfotb0cYdMzz1CPtTB66w8UQauWyg+jzqUCkZuirS Zq3v+/qW0iwH2hKn24NQB0moJx/XLIvPRrMXL5EbIoyQopiyKd9Az1zUPMHRTrAN Z/pHIHNDoJ/y5uBi5SiXQ8M0fzvGrvA9t5jK+OTm2bOHZTc7Xl50YRN73WMKb0WZ 2oLmPYi90LFXhsDrh3Scp563J5k8RMw06J6HlT600vUOE1OrwimxV4o/WlAd8skH l/W8k4sLTTEpVY6tLq4OoV6oOi5QmX6CasoWyZ3t -----END CERTIFICATE-----Generated at Wed May 13 23:07:13 2026 by rpki-client