$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137322e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137322e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: tBZVmiqzYe9CLcUCjYlrw1tRHjXA8FGPFPxhl4R06II= Subject key identifier: 39:83:4E:C5:15:BF:6B:94:1C:41:45:9F:7C:36:70:B8:6E:C7:57:F7 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 34CE7CEECCDDF6F31A7C60EF6643B4C86935DC2A Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137322e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:18 +0000 ROA not before: Sun 03 May 2026 02:22:18 +0000 ROA not after: Sun 02 May 2027 02:27:18 +0000 asID: 63859 IP address blocks: 158.140.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ce:7c:ee:cc:dd:f6:f3:1a:7c:60:ef:66:43:b4:c8:69:35:dc:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:18 2026 GMT Not After : May 2 02:27:18 2027 GMT Subject: CN=39834EC515BF6B941C41459F7C3670B86EC757F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:39:90:60:e9:e4:a5:45:d1:55:9d:ec:fb: 5a:f5:bd:fa:93:78:c6:2a:bc:d1:d4:52:4b:cc:7c: bf:35:c5:c6:6e:b9:5c:3d:53:41:1f:5c:ca:d6:3a: 5b:78:c7:7c:ff:5e:1a:f6:7c:59:b5:b8:98:eb:d9: 0f:62:d2:83:d1:41:b3:a5:b7:89:a2:08:bb:72:66: e2:4d:d8:5f:d1:b0:3f:82:79:02:c4:2d:b9:c9:9f: 6f:9e:7d:fe:98:2b:80:1f:42:4a:a8:c4:33:75:fd: 64:03:f4:53:f5:90:ca:70:55:54:de:f4:4e:fe:20: 7d:0a:c6:16:a3:36:c9:75:a8:6b:39:50:40:42:45: 46:75:37:1a:60:ea:7a:12:7a:bc:a4:54:cf:ea:78: 16:2c:89:ad:fb:0b:24:35:22:de:50:2d:5b:18:88: 98:d2:83:7a:2d:73:9c:bc:0a:b5:12:59:55:dd:b0: 3f:71:04:fe:cb:9f:ed:ef:f6:fe:04:d7:73:37:6d: 7e:b6:90:93:f6:94:ea:42:9f:27:ea:c7:f4:c2:63: 54:21:71:b9:58:8a:3d:63:d6:03:11:13:06:35:33: 7b:1e:3a:09:20:67:74:9a:0c:1c:1a:77:3f:62:01: 44:82:c3:16:3c:46:86:0e:1c:41:b2:3a:b8:ab:81: af:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:83:4E:C5:15:BF:6B:94:1C:41:45:9F:7C:36:70:B8:6E:C7:57:F7 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137322e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.172.0/24 Signature Algorithm: sha256WithRSAEncryption 95:e7:8b:08:c8:98:d9:6f:17:61:05:1c:c6:33:d7:61:99:dc: 65:cd:59:ef:f3:16:11:26:75:57:ab:70:9c:81:12:ed:79:7b: cf:b9:62:b2:63:25:88:fe:a8:bb:7f:74:c2:93:ae:51:31:82: 7e:fb:6d:96:de:5f:51:84:f7:65:cb:d5:19:8d:f8:ee:13:fd: 5e:d4:bb:a6:3f:23:04:03:78:15:55:b1:fb:f4:6d:29:51:45: 25:31:20:42:da:78:c0:af:94:6f:24:f1:14:1d:d1:bd:e2:4e: 20:f7:44:1c:25:05:5a:9c:3f:da:52:11:d0:67:73:a5:2f:fa: 94:86:78:c5:92:3a:2f:ab:f4:33:e9:5b:81:3f:d5:2d:f1:08: 0c:be:40:97:44:30:a5:4e:0a:8b:9a:71:73:a8:2f:dd:7a:ea: 93:71:91:5e:ff:e4:01:1a:19:0e:ef:8b:01:b0:52:4f:ea:52: 2f:24:9f:78:27:f9:c2:ee:7d:f2:e4:64:3f:2f:b4:64:71:09: be:f6:e0:3b:96:14:21:8b:1e:2b:4f:aa:72:67:44:2b:4a:bd: 17:ba:ed:ec:4f:95:15:68:e0:3b:fb:d1:b4:55:44:77:19:e8: cb:9b:20:9f:b4:3e:a1:4a:f1:36:4a:d0:2d:91:c6:17:8f:36: 33:4d:e4:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNM587szd9vMafGDvZkO0yGk13CowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMThaFw0yNzA1MDIwMjI3MThaMDMxMTAvBgNV BAMTKDM5ODM0RUM1MTVCRjZCOTQxQzQxNDU5RjdDMzY3MEI4NkVDNzU3RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9FzmQYOnkpUXRVZ3s+1r1vfqT eMYqvNHUUkvMfL81xcZuuVw9U0EfXMrWOlt4x3z/Xhr2fFm1uJjr2Q9i0oPRQbOl t4miCLtyZuJN2F/RsD+CeQLELbnJn2+eff6YK4AfQkqoxDN1/WQD9FP1kMpwVVTe 9E7+IH0KxhajNsl1qGs5UEBCRUZ1Nxpg6noSerykVM/qeBYsia37CyQ1It5QLVsY iJjSg3otc5y8CrUSWVXdsD9xBP7Ln+3v9v4E13M3bX62kJP2lOpCnyfqx/TCY1Qh cblYij1j1gMREwY1M3seOgkgZ3SaDBwadz9iAUSCwxY8RoYOHEGyOrirga+xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOYNOxRW/a5QcQUWffDZwuG7HV/cwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoysMA0GCSqG SIb3DQEBCwUAA4IBAQCV54sIyJjZbxdhBRzGM9dhmdxlzVnv8xYRJnVXq3CcgRLt eXvPuWKyYyWI/qi7f3TCk65RMYJ++22W3l9RhPdly9UZjfjuE/1e1LumPyMEA3gV VbH79G0pUUUlMSBC2njAr5RvJPEUHdG94k4g90QcJQVanD/aUhHQZ3OlL/qUhnjF kjovq/Qz6VuBP9Ut8QgMvkCXRDClTgqLmnFzqC/deuqTcZFe/+QBGhkO74sBsFJP 6lIvJJ94J/nC7n3y5GQ/L7RkcQm+9uA7lhQhix4rT6pyZ0QrSr0Xuu3sT5UVaOA7 +9G0VUR3GejLmyCftD6hSvE2StAtkcYXjzYzTeRh -----END CERTIFICATE-----Generated at Wed May 13 23:07:13 2026 by rpki-client