$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa File: 3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa (raw, json) Hash identifier: JQuVIbtAIWbWm81Ckw6IZf2aV/8X4B1qsi6YAir5I+A= Subject key identifier: C7:B1:A0:99:E0:7E:D5:EF:1F:0A:A2:31:FE:33:D1:02:3D:AD:61:00 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 0EFAED9249CDBABB435BB27504FA94532A244F12 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:33 +0000 ROA not before: Sun 03 May 2026 02:22:33 +0000 ROA not after: Sun 02 May 2027 02:27:33 +0000 asID: 63859 IP address blocks: 158.140.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fa:ed:92:49:cd:ba:bb:43:5b:b2:75:04:fa:94:53:2a:24:4f:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:33 2026 GMT Not After : May 2 02:27:33 2027 GMT Subject: CN=C7B1A099E07ED5EF1F0AA231FE33D1023DAD6100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:06:5c:d7:4a:59:f4:20:99:70:38:ca:61:aa: cb:3e:46:0a:7b:7e:7e:67:f4:ac:29:65:7c:e9:5e: 50:b9:5c:2f:bf:ee:1d:76:7e:63:97:ea:2f:8b:20: e7:da:5a:93:ea:1f:ff:ca:1c:4b:c8:0d:ba:f1:69: a4:8b:47:69:2c:8e:6a:8d:24:04:a9:cb:04:0e:28: fd:bd:3d:df:1d:37:5d:de:78:ed:60:e3:5b:69:3d: e3:fb:87:9a:ef:6f:cd:19:61:09:65:5e:53:e4:e4: d6:e2:4b:60:e8:8c:16:2e:66:af:b6:18:bb:db:11: 6d:e1:50:c0:53:ac:3b:16:d7:11:25:33:f2:87:da: 25:75:76:ca:27:38:9b:65:2a:95:7c:47:12:27:16: f0:02:e4:4f:cc:66:a2:7b:ac:eb:34:15:88:ab:8e: b6:f2:17:a9:e8:5e:f6:e9:a6:e5:cc:9d:db:f6:69: ac:74:28:37:71:6d:01:d6:2b:1c:f1:a5:dd:6a:f6: d9:53:2d:99:75:f1:85:83:b2:41:57:54:ec:a5:34: d0:73:ab:5a:4d:b8:56:8d:ee:10:77:9e:ab:6c:08: 40:e7:6a:b0:09:da:eb:98:3c:de:6b:3d:b6:2d:f2: e4:f1:f7:a7:bc:61:03:2a:af:6b:86:6f:bc:70:fe: 7e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B1:A0:99:E0:7E:D5:EF:1F:0A:A2:31:FE:33:D1:02:3D:AD:61:00 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137362e302f32312d3231203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.176.0/21 Signature Algorithm: sha256WithRSAEncryption af:55:b0:97:5c:4e:60:50:00:9d:06:60:e5:83:5f:d9:8f:90: cd:19:26:db:8e:c4:3f:3e:19:8a:83:bd:da:43:4b:a2:a9:1e: 08:f1:88:98:09:90:fd:8b:9c:d9:bb:24:59:85:6c:33:48:87: ac:8d:6f:30:4e:5a:7e:f1:08:82:6f:40:dc:f5:72:a0:52:79: 6b:fe:14:51:07:d0:08:dc:2c:cd:b9:d8:c1:53:c3:f7:bf:d5: aa:66:01:5a:64:14:85:5e:88:a7:6f:80:79:2d:b3:16:1e:44: c0:7b:f1:38:43:0e:d3:4d:69:be:b9:e7:1d:19:74:ed:5e:48: 44:5c:82:1b:c0:88:29:97:1a:15:2d:df:36:c1:9a:c4:2e:c3: fc:09:01:b7:0a:af:5f:bd:39:cc:2d:ec:bc:f1:a7:55:42:1b: 93:67:ac:80:19:ea:81:0e:8c:d0:61:db:f8:a5:52:e0:95:ab: f1:80:9c:fe:fe:f4:94:89:ac:e2:15:76:ea:b6:00:bf:44:e2: b2:d4:06:37:11:a0:4c:00:c2:78:87:d7:39:97:b3:08:e2:74: 0b:6c:05:4a:fb:62:06:4c:e4:ab:5f:de:7c:ef:0a:5b:60:a9: 9b:c1:0e:49:0d:40:d5:ef:e0:7a:8a:d6:82:95:cf:06:84:e5: 22:cf:dd:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDvrtkknNurtDW7J1BPqUUyokTxIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzNaFw0yNzA1MDIwMjI3MzNaMDMxMTAvBgNV BAMTKEM3QjFBMDk5RTA3RUQ1RUYxRjBBQTIzMUZFMzNEMTAyM0RBRDYxMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtBlzXSln0IJlwOMphqss+Rgp7 fn5n9KwpZXzpXlC5XC+/7h12fmOX6i+LIOfaWpPqH//KHEvIDbrxaaSLR2ksjmqN JASpywQOKP29Pd8dN13eeO1g41tpPeP7h5rvb80ZYQllXlPk5NbiS2DojBYuZq+2 GLvbEW3hUMBTrDsW1xElM/KH2iV1dsonOJtlKpV8RxInFvAC5E/MZqJ7rOs0FYir jrbyF6noXvbppuXMndv2aax0KDdxbQHWKxzxpd1q9tlTLZl18YWDskFXVOylNNBz q1pNuFaN7hB3nqtsCEDnarAJ2uuYPN5rPbYt8uTx96e8YQMqr2uGb7xw/n5DAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUx7GgmeB+1e8fCqIx/jPRAj2tYQAwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM3MzYyZTMwMmYz MjMxMmQzMjMxMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDnoywMA0GCSqG SIb3DQEBCwUAA4IBAQCvVbCXXE5gUACdBmDlg1/Zj5DNGSbbjsQ/PhmKg73aQ0ui qR4I8YiYCZD9i5zZuyRZhWwzSIesjW8wTlp+8QiCb0Dc9XKgUnlr/hRRB9AI3CzN udjBU8P3v9WqZgFaZBSFXoinb4B5LbMWHkTAe/E4Qw7TTWm+uecdGXTtXkhEXIIb wIgplxoVLd82wZrELsP8CQG3Cq9fvTnMLey88adVQhuTZ6yAGeqBDozQYdv4pVLg lavxgJz+/vSUiaziFXbqtgC/ROKy1AY3EaBMAMJ4h9c5l7MI4nQLbAVK+2IGTOSr X9587wpbYKmbwQ5JDUDV7+B6itaClc8GhOUiz92f -----END CERTIFICATE-----Generated at Wed May 13 23:07:32 2026 by rpki-client