$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: UFEMUt7dG7rc2cxSgtgWFyFRTfYTxnjMgxpcGa4UQhU= Subject key identifier: 20:35:08:31:DE:F1:E6:3C:36:E4:7F:B8:8D:4D:59:E5:90:55:C4:1E Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 1B61D741F83CC99925E882A4660881538D75A235 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:30 +0000 ROA not before: Sun 03 May 2026 02:22:30 +0000 ROA not after: Sun 02 May 2027 02:27:30 +0000 asID: 63859 IP address blocks: 158.140.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:61:d7:41:f8:3c:c9:99:25:e8:82:a4:66:08:81:53:8d:75:a2:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:30 2026 GMT Not After : May 2 02:27:30 2027 GMT Subject: CN=20350831DEF1E63C36E47FB88D4D59E59055C41E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ea:39:d4:17:24:52:91:08:eb:3a:1a:5f:68: 7b:65:29:0b:21:31:ae:2d:16:20:67:92:02:96:25: 79:4b:33:43:04:de:f6:9d:55:a8:88:ba:ad:62:04: 24:f1:d0:1b:e9:c7:71:28:4a:f1:e7:27:97:c1:85: ae:60:e0:37:dd:60:2b:12:d2:96:8b:3b:cb:35:59: ca:73:04:6b:1d:3f:64:53:b8:f4:9e:a7:74:a8:9b: 5a:24:8b:6b:1c:22:de:9a:89:5b:ad:88:2f:95:cb: 03:ef:52:de:56:cd:65:66:31:88:ec:36:0d:9d:06: 0b:44:c4:6d:cf:bd:84:c1:34:71:ec:43:5e:cf:5b: 8d:ef:c6:5e:e6:35:80:91:a3:12:e5:e6:95:fa:0a: d4:df:5e:35:51:47:02:f5:a2:16:f8:ea:4e:01:b8: b7:b7:50:be:ed:24:cd:d4:c8:aa:41:4b:ba:c5:6f: bd:92:db:2b:54:38:b2:db:02:ad:ec:c3:19:48:af: ff:ac:d9:67:c1:e8:dc:75:78:0f:d1:09:d5:7e:4f: 58:0f:1f:19:67:83:a6:b6:08:12:b9:47:b0:52:59: 55:29:e5:fb:99:c6:38:fe:cb:9b:fa:0a:8f:e4:f1: 81:44:21:af:a3:99:50:d3:04:6f:a1:21:6e:29:ad: 88:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:35:08:31:DE:F1:E6:3C:36:E4:7F:B8:8D:4D:59:E5:90:55:C4:1E X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137372e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.177.0/24 Signature Algorithm: sha256WithRSAEncryption be:d2:e2:7d:01:01:a7:db:5c:96:d5:e4:1f:d4:7b:62:46:b4: 4d:fb:80:38:be:cd:a6:ad:96:8c:24:8b:f2:30:68:b2:6d:ec: c9:72:74:46:4a:d9:77:8b:70:d5:6b:e9:d1:62:29:db:ee:fc: 30:11:1f:07:76:50:c5:11:fe:e9:14:75:ef:67:1e:0c:e1:cb: cc:5b:cb:db:b5:a7:7e:58:2f:a2:35:90:b6:86:45:ce:d2:93: 2b:f4:df:30:45:40:10:b9:f8:4e:ec:7e:48:56:33:db:c1:7f: fd:65:ba:b6:80:ea:3f:2b:69:36:05:e6:02:4d:81:41:f4:47: b6:49:27:c1:e9:6f:38:10:6e:2f:9f:04:8d:85:c6:5e:ad:7d: 23:35:c8:5f:51:14:9f:ae:e9:69:e9:6a:12:77:74:2b:ef:46: c7:14:7b:1b:01:3f:03:26:42:70:53:25:d5:da:82:e9:7d:3d: f4:18:a2:e8:e4:57:9d:58:9f:e7:6f:26:ce:a4:1f:e0:dd:8a: 40:ec:4f:0f:35:5b:1b:47:2d:66:0e:8f:44:54:94:b8:d8:a2: 1d:b3:75:c9:d1:0e:67:f0:23:c3:f8:4e:fc:76:07:2e:31:ae: ca:8a:a6:0b:b3:23:9f:c9:b9:4b:1f:c5:85:7b:a4:a7:c7:7d: 3c:26:78:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG2HXQfg8yZkl6IKkZgiBU411ojUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzBaFw0yNzA1MDIwMjI3MzBaMDMxMTAvBgNV BAMTKDIwMzUwODMxREVGMUU2M0MzNkU0N0ZCODhENEQ1OUU1OTA1NUM0MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe6jnUFyRSkQjrOhpfaHtlKQsh Ma4tFiBnkgKWJXlLM0ME3vadVaiIuq1iBCTx0Bvpx3EoSvHnJ5fBha5g4DfdYCsS 0paLO8s1WcpzBGsdP2RTuPSep3Som1oki2scIt6aiVutiC+VywPvUt5WzWVmMYjs Ng2dBgtExG3PvYTBNHHsQ17PW43vxl7mNYCRoxLl5pX6CtTfXjVRRwL1ohb46k4B uLe3UL7tJM3UyKpBS7rFb72S2ytUOLLbAq3swxlIr/+s2WfB6Nx1eA/RCdV+T1gP Hxlng6a2CBK5R7BSWVUp5fuZxjj+y5v6Co/k8YFEIa+jmVDTBG+hIW4prYgdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIDUIMd7x5jw25H+4jU1Z5ZBVxB4wHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM3MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyxMA0GCSqG SIb3DQEBCwUAA4IBAQC+0uJ9AQGn21yW1eQf1HtiRrRN+4A4vs2mrZaMJIvyMGiy bezJcnRGStl3i3DVa+nRYinb7vwwER8HdlDFEf7pFHXvZx4M4cvMW8vbtad+WC+i NZC2hkXO0pMr9N8wRUAQufhO7H5IVjPbwX/9Zbq2gOo/K2k2BeYCTYFB9Ee2SSfB 6W84EG4vnwSNhcZerX0jNchfURSfrulp6WoSd3Qr70bHFHsbAT8DJkJwUyXV2oLp fT30GKLo5FedWJ/nbybOpB/g3YpA7E8PNVsbRy1mDo9EVJS42KIds3XJ0Q5n8CPD +E78dgcuMa7KiqYLsyOfyblLH8WFe6Snx308Jnhq -----END CERTIFICATE-----Generated at Wed May 13 23:07:32 2026 by rpki-client