$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137382e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137382e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 8xMKXRYMN3gD5vRFHRtslmkh5YQFAGd4Ju81g58lzvY= Subject key identifier: CB:77:FB:C9:E0:B4:9E:EC:F4:74:31:C0:85:8B:21:42:A1:27:32:58 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 0FB8EBFF2BCE481ADCFDF302B88EEADDAAF7481A Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137382e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:32 +0000 ROA not before: Sun 03 May 2026 02:22:32 +0000 ROA not after: Sun 02 May 2027 02:27:32 +0000 asID: 63859 IP address blocks: 158.140.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b8:eb:ff:2b:ce:48:1a:dc:fd:f3:02:b8:8e:ea:dd:aa:f7:48:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:32 2026 GMT Not After : May 2 02:27:32 2027 GMT Subject: CN=CB77FBC9E0B49EECF47431C0858B2142A1273258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bf:af:4e:72:e8:62:56:df:69:0a:d3:b1:b9: ee:a0:60:76:3f:4e:cd:9a:36:86:9b:bf:66:c6:1d: 3e:6d:6b:1e:50:4e:7d:0b:24:cc:b2:9f:2c:26:6e: 3a:5d:47:c3:c3:a9:af:69:84:0f:99:85:07:c3:12: 4d:a1:02:b2:4e:ed:e4:10:28:bc:bd:65:60:d0:92: 77:aa:dd:47:f1:68:57:d4:e3:a9:19:8d:51:c1:a3: 56:55:de:33:55:09:ff:19:6d:68:e9:65:6b:2f:c7: 28:7d:0f:e1:3e:7b:d6:12:69:78:e1:35:8e:da:29: 7c:b4:94:74:56:c3:33:05:e9:66:aa:2f:66:b2:24: 5c:6d:8b:d7:ec:ac:be:aa:7e:cc:2b:cf:fb:5c:c2: 12:b5:61:df:08:19:8c:5f:81:d2:56:e6:63:c5:a6: 52:ce:a4:f6:39:56:11:81:bf:84:4e:1e:d7:8a:d3: 5a:51:67:ec:56:80:83:7a:b5:77:74:c6:0d:e7:7f: 0d:bf:ff:25:6c:3f:ac:82:9f:d2:77:39:a0:95:f5: 7f:f3:ba:d8:ef:6f:12:21:2f:4e:10:5b:20:34:1f: c0:d6:2c:f4:50:d1:25:4b:c7:74:9e:08:f2:c1:b7: 2b:d2:ef:94:f6:09:61:7a:56:f4:69:f5:44:d3:5b: ca:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:77:FB:C9:E0:B4:9E:EC:F4:74:31:C0:85:8B:21:42:A1:27:32:58 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137382e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.178.0/24 Signature Algorithm: sha256WithRSAEncryption 86:69:e1:e2:1f:ad:47:e6:a4:5d:e2:9c:a2:cb:fc:e9:a0:98: 38:32:21:95:0b:a8:0d:89:00:30:6c:02:ab:06:71:fd:19:f2: bc:4c:a2:5d:16:15:a8:7a:75:73:84:11:7c:cf:e3:37:f9:10: 1c:2c:86:5a:88:41:a3:e2:52:93:ee:7e:0a:9c:c0:de:7d:a6: 92:be:84:5a:f8:c6:45:38:02:48:b1:4b:be:70:36:fa:90:ed: 39:cc:64:8d:35:ad:21:6d:03:b6:83:38:7a:92:08:8c:de:9c: db:30:b0:77:9b:ea:14:0e:7d:8e:7d:0f:11:d9:d8:51:c2:dd: 74:1c:bf:67:8a:a9:b2:bd:18:dc:22:c6:b0:8d:de:6a:ef:e1: b2:bd:db:9d:ea:19:7b:4f:6b:cd:d7:b9:cd:14:ce:e7:47:2d: 78:3c:c5:04:39:d4:e5:c8:c3:27:5c:36:ae:de:45:46:70:1a: ef:b4:db:cf:68:6c:91:a6:f6:31:a2:7c:98:14:11:07:07:6a: e2:86:94:85:ca:3a:4f:2b:3d:b7:bf:5d:d7:28:1f:5a:3e:63: be:17:ba:2b:e7:9f:68:d6:58:d6:24:d0:17:6d:06:fd:7f:2b: 71:80:3b:3e:7b:7d:5e:f6:a0:bb:3f:3c:8d:69:26:c9:8f:39: 70:75:16:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD7jr/yvOSBrc/fMCuI7q3ar3SBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzJaFw0yNzA1MDIwMjI3MzJaMDMxMTAvBgNV BAMTKENCNzdGQkM5RTBCNDlFRUNGNDc0MzFDMDg1OEIyMTQyQTEyNzMyNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuv69OcuhiVt9pCtOxue6gYHY/ Ts2aNoabv2bGHT5tax5QTn0LJMyynywmbjpdR8PDqa9phA+ZhQfDEk2hArJO7eQQ KLy9ZWDQkneq3UfxaFfU46kZjVHBo1ZV3jNVCf8ZbWjpZWsvxyh9D+E+e9YSaXjh NY7aKXy0lHRWwzMF6WaqL2ayJFxti9fsrL6qfswrz/tcwhK1Yd8IGYxfgdJW5mPF plLOpPY5VhGBv4ROHteK01pRZ+xWgIN6tXd0xg3nfw2//yVsP6yCn9J3OaCV9X/z utjvbxIhL04QWyA0H8DWLPRQ0SVLx3SeCPLBtyvS75T2CWF6VvRp9UTTW8p1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUy3f7yeC0nuz0dDHAhYshQqEnMlgwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM3MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyyMA0GCSqG SIb3DQEBCwUAA4IBAQCGaeHiH61H5qRd4pyiy/zpoJg4MiGVC6gNiQAwbAKrBnH9 GfK8TKJdFhWoenVzhBF8z+M3+RAcLIZaiEGj4lKT7n4KnMDefaaSvoRa+MZFOAJI sUu+cDb6kO05zGSNNa0hbQO2gzh6kgiM3pzbMLB3m+oUDn2OfQ8R2dhRwt10HL9n iqmyvRjcIsawjd5q7+Gyvdud6hl7T2vN17nNFM7nRy14PMUEOdTlyMMnXDau3kVG cBrvtNvPaGyRpvYxonyYFBEHB2rihpSFyjpPKz23v13XKB9aPmO+F7or559o1ljW JNAXbQb9fytxgDs+e31e9qC7PzyNaSbJjzlwdRba -----END CERTIFICATE-----Generated at Wed May 13 23:07:31 2026 by rpki-client