$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: MoTK3cF8j/jbB+AyRo02twMQJCIPrF+sJum6F23mA2Y= Subject key identifier: 3F:99:7E:A0:70:44:EA:8D:F3:20:B3:76:1F:CB:FE:8E:F9:13:5B:03 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 7DB440B35FAAB26A63FF5C448BE379F33F3C984E Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138302e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:31 +0000 ROA not before: Sun 03 May 2026 02:22:31 +0000 ROA not after: Sun 02 May 2027 02:27:31 +0000 asID: 63859 IP address blocks: 158.140.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:b4:40:b3:5f:aa:b2:6a:63:ff:5c:44:8b:e3:79:f3:3f:3c:98:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:31 2026 GMT Not After : May 2 02:27:31 2027 GMT Subject: CN=3F997EA07044EA8DF320B3761FCBFE8EF9135B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:94:70:b3:8f:4c:9e:7f:56:8d:ea:b5:a6:bc: 1c:92:05:08:46:0e:09:fa:de:3c:10:36:67:99:76: 23:c6:6f:40:aa:69:58:71:8e:12:5e:a1:df:85:07: 6f:75:ec:39:88:1d:7b:25:07:4e:12:01:a6:6a:4e: 4b:ee:c3:75:47:46:96:ce:c6:d3:d7:5b:65:eb:64: 18:a4:59:d7:97:02:fe:b7:5a:78:b9:21:80:7a:c2: 79:44:56:cf:50:9e:48:13:7c:55:14:1d:fc:e2:3f: 14:24:57:c2:5e:ed:c2:3c:ee:2c:22:d0:7a:49:c1: 84:60:c5:1f:90:c8:59:dc:e2:b1:ad:ec:d1:ab:11: 75:4b:e4:c5:cd:91:a7:38:71:87:fe:f7:98:ef:4a: 8b:43:1d:4e:d2:13:0e:bc:4e:6f:e7:33:bd:64:02: 95:c7:9f:96:d6:30:93:69:e2:f1:e2:83:16:9b:4e: ef:3b:45:5c:2e:2a:99:3a:f8:8d:02:64:63:69:42: b1:e9:b3:68:ab:83:78:c8:76:e6:ae:94:7f:16:36: e4:8b:bf:18:be:b8:c1:5c:05:aa:6a:a1:ee:2e:c2: c2:b6:25:70:bf:ab:1c:7e:8d:84:0b:9f:c8:62:26: 47:55:e5:70:d9:30:e3:0c:6a:ae:03:54:4f:49:60: b4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:99:7E:A0:70:44:EA:8D:F3:20:B3:76:1F:CB:FE:8E:F9:13:5B:03 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.180.0/24 Signature Algorithm: sha256WithRSAEncryption 96:1d:71:5a:2a:70:80:16:b5:51:0f:fc:b8:bf:14:89:28:5e: d3:7d:bc:90:aa:4a:35:18:d9:ff:bf:bc:ef:69:fd:56:ea:0f: 7c:81:b2:ad:93:da:53:f8:bd:fc:7d:c9:92:d6:00:2b:cd:05: 0c:98:08:65:a9:d7:2a:03:e9:6c:e0:e4:f6:cb:14:36:1c:25: 7c:f0:9a:f9:90:01:52:84:29:9d:ff:f3:7a:4a:e2:15:5e:7a: bd:d6:dd:db:54:04:7f:97:be:84:71:65:cc:a1:f9:43:1f:04: a9:f5:8a:69:98:32:50:62:50:d0:83:52:3f:91:74:be:b8:ab: 75:f7:e6:73:4d:6f:0e:6e:3b:89:2f:8d:85:ff:d2:08:b5:4c: de:85:98:30:b5:7b:2b:a6:d4:19:89:11:0f:f8:2d:be:4f:fb: 0b:75:c1:8c:1a:40:0b:07:cd:91:e5:7a:c8:cc:71:e1:a5:c5: 89:d2:7c:72:ad:bf:74:c2:02:9a:58:af:ca:4b:a4:19:a7:6f: ca:a0:52:77:c8:b4:e4:c0:83:91:61:00:ec:7c:58:4e:16:7a: b7:8f:a7:35:53:aa:15:d2:90:a8:86:64:f8:3a:db:19:b7:a9: 43:8c:00:fa:89:03:9c:03:84:b0:ad:9d:a1:5e:8e:5e:47:84: d9:fe:5e:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfbRAs1+qsmpj/1xEi+N58z88mE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzFaFw0yNzA1MDIwMjI3MzFaMDMxMTAvBgNV BAMTKDNGOTk3RUEwNzA0NEVBOERGMzIwQjM3NjFGQ0JGRThFRjkxMzVCMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDulHCzj0yef1aN6rWmvBySBQhG Dgn63jwQNmeZdiPGb0CqaVhxjhJeod+FB2917DmIHXslB04SAaZqTkvuw3VHRpbO xtPXW2XrZBikWdeXAv63Wni5IYB6wnlEVs9QnkgTfFUUHfziPxQkV8Je7cI87iwi 0HpJwYRgxR+QyFnc4rGt7NGrEXVL5MXNkac4cYf+95jvSotDHU7SEw68Tm/nM71k ApXHn5bWMJNp4vHigxabTu87RVwuKpk6+I0CZGNpQrHps2irg3jIduaulH8WNuSL vxi+uMFcBapqoe4uwsK2JXC/qxx+jYQLn8hiJkdV5XDZMOMMaq4DVE9JYLTxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUP5l+oHBE6o3zILN2H8v+jvkTWwMwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy0MA0GCSqG SIb3DQEBCwUAA4IBAQCWHXFaKnCAFrVRD/y4vxSJKF7TfbyQqko1GNn/v7zvaf1W 6g98gbKtk9pT+L38fcmS1gArzQUMmAhlqdcqA+ls4OT2yxQ2HCV88Jr5kAFShCmd //N6SuIVXnq91t3bVAR/l76EcWXMoflDHwSp9YppmDJQYlDQg1I/kXS+uKt19+Zz TW8ObjuJL42F/9IItUzehZgwtXsrptQZiREP+C2+T/sLdcGMGkALB82R5XrIzHHh pcWJ0nxyrb90wgKaWK/KS6QZp2/KoFJ3yLTkwIORYQDsfFhOFnq3j6c1U6oV0pCo hmT4OtsZt6lDjAD6iQOcA4SwrZ2hXo5eR4TZ/l7H -----END CERTIFICATE-----Generated at Wed May 13 23:07:33 2026 by rpki-client