$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138322e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138322e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 1dcIN4xRw1Z/XO03EKkd1sGclPozlR7T7XuYNuYLXow= Subject key identifier: 17:6F:4D:82:58:6C:79:A8:43:E2:3C:F6:68:D7:5F:8D:5E:67:8D:50 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 4027DB2827753C8C6EE48C5D79C50ED043EEBD4E Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138322e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:17 +0000 ROA not before: Sun 03 May 2026 02:22:17 +0000 ROA not after: Sun 02 May 2027 02:27:17 +0000 asID: 63859 IP address blocks: 158.140.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:27:db:28:27:75:3c:8c:6e:e4:8c:5d:79:c5:0e:d0:43:ee:bd:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:17 2026 GMT Not After : May 2 02:27:17 2027 GMT Subject: CN=176F4D82586C79A843E23CF668D75F8D5E678D50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d0:51:e6:07:6c:89:7b:d3:64:f0:73:2a:71: 48:2d:15:ee:d3:8d:86:0f:8f:13:8d:19:7c:65:f9: 58:64:37:b6:07:e6:6a:8e:6d:3c:4e:1e:4e:17:b8: 5c:5c:14:c8:f2:65:de:c2:d5:46:fd:1c:57:7e:cc: ea:c9:27:48:f9:c8:b4:a1:8b:4b:57:a2:a9:6e:79: 63:38:f3:ce:9f:1f:17:28:bb:b5:36:f0:bb:2d:e0: d3:3e:47:53:ab:9d:39:fb:7b:fe:f8:79:53:c8:df: d1:9a:50:ca:93:5f:77:2c:31:ea:4d:1f:ff:88:00: 1a:a0:1f:88:94:2b:7e:c6:2f:0d:98:b4:ff:91:ff: 75:fb:86:e6:1d:27:5e:01:a9:5f:cd:32:e1:11:83: 6d:d8:01:b1:b9:42:de:7b:81:26:24:9e:a2:6f:5e: f8:52:14:35:ed:35:58:cd:70:68:e9:37:dc:38:4c: 73:87:7a:01:25:d5:c3:3c:dd:79:ed:94:02:56:59: 30:e4:90:24:b5:b7:30:4c:d0:dc:69:6a:13:a1:61: 6f:00:0f:d5:57:cb:6f:65:a3:5b:9d:13:b3:34:9c: 08:9b:fc:04:c6:6a:bb:9a:67:6b:e4:bc:94:c3:ba: b6:8e:60:c0:93:32:c3:d2:db:ba:3a:65:74:69:d0: 48:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:6F:4D:82:58:6C:79:A8:43:E2:3C:F6:68:D7:5F:8D:5E:67:8D:50 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138322e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.182.0/24 Signature Algorithm: sha256WithRSAEncryption e1:6d:a3:d1:fb:5f:ea:ca:75:ee:8c:36:bb:14:ef:a3:d9:08: 8d:aa:c9:b3:d7:5c:94:e4:91:a8:3b:4d:fc:30:77:68:b1:34: 2b:86:13:ee:c3:fe:fe:65:e0:02:36:60:aa:9b:1c:5b:1f:f1: 5d:8e:16:dd:b2:8b:b8:be:db:57:b2:6e:10:43:6f:dd:73:00: e3:0c:21:21:71:c5:99:e8:18:7e:84:5b:26:d2:bb:b8:f7:74: 4d:01:d0:95:84:cf:d2:f9:91:ae:32:fd:8f:d1:5e:5d:6b:56: da:69:85:9d:5f:57:9e:f4:ee:82:7f:36:f3:e1:a4:ab:59:ac: 87:ad:01:25:c2:4e:f0:4f:f7:71:1d:4a:e1:ea:dd:87:51:c4: 43:b3:f7:ea:59:f0:0b:7e:1c:82:34:08:fc:ad:e7:29:79:23: ae:8c:67:d5:f5:24:62:5b:e1:e9:13:3f:bd:ef:50:39:cc:dc: 6e:c5:60:5e:f0:f1:5e:3f:83:af:e4:62:0b:86:d5:90:b7:e8: a4:ad:57:da:e1:c6:ea:9d:81:80:16:6b:01:47:f4:25:57:64: 45:ce:6f:9a:19:b4:4e:95:50:24:a7:2b:35:e9:08:bd:c4:35: 7d:b6:15:44:1d:5e:f4:27:02:1c:ce:64:6c:d3:1d:28:9e:55: 9b:ac:11:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQCfbKCd1PIxu5IxdecUO0EPuvU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMTdaFw0yNzA1MDIwMjI3MTdaMDMxMTAvBgNV BAMTKDE3NkY0RDgyNTg2Qzc5QTg0M0UyM0NGNjY4RDc1RjhENUU2NzhENTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr0FHmB2yJe9Nk8HMqcUgtFe7T jYYPjxONGXxl+VhkN7YH5mqObTxOHk4XuFxcFMjyZd7C1Ub9HFd+zOrJJ0j5yLSh i0tXoqlueWM4886fHxcou7U28Lst4NM+R1OrnTn7e/74eVPI39GaUMqTX3csMepN H/+IABqgH4iUK37GLw2YtP+R/3X7huYdJ14BqV/NMuERg23YAbG5Qt57gSYknqJv XvhSFDXtNVjNcGjpN9w4THOHegEl1cM83XntlAJWWTDkkCS1tzBM0NxpahOhYW8A D9VXy29lo1udE7M0nAib/ATGaruaZ2vkvJTDuraOYMCTMsPS27o6ZXRp0EijAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUF29NglhseahD4jz2aNdfjV5njVAwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM4MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy2MA0GCSqG SIb3DQEBCwUAA4IBAQDhbaPR+1/qynXujDa7FO+j2QiNqsmz11yU5JGoO038MHdo sTQrhhPuw/7+ZeACNmCqmxxbH/Fdjhbdsou4vttXsm4QQ2/dcwDjDCEhccWZ6Bh+ hFsm0ru493RNAdCVhM/S+ZGuMv2P0V5da1baaYWdX1ee9O6Cfzbz4aSrWayHrQEl wk7wT/dxHUrh6t2HUcRDs/fqWfALfhyCNAj8recpeSOujGfV9SRiW+HpEz+971A5 zNxuxWBe8PFeP4Ov5GILhtWQt+ikrVfa4cbqnYGAFmsBR/QlV2RFzm+aGbROlVAk pys16Qi9xDV9thVEHV70JwIczmRs0x0onlWbrBE5 -----END CERTIFICATE-----Generated at Wed May 13 23:07:33 2026 by rpki-client