$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: KYjljsKobr6Vqycfm0RLXcaCg2P533G9mE0bxo02soA= Subject key identifier: 94:AA:7E:22:C7:7F:90:D0:58:32:ED:E8:7C:D8:63:BE:A7:47:29:CD Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 1499DB67F6D445F7F27030D1440CBC04FD96C8DA Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:28 +0000 ROA not before: Sun 03 May 2026 02:22:28 +0000 ROA not after: Sun 02 May 2027 02:27:28 +0000 asID: 63859 IP address blocks: 158.140.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:99:db:67:f6:d4:45:f7:f2:70:30:d1:44:0c:bc:04:fd:96:c8:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:28 2026 GMT Not After : May 2 02:27:28 2027 GMT Subject: CN=94AA7E22C77F90D05832EDE87CD863BEA74729CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5c:75:14:e4:3a:64:46:51:67:b8:c6:c5:f6: 2d:c5:2f:7d:96:d9:9c:7c:b2:ec:f8:50:ba:2a:0e: 0a:1a:9f:8a:70:ad:97:dd:09:1f:7b:09:c7:32:16: 51:50:b0:94:85:c7:fc:57:f7:0c:ee:e8:68:d6:01: 6f:c0:c6:99:bd:7b:ca:e3:04:59:ba:5f:9f:23:89: 7b:e5:b2:d5:d8:41:60:2c:12:e5:73:c2:b7:a9:1a: 25:61:5e:bb:63:3b:9c:a3:83:9e:bf:e0:e9:3b:6d: ac:1e:ac:60:f4:f7:df:38:96:53:b6:60:9a:96:c0: 78:bc:80:af:70:9b:d3:6c:8b:c4:b0:fe:b1:5c:9f: d1:1d:be:44:8a:06:f6:40:0c:86:a1:30:28:2d:39: ac:da:f0:d9:72:89:ae:ce:87:ec:5b:64:35:5f:c4: 76:f9:d3:e6:d9:97:9c:7e:a9:8c:df:a3:54:cb:1b: 8f:66:f6:5a:34:df:22:5b:4a:3e:5e:2d:88:3c:2e: 18:37:af:93:2f:29:5c:cd:08:fb:2f:84:c8:6b:ff: 70:a6:82:a9:68:20:0b:63:1b:69:c0:e1:a0:9d:2e: 64:b9:d2:9b:a2:11:d7:b7:69:5a:34:71:23:6c:dd: 58:a2:eb:4a:f0:03:d1:2c:c8:9b:8e:9a:95:0e:1e: c0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AA:7E:22:C7:7F:90:D0:58:32:ED:E8:7C:D8:63:BE:A7:47:29:CD X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.183.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:85:86:f5:7a:43:a5:bb:4b:95:93:33:b7:c5:5b:d0:43:a5: 3d:ed:12:6b:55:06:16:96:79:01:47:4a:c6:01:c2:6d:7e:f3: a1:25:1d:a4:b2:a3:d7:17:d5:c9:4b:e4:ab:c5:87:ff:a1:77: 56:2e:bb:42:0b:0e:14:d1:04:47:0c:f2:57:97:ea:c7:9e:23: e7:b0:1a:d9:e6:57:56:7b:37:e9:04:f3:87:5b:82:e9:08:84: 0d:6d:ef:72:a0:25:bb:b1:ac:81:78:71:72:84:36:2b:4b:0a: 3b:f9:e3:10:89:d1:23:66:c7:db:39:9a:8f:d0:e9:a7:bd:65: 33:77:16:f8:f9:fe:ed:cd:2d:04:45:e3:86:2d:7f:d1:92:f1: 4c:5d:0b:5c:7e:e2:99:be:04:9a:1a:4a:eb:04:bf:58:ce:fd: f5:8e:c9:a8:22:a4:37:22:89:a8:fd:53:8a:85:48:04:02:0e: 93:5e:a6:a7:e8:23:5a:f2:2a:14:c1:fd:8f:2b:7e:64:af:9b: c9:3e:4d:d0:08:50:e2:bb:44:42:53:7a:96:c1:b2:1b:7a:62: 1c:dd:37:eb:13:40:ee:71:d4:e0:2d:7e:69:50:0f:1e:c9:0a: 0a:1e:c9:fb:53:e2:5f:65:aa:b0:a8:65:45:59:23:53:20:b8: af:52:1f:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFJnbZ/bURffycDDRRAy8BP2WyNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjhaFw0yNzA1MDIwMjI3MjhaMDMxMTAvBgNV BAMTKDk0QUE3RTIyQzc3RjkwRDA1ODMyRURFODdDRDg2M0JFQTc0NzI5Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/XHUU5DpkRlFnuMbF9i3FL32W 2Zx8suz4ULoqDgoan4pwrZfdCR97CccyFlFQsJSFx/xX9wzu6GjWAW/Axpm9e8rj BFm6X58jiXvlstXYQWAsEuVzwrepGiVhXrtjO5yjg56/4Ok7bawerGD09984llO2 YJqWwHi8gK9wm9Nsi8Sw/rFcn9EdvkSKBvZADIahMCgtOaza8Nlyia7Oh+xbZDVf xHb50+bZl5x+qYzfo1TLG49m9lo03yJbSj5eLYg8Lhg3r5MvKVzNCPsvhMhr/3Cm gqloIAtjG2nA4aCdLmS50puiEde3aVo0cSNs3Vii60rwA9EsyJuOmpUOHsChAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlKp+Isd/kNBYMu3ofNhjvqdHKc0wHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM4MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy3MA0GCSqG SIb3DQEBCwUAA4IBAQCehYb1ekOlu0uVkzO3xVvQQ6U97RJrVQYWlnkBR0rGAcJt fvOhJR2ksqPXF9XJS+SrxYf/oXdWLrtCCw4U0QRHDPJXl+rHniPnsBrZ5ldWezfp BPOHW4LpCIQNbe9yoCW7sayBeHFyhDYrSwo7+eMQidEjZsfbOZqP0OmnvWUzdxb4 +f7tzS0EReOGLX/RkvFMXQtcfuKZvgSaGkrrBL9Yzv31jsmoIqQ3Iomo/VOKhUgE Ag6TXqan6CNa8ioUwf2PK35kr5vJPk3QCFDiu0RCU3qWwbIbemIc3TfrE0DucdTg LX5pUA8eyQoKHsn7U+JfZaqwqGVFWSNTILivUh9w -----END CERTIFICATE-----Generated at Wed May 13 23:07:32 2026 by rpki-client