$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138352e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: sl/CR353lieR5dNs7v+1eBW1lMKiXkf8BlKRk+LVjwg= Subject key identifier: CA:84:90:D0:7F:60:BB:D9:05:F3:13:8C:61:54:F2:68:E1:53:FD:63 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 6766B2729F33E3FE3A90DEB4DE6C5422A093BB86 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138352e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:25 +0000 ROA not before: Sun 03 May 2026 02:22:25 +0000 ROA not after: Sun 02 May 2027 02:27:25 +0000 asID: 63859 IP address blocks: 158.140.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:66:b2:72:9f:33:e3:fe:3a:90:de:b4:de:6c:54:22:a0:93:bb:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:25 2026 GMT Not After : May 2 02:27:25 2027 GMT Subject: CN=CA8490D07F60BBD905F3138C6154F268E153FD63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:70:a2:1d:c2:5b:b5:84:22:91:8c:28:fb:07: 33:73:22:24:0e:97:0c:aa:a6:59:6d:16:fa:65:c5: 25:87:88:6e:a9:3f:17:4d:fe:e6:29:7f:40:75:40: 1f:6d:11:53:9c:7d:aa:95:ab:e0:ea:e5:cd:41:44: 9f:50:49:31:bb:7e:ae:c5:41:04:39:fd:43:bd:ab: bb:55:15:50:70:0f:40:d4:7d:92:34:cc:6f:c5:1e: 84:8f:b5:f2:3a:f4:8d:c8:ba:52:2f:2d:06:dd:73: 8f:3f:e7:70:33:a1:37:1c:14:97:97:55:85:b0:62: 78:1a:9e:05:0c:c8:6b:f1:df:1d:3e:7c:e9:37:cc: a0:32:b5:50:dd:05:9e:38:c5:19:6b:bc:ba:52:28: 7c:09:be:0e:64:3c:e2:af:10:7a:ef:57:03:11:17: 54:65:85:31:53:24:0e:60:82:f3:56:73:63:b2:02: 9a:07:7f:e7:a0:e5:a6:10:5f:08:c7:5a:c6:66:e7: 91:15:fc:25:69:ec:69:88:93:24:93:ae:0b:da:b2: f0:c0:92:ea:6b:4e:13:02:27:a8:c1:03:62:11:33: c5:a8:ee:19:18:83:08:56:04:37:ef:dd:83:8d:4c: 46:4f:11:99:ee:48:8f:a4:56:9b:2c:72:69:af:29: a4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:84:90:D0:7F:60:BB:D9:05:F3:13:8C:61:54:F2:68:E1:53:FD:63 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.185.0/24 Signature Algorithm: sha256WithRSAEncryption d2:0c:13:80:ed:ad:db:d1:6c:92:2e:6a:67:af:1c:3f:0e:d7: cd:56:3d:ea:ed:be:98:e8:27:ff:ad:05:51:a8:13:b8:36:c4: e6:e0:c5:2b:d0:f6:f1:2d:3e:3d:63:f3:a4:6b:08:f5:28:a9: ec:c3:b3:11:80:b6:41:24:dc:37:95:f0:9c:cc:6e:c7:ad:96: 07:e7:ee:e2:95:11:c7:bf:4f:c4:1a:3e:23:9d:7e:91:4a:90: 08:f2:fd:4b:94:68:14:0d:89:13:79:4f:a2:84:7b:8c:f8:5c: cc:62:70:42:91:fe:9b:c7:e3:a3:1b:cb:a5:5b:1f:d6:e7:35: ab:e4:0c:e3:91:eb:c1:cc:2b:09:39:49:55:13:18:bc:ab:91: ec:93:54:28:1c:c2:7b:5a:f4:ea:a9:cf:76:10:de:00:19:5e: 61:e2:e1:ed:87:6b:c7:b3:5f:8c:42:46:1c:83:45:00:eb:4c: 6a:dd:1a:47:56:d0:e1:2f:3a:07:8e:0c:58:89:b0:6f:28:3f: 8b:0a:e0:8b:9b:78:06:d2:f7:3a:1a:c4:0e:7d:69:d5:fb:c3: d8:06:2b:be:62:fe:c6:8a:f5:9d:06:91:2a:5f:d8:f5:8a:e9: 2c:a2:2e:5b:e9:91:ca:48:57:3e:2a:4a:a8:0b:80:21:97:1b: 07:93:d9:57 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZ2aycp8z4/46kN603mxUIqCTu4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjVaFw0yNzA1MDIwMjI3MjVaMDMxMTAvBgNV BAMTKENBODQ5MEQwN0Y2MEJCRDkwNUYzMTM4QzYxNTRGMjY4RTE1M0ZENjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwcKIdwlu1hCKRjCj7BzNzIiQO lwyqplltFvplxSWHiG6pPxdN/uYpf0B1QB9tEVOcfaqVq+Dq5c1BRJ9QSTG7fq7F QQQ5/UO9q7tVFVBwD0DUfZI0zG/FHoSPtfI69I3IulIvLQbdc48/53AzoTccFJeX VYWwYngangUMyGvx3x0+fOk3zKAytVDdBZ44xRlrvLpSKHwJvg5kPOKvEHrvVwMR F1RlhTFTJA5ggvNWc2OyApoHf+eg5aYQXwjHWsZm55EV/CVp7GmIkySTrgvasvDA kuprThMCJ6jBA2IRM8Wo7hkYgwhWBDfv3YONTEZPEZnuSI+kVpsscmmvKaRLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyoSQ0H9gu9kF8xOMYVTyaOFT/WMwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy5MA0GCSqG SIb3DQEBCwUAA4IBAQDSDBOA7a3b0WySLmpnrxw/DtfNVj3q7b6Y6Cf/rQVRqBO4 NsTm4MUr0PbxLT49Y/Okawj1KKnsw7MRgLZBJNw3lfCczG7HrZYH5+7ilRHHv0/E Gj4jnX6RSpAI8v1LlGgUDYkTeU+ihHuM+FzMYnBCkf6bx+OjG8ulWx/W5zWr5Azj kevBzCsJOUlVExi8q5Hsk1QoHMJ7WvTqqc92EN4AGV5h4uHth2vHs1+MQkYcg0UA 60xq3RpHVtDhLzoHjgxYibBvKD+LCuCLm3gG0vc6GsQOfWnV+8PYBiu+Yv7GivWd BpEqX9j1iuksoi5b6ZHKSFc+KkqoC4AhlxsHk9lX -----END CERTIFICATE-----Generated at Wed May 13 23:07:32 2026 by rpki-client