$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138362e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3138362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: YNQVeqRjDHIYIdX3yROT2gu7kbSq/T566AArUX4/a3Q= Subject key identifier: B9:0F:E6:F1:F5:8A:70:97:CA:6D:B7:EB:76:FB:2D:C0:C5:85:26:39 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 2B749360AF145A40307B7625DAF814B5A069D44E Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138362e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:27 +0000 ROA not before: Sun 03 May 2026 02:22:27 +0000 ROA not after: Sun 02 May 2027 02:27:27 +0000 asID: 63859 IP address blocks: 158.140.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:74:93:60:af:14:5a:40:30:7b:76:25:da:f8:14:b5:a0:69:d4:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:27 2026 GMT Not After : May 2 02:27:27 2027 GMT Subject: CN=B90FE6F1F58A7097CA6DB7EB76FB2DC0C5852639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b9:50:1e:dd:4d:4c:9a:3d:82:35:ca:29:1a: c6:2e:38:64:f6:01:da:d0:2c:b7:93:9d:18:a4:c1: 85:7d:a2:96:a6:51:64:e2:6b:3c:71:2a:df:d2:50: fd:81:ee:5e:84:b6:11:2d:4b:f3:ea:76:77:7f:52: 5b:1f:0c:a9:93:69:95:97:9f:db:3d:83:c9:b6:c8: 3d:53:06:1e:58:b3:af:d0:ae:1a:0e:77:09:6c:29: db:f9:40:c0:e5:46:ae:55:89:af:0d:b2:3f:54:f6: b7:87:de:cf:0a:7d:44:76:2c:90:ee:ea:7c:09:73: c2:02:a9:74:ea:07:ca:83:14:84:ea:79:51:e0:33: 2d:1c:8c:84:a3:87:f5:cc:99:42:84:93:00:05:10: 7d:5e:d0:72:53:f4:f5:67:c8:f7:ff:76:23:8c:92: 9c:cc:89:10:79:7f:79:7e:b5:1b:a7:4c:d2:bb:04: 21:8d:a2:42:92:be:e7:80:40:c4:c6:e6:46:7b:e4: c1:94:4f:58:5f:e0:79:1c:1d:77:22:f4:b7:cf:ee: da:19:35:8c:02:f3:0a:cd:08:40:b4:fd:5e:6b:79: 94:97:18:17:06:8b:4c:fe:f0:9a:00:e2:26:c1:2b: aa:ba:93:23:57:9d:37:88:fc:7b:a1:fd:e9:db:96: dd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:0F:E6:F1:F5:8A:70:97:CA:6D:B7:EB:76:FB:2D:C0:C5:85:26:39 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3138362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.186.0/24 Signature Algorithm: sha256WithRSAEncryption b6:67:49:49:d3:ac:9a:50:b4:c5:19:30:88:85:db:88:4a:ef: f9:a1:3e:51:c1:71:f2:f7:75:48:43:d5:1a:14:53:64:4c:5f: a7:a9:98:c4:b7:94:e7:2d:4c:45:d4:5b:a1:c9:01:98:66:f2: c1:99:3e:21:c1:d1:49:e5:9a:e4:69:cc:66:7b:3b:d8:59:45: cb:36:93:c9:5c:5f:25:de:c5:2e:f7:17:f3:e8:22:d5:3b:70: 76:d7:3c:a2:ef:44:d6:8c:15:c1:b2:12:c0:84:55:73:b6:9b: 80:61:f0:1e:ed:cb:0a:44:3b:8d:d4:87:8d:6f:8f:83:b9:57: f2:cc:41:f7:9a:46:75:a5:fa:a1:ec:d2:84:ad:ce:bc:7b:bb: fb:74:f7:b0:bd:a7:2c:00:96:bc:83:8c:81:7b:18:7e:c1:db: ec:99:5d:e8:8b:30:f1:14:d7:c1:fd:6a:b0:b0:a4:90:11:5e: 5c:7e:04:5e:02:3b:66:80:d4:34:8c:0f:84:a4:95:45:e4:a8: 34:31:0d:b5:64:96:f2:26:46:1d:9b:af:3f:73:3d:1d:bc:2a: 81:83:ac:32:62:69:c1:d0:cc:2d:42:a1:f5:db:c2:cb:a0:a3: cc:7d:3e:1d:30:c5:a2:4c:ce:58:af:ed:7d:e0:cd:f4:82:36: 4d:da:94:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK3STYK8UWkAwe3Yl2vgUtaBp1E4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjdaFw0yNzA1MDIwMjI3MjdaMDMxMTAvBgNV BAMTKEI5MEZFNkYxRjU4QTcwOTdDQTZEQjdFQjc2RkIyREMwQzU4NTI2MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDguVAe3U1Mmj2CNcopGsYuOGT2 AdrQLLeTnRikwYV9opamUWTiazxxKt/SUP2B7l6EthEtS/Pqdnd/UlsfDKmTaZWX n9s9g8m2yD1TBh5Ys6/QrhoOdwlsKdv5QMDlRq5Via8Nsj9U9reH3s8KfUR2LJDu 6nwJc8ICqXTqB8qDFITqeVHgMy0cjISjh/XMmUKEkwAFEH1e0HJT9PVnyPf/diOM kpzMiRB5f3l+tRunTNK7BCGNokKSvueAQMTG5kZ75MGUT1hf4HkcHXci9LfP7toZ NYwC8wrNCEC0/V5reZSXGBcGi0z+8JoA4ibBK6q6kyNXnTeI/Huh/enblt1NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuQ/m8fWKcJfKbbfrdvstwMWFJjkwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy6MA0GCSqG SIb3DQEBCwUAA4IBAQC2Z0lJ06yaULTFGTCIhduISu/5oT5RwXHy93VIQ9UaFFNk TF+nqZjEt5TnLUxF1FuhyQGYZvLBmT4hwdFJ5ZrkacxmezvYWUXLNpPJXF8l3sUu 9xfz6CLVO3B21zyi70TWjBXBshLAhFVztpuAYfAe7csKRDuN1IeNb4+DuVfyzEH3 mkZ1pfqh7NKErc68e7v7dPewvacsAJa8g4yBexh+wdvsmV3oizDxFNfB/WqwsKSQ EV5cfgReAjtmgNQ0jA+EpJVF5Kg0MQ21ZJbyJkYdm68/cz0dvCqBg6wyYmnB0Mwt QqH128LLoKPMfT4dMMWiTM5Yr+194M30gjZN2pR6 -----END CERTIFICATE-----Generated at Wed May 13 23:07:32 2026 by rpki-client