$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139302e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3139302e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: VIYxr9Pted3nopzRMOrAoE3w8Mb/CH7qQ01c3ZhHq10= Subject key identifier: 64:6E:5C:F5:7F:63:2F:83:04:73:C7:25:A1:DB:DC:14:17:B4:93:32 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: DA997510232C0DF5164F462F86976AAD541995 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139302e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:21 +0000 ROA not before: Sun 03 May 2026 02:22:21 +0000 ROA not after: Sun 02 May 2027 02:27:21 +0000 asID: 63859 IP address blocks: 158.140.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: da:99:75:10:23:2c:0d:f5:16:4f:46:2f:86:97:6a:ad:54:19:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:21 2026 GMT Not After : May 2 02:27:21 2027 GMT Subject: CN=646E5CF57F632F830473C725A1DBDC1417B49332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:98:34:69:02:cd:50:e1:dd:c5:f2:7e:66:4d: d3:b3:a7:f0:ba:21:b3:06:85:14:2c:b0:a8:36:e2: f9:b9:b9:25:54:76:60:99:c3:2d:66:01:be:d1:08: 88:dd:64:df:97:d2:c0:2b:ac:c1:36:5b:fe:37:7b: 36:a6:09:a9:c1:f5:55:35:76:d7:26:34:9f:ea:7c: de:d5:56:09:fe:87:8c:26:cd:42:89:c6:43:4e:74: 49:b1:bc:6b:b7:c9:d8:89:96:fa:a4:44:67:7c:b4: 83:21:ed:8f:6a:e5:5c:4b:c2:ca:22:e6:f8:41:ad: 31:fe:12:c1:ae:56:d5:2f:93:a6:a4:20:67:6c:10: c3:1c:df:f0:ed:ff:06:86:1b:f8:64:25:ff:40:d7: 73:c1:be:af:82:d6:69:87:fd:57:f4:dc:c7:51:7b: d5:8f:db:07:20:5b:17:d0:d0:14:eb:3b:49:4d:1b: 3e:72:db:28:b4:0f:f8:d3:78:8b:ee:8e:53:f3:b8: b2:76:8d:0b:8a:c1:72:71:49:04:5b:16:ab:60:03: 84:6a:cd:db:dc:15:44:dd:ac:96:92:8f:86:71:bb: 7d:a7:c4:69:20:36:e4:41:d8:6e:f0:fe:e0:35:a2: 8c:a4:55:65:e5:a0:3f:35:fd:bd:87:54:b4:bc:92: 0c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:6E:5C:F5:7F:63:2F:83:04:73:C7:25:A1:DB:DC:14:17:B4:93:32 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139302e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.190.0/24 Signature Algorithm: sha256WithRSAEncryption da:11:f3:a2:63:09:62:3d:ba:76:98:87:07:6d:77:a2:a4:9a: f2:48:8f:e9:eb:4d:c4:1b:7d:1a:03:e8:61:43:4a:96:21:45: 6a:4b:57:14:4e:f8:4b:db:10:e5:32:84:1f:2b:b2:e1:73:f8: 50:9f:44:f1:bc:84:3e:41:8e:a9:30:0f:82:60:a3:f9:a1:73: c2:2a:48:0e:22:5b:47:31:0f:5d:61:81:5e:89:39:e0:2e:3d: 1d:3e:4c:f9:7a:c2:ba:e9:ff:2b:72:2c:25:28:1b:89:48:b2: 47:71:78:69:a5:3b:a7:3f:ac:05:3b:46:f6:60:0e:c5:ec:93: 1d:09:d3:c4:17:0d:b1:23:20:eb:1a:0e:4d:17:fc:82:18:46: 57:89:69:1f:f1:26:e4:fb:3a:80:29:f1:d2:ba:61:1d:a2:3d: 8c:ce:7e:35:68:c6:f9:23:4a:dd:e6:1c:9e:a1:76:77:f1:7a: d5:50:b2:33:58:5e:6c:8d:ee:ab:1b:3c:e9:a7:35:84:ef:3f: 92:74:df:dd:21:88:d4:49:f2:5a:c2:33:1e:f1:70:49:74:0d: 0b:7e:de:45:bc:78:51:2f:65:62:1d:91:4e:fc:5a:65:a5:3d: 16:d4:7a:68:05:bd:ac:82:e1:05:49:1c:37:3d:ee:90:d2:b0: e8:b6:59:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUANqZdRAjLA31Fk9GL4aXaq1UGZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjFaFw0yNzA1MDIwMjI3MjFaMDMxMTAvBgNV BAMTKDY0NkU1Q0Y1N0Y2MzJGODMwNDczQzcyNUExREJEQzE0MTdCNDkzMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEmDRpAs1Q4d3F8n5mTdOzp/C6 IbMGhRQssKg24vm5uSVUdmCZwy1mAb7RCIjdZN+X0sArrME2W/43ezamCanB9VU1 dtcmNJ/qfN7VVgn+h4wmzUKJxkNOdEmxvGu3ydiJlvqkRGd8tIMh7Y9q5VxLwsoi 5vhBrTH+EsGuVtUvk6akIGdsEMMc3/Dt/waGG/hkJf9A13PBvq+C1mmH/Vf03MdR e9WP2wcgWxfQ0BTrO0lNGz5y2yi0D/jTeIvujlPzuLJ2jQuKwXJxSQRbFqtgA4Rq zdvcFUTdrJaSj4Zxu32nxGkgNuRB2G7w/uA1ooykVWXloD81/b2HVLS8kgxPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZG5c9X9jL4MEc8clodvcFBe0kzIwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM5MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy+MA0GCSqG SIb3DQEBCwUAA4IBAQDaEfOiYwliPbp2mIcHbXeipJrySI/p603EG30aA+hhQ0qW IUVqS1cUTvhL2xDlMoQfK7Lhc/hQn0TxvIQ+QY6pMA+CYKP5oXPCKkgOIltHMQ9d YYFeiTngLj0dPkz5esK66f8rciwlKBuJSLJHcXhppTunP6wFO0b2YA7F7JMdCdPE Fw2xIyDrGg5NF/yCGEZXiWkf8Sbk+zqAKfHSumEdoj2Mzn41aMb5I0rd5hyeoXZ3 8XrVULIzWF5sje6rGzzppzWE7z+SdN/dIYjUSfJawjMe8XBJdA0Lft5FvHhRL2Vi HZFO/FplpT0W1HpoBb2sguEFSRw3Pe6Q0rDotll0 -----END CERTIFICATE-----Generated at Wed May 13 23:07:32 2026 by rpki-client