$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139312e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3139312e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: A2q8LsKXQ6f03+aN0csyiEj0yBpI4vmQpfCdfRfg6O4= Subject key identifier: 1B:D4:DD:A0:C2:6E:45:94:5D:A4:C7:E2:BE:A1:83:50:BD:8F:B1:0F Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 289983248B9F8F326AAC126FD668F53AFF92AF05 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139312e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:21 +0000 ROA not before: Sun 03 May 2026 02:22:21 +0000 ROA not after: Sun 02 May 2027 02:27:21 +0000 asID: 63859 IP address blocks: 158.140.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:99:83:24:8b:9f:8f:32:6a:ac:12:6f:d6:68:f5:3a:ff:92:af:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:21 2026 GMT Not After : May 2 02:27:21 2027 GMT Subject: CN=1BD4DDA0C26E45945DA4C7E2BEA18350BD8FB10F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cb:dd:51:78:1b:47:f9:b7:ed:69:e8:52:f7: 26:05:e4:b4:56:44:62:5a:51:bd:73:d8:c5:6a:30: ba:ce:be:64:f1:9b:db:e4:3f:be:10:d1:54:a3:1e: 20:a1:b5:c5:0e:27:37:d5:44:6b:37:eb:b2:8b:5b: 96:f4:92:36:c1:f3:9e:8d:cb:a8:3d:37:ac:a0:fa: 61:1f:de:eb:aa:74:ab:b2:e7:71:8a:92:71:61:43: 4d:91:0f:91:06:54:19:f1:7f:a6:cb:53:54:9e:e8: 4c:4d:02:41:9a:30:4c:2f:1c:b5:37:70:ac:39:4f: 5f:13:cb:58:9a:6c:1d:4d:9c:b3:f5:02:24:d7:fb: a4:b5:c6:6e:38:d0:23:5f:d1:01:92:b3:57:90:19: 2f:35:7b:f0:08:13:ed:3e:34:2d:a4:67:3f:ee:98: cc:91:e6:95:6e:bb:32:fa:88:d3:29:96:9e:50:22: 62:19:fc:c7:f0:6d:8e:3c:8d:4c:e2:86:de:66:ed: d8:42:29:ef:38:ab:cd:a6:e8:49:56:01:45:d8:b3: b6:7b:36:4f:40:50:1d:ed:fa:f4:2f:3d:b1:47:c9: 1d:1e:81:0c:9c:1d:b9:3f:9a:4c:d4:ae:19:23:1a: 67:14:1a:85:b5:54:0a:67:91:6c:fd:a7:44:d1:22: 65:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D4:DD:A0:C2:6E:45:94:5D:A4:C7:E2:BE:A1:83:50:BD:8F:B1:0F X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139312e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.191.0/24 Signature Algorithm: sha256WithRSAEncryption 50:4e:2b:cc:c1:d9:14:c0:c8:93:ce:c7:04:8a:35:8b:ef:89: 81:94:ec:57:12:5b:78:b1:22:db:c4:5c:6d:75:e2:5e:5e:64: e5:fc:e1:9a:4e:d1:53:41:a7:09:83:07:d6:63:ce:b2:7a:39: 88:c8:18:71:ae:a7:fa:d0:2f:9a:d8:7c:5a:86:88:e5:8e:08: 25:ef:20:d8:84:bf:04:e0:73:e6:7c:79:29:c0:32:c4:e2:36: 93:1d:60:75:0b:c1:bd:56:40:c6:ef:89:78:d3:e0:13:cd:24: 34:28:4b:3d:8a:2c:2a:32:e4:97:0b:85:9c:08:4b:29:6a:df: 6c:0c:2e:87:e4:42:29:6c:2f:17:f8:20:16:f7:3f:c0:a8:c5: 69:fd:58:b7:dc:39:b8:73:dc:62:62:90:f2:f1:ce:6e:31:bf: a6:43:8e:c2:28:29:be:5e:89:b4:ef:6e:67:5b:e4:01:bb:be: ed:71:d5:fd:b7:d1:39:24:c5:fe:28:40:12:5d:73:30:a5:e5: 53:54:34:38:de:ae:5f:10:73:d0:88:d9:15:d8:6f:13:65:98: c4:e6:d1:83:86:5a:63:d7:81:e5:9f:cd:49:02:ee:4d:8b:f0: 13:d3:76:5c:c9:24:0f:34:89:48:37:71:30:17:43:cf:b6:0c: 41:0e:2f:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKJmDJIufjzJqrBJv1mj1Ov+SrwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjFaFw0yNzA1MDIwMjI3MjFaMDMxMTAvBgNV BAMTKDFCRDREREEwQzI2RTQ1OTQ1REE0QzdFMkJFQTE4MzUwQkQ4RkIxMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLy91ReBtH+bftaehS9yYF5LRW RGJaUb1z2MVqMLrOvmTxm9vkP74Q0VSjHiChtcUOJzfVRGs367KLW5b0kjbB856N y6g9N6yg+mEf3uuqdKuy53GKknFhQ02RD5EGVBnxf6bLU1Se6ExNAkGaMEwvHLU3 cKw5T18Ty1iabB1NnLP1AiTX+6S1xm440CNf0QGSs1eQGS81e/AIE+0+NC2kZz/u mMyR5pVuuzL6iNMplp5QImIZ/MfwbY48jUziht5m7dhCKe84q82m6ElWAUXYs7Z7 Nk9AUB3t+vQvPbFHyR0egQycHbk/mkzUrhkjGmcUGoW1VApnkWz9p0TRImUVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG9TdoMJuRZRdpMfivqGDUL2PsQ8wHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoy/MA0GCSqG SIb3DQEBCwUAA4IBAQBQTivMwdkUwMiTzscEijWL74mBlOxXElt4sSLbxFxtdeJe XmTl/OGaTtFTQacJgwfWY86yejmIyBhxrqf60C+a2Hxahojljggl7yDYhL8E4HPm fHkpwDLE4jaTHWB1C8G9VkDG74l40+ATzSQ0KEs9iiwqMuSXC4WcCEspat9sDC6H 5EIpbC8X+CAW9z/AqMVp/Vi33Dm4c9xiYpDy8c5uMb+mQ47CKCm+Xom0725nW+QB u77tcdX9t9E5JMX+KEASXXMwpeVTVDQ43q5fEHPQiNkV2G8TZZjE5tGDhlpj14Hl n81JAu5Ni/AT03ZcySQPNIlIN3EwF0PPtgxBDi/e -----END CERTIFICATE-----Generated at Wed May 13 23:07:13 2026 by rpki-client