$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: YrQyaz5X1thWWSbul59DK2nqt5ljWJmkg/8xNg9hovE= Subject key identifier: 42:B6:C6:1C:25:E4:C4:52:68:AA:5E:A7:37:BB:52:59:F7:CB:B0:7D Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 7748BBDA9249ED590691F90C032272AB4E8FAEA9 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:29 +0000 ROA not before: Sun 03 May 2026 02:22:29 +0000 ROA not after: Sun 02 May 2027 02:27:29 +0000 asID: 63859 IP address blocks: 158.140.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:48:bb:da:92:49:ed:59:06:91:f9:0c:03:22:72:ab:4e:8f:ae:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:29 2026 GMT Not After : May 2 02:27:29 2027 GMT Subject: CN=42B6C61C25E4C45268AA5EA737BB5259F7CBB07D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:30:c0:26:2e:dd:5c:47:ea:6c:51:33:2c:06: 24:17:3f:e2:a3:c4:b3:be:8b:58:e3:eb:d8:e1:0f: 61:44:fb:7a:34:88:ea:a6:fe:cf:90:3a:19:53:a1: 26:17:d8:e2:85:54:a6:69:f4:32:e8:9f:31:8c:ab: 78:e0:df:d4:5d:e2:02:53:f9:3b:8b:5f:82:d4:19: a9:ee:06:4e:43:fd:16:86:c4:25:39:d4:36:3a:f0: f7:51:5a:84:4c:9c:e7:50:20:9a:43:e7:e1:63:91: be:9f:49:6b:f3:76:c8:30:d1:bb:52:e8:fa:c8:16: 2d:c5:5c:28:db:2a:5c:77:cd:3d:5f:76:dc:3b:30: ec:20:39:ee:5e:f2:c1:a9:19:25:be:50:e8:74:4c: b3:49:18:98:a7:39:83:6f:fc:06:69:a7:cc:03:d2: 1d:80:44:7a:bf:d0:93:f1:3a:0f:e7:9e:63:01:8d: 77:2c:bb:67:92:4d:42:68:68:86:34:8b:f0:88:ac: 52:ee:78:27:d5:d2:20:b5:44:5d:33:e9:2c:7f:7a: ae:89:ea:70:b9:f8:31:26:56:fc:89:ac:aa:46:18: 39:63:fb:14:80:a4:8c:04:72:a9:d8:bc:7d:e1:aa: 1b:50:8d:07:d9:bd:fa:ae:b9:14:2f:bc:70:3d:73: a2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B6:C6:1C:25:E4:C4:52:68:AA:5E:A7:37:BB:52:59:F7:CB:B0:7D X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.163.0/24 Signature Algorithm: sha256WithRSAEncryption 57:1d:2d:b6:e5:45:61:46:78:15:8e:fe:b0:8d:06:79:e3:1c: c9:70:77:ae:e0:4c:a5:3e:bf:1b:72:25:d5:1d:36:4d:68:2b: bf:f9:fa:68:ce:04:9b:0e:61:9c:30:80:bc:67:b5:dc:21:f5: 0f:ea:eb:ef:ce:40:9d:5e:e0:6e:d4:26:71:ee:f1:e5:73:db: af:b7:14:51:03:e0:d7:8a:71:6a:d9:32:72:61:64:94:09:e9: 46:b2:68:14:fb:26:14:20:cf:6d:a2:36:2b:01:0a:b3:d3:59: 3e:b5:9b:dc:17:fa:a8:2b:df:ca:73:78:20:9f:7f:b0:f9:a0: 04:f8:5f:99:78:6c:53:2c:43:87:93:89:c1:66:9e:0c:f1:63: 8c:9f:dc:42:27:a5:b2:d0:5e:fe:1a:8d:f8:c0:16:53:70:07: 26:0a:06:57:ae:6e:fe:0a:99:40:78:7a:e1:94:20:2f:ef:ff: 85:36:13:45:d1:52:bb:72:06:9e:22:08:ff:f3:1f:54:37:bb: 29:e2:7d:05:13:94:eb:82:8d:ea:39:07:ca:21:2f:9e:70:c4: db:90:34:21:67:cd:fd:32:b8:7d:9d:a7:40:74:04:cb:98:73: 21:0e:97:52:79:d1:24:6d:2a:44:c9:c0:aa:1a:23:14:16:1b: 75:dc:95:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUd0i72pJJ7VkGkfkMAyJyq06PrqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjlaFw0yNzA1MDIwMjI3MjlaMDMxMTAvBgNV BAMTKDQyQjZDNjFDMjVFNEM0NTI2OEFBNUVBNzM3QkI1MjU5RjdDQkIwN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChMMAmLt1cR+psUTMsBiQXP+Kj xLO+i1jj69jhD2FE+3o0iOqm/s+QOhlToSYX2OKFVKZp9DLonzGMq3jg39Rd4gJT +TuLX4LUGanuBk5D/RaGxCU51DY68PdRWoRMnOdQIJpD5+Fjkb6fSWvzdsgw0btS 6PrIFi3FXCjbKlx3zT1fdtw7MOwgOe5e8sGpGSW+UOh0TLNJGJinOYNv/AZpp8wD 0h2ARHq/0JPxOg/nnmMBjXcsu2eSTUJoaIY0i/CIrFLueCfV0iC1RF0z6Sx/eq6J 6nC5+DEmVvyJrKpGGDlj+xSApIwEcqnYvH3hqhtQjQfZvfquuRQvvHA9c6IdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQrbGHCXkxFJoql6nN7tSWffLsH0wHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyjMA0GCSqG SIb3DQEBCwUAA4IBAQBXHS225UVhRngVjv6wjQZ54xzJcHeu4EylPr8bciXVHTZN aCu/+fpozgSbDmGcMIC8Z7XcIfUP6uvvzkCdXuBu1CZx7vHlc9uvtxRRA+DXinFq 2TJyYWSUCelGsmgU+yYUIM9tojYrAQqz01k+tZvcF/qoK9/Kc3ggn3+w+aAE+F+Z eGxTLEOHk4nBZp4M8WOMn9xCJ6Wy0F7+Go34wBZTcAcmCgZXrm7+CplAeHrhlCAv 7/+FNhNF0VK7cgaeIgj/8x9UN7sp4n0FE5Trgo3qOQfKIS+ecMTbkDQhZ839Mrh9 nadAdATLmHMhDpdSedEkbSpEycCqGiMUFht13JW1 -----END CERTIFICATE-----Generated at Wed May 13 01:36:34 2026 by rpki-client