$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Ta6n+7aSJf0WJjiW+4CP5cFNkaJcc+VrmP8RtA/biFU= Subject key identifier: 04:1F:19:D6:6E:2B:CB:EE:49:B2:4D:BB:21:0E:F5:CC:62:21:77:2B Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 0496B310EF6CCE4DF23A4DE38B6D4134B3359503 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:33 +0000 ROA not before: Sun 03 May 2026 02:22:33 +0000 ROA not after: Sun 02 May 2027 02:27:33 +0000 asID: 63859 IP address blocks: 158.140.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:96:b3:10:ef:6c:ce:4d:f2:3a:4d:e3:8b:6d:41:34:b3:35:95:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:33 2026 GMT Not After : May 2 02:27:33 2027 GMT Subject: CN=041F19D66E2BCBEE49B24DBB210EF5CC6221772B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:54:7f:ac:df:b0:4d:31:b6:95:6d:f3:58:44: 62:65:18:bc:46:ad:30:81:3e:75:57:eb:0d:71:19: 16:87:31:63:c1:8c:0a:f1:55:76:09:77:03:fa:5b: 77:d8:c9:78:1a:cb:d6:78:57:d2:6d:96:a1:f8:73: c4:c8:76:94:47:fe:98:0e:28:88:f8:73:45:8d:70: 00:85:40:f2:d4:87:74:98:80:80:7e:2d:93:3e:30: 51:b3:bc:ac:2c:e1:6d:ea:69:3c:b2:f6:7e:d4:21: 80:ff:f0:97:60:93:b3:06:6d:0d:c3:6d:62:a1:c1: ab:6c:97:21:43:20:08:99:34:14:b3:99:05:84:e0: 50:ee:3c:7d:c4:38:3e:dc:77:68:00:ae:ab:b3:f1: 33:f4:25:c8:4d:d9:b1:99:2c:0a:dc:d7:e7:04:62: 76:02:36:68:b6:6c:4f:12:c6:3d:38:fd:59:82:1a: 38:d6:4a:4f:24:0b:fa:70:dc:66:a6:dd:02:d7:ae: 54:93:3c:77:ef:69:1a:37:cf:cb:b2:d5:f2:61:7c: f9:c3:f1:c2:bd:c2:1b:f6:cb:87:20:cd:a7:0b:ac: 0a:1e:36:26:7b:6a:82:9d:e6:e6:0e:76:53:bd:fa: fc:d7:a6:41:1b:3d:e0:4f:17:14:9a:d8:02:52:9c: a5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:1F:19:D6:6E:2B:CB:EE:49:B2:4D:BB:21:0E:F5:CC:62:21:77:2B X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3136362e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.166.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:71:5f:ea:ad:ae:2b:20:9b:d3:61:aa:5d:e2:82:26:04:5e: 5a:ee:d5:de:dc:0a:f1:f4:66:bb:ba:76:88:a1:32:5c:39:9d: 17:f6:4b:73:5f:cc:4f:ea:73:02:b4:13:a1:71:88:41:52:0e: 71:f4:f6:49:c2:2f:4a:66:4c:30:e3:6f:d6:54:9f:96:dc:1c: 31:26:e2:64:b8:bd:df:d8:3e:b4:60:fa:b6:17:19:59:0d:0c: e5:83:1c:5a:28:9b:51:4e:28:80:64:70:01:b3:c4:73:7d:ce: 5d:96:1e:9b:12:28:9f:f6:a6:dd:11:b9:87:1a:9a:41:69:5f: ba:ff:33:52:25:c0:5a:5a:55:46:69:59:7c:b0:0a:dd:05:c2: e9:8f:38:34:d7:21:13:eb:3a:bc:78:c4:87:af:cb:60:5d:82: 35:d9:62:c9:03:31:ca:c0:c7:ea:6e:0d:ba:68:de:26:11:ab: 1a:17:da:ce:6b:f0:ec:23:60:a2:c4:b5:95:f6:cd:27:57:0d: 90:1e:8e:cf:20:01:3b:74:8c:b2:b2:b1:b6:0f:48:41:fe:29: 66:c1:c6:26:df:46:d6:87:93:13:03:bf:87:85:64:af:bb:70: a5:41:04:e1:b9:b4:97:e0:8e:6d:0b:b5:73:ba:f6:0b:7f:54: 24:3d:44:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBJazEO9szk3yOk3ji21BNLM1lQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzNaFw0yNzA1MDIwMjI3MzNaMDMxMTAvBgNV BAMTKDA0MUYxOUQ2NkUyQkNCRUU0OUIyNERCQjIxMEVGNUNDNjIyMTc3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLVH+s37BNMbaVbfNYRGJlGLxG rTCBPnVX6w1xGRaHMWPBjArxVXYJdwP6W3fYyXgay9Z4V9JtlqH4c8TIdpRH/pgO KIj4c0WNcACFQPLUh3SYgIB+LZM+MFGzvKws4W3qaTyy9n7UIYD/8Jdgk7MGbQ3D bWKhwatslyFDIAiZNBSzmQWE4FDuPH3EOD7cd2gArquz8TP0JchN2bGZLArc1+cE YnYCNmi2bE8Sxj04/VmCGjjWSk8kC/pw3Gam3QLXrlSTPHfvaRo3z8uy1fJhfPnD 8cK9whv2y4cgzacLrAoeNiZ7aoKd5uYOdlO9+vzXpkEbPeBPFxSa2AJSnKXbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBB8Z1m4ry+5Jsk27IQ71zGIhdyswHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM2MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoymMA0GCSqG SIb3DQEBCwUAA4IBAQAOcV/qra4rIJvTYapd4oImBF5a7tXe3Arx9Ga7unaIoTJc OZ0X9ktzX8xP6nMCtBOhcYhBUg5x9PZJwi9KZkww42/WVJ+W3BwxJuJkuL3f2D60 YPq2FxlZDQzlgxxaKJtRTiiAZHABs8Rzfc5dlh6bEiif9qbdEbmHGppBaV+6/zNS JcBaWlVGaVl8sArdBcLpjzg01yET6zq8eMSHr8tgXYI12WLJAzHKwMfqbg26aN4m EasaF9rOa/DsI2CixLWV9s0nVw2QHo7PIAE7dIyysrG2D0hB/ilmwcYm30bWh5MT A7+HhWSvu3ClQQThubSX4I5tC7VzuvYLf1QkPUSa -----END CERTIFICATE-----Generated at Wed May 13 01:36:15 2026 by rpki-client