$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137332e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: Px3YXrZJJpzxbt+XrMtM9AYSkycRixdvmk4bfF8Ahnk= Subject key identifier: 18:BE:F9:B7:FA:BA:26:F5:CD:04:87:E3:AC:0B:2E:23:98:18:E0:EB Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 6F6095BA23054285433CCC3500D3AD10239EE620 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137332e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:20 +0000 ROA not before: Sun 03 May 2026 02:22:20 +0000 ROA not after: Sun 02 May 2027 02:27:20 +0000 asID: 63859 IP address blocks: 158.140.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:60:95:ba:23:05:42:85:43:3c:cc:35:00:d3:ad:10:23:9e:e6:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:20 2026 GMT Not After : May 2 02:27:20 2027 GMT Subject: CN=18BEF9B7FABA26F5CD0487E3AC0B2E239818E0EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:23:fe:e8:c8:4c:e4:fe:60:2f:92:3c:ce:c1: f4:83:e1:5e:38:3e:15:6b:8f:ad:11:62:78:c7:bd: 4c:78:cb:dc:b8:6a:52:1f:8c:44:48:ef:9c:2a:f9: dd:6c:2f:d6:a4:cb:99:31:31:1f:81:dc:9f:dd:cd: 0d:b2:eb:8e:c4:5f:3c:18:95:a3:74:30:05:4c:e9: aa:9d:9f:3f:18:6d:f7:51:96:3d:f4:bd:89:e4:40: 3b:80:6a:33:44:46:de:7a:af:4f:f1:5a:c1:f4:3f: 7e:57:d4:cb:12:14:89:99:d8:b4:f7:e0:7e:c2:71: 58:6f:26:1c:ad:e6:49:71:fb:7f:b2:87:07:7a:d7: ac:40:a3:bf:89:97:ca:b5:d0:98:f9:de:82:ab:2a: 99:9b:d5:6d:a5:67:b0:81:ad:c9:85:88:85:7a:82: 5f:2a:f0:7a:22:9d:bb:e4:df:4e:aa:42:3e:eb:81: 14:ca:dd:fc:65:46:6f:a7:52:23:de:61:57:ec:ba: 4f:0c:3d:79:9e:c0:fe:a3:27:c7:5d:a7:03:65:fb: db:c2:3f:08:f9:2b:fd:61:a4:33:89:fc:26:d8:97: 2f:d1:c5:2e:a8:75:b5:62:25:59:77:48:8c:9e:ca: 48:8e:20:13:8b:ba:99:f8:4e:56:1f:92:c2:f1:26: 54:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BE:F9:B7:FA:BA:26:F5:CD:04:87:E3:AC:0B:2E:23:98:18:E0:EB X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.173.0/24 Signature Algorithm: sha256WithRSAEncryption 35:98:5e:5e:b4:77:f4:a6:d1:5c:97:13:62:32:b7:39:13:39: 72:5b:70:b3:e7:75:dd:b2:17:78:ff:46:cf:78:12:fc:2c:40: 63:e6:ea:0d:b1:05:9e:22:75:a2:ba:f6:5c:2b:42:c3:77:c0: 8a:f5:82:53:47:f7:90:90:2b:9e:5d:6f:ec:3e:30:77:64:ac: 4d:a6:5c:7b:00:ec:72:a2:65:82:a0:b9:bd:69:73:c6:02:5f: 57:d4:0e:9e:72:a2:14:10:73:8c:ec:3a:c8:c2:b8:79:ba:30: 9c:de:4a:7c:12:63:66:9b:08:34:64:ad:1d:e6:ab:b6:ef:3b: 20:ce:9c:c1:30:f8:9d:08:f0:88:89:c4:94:2c:1f:84:9e:d9: 7b:c3:32:da:6f:76:88:56:cd:f0:7b:40:9c:f9:86:61:1e:8b: 1e:25:02:fe:57:2f:64:62:07:af:8d:71:cd:e3:55:3e:37:78: 9b:6b:cc:e2:6e:78:6d:76:b6:fe:d9:70:3d:de:19:e4:72:c7: 04:1b:48:8d:2f:1b:67:15:b9:6a:7c:2c:31:de:eb:d1:d5:40: 54:7e:09:f3:cf:96:e7:8f:c4:db:4d:f4:4f:61:98:c1:88:69: 34:4b:56:fb:ab:87:91:0c:77:91:ee:91:c1:ef:7b:f3:a1:35: 6e:c8:c2:d6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb2CVuiMFQoVDPMw1ANOtECOe5iAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjBaFw0yNzA1MDIwMjI3MjBaMDMxMTAvBgNV BAMTKDE4QkVGOUI3RkFCQTI2RjVDRDA0ODdFM0FDMEIyRTIzOTgxOEUwRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2I/7oyEzk/mAvkjzOwfSD4V44 PhVrj60RYnjHvUx4y9y4alIfjERI75wq+d1sL9aky5kxMR+B3J/dzQ2y647EXzwY laN0MAVM6aqdnz8YbfdRlj30vYnkQDuAajNERt56r0/xWsH0P35X1MsSFImZ2LT3 4H7CcVhvJhyt5klx+3+yhwd616xAo7+Jl8q10Jj53oKrKpmb1W2lZ7CBrcmFiIV6 gl8q8Hoinbvk306qQj7rgRTK3fxlRm+nUiPeYVfsuk8MPXmewP6jJ8ddpwNl+9vC Pwj5K/1hpDOJ/CbYly/RxS6odbViJVl3SIyeykiOIBOLupn4TlYfksLxJlSHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGL75t/q6JvXNBIfjrAsuI5gY4OswHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoytMA0GCSqG SIb3DQEBCwUAA4IBAQA1mF5etHf0ptFclxNiMrc5EzlyW3Cz53Xdshd4/0bPeBL8 LEBj5uoNsQWeInWiuvZcK0LDd8CK9YJTR/eQkCueXW/sPjB3ZKxNplx7AOxyomWC oLm9aXPGAl9X1A6ecqIUEHOM7DrIwrh5ujCc3kp8EmNmmwg0ZK0d5qu27zsgzpzB MPidCPCIicSULB+Entl7wzLab3aIVs3we0Cc+YZhHoseJQL+Vy9kYgevjXHN41U+ N3iba8zibnhtdrb+2XA93hnkcscEG0iNLxtnFblqfCwx3uvR1UBUfgnzz5bnj8Tb TfRPYZjBiGk0S1b7q4eRDHeR7pHB73vzoTVuyMLW -----END CERTIFICATE-----Generated at Wed May 13 03:17:01 2026 by rpki-client