$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137342e302f32342d3234203d3e203633383539.roa File: 3135382e3134302e3137342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 1mxl6HiY2U9iAwKmULzdk7ygzoHLeGJxMpx96c/6xjs= Subject key identifier: BC:F4:DD:0C:6A:F4:45:32:30:97:96:2E:91:2F:2C:F8:31:74:02:9D Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 0744F8BA9295E490A4F961BE7CDB9EA73794F86B Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137342e302f32342d3234203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:35 +0000 ROA not before: Sun 03 May 2026 02:22:35 +0000 ROA not after: Sun 02 May 2027 02:27:35 +0000 asID: 63859 IP address blocks: 158.140.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:44:f8:ba:92:95:e4:90:a4:f9:61:be:7c:db:9e:a7:37:94:f8:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:35 2026 GMT Not After : May 2 02:27:35 2027 GMT Subject: CN=BCF4DD0C6AF445323097962E912F2CF83174029D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4f:07:ef:2d:e4:5e:64:17:cd:26:ec:32:99: e0:84:ff:94:d9:67:6d:8e:37:bb:fe:f4:32:e5:13: 5f:15:cc:76:77:4b:96:0c:8b:63:a0:e0:4e:31:69: 56:6c:1b:c6:7b:66:46:2a:00:3d:6b:2c:a2:c5:59: e9:86:73:b2:b2:9d:4a:36:b6:70:b9:0f:4f:bc:78: e8:23:c4:d9:88:4a:cb:d4:33:70:c3:49:16:2e:1c: 5f:b5:01:16:61:89:02:20:11:81:95:4b:08:bc:70: 09:11:37:da:84:9c:1e:27:ef:51:7d:8e:53:72:21: 92:d1:3c:e0:1b:20:02:52:09:a7:b0:ce:b0:18:a6: ec:eb:27:25:89:97:15:af:3c:68:64:5d:4e:bc:24: 0d:6f:9f:50:c1:af:e8:af:a6:1b:e3:1b:49:65:83: 20:88:2b:54:9d:5e:53:fa:42:5b:b8:0a:21:c1:1b: 77:0e:e7:bd:85:b7:d7:50:08:90:dc:da:57:21:83: e7:da:78:72:64:15:20:8b:fe:fd:00:93:c2:86:71: 70:eb:f0:9d:05:8e:ab:3b:ec:8d:ca:d6:1b:f7:60: 4a:a9:87:67:96:9f:8f:ec:b2:c2:86:c3:b8:8d:15: 84:40:86:af:c9:12:53:d4:7d:4f:2f:35:ac:e4:9a: cf:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F4:DD:0C:6A:F4:45:32:30:97:96:2E:91:2F:2C:F8:31:74:02:9D X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3137342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.174.0/24 Signature Algorithm: sha256WithRSAEncryption 79:6a:ab:b7:b7:2b:e0:63:53:be:48:67:c1:ff:db:11:bb:e9: e3:82:e5:09:bd:fa:9a:49:d9:f9:60:86:6b:7f:84:c5:ee:44: ad:f6:8a:30:e4:07:91:50:88:64:d5:95:6c:20:52:65:51:37: a7:10:5f:03:69:7f:d3:3a:4e:86:a7:36:99:e6:0d:6f:9f:ac: 2c:8d:ae:b8:e4:eb:ec:9e:a7:38:27:61:09:81:ba:6a:44:d9: 9b:58:66:74:27:df:03:5d:a7:55:4e:41:15:16:b8:43:e1:49: 59:ec:b2:c0:3f:54:83:69:04:5b:c0:e4:be:ef:34:61:7d:3a: 24:1b:f5:13:59:38:c3:e3:c3:ae:91:a5:21:7d:f6:42:e9:58: 41:d1:ee:05:d3:1d:66:2e:4e:4d:09:68:db:67:f0:7c:00:8c: fe:e7:72:78:64:3a:80:7d:d1:62:99:94:88:eb:fc:4b:3a:da: 04:f7:32:fc:d1:10:ce:2f:e0:bf:3d:fd:6e:07:64:55:30:d6: 18:f5:c1:06:92:85:17:ae:94:04:1d:7e:5f:86:21:32:9f:37: 8c:9c:60:64:b8:7c:45:1d:4e:71:f8:d8:4c:0d:fc:25:27:f4: ad:4e:12:1c:86:70:27:ba:86:b6:ca:f3:c9:51:13:d9:87:9f: b3:98:0b:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB0T4upKV5JCk+WG+fNuepzeU+GswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMzVaFw0yNzA1MDIwMjI3MzVaMDMxMTAvBgNV BAMTKEJDRjRERDBDNkFGNDQ1MzIzMDk3OTYyRTkxMkYyQ0Y4MzE3NDAyOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1TwfvLeReZBfNJuwymeCE/5TZ Z22ON7v+9DLlE18VzHZ3S5YMi2Og4E4xaVZsG8Z7ZkYqAD1rLKLFWemGc7KynUo2 tnC5D0+8eOgjxNmISsvUM3DDSRYuHF+1ARZhiQIgEYGVSwi8cAkRN9qEnB4n71F9 jlNyIZLRPOAbIAJSCaewzrAYpuzrJyWJlxWvPGhkXU68JA1vn1DBr+ivphvjG0ll gyCIK1SdXlP6Qlu4CiHBG3cO572Ft9dQCJDc2lchg+faeHJkFSCL/v0Ak8KGcXDr 8J0Fjqs77I3K1hv3YEqph2eWn4/sssKGw7iNFYRAhq/JElPUfU8vNazkms9/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvPTdDGr0RTIwl5YukS8s+DF0Ap0wHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnoyuMA0GCSqG SIb3DQEBCwUAA4IBAQB5aqu3tyvgY1O+SGfB/9sRu+njguUJvfqaSdn5YIZrf4TF 7kSt9oow5AeRUIhk1ZVsIFJlUTenEF8DaX/TOk6GpzaZ5g1vn6wsja645Ovsnqc4 J2EJgbpqRNmbWGZ0J98DXadVTkEVFrhD4UlZ7LLAP1SDaQRbwOS+7zRhfTokG/UT WTjD48OukaUhffZC6VhB0e4F0x1mLk5NCWjbZ/B8AIz+53J4ZDqAfdFimZSI6/xL OtoE9zL80RDOL+C/Pf1uB2RVMNYY9cEGkoUXrpQEHX5fhiEynzeMnGBkuHxFHU5x +NhMDfwlJ/StThIchnAnuoa2yvPJURPZh5+zmAt1 -----END CERTIFICATE-----Generated at Wed May 13 02:37:16 2026 by rpki-client