$ rpki-client -vvf rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa File: 3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa (raw, json) Hash identifier: duRCOFyApimu+VfA8srkd97qFJ/WePHr7gTmJwT7ZQA= Subject key identifier: 01:79:7F:D4:37:F9:0B:79:87:4A:3D:D4:51:2E:FF:46:27:8E:0D:A6 Certificate issuer: /CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Certificate serial: 57DFA92A12BE44456021DC68F7A6FAF5E2196717 Authority key identifier: 57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa Signing time: Sun 03 May 2026 02:27:26 +0000 ROA not before: Sun 03 May 2026 02:22:26 +0000 ROA not after: Sun 02 May 2027 02:27:26 +0000 asID: 63859 IP address blocks: 158.140.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:df:a9:2a:12:be:44:45:60:21:dc:68:f7:a6:fa:f5:e2:19:67:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579C296CFBD13B33CD249F0CE7D1C489D7106B97 Validity Not Before: May 3 02:22:26 2026 GMT Not After : May 2 02:27:26 2027 GMT Subject: CN=01797FD437F90B79874A3DD4512EFF46278E0DA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:aa:f6:1d:2b:f6:d2:fa:35:8e:99:96:2a:f5: 37:a3:af:d8:41:bd:c1:24:e8:ef:5d:30:49:6e:11: 40:a2:9c:77:fa:e3:b2:6c:c7:23:76:10:96:c7:d8: 8b:9c:b8:0f:ee:ed:e7:33:7b:f5:2a:59:37:56:47: 88:40:b0:9b:a5:6a:8f:fa:f6:8b:15:04:ee:d6:f7: b3:c8:0a:65:62:06:5e:ad:a1:0f:cc:6c:4a:65:5d: ce:3f:86:84:a8:66:aa:68:10:9e:80:a1:ab:86:b5: b9:be:fc:80:a6:16:f5:72:f8:79:e2:57:dd:da:60: 84:7f:cf:a8:a6:b7:c3:c9:a0:2e:b4:3e:f3:9a:5d: 02:ea:a2:32:d7:82:d0:e5:9c:f5:b9:65:66:3b:3c: a7:87:36:c6:52:60:58:05:dd:6b:d2:f6:c0:2b:5f: 69:32:87:31:27:27:cc:bf:b2:28:52:62:a4:91:a7: 8c:f8:f1:b9:9f:70:cf:aa:ca:32:5a:9a:35:43:28: e9:ab:2d:7e:39:1e:7b:68:cb:f5:5a:13:47:5e:78: 6c:ce:84:fd:aa:9b:27:49:ea:98:f8:54:ce:b7:22: 34:76:75:31:24:7a:56:e4:9c:de:2b:59:87:e0:ad: f2:ba:e7:a8:df:03:19:4f:84:a7:fd:42:b0:0d:db: f0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:79:7F:D4:37:F9:0B:79:87:4A:3D:D4:51:2E:FF:46:27:8E:0D:A6 X509v3 Authority Key Identifier: keyid:57:9C:29:6C:FB:D1:3B:33:CD:24:9F:0C:E7:D1:C4:89:D7:10:6B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/579C296CFBD13B33CD249F0CE7D1C489D7106B97.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3135382e3134302e3139302e302f32332d3233203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.140.190.0/23 Signature Algorithm: sha256WithRSAEncryption b9:e8:24:19:a2:05:3a:73:f9:05:ac:4d:01:17:e1:ef:c7:7a: a1:07:d3:44:da:25:70:f6:80:78:4a:d2:5e:5f:ac:7e:83:fb: 0f:32:d5:9b:17:c3:e4:82:5c:cb:0d:8f:07:42:a5:65:44:02: ec:74:6f:e6:d6:af:ba:d1:44:17:de:5c:63:08:75:0d:68:72: 99:dd:29:b8:ec:ca:3b:2e:97:94:55:7b:5b:2d:33:d5:d4:f6: 88:43:48:7e:87:f4:73:af:06:da:d7:1d:98:57:a3:4c:85:db: 35:f9:13:62:80:b9:dc:bc:b0:9f:6a:48:43:92:f6:40:33:7a: e3:bb:bf:3c:56:22:96:da:65:dd:42:bc:58:d4:b7:6d:3a:ec: 13:87:12:71:af:3e:c9:09:7c:47:d7:16:88:42:16:00:0b:43: 28:0f:8b:1d:8d:c9:c1:e5:b4:b1:d5:6a:03:bb:bc:e9:00:8f: da:ff:cc:9f:1c:46:15:13:21:8c:f4:24:9a:68:05:b8:dd:5f: 51:f7:1a:24:20:fb:70:fa:6e:a8:9c:ca:30:0f:d3:0e:c0:fe: 3f:34:04:e0:f7:e3:a4:72:1f:92:1a:53:ff:de:19:49:6e:4a: 63:a2:72:38:bb:3f:0e:2f:d4:71:0a:86:b0:5b:1c:82:7f:2a: af:a7:dc:e4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV9+pKhK+REVgIdxo96b69eIZZxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5QzI5NkNGQkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlE NzEwNkI5NzAeFw0yNjA1MDMwMjIyMjZaFw0yNzA1MDIwMjI3MjZaMDMxMTAvBgNV BAMTKDAxNzk3RkQ0MzdGOTBCNzk4NzRBM0RENDUxMkVGRjQ2Mjc4RTBEQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMqvYdK/bS+jWOmZYq9Tejr9hB vcEk6O9dMEluEUCinHf647JsxyN2EJbH2IucuA/u7ecze/UqWTdWR4hAsJulao/6 9osVBO7W97PICmViBl6toQ/MbEplXc4/hoSoZqpoEJ6AoauGtbm+/ICmFvVy+Hni V93aYIR/z6imt8PJoC60PvOaXQLqojLXgtDlnPW5ZWY7PKeHNsZSYFgF3WvS9sAr X2kyhzEnJ8y/sihSYqSRp4z48bmfcM+qyjJamjVDKOmrLX45Hntoy/VaE0deeGzO hP2qmydJ6pj4VM63IjR2dTEkelbknN4rWYfgrfK656jfAxlPhKf9QrAN2/BHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAXl/1Df5C3mHSj3UUS7/RieODaYwHwYDVR0j BBgwFoAUV5wpbPvROzPNJJ8M59HEidcQa5cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JiYjI3MzQtZTVmYS00MGViLTg1OTgtYjdjZDEwMTM0M2NhLzAvNTc5QzI5NkNG QkQxM0IzM0NEMjQ5RjBDRTdEMUM0ODlENzEwNkI5Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81NzlDMjk2Q0ZCRDEzQjMzQ0QyNDlGMENFN0QxQzQ4OUQ3MTA2 Qjk3LmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzUzODJlMzEzNDMwMmUzMTM5MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnoy+MA0GCSqG SIb3DQEBCwUAA4IBAQC56CQZogU6c/kFrE0BF+Hvx3qhB9NE2iVw9oB4StJeX6x+ g/sPMtWbF8PkglzLDY8HQqVlRALsdG/m1q+60UQX3lxjCHUNaHKZ3Sm47Mo7LpeU VXtbLTPV1PaIQ0h+h/Rzrwba1x2YV6NMhds1+RNigLncvLCfakhDkvZAM3rju788 ViKW2mXdQrxY1LdtOuwThxJxrz7JCXxH1xaIQhYAC0MoD4sdjcnB5bSx1WoDu7zp AI/a/8yfHEYVEyGM9CSaaAW43V9R9xokIPtw+m6onMowD9MOwP4/NATg9+Okch+S GlP/3hlJbkpjonI4uz8OL9RxCoawWxyCfyqvp9zk -----END CERTIFICATE-----Generated at Wed May 13 02:25:30 2026 by rpki-client