$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa File: AS56241.roa (raw, json) Hash identifier: 8y8w5lhFBd8ReZyPQGlxk+jYsDykfJjkpjHG7l6Qww8= Subject key identifier: 65:DB:C8:79:FB:D3:6E:5F:B0:3C:BC:63:EB:24:3C:9C:91:CB:0E:CC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 015FFF0FA76DE3567989BC1BFFF674B4DD0E9D4D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa Signing time: Tue 15 Jul 2025 04:02:21 +0000 ROA not before: Tue 15 Jul 2025 03:57:21 +0000 ROA not after: Tue 14 Jul 2026 04:02:21 +0000 asID: 56241 IP address blocks: 45.126.152.0/24 maxlen: 24 45.126.153.0/24 maxlen: 24 45.126.155.0/24 maxlen: 24 103.10.56.0/24 maxlen: 24 103.10.145.0/24 maxlen: 24 103.255.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:5f:ff:0f:a7:6d:e3:56:79:89:bc:1b:ff:f6:74:b4:dd:0e:9d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 15 03:57:21 2025 GMT Not After : Jul 14 04:02:21 2026 GMT Subject: CN=65DBC879FBD36E5FB03CBC63EB243C9C91CB0ECC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d1:dc:86:2b:4e:e8:7b:f3:e6:80:a4:65:e0: de:5f:6b:ab:c0:1a:4d:29:d0:84:fd:e4:02:8f:60: 3e:20:56:92:0b:3e:16:10:2a:28:ba:ec:95:6f:0b: 3d:7a:21:8b:26:fc:4b:54:cd:ad:d0:ab:3c:22:ad: 8b:e3:27:30:81:73:d4:01:e0:79:46:02:e6:0a:52: bf:24:23:f6:70:a4:32:d9:e7:77:87:87:17:39:9a: 8f:34:ee:20:e2:47:35:e0:1c:00:bb:84:29:cd:c9: 67:7d:b1:ee:1b:52:24:ab:42:c0:c0:5b:42:56:6f: f2:1d:5e:cd:5a:a3:87:ac:c3:98:6b:ce:44:14:cb: 31:06:36:50:7b:11:fb:f9:4a:1b:24:86:e8:4d:f4: 42:41:13:fb:93:a0:16:63:2a:fa:a6:fe:d7:a2:d2: b5:d2:75:5a:c9:33:30:34:40:06:56:44:6c:15:d4: 6d:c8:77:20:9b:60:dc:d5:d7:81:2b:f6:59:d6:d6: 61:b7:9f:ca:3a:b9:2a:2c:2d:82:83:d3:11:da:0f: 80:57:5e:8c:87:cf:22:bd:df:d8:50:d1:ce:a2:76: 6d:b3:84:16:a0:eb:0a:ac:2d:45:a0:d1:cd:66:8a: 11:93:00:62:a5:98:71:49:d4:58:76:ee:6d:c2:8b: ee:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DB:C8:79:FB:D3:6E:5F:B0:3C:BC:63:EB:24:3C:9C:91:CB:0E:CC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56241.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.152.0/23 45.126.155.0/24 103.10.56.0/24 103.10.145.0/24 103.255.52.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:9a:82:8a:d1:93:c4:2a:c9:5a:b4:63:54:5c:52:ae:d6:d7: 2c:c2:65:bc:6c:a9:e9:73:0e:40:3a:ff:a6:ed:ef:40:60:f2: 1d:72:06:de:59:d5:05:7e:5a:b0:f5:16:8a:8b:03:06:25:c6: 40:29:1a:4e:a1:cb:26:1b:05:c0:a5:19:78:c0:de:58:91:e1: ad:48:5f:5b:47:4e:cf:60:7c:db:16:32:d4:c9:16:3d:b7:25: 57:71:6f:11:71:a3:af:2d:2e:2a:cc:4a:e4:80:c3:a4:fc:b9: 02:12:bb:c9:cc:9e:99:f5:61:ff:4c:56:df:a4:96:97:13:3c: 17:89:07:f6:6c:e1:42:77:3f:e0:7b:0f:48:5c:f2:bd:d8:3d: 80:30:79:51:2b:cb:93:a8:19:ac:6a:a5:e9:c0:83:8a:d7:af: 76:aa:4a:78:73:57:47:3d:d7:0b:ae:d0:4a:1b:95:75:7b:26: 44:d6:f2:48:30:56:ce:92:68:db:f0:09:29:11:2a:14:df:fb: 89:a5:b4:e3:45:67:bc:42:0c:b3:3f:af:0e:41:f9:4f:fb:ec: ed:50:8b:e8:62:18:da:70:dd:9a:c0:27:3c:09:28:90:ba:60: 2c:e3:1e:a3:4d:b2:f8:d3:03:ff:de:9e:8d:51:bc:37:e6:96: 6f:2f:06:b7 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUAV//D6dt41Z5ibwb//Z0tN0OnU0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxNTAzNTcyMVoX DTI2MDcxNDA0MDIyMVowMzExMC8GA1UEAxMoNjVEQkM4NzlGQkQzNkU1RkIwM0NC QzYzRUIyNDNDOUM5MUNCMEVDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMXR3IYrTuh78+aApGXg3l9rq8AaTSnQhP3kAo9gPiBWkgs+FhAqKLrslW8L PXohiyb8S1TNrdCrPCKti+MnMIFz1AHgeUYC5gpSvyQj9nCkMtnnd4eHFzmajzTu IOJHNeAcALuEKc3JZ32x7htSJKtCwMBbQlZv8h1ezVqjh6zDmGvORBTLMQY2UHsR +/lKGySG6E30QkET+5OgFmMq+qb+16LStdJ1WskzMDRABlZEbBXUbch3IJtg3NXX gSv2WdbWYbefyjq5KiwtgoPTEdoPgFdejIfPIr3f2FDRzqJ2bbOEFqDrCqwtRaDR zWaKEZMAYqWYcUnUWHbubcKL7jECAwEAAaOCAecwggHjMB0GA1UdDgQWBBRl28h5 +9NuX7A8vGPrJDyckcsOzDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjQxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQBLX6YAwQALX6bAwQAZwo4AwQAZwqRAwQBZ/80MA0GCSqGSIb3DQEB CwUAA4IBAQBPmoKK0ZPEKslatGNUXFKu1tcswmW8bKnpcw5AOv+m7e9AYPIdcgbe WdUFflqw9RaKiwMGJcZAKRpOocsmGwXApRl4wN5YkeGtSF9bR07PYHzbFjLUyRY9 tyVXcW8RcaOvLS4qzErkgMOk/LkCErvJzJ6Z9WH/TFbfpJaXEzwXiQf2bOFCdz/g ew9IXPK92D2AMHlRK8uTqBmsaqXpwIOK1692qkp4c1dHPdcLrtBKG5V1eyZE1vJI MFbOkmjb8AkpESoU3/uJpbTjRWe8QgyzP68OQflP++ztUIvoYhjacN2awCc8CSiQ umAs4x6jTbL40wP/3p6NUbw35pZvLwa3 -----END CERTIFICATE-----Generated at Mon Jul 21 00:02:42 2025 by rpki-client