$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45298.roa File: AS45298.roa (raw, json) Hash identifier: 2U2Gvk3d0ywvpvuq4gBsegRdbmqC4JQHHO69/nSEZ4E= Subject key identifier: 08:4F:CD:4E:AB:E0:7E:1B:83:39:97:50:8A:01:3F:5F:9D:18:60:76 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4C32AD290386CE5320016306447DA65C2B23E524 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45298.roa Signing time: Thu 04 Sep 2025 04:00:00 +0000 ROA not before: Thu 04 Sep 2025 03:55:00 +0000 ROA not after: Thu 03 Sep 2026 04:00:00 +0000 asID: 45298 IP address blocks: 103.228.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:32:ad:29:03:86:ce:53:20:01:63:06:44:7d:a6:5c:2b:23:e5:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 4 03:55:00 2025 GMT Not After : Sep 3 04:00:00 2026 GMT Subject: CN=084FCD4EABE07E1B833997508A013F5F9D186076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:07:bd:09:d3:9c:da:dc:56:87:8b:8f:d1:f6: 83:0f:5b:4b:82:a1:e9:62:68:d0:eb:5f:de:6d:ac: f3:59:78:88:18:dd:b1:73:bc:96:d9:82:a4:8b:c7: 53:00:10:38:98:c0:1d:cf:13:3b:90:c9:37:9f:be: b4:16:40:f2:67:8d:e9:fa:24:d5:c5:65:05:3a:74: f8:2e:6d:55:e8:ca:be:f5:b2:43:3f:0f:a4:d7:d0: 3b:f7:62:43:92:0d:60:85:8f:fb:f6:e0:8a:8d:8b: 78:8a:36:1f:30:57:da:41:79:50:a0:3b:db:f8:22: 0b:e5:58:e8:06:31:f1:1f:ff:11:f4:01:44:48:3e: a1:bd:73:fb:8c:77:76:aa:67:1c:be:ff:19:e3:0a: 7f:92:c2:31:14:79:be:32:2d:18:1c:53:aa:86:6c: ea:f1:2a:53:7d:4a:7b:e4:05:d1:cd:5b:0d:9a:40: f7:06:da:d1:57:6f:c6:9c:2e:f4:af:fc:15:b3:5e: 28:37:59:2e:6e:b4:03:c7:45:43:08:77:5a:40:bc: 6d:7d:13:30:85:77:5b:09:75:ff:9c:e0:f2:79:0c: 60:e4:b2:17:ac:8b:e8:8b:4f:fe:ed:9f:1e:a6:e4: 0f:bd:25:fb:e7:c0:96:26:a5:12:6a:8c:9b:ea:e8: 62:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:4F:CD:4E:AB:E0:7E:1B:83:39:97:50:8A:01:3F:5F:9D:18:60:76 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45298.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.8.0/24 Signature Algorithm: sha256WithRSAEncryption 73:c7:63:2c:ca:08:fb:b7:10:01:3a:4d:e5:3e:90:bd:27:43: 4b:c2:85:8b:0e:11:75:e0:1c:43:cf:e4:7e:90:e1:b6:45:60: f5:cd:ad:b1:e7:5e:2e:4b:23:63:75:9d:ae:78:b7:b9:6f:f2: 90:b5:9b:1e:5d:69:29:92:bf:4b:e9:a4:20:2c:9f:81:ea:8e: cf:bd:4d:79:08:80:4e:49:33:39:42:67:9a:93:b7:82:bd:42: f4:8b:8f:ff:a3:51:85:75:f4:d4:8e:b4:47:0b:ee:25:be:44: 2c:28:da:bc:63:8a:28:98:44:c1:f1:a5:8a:d3:36:4c:0f:c1: 9f:5a:21:50:ad:7b:1e:07:66:1f:4e:70:86:26:39:8c:3d:aa: a3:f9:60:16:cb:78:34:20:24:2a:0d:62:05:3a:76:88:40:e4: ca:97:41:c5:8e:ce:6b:c2:d8:59:2b:e5:27:f4:f2:f7:8f:bb: 53:7d:f0:35:3a:6b:b2:a4:1c:cc:de:27:3e:c2:2f:73:09:d5: 77:b9:c9:7a:4d:a8:b6:6b:fb:ac:ce:92:e7:b1:8b:96:4a:25: fa:d0:0f:7d:43:b0:50:37:44:7f:33:a5:92:8f:53:45:80:fe: da:8b:b5:22:c2:61:4b:cf:24:9b:7d:86:46:53:d7:69:a6:dd: 53:54:b2:a5 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUTDKtKQOGzlMgAWMGRH2mXCsj5SQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwNDAzNTUwMFoX DTI2MDkwMzA0MDAwMFowMzExMC8GA1UEAxMoMDg0RkNENEVBQkUwN0UxQjgzMzk5 NzUwOEEwMTNGNUY5RDE4NjA3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ4HvQnTnNrcVoeLj9H2gw9bS4Kh6WJo0Otf3m2s81l4iBjdsXO8ltmCpIvH UwAQOJjAHc8TO5DJN5++tBZA8meN6fok1cVlBTp0+C5tVejKvvWyQz8PpNfQO/di Q5INYIWP+/bgio2LeIo2HzBX2kF5UKA72/giC+VY6AYx8R//EfQBREg+ob1z+4x3 dqpnHL7/GeMKf5LCMRR5vjItGBxTqoZs6vEqU31Ke+QF0c1bDZpA9wba0Vdvxpwu 9K/8FbNeKDdZLm60A8dFQwh3WkC8bX0TMIV3Wwl1/5zg8nkMYOSyF6yL6ItP/u2f HqbkD70l++fAlialEmqMm+roYgMCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQIT81O q+B+G4M5l1CKAT9fnRhgdjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1Mjk4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ+QIMA0GCSqGSIb3DQEBCwUAA4IBAQBzx2Msygj7txABOk3lPpC9 J0NLwoWLDhF14BxDz+R+kOG2RWD1za2x514uSyNjdZ2ueLe5b/KQtZseXWkpkr9L 6aQgLJ+B6o7PvU15CIBOSTM5Qmeak7eCvUL0i4//o1GFdfTUjrRHC+4lvkQsKNq8 Y4oomETB8aWK0zZMD8GfWiFQrXseB2YfTnCGJjmMPaqj+WAWy3g0ICQqDWIFOnaI QOTKl0HFjs5rwthZK+Un9PL3j7tTffA1OmuypBzM3ic+wi9zCdV3ucl6Tai2a/us zpLnsYuWSiX60A99Q7BQN0R/M6WSj1NFgP7ai7UiwmFLzySbfYZGU9dppt1TVLKl -----END CERTIFICATE-----Generated at Fri Sep 5 08:17:32 2025 by rpki-client