$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa File: AS45727.roa (raw, json) Hash identifier: EEkmgfMnKClJ9xfbrKJF7HZBq2PJ/+5Do+6U/8uIJi0= Subject key identifier: 30:3D:4A:F3:F1:75:3F:DC:AA:93:AA:FE:3A:21:3F:02:8E:9E:E2:6C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C0C1BC505FA92BCD0BA859AE87D40274219E66C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa Signing time: Mon 20 Oct 2025 11:00:00 +0000 ROA not before: Mon 20 Oct 2025 10:55:00 +0000 ROA not after: Mon 19 Oct 2026 11:00:00 +0000 asID: 45727 IP address blocks: 103.175.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:0c:1b:c5:05:fa:92:bc:d0:ba:85:9a:e8:7d:40:27:42:19:e6:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 20 10:55:00 2025 GMT Not After : Oct 19 11:00:00 2026 GMT Subject: CN=303D4AF3F1753FDCAA93AAFE3A213F028E9EE26C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:60:4b:44:09:27:82:10:0b:9d:23:f3:3a:83: 6f:fd:5d:ce:81:f1:93:50:2e:6b:3b:e8:9b:77:30: 49:76:6e:09:22:fc:bb:a6:92:d3:16:32:0d:94:79: 8f:30:25:c2:28:7f:66:db:eb:6a:92:64:6a:69:e1: 38:d3:90:18:19:a6:2c:45:c2:07:7b:d7:89:86:ed: 13:77:54:88:a2:27:27:45:7c:ae:1f:4c:bc:e7:b8: 02:f2:e7:a1:c6:b6:98:e8:b0:fa:46:a9:57:dd:0a: d3:46:98:cc:9f:6f:24:0b:03:31:77:dc:eb:d8:ae: a8:27:53:80:71:9b:85:ea:4b:05:55:23:19:3b:0b: 06:59:83:68:8f:3e:1e:27:16:83:86:bd:f4:f6:c0: 03:10:ec:99:be:de:c7:fa:fc:2a:60:d7:bc:ac:1f: f2:86:4a:e0:5c:2e:b8:af:e4:94:e0:f5:53:e1:66: c3:2f:13:50:44:14:5c:90:35:cc:a0:b7:c2:79:e1: 9b:c4:94:88:a4:e2:ce:96:5f:e7:83:99:62:1d:83: b5:e9:db:59:f7:b0:80:7e:6d:13:8f:14:75:a3:40: ea:98:87:1c:35:5a:64:db:86:9c:12:e5:e7:af:7d: 11:9e:c9:a2:be:84:e2:be:8b:d7:c3:1a:c6:d1:85: 0e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3D:4A:F3:F1:75:3F:DC:AA:93:AA:FE:3A:21:3F:02:8E:9E:E2:6C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45727.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.211.0/24 Signature Algorithm: sha256WithRSAEncryption 63:be:c9:63:4d:3e:91:a1:fe:a9:76:99:15:90:6f:8e:29:4a: 09:46:05:46:9a:9d:d0:40:d2:60:c3:90:6c:1c:e8:b2:c1:00: 48:75:51:74:74:ad:e6:92:61:2c:79:a0:f8:a7:61:48:16:65: c1:95:35:30:3e:40:f1:2c:ca:c9:25:cf:2b:3c:5b:ef:04:e5: cb:63:76:af:7c:1e:15:c4:73:3f:da:09:3f:d6:86:83:99:1c: 70:d3:e1:14:d9:6c:9a:b0:d0:ca:86:99:b0:4f:9d:ec:72:ec: 30:bf:01:f6:8b:c4:30:1e:cf:15:22:d0:1d:80:c6:ea:87:bd: 0e:34:8c:19:7b:de:fa:06:55:6a:c3:37:09:d2:4a:3e:46:c4: 03:2c:3d:80:35:5e:ac:36:9e:e2:d8:d0:99:98:75:02:5d:e6: 04:24:6e:a5:65:67:b3:6f:4e:5f:aa:7d:7a:4a:1e:3b:37:d9: 0d:9e:4d:6e:0e:21:1d:0b:08:d3:39:e7:93:bd:da:5d:33:10: 5a:11:78:50:69:67:19:8f:45:bd:31:5f:80:d5:82:16:d8:f0: 46:a2:8a:20:b6:de:6a:59:25:01:8d:91:d9:40:3e:93:01:87: 42:ff:0b:c7:be:59:44:2c:0e:d6:05:25:f6:c1:8c:2f:64:31: 88:84:35:95 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUHAwbxQX6krzQuoWa6H1AJ0IZ5mwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyMDEwNTUwMFoX DTI2MTAxOTExMDAwMFowMzExMC8GA1UEAxMoMzAzRDRBRjNGMTc1M0ZEQ0FBOTNB QUZFM0EyMTNGMDI4RTlFRTI2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANFgS0QJJ4IQC50j8zqDb/1dzoHxk1Auazvom3cwSXZuCSL8u6aS0xYyDZR5 jzAlwih/ZtvrapJkamnhONOQGBmmLEXCB3vXiYbtE3dUiKInJ0V8rh9MvOe4AvLn oca2mOiw+kapV90K00aYzJ9vJAsDMXfc69iuqCdTgHGbhepLBVUjGTsLBlmDaI8+ HicWg4a99PbAAxDsmb7ex/r8KmDXvKwf8oZK4FwuuK/klOD1U+Fmwy8TUEQUXJA1 zKC3wnnhm8SUiKTizpZf54OZYh2DtenbWfewgH5tE48UdaNA6piHHDVaZNuGnBLl 5699EZ7Jor6E4r6L18MaxtGFDkECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQwPUrz 8XU/3KqTqv46IT8Cjp7ibDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzI3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ6/TMA0GCSqGSIb3DQEBCwUAA4IBAQBjvsljTT6Rof6pdpkVkG+O KUoJRgVGmp3QQNJgw5BsHOiywQBIdVF0dK3mkmEseaD4p2FIFmXBlTUwPkDxLMrJ Jc8rPFvvBOXLY3avfB4VxHM/2gk/1oaDmRxw0+EU2WyasNDKhpmwT53scuwwvwH2 i8QwHs8VItAdgMbqh70ONIwZe976BlVqwzcJ0ko+RsQDLD2ANV6sNp7i2NCZmHUC XeYEJG6lZWezb05fqn16Sh47N9kNnk1uDiEdCwjTOeeTvdpdMxBaEXhQaWcZj0W9 MV+A1YIW2PBGooogtt5qWSUBjZHZQD6TAYdC/wvHvllELA7WBSX2wYwvZDGIhDWV -----END CERTIFICATE-----Generated at Wed Oct 22 13:25:43 2025 by rpki-client