$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa File: AS45735.roa (raw, json) Hash identifier: GJNniIEt/JJR4NRUUhkOjy62nqUrBBN+3FCg/raBUL8= Subject key identifier: 6F:70:3E:3F:06:ED:32:DE:C5:34:A5:A1:FF:A2:76:2C:9A:63:00:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5EE6D2BB70231399DF827698ECF25B6E231614B6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa Signing time: Mon 01 Sep 2025 03:00:00 +0000 ROA not before: Mon 01 Sep 2025 02:55:00 +0000 ROA not after: Mon 31 Aug 2026 03:00:00 +0000 asID: 45735 IP address blocks: 103.151.162.0/23 maxlen: 24 2406:1b40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:e6:d2:bb:70:23:13:99:df:82:76:98:ec:f2:5b:6e:23:16:14:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 1 02:55:00 2025 GMT Not After : Aug 31 03:00:00 2026 GMT Subject: CN=6F703E3F06ED32DEC534A5A1FFA2762C9A630046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ba:2d:83:dd:99:55:85:20:d4:a8:e6:10:8e: 02:d2:26:65:47:17:0e:71:fd:1a:95:d8:ad:cb:95: 55:7e:52:39:2e:e3:d2:86:11:62:a8:07:61:24:b7: d7:4f:eb:9c:45:da:cd:fb:7a:2d:fb:f9:06:7e:80: 63:82:8e:2a:02:31:d4:be:00:34:0c:c7:1a:85:82: 2c:82:37:6a:0f:a3:08:3a:8c:19:a3:1f:20:be:d6: 2f:58:2d:90:5f:d0:6e:f7:f2:54:e5:60:15:50:d5: f2:d7:71:59:78:6e:ca:34:6b:81:cc:55:3c:f9:0b: 1c:b3:0b:c3:19:1b:ff:42:bf:8f:e6:6e:8d:c3:9d: ba:b4:00:53:85:69:ae:4f:c3:e2:45:d5:49:bc:8e: a5:e6:8f:87:7e:55:b7:76:32:21:8e:0a:ce:66:1f: 25:79:b1:20:2b:c2:34:c3:b5:99:6c:0f:de:2b:85: b2:cb:e0:a9:45:25:41:fc:77:f1:94:df:92:66:60: 2c:59:3d:6d:88:09:bb:65:ff:23:0b:23:88:5d:4f: 0e:7d:41:60:9e:48:f4:b1:42:58:76:f6:4f:32:0d: 18:2a:af:26:23:61:e0:26:42:54:05:c1:62:9d:2b: d9:53:bd:b3:22:72:4c:c7:bc:5b:2e:9c:2d:ea:cb: f1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:70:3E:3F:06:ED:32:DE:C5:34:A5:A1:FF:A2:76:2C:9A:63:00:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.162.0/23 IPv6: 2406:1b40::/32 Signature Algorithm: sha256WithRSAEncryption 45:0b:fc:a7:03:6d:0e:71:25:95:00:f3:36:81:27:e6:3d:2d: 30:98:a2:8f:1c:3f:71:81:73:ee:bb:d3:ae:f8:45:19:fd:89: bc:43:de:27:a0:cd:29:b4:80:53:08:f9:38:99:66:c4:8c:7d: f5:51:50:be:7f:29:ff:b8:b8:e0:f4:71:da:0d:72:89:58:63: 89:b5:49:bc:08:fc:b0:5c:a2:2d:73:86:c7:60:1e:8f:cd:19: 90:75:a7:63:90:52:09:76:fa:e5:72:f4:b4:ff:f7:0d:33:74: f5:b9:cb:58:ef:a8:66:b9:fd:32:e2:69:b1:d2:fd:7f:96:6f: 03:f6:79:e0:45:4c:31:97:3b:e0:15:c4:02:0d:58:c3:4b:f3: 10:99:31:df:7a:20:e4:22:b1:fa:22:0f:7b:87:37:af:07:ab: 72:39:85:da:e0:3a:6e:cd:78:c8:09:72:3e:14:95:8a:41:96: 7d:50:ef:0f:dc:8d:eb:13:4d:2d:ed:5e:39:12:38:c0:30:46: 7e:0b:77:86:43:9c:ea:1e:0a:42:2e:17:bf:49:1e:27:15:5f: 48:ad:06:59:cb:dd:39:0d:8e:dd:ee:e9:b8:42:db:49:0c:f6: d2:a4:44:d3:68:1c:e9:0f:19:5f:f8:37:3b:8c:f2:01:a2:d9: c5:f6:20:94 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUXubSu3AjE5nfgnaY7PJbbiMWFLYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwMTAyNTUwMFoX DTI2MDgzMTAzMDAwMFowMzExMC8GA1UEAxMoNkY3MDNFM0YwNkVEMzJERUM1MzRB NUExRkZBMjc2MkM5QTYzMDA0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO+6LYPdmVWFINSo5hCOAtImZUcXDnH9GpXYrcuVVX5SOS7j0oYRYqgHYSS3 10/rnEXazft6Lfv5Bn6AY4KOKgIx1L4ANAzHGoWCLII3ag+jCDqMGaMfIL7WL1gt kF/QbvfyVOVgFVDV8tdxWXhuyjRrgcxVPPkLHLMLwxkb/0K/j+ZujcOdurQAU4Vp rk/D4kXVSbyOpeaPh35Vt3YyIY4KzmYfJXmxICvCNMO1mWwP3iuFssvgqUUlQfx3 8ZTfkmZgLFk9bYgJu2X/IwsjiF1PDn1BYJ5I9LFCWHb2TzINGCqvJiNh4CZCVAXB Yp0r2VO9syJyTMe8Wy6cLerL8X8CAwEAAaOCAd4wggHaMB0GA1UdDgQWBBRvcD4/ Bu0y3sU0paH/onYsmmMARjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzM1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5eiMA0EAgACMAcDBQAkBhtAMA0GCSqGSIb3DQEBCwUAA4IBAQBF C/ynA20OcSWVAPM2gSfmPS0wmKKPHD9xgXPuu9Ou+EUZ/Ym8Q94noM0ptIBTCPk4 mWbEjH31UVC+fyn/uLjg9HHaDXKJWGOJtUm8CPywXKItc4bHYB6PzRmQdadjkFIJ dvrlcvS0//cNM3T1uctY76hmuf0y4mmx0v1/lm8D9nngRUwxlzvgFcQCDVjDS/MQ mTHfeiDkIrH6Ig97hzevB6tyOYXa4DpuzXjICXI+FJWKQZZ9UO8P3I3rE00t7V45 EjjAMEZ+C3eGQ5zqHgpCLhe/SR4nFV9IrQZZy905DY7d7um4QttJDPbSpETTaBzp Dxlf+Dc7jPIBotnF9iCU -----END CERTIFICATE-----Generated at Fri Sep 5 08:17:19 2025 by rpki-client