$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS45312.roa File: AS45312.roa (raw, json) Hash identifier: N1eRutsiLF2HRJ4gSbR9gyeOcOcaht6PsAAp41rMArk= Subject key identifier: 11:56:40:5B:7D:75:8B:DA:A1:7C:BB:76:28:C2:0E:C1:4C:EE:0D:75 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5A435B47BC7B8DE63F4E3F9C4D7969E6A150C32B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45312.roa Signing time: Sat 02 May 2026 21:03:55 +0000 ROA not before: Sat 02 May 2026 20:58:55 +0000 ROA not after: Sat 01 May 2027 21:03:55 +0000 asID: 45312 IP address blocks: 103.134.66.0/23 maxlen: 24 2001:df7:bd00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:43:5b:47:bc:7b:8d:e6:3f:4e:3f:9c:4d:79:69:e6:a1:50:c3:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 20:58:55 2026 GMT Not After : May 1 21:03:55 2027 GMT Subject: CN=1156405B7D758BDAA17CBB7628C20EC14CEE0D75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a3:f2:82:fd:05:fc:a7:64:0a:f3:31:37:a5: 72:b6:dc:87:cf:0c:32:4d:87:47:1b:11:55:98:d6: 3c:05:a6:ad:86:0f:02:21:cc:2f:b5:9a:e1:8f:26: d3:97:d6:de:5b:6e:5c:fe:d2:e3:ec:bd:29:03:ed: fc:01:cd:14:23:90:26:e4:13:26:69:e1:1e:d9:87: 0d:a3:b5:54:3b:4f:c8:2d:ca:6d:c3:67:c1:ad:98: 76:9f:b5:44:4a:82:46:a6:21:ea:e9:ef:ee:c2:f4: 68:d0:ee:91:f2:67:6b:81:b0:91:5b:01:3d:ee:33: 98:95:07:e2:a0:b9:71:33:8f:98:69:64:1e:58:9f: 20:d6:40:7f:42:ec:81:28:2e:96:47:c8:8a:84:f7: f4:7b:15:03:37:81:c5:9e:b2:4a:60:94:c6:5e:4e: b8:38:84:30:4b:2e:0d:64:f5:0c:02:2c:d4:5a:4c: 9a:5f:24:7e:7f:fa:81:e7:fc:f8:65:63:09:09:ed: 2c:d5:15:2f:9b:9e:f9:4e:08:82:4b:57:54:7d:15: 68:c5:22:4c:05:91:b1:d7:d2:58:bf:6c:87:0c:c4: f4:27:74:e1:99:75:99:47:0e:37:50:6d:11:c4:3e: 7d:a2:9c:79:8d:79:71:11:4c:fe:d4:90:26:be:4e: 77:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:56:40:5B:7D:75:8B:DA:A1:7C:BB:76:28:C2:0E:C1:4C:EE:0D:75 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45312.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.66.0/23 IPv6: 2001:df7:bd00::/48 Signature Algorithm: sha256WithRSAEncryption 33:e8:8e:8b:24:80:29:36:67:34:8b:14:3e:03:48:a8:33:23: 1e:7f:53:1c:fc:8e:d1:04:35:14:09:2f:32:3f:4f:df:64:8c: 57:dd:68:3a:d4:de:45:09:d6:81:78:5d:d6:77:93:55:d9:16: fc:01:a3:3d:5a:ff:27:2c:38:03:de:95:96:89:59:38:80:56: 2f:c4:28:5c:76:0c:dc:97:76:fb:85:0b:79:33:d8:67:06:82: b3:51:0a:57:38:1c:a3:b5:e8:00:54:b0:e7:ff:86:dd:f8:a3: ed:41:cf:99:48:43:36:2b:f1:64:e6:1e:8b:5b:90:90:e1:46: d4:eb:89:4e:d1:32:0c:e1:50:12:55:48:18:4a:95:86:8e:05: 74:97:04:3d:f8:8b:91:4d:53:23:4c:8e:77:e9:0d:a1:be:57: 7d:33:8a:84:d0:3d:95:08:9b:d5:4e:e2:11:b6:16:1f:4a:b3: 0c:11:5b:dd:0b:2b:9d:a2:c4:57:81:45:f5:4c:0a:f7:73:34: bd:e5:f9:f9:19:df:a1:06:e9:12:aa:3a:ab:06:00:e7:4f:07: 2e:62:9f:74:bb:b2:82:41:53:80:86:ce:2c:d7:8e:e6:34:0b: 18:b1:ee:ad:25:c8:20:a8:22:56:3b:3c:66:9a:c9:54:67:b7: c9:3b:af:d1 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUWkNbR7x7jeY/Tj+cTXlp5qFQwyswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIwNTg1NVoX DTI3MDUwMTIxMDM1NVowMzExMC8GA1UEAxMoMTE1NjQwNUI3RDc1OEJEQUExN0NC Qjc2MjhDMjBFQzE0Q0VFMEQ3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANej8oL9BfynZArzMTelcrbch88MMk2HRxsRVZjWPAWmrYYPAiHML7Wa4Y8m 05fW3ltuXP7S4+y9KQPt/AHNFCOQJuQTJmnhHtmHDaO1VDtPyC3KbcNnwa2Ydp+1 REqCRqYh6unv7sL0aNDukfJna4GwkVsBPe4zmJUH4qC5cTOPmGlkHlifINZAf0Ls gSgulkfIioT39HsVAzeBxZ6ySmCUxl5OuDiEMEsuDWT1DAIs1FpMml8kfn/6gef8 +GVjCQntLNUVL5ue+U4IgktXVH0VaMUiTAWRsdfSWL9shwzE9Cd04Zl1mUcON1Bt EcQ+faKceY15cRFM/tSQJr5Od3sCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBQRVkBb fXWL2qF8u3Yowg7BTO4NdTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNDUzMTIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgAB MAYDBAFnhkIwDwQCAAIwCQMHACABDfe9ADANBgkqhkiG9w0BAQsFAAOCAQEAM+iO iySAKTZnNIsUPgNIqDMjHn9THPyO0QQ1FAkvMj9P32SMV91oOtTeRQnWgXhd1neT VdkW/AGjPVr/Jyw4A96VlolZOIBWL8QoXHYM3Jd2+4ULeTPYZwaCs1EKVzgco7Xo AFSw5/+G3fij7UHPmUhDNivxZOYei1uQkOFG1OuJTtEyDOFQElVIGEqVho4FdJcE PfiLkU1TI0yOd+kNob5XfTOKhNA9lQib1U7iEbYWH0qzDBFb3QsrnaLEV4FF9UwK 93M0veX5+RnfoQbpEqo6qwYA508HLmKfdLuygkFTgIbOLNeO5jQLGLHurSXIIKgi Vjs8ZprJVGe3yTuv0Q== -----END CERTIFICATE-----Generated at Sun May 3 00:40:18 2026 by rpki-client