$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS45701.roa File: AS45701.roa (raw, json) Hash identifier: Klt6+dKonUj/z4Df8idV+bUCuNymsx0YOFT+XK6VTYY= Subject key identifier: D0:75:8B:30:BA:99:A6:B1:72:2F:C6:41:3E:83:96:5E:7A:27:F9:19 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6D49E36F23BC86BD3B4CEC035B9D380A14375433 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45701.roa Signing time: Sat 02 May 2026 21:20:46 +0000 ROA not before: Sat 02 May 2026 21:15:46 +0000 ROA not after: Sat 01 May 2027 21:20:46 +0000 asID: 45701 IP address blocks: 103.46.6.0/23 maxlen: 24 103.47.8.0/23 maxlen: 24 103.79.246.0/23 maxlen: 24 103.186.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:49:e3:6f:23:bc:86:bd:3b:4c:ec:03:5b:9d:38:0a:14:37:54:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 21:15:46 2026 GMT Not After : May 1 21:20:46 2027 GMT Subject: CN=D0758B30BA99A6B1722FC6413E83965E7A27F919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:f1:25:0a:e2:f4:19:06:d3:0e:d1:87:8e: 26:e8:3d:0b:54:60:21:d2:eb:5f:88:e4:15:a5:f8: 88:dd:d5:4e:02:aa:02:2f:03:70:f4:0f:9a:ee:3d: 1d:81:4c:0a:ad:33:28:65:49:14:dd:b9:5b:29:9a: 65:b2:17:ee:1c:46:83:a3:64:09:84:16:a5:fe:bc: 90:e8:25:16:8a:60:0b:e7:21:7b:f7:02:91:b7:61: a2:51:bc:6e:ff:f4:4a:bd:25:7d:65:5b:dc:5c:91: 6d:3f:d7:11:9f:87:5e:29:a4:1f:cf:d0:04:be:83: 96:3a:5b:0d:60:6d:d7:0c:b8:2b:55:37:f0:92:67: e5:5a:d9:db:8a:93:6f:d1:47:12:f2:8a:af:3b:4d: a1:70:b7:6c:f9:16:0f:a6:a4:a8:25:ba:35:7e:aa: 40:f8:0a:f4:b2:a2:58:0b:55:eb:94:0b:20:2e:c6: 54:40:ec:01:26:e3:7c:da:e1:87:f0:71:2a:44:84: f7:9c:d7:44:9d:32:e1:20:b4:99:76:91:cb:c6:ca: 16:6f:84:ad:8b:df:ce:c6:13:63:b7:4c:cd:63:c2: 50:68:82:89:65:68:5d:dd:d6:03:e8:f0:c0:2d:62: b6:cb:e3:b6:5c:c1:f1:cd:8c:d2:81:7e:42:3d:bb: 2c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:75:8B:30:BA:99:A6:B1:72:2F:C6:41:3E:83:96:5E:7A:27:F9:19 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45701.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.46.6.0/23 103.47.8.0/23 103.79.246.0/23 103.186.62.0/23 Signature Algorithm: sha256WithRSAEncryption a8:51:35:dc:1d:d7:8f:7b:47:22:61:70:01:13:dc:ee:1d:44: 77:f3:50:fc:08:09:38:c0:49:c0:66:30:5e:f5:d0:7b:ac:b5: 5d:43:40:91:32:b1:69:c9:94:df:a1:6a:97:46:a4:39:18:ac: c8:4d:b9:e0:6a:a1:d1:c1:0a:5c:47:cd:a3:2c:25:09:54:cb: 1a:9f:0b:ad:db:e0:b7:bb:1e:f8:38:f0:d5:e1:ef:11:38:d4: c4:bc:ce:b8:84:a0:1a:32:61:6e:ac:90:1b:cf:35:b7:be:5f: c3:34:5f:d0:1a:6e:b7:3e:d5:4a:0e:c4:38:e3:bc:58:61:4c: a1:68:0f:66:db:57:5b:f6:ed:ef:f9:22:32:10:e5:1a:c8:46: cc:90:ff:d0:4b:60:ba:66:65:76:d7:52:a7:53:b2:e4:be:8e: fb:c0:ab:c4:c9:59:94:2f:20:e3:21:33:c8:43:c7:e2:f9:b2: 05:73:98:48:1a:73:77:5f:93:42:08:b9:ba:e6:4e:67:e9:8e: 3d:9b:79:61:59:df:04:c1:78:92:6e:6f:fc:97:c2:df:f9:ec: d2:6b:8b:b5:56:0b:09:22:0a:10:28:34:d7:c6:19:a9:2c:6a: 9a:62:ce:2b:a2:fa:09:42:74:de:eb:3c:29:be:a3:bb:15:1a: 33:c0:66:0b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbUnjbyO8hr07TOwDW504ChQ3VDMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjIxMTU0NloX DTI3MDUwMTIxMjA0NlowMzExMC8GA1UEAxMoRDA3NThCMzBCQTk5QTZCMTcyMkZD NjQxM0U4Mzk2NUU3QTI3RjkxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSw8SUK4vQZBtMO0YeOJug9C1RgIdLrX4jkFaX4iN3VTgKqAi8DcPQPmu49 HYFMCq0zKGVJFN25WymaZbIX7hxGg6NkCYQWpf68kOglFopgC+che/cCkbdholG8 bv/0Sr0lfWVb3FyRbT/XEZ+HXimkH8/QBL6DljpbDWBt1wy4K1U38JJn5VrZ24qT b9FHEvKKrztNoXC3bPkWD6akqCW6NX6qQPgK9LKiWAtV65QLIC7GVEDsASbjfNrh h/BxKkSE95zXRJ0y4SC0mXaRy8bKFm+ErYvfzsYTY7dMzWPCUGiCiWVoXd3WA+jw wC1itsvjtlzB8c2M0oF+Qj27LKMCAwEAAaOCAd0wggHZMB0GA1UdDgQWBBTQdYsw upmmsXIvxkE+g5Zeeif5GTAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNDU3MDEucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgAB MBgDBAFnLgYDBAFnLwgDBAFnT/YDBAFnuj4wDQYJKoZIhvcNAQELBQADggEBAKhR Ndwd1497RyJhcAET3O4dRHfzUPwICTjAScBmMF710HustV1DQJEysWnJlN+hapdG pDkYrMhNueBqodHBClxHzaMsJQlUyxqfC63b4Le7Hvg48NXh7xE41MS8zriEoBoy YW6skBvPNbe+X8M0X9Aabrc+1UoOxDjjvFhhTKFoD2bbV1v27e/5IjIQ5RrIRsyQ /9BLYLpmZXbXUqdTsuS+jvvAq8TJWZQvIOMhM8hDx+L5sgVzmEgac3dfk0IIubrm Tmfpjj2beWFZ3wTBeJJub/yXwt/57NJri7VWCwkiChAoNNfGGaksappiziui+glC dN7rPCm+o7sVGjPAZgs= -----END CERTIFICATE-----Generated at Sun May 3 00:40:19 2026 by rpki-client