$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS45715.roa File: AS45715.roa (raw, json) Hash identifier: NqxMECbX0HMcnQfTB2iEXpEzqxZBrn9l7BRSS4ctJSI= Subject key identifier: B9:42:BC:31:94:E7:DF:26:23:24:B4:A5:4B:8D:F9:D0:D7:BE:78:7B Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 5EC6749305DB823D905E3691117E90B2391655E6 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45715.roa Signing time: Sat 02 May 2026 09:27:32 +0000 ROA not before: Sat 02 May 2026 09:22:32 +0000 ROA not after: Sat 01 May 2027 09:27:32 +0000 asID: 45715 IP address blocks: 45.250.100.0/24 maxlen: 24 45.250.101.0/24 maxlen: 24 45.250.102.0/24 maxlen: 24 45.250.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:c6:74:93:05:db:82:3d:90:5e:36:91:11:7e:90:b2:39:16:55:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:22:32 2026 GMT Not After : May 1 09:27:32 2027 GMT Subject: CN=B942BC3194E7DF262324B4A54B8DF9D0D7BE787B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3f:58:6d:4d:3f:57:13:7c:7e:97:31:57:9d: a1:ae:7b:c9:85:b0:5e:bb:cf:da:d3:bd:1e:7f:96: a4:3e:29:b0:99:6f:4f:2a:27:60:a1:ca:fe:16:e1: bf:cf:f0:85:21:f8:56:04:2c:bb:28:f0:61:fb:64: 65:56:ce:a1:6a:68:38:da:be:3e:4e:12:83:27:73: ee:8f:69:cf:30:9b:10:5b:64:6c:52:e0:92:6d:a6: ab:af:77:f3:80:8b:c5:7f:7f:d2:31:ae:fa:ad:77: bc:23:a4:92:88:af:81:74:b6:04:ae:41:d8:ca:d1: dd:54:61:67:c6:23:24:72:51:fc:d6:d1:97:f2:d1: 2e:b3:58:f5:71:35:cb:39:77:04:37:38:0f:fd:62: 9e:ef:6d:eb:b0:01:e5:02:76:ac:74:a4:86:79:c1: f8:c8:cd:0e:1c:80:3b:1d:07:36:44:11:97:fc:ac: b8:fa:39:57:b5:08:ca:e8:5b:90:ca:7f:b4:99:aa: 7e:1f:7b:54:37:1c:7a:39:1a:ae:39:07:37:11:e9: 1a:55:e0:96:ef:c3:38:b5:c1:97:ff:b2:1d:31:af: 46:8f:f6:76:fd:5e:ea:a2:b4:ef:e2:b2:70:37:37: 5a:b1:a9:0e:80:ea:30:ce:b1:e5:ee:02:2a:c2:c0: 3e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:42:BC:31:94:E7:DF:26:23:24:B4:A5:4B:8D:F9:D0:D7:BE:78:7B X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.250.100.0/22 Signature Algorithm: sha256WithRSAEncryption 97:49:67:68:7c:dd:12:9f:18:7b:aa:c0:30:1e:4a:64:a8:7a: 42:33:74:3d:4b:3f:30:d2:44:e7:2f:4e:e1:b5:70:a3:da:b1: 54:cc:82:9e:ac:70:1b:03:8e:57:aa:fa:32:0c:e7:eb:36:1a: cd:31:9f:7e:0e:1d:a5:9e:5d:37:9b:53:6e:cc:5e:60:de:f4: 91:e0:bd:81:4f:a4:36:d6:ee:aa:ed:85:f4:a7:3b:8e:14:cb: 0e:17:05:17:92:14:a0:b3:39:be:0c:1c:c5:38:a6:93:cb:fe: 45:db:85:78:78:1d:4f:6e:5c:02:79:61:80:98:c2:a2:6b:1a: 57:d5:76:8a:05:1a:02:e1:08:e1:62:ab:a8:e9:7c:c4:b2:43: 5d:d1:65:1d:7d:d6:85:c9:db:f8:1c:96:52:1f:a3:cb:b3:f3: ef:56:be:92:e1:ce:82:c2:f3:36:11:26:4b:68:a0:e5:fd:1d: ae:bf:66:7d:6f:51:f1:d5:ca:0f:1c:5b:16:d2:24:9d:ba:af: b7:5c:ae:e6:09:58:96:d7:92:46:b6:7d:84:50:68:66:7b:7e: 30:f0:c1:6f:49:41:e0:a4:ce:e7:b2:b3:65:70:43:91:55:f0: 37:38:e0:50:7b:0b:32:d1:98:10:8d:70:05:5b:5a:a8:2f:4b: bf:62:f4:50 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUXsZ0kwXbgj2QXjaREX6QsjkWVeYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MjIzMloX DTI3MDUwMTA5MjczMlowMzExMC8GA1UEAxMoQjk0MkJDMzE5NEU3REYyNjIzMjRC NEE1NEI4REY5RDBEN0JFNzg3QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMo/WG1NP1cTfH6XMVedoa57yYWwXrvP2tO9Hn+WpD4psJlvTyonYKHK/hbh v8/whSH4VgQsuyjwYftkZVbOoWpoONq+Pk4Sgydz7o9pzzCbEFtkbFLgkm2mq693 84CLxX9/0jGu+q13vCOkkoivgXS2BK5B2MrR3VRhZ8YjJHJR/NbRl/LRLrNY9XE1 yzl3BDc4D/1inu9t67AB5QJ2rHSkhnnB+MjNDhyAOx0HNkQRl/ysuPo5V7UIyuhb kMp/tJmqfh97VDccejkarjkHNxHpGlXglu/DOLXBl/+yHTGvRo/2dv1e6qK07+Ky cDc3WrGpDoDqMM6x5e4CKsLAPmMCAwEAAaOCAcswggHHMB0GA1UdDgQWBBS5Qrwx lOffJiMktKVLjfnQ1754ezAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNDU3MTUucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIt+mQwDQYJKoZIhvcNAQELBQADggEBAJdJZ2h83RKfGHuqwDAeSmSoekIz dD1LPzDSROcvTuG1cKPasVTMgp6scBsDjleq+jIM5+s2Gs0xn34OHaWeXTebU27M XmDe9JHgvYFPpDbW7qrthfSnO44Uyw4XBReSFKCzOb4MHMU4ppPL/kXbhXh4HU9u XAJ5YYCYwqJrGlfVdooFGgLhCOFiq6jpfMSyQ13RZR191oXJ2/gcllIfo8uz8+9W vpLhzoLC8zYRJktooOX9Ha6/Zn1vUfHVyg8cWxbSJJ26r7dcruYJWJbXkka2fYRQ aGZ7fjDwwW9JQeCkzueys2VwQ5FV8Dc44FB7CzLRmBCNcAVbWqgvS79i9FA= -----END CERTIFICATE-----Generated at Sun May 3 00:41:49 2026 by rpki-client