$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS45727.roa File: AS45727.roa (raw, json) Hash identifier: vZWLHcOEKVgdTCb0jGvybbz8vbsVz5HsQI/3HuhvHAU= Subject key identifier: B9:3F:66:97:E9:1D:3D:C7:2E:7A:87:94:D2:E1:EB:9B:C9:11:0B:FE Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 02FBD3D8D451E92FA19119C9A847AD01C242DC02 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45727.roa Signing time: Sat 02 May 2026 09:20:30 +0000 ROA not before: Sat 02 May 2026 09:15:30 +0000 ROA not after: Sat 01 May 2027 09:20:30 +0000 asID: 45727 IP address blocks: 103.175.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fb:d3:d8:d4:51:e9:2f:a1:91:19:c9:a8:47:ad:01:c2:42:dc:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 2 09:15:30 2026 GMT Not After : May 1 09:20:30 2027 GMT Subject: CN=B93F6697E91D3DC72E7A8794D2E1EB9BC9110BFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2e:b9:5e:ed:04:ba:a1:28:1a:70:7c:66:62: cb:5b:d0:d1:2d:f2:a1:65:70:eb:8e:20:53:7c:9f: 4d:65:ac:30:89:4b:10:37:f9:e7:ba:2c:4c:ef:3c: fd:7a:c2:28:a9:60:c5:72:62:de:3f:fc:ba:41:20: bb:f9:01:4d:15:9a:2d:11:86:49:35:f2:91:06:f8: 37:bb:a5:c5:5c:9f:00:9d:3a:25:75:80:9c:5d:89: 02:ba:9f:b8:14:40:8d:fd:69:24:7e:b4:c3:86:5e: 06:75:ba:ef:36:c9:e9:3f:0a:91:52:0c:89:1a:b2: d9:56:2e:41:27:07:e3:dc:70:a1:9a:21:35:8c:ca: d5:68:4b:4c:8b:39:3b:b6:f6:f0:f0:47:ca:aa:44: 18:ba:06:94:78:d0:56:58:f1:c8:e2:10:f2:d6:80: 8c:e7:f7:f2:8d:f8:23:b9:79:aa:dd:1c:3d:c9:27: 5b:2b:b4:a6:91:9b:58:f9:b7:67:6d:03:bb:cd:a9: f2:b4:df:e8:9c:bb:1b:3c:19:5e:05:cd:c2:19:1a: 17:e5:35:11:01:95:58:25:a0:cf:47:91:41:d8:89: 46:c9:a9:f1:0b:9c:d4:20:8d:97:02:3b:a4:17:22: a8:1b:34:da:65:c5:f6:a7:86:5c:16:e3:12:16:8b: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3F:66:97:E9:1D:3D:C7:2E:7A:87:94:D2:E1:EB:9B:C9:11:0B:FE X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45727.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.211.0/24 Signature Algorithm: sha256WithRSAEncryption 80:5c:15:72:14:0f:36:53:dd:d5:07:b0:0a:51:4a:a3:7c:d0: 49:fd:9c:09:d6:f5:fb:e2:c2:85:52:5b:21:f4:c6:92:13:0b: 03:a1:2f:27:cb:7d:f2:85:64:54:0d:8b:a7:40:c2:4a:13:76: 1a:d1:72:64:3f:fc:dc:d3:3e:a8:1c:16:1f:89:f8:5b:b3:2e: 63:38:c1:1d:c3:49:a5:59:15:b6:c7:8e:36:be:06:d3:6f:98: 48:af:b6:e2:d7:c9:ce:2a:6d:67:09:01:e1:c4:93:0e:f1:21: e3:c3:32:40:8c:10:00:71:69:a5:da:7e:a8:1c:fa:89:f1:9a: 14:a0:32:c3:b6:45:59:62:6d:bb:92:0c:23:0f:26:6a:54:d3: 99:37:40:c2:52:ee:18:da:8d:da:00:01:69:4d:06:af:47:7f: 08:11:f3:b3:14:2c:d5:cb:f2:70:f1:67:32:6b:5b:c3:a7:bc: ab:30:bb:08:ba:c1:b0:b7:09:4c:03:46:99:b0:6c:c6:98:49: 9e:98:ce:24:61:25:20:52:39:56:c9:96:28:a6:4f:cb:1d:f5: d3:2b:62:ea:c3:3c:29:f5:0b:48:4f:77:0e:1a:24:fe:cf:9e: f7:21:fc:8d:59:aa:76:77:45:70:7f:be:91:2a:89:b6:ee:76: 8f:91:fd:fc -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIUAvvT2NRR6S+hkRnJqEetAcJC3AIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMjA5MTUzMFoX DTI3MDUwMTA5MjAzMFowMzExMC8GA1UEAxMoQjkzRjY2OTdFOTFEM0RDNzJFN0E4 Nzk0RDJFMUVCOUJDOTExMEJGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkuuV7tBLqhKBpwfGZiy1vQ0S3yoWVw644gU3yfTWWsMIlLEDf557osTO88 /XrCKKlgxXJi3j/8ukEgu/kBTRWaLRGGSTXykQb4N7ulxVyfAJ06JXWAnF2JArqf uBRAjf1pJH60w4ZeBnW67zbJ6T8KkVIMiRqy2VYuQScH49xwoZohNYzK1WhLTIs5 O7b28PBHyqpEGLoGlHjQVljxyOIQ8taAjOf38o34I7l5qt0cPcknWyu0ppGbWPm3 Z20Du82p8rTf6Jy7GzwZXgXNwhkaF+U1EQGVWCWgz0eRQdiJRsmp8Quc1CCNlwI7 pBciqBs02mXF9qeGXBbjEhaLGbkCAwEAAaOCAcswggHHMB0GA1UdDgQWBBS5P2aX 6R09xy56h5TS4eubyREL/jAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNDU3Mjcucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnr9MwDQYJKoZIhvcNAQELBQADggEBAIBcFXIUDzZT3dUHsApRSqN80En9 nAnW9fviwoVSWyH0xpITCwOhLyfLffKFZFQNi6dAwkoTdhrRcmQ//NzTPqgcFh+J +FuzLmM4wR3DSaVZFbbHjja+BtNvmEivtuLXyc4qbWcJAeHEkw7xIePDMkCMEABx aaXafqgc+onxmhSgMsO2RVlibbuSDCMPJmpU05k3QMJS7hjajdoAAWlNBq9HfwgR 87MULNXL8nDxZzJrW8OnvKswuwi6wbC3CUwDRpmwbMaYSZ6YziRhJSBSOVbJliim T8sd9dMrYurDPCn1C0hPdw4aJP7Pnvch/I1ZqnZ3RXB/vpEqibbudo+R/fw= -----END CERTIFICATE-----Generated at Sun May 3 00:41:55 2026 by rpki-client