$ rpki-client -vvf rpki-rsync.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS45700.roa File: AS45700.roa (raw, json) Hash identifier: 4gylyPRrLCVxqv8jBeq1Y73wjMNwCZgjrx7f+jJHRfU= Subject key identifier: F9:3F:25:D5:30:45:8C:EA:DB:E8:1A:4C:06:09:97:EC:11:CF:12:5B Certificate issuer: /CN=ABFE6B3197147312EC1FAE05A252A3964E9BB235 Certificate serial: 49207358238ABB9A7141DE82DB49A553432D8127 Authority key identifier: AB:FE:6B:31:97:14:73:12:EC:1F:AE:05:A2:52:A3:96:4E:9B:B2:35 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ABFE6B3197147312EC1FAE05A252A3964E9BB235.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS45700.roa Signing time: Sun 03 May 2026 02:23:31 +0000 ROA not before: Sun 03 May 2026 02:18:31 +0000 ROA not after: Sun 02 May 2027 02:23:31 +0000 asID: 45700 IP address blocks: 119.11.204.0/23 maxlen: 23 119.11.204.0/24 maxlen: 24 119.11.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/ABFE6B3197147312EC1FAE05A252A3964E9BB235.crl rsync://rpki-rsync.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/ABFE6B3197147312EC1FAE05A252A3964E9BB235.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ABFE6B3197147312EC1FAE05A252A3964E9BB235.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:20:73:58:23:8a:bb:9a:71:41:de:82:db:49:a5:53:43:2d:81:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABFE6B3197147312EC1FAE05A252A3964E9BB235 Validity Not Before: May 3 02:18:31 2026 GMT Not After : May 2 02:23:31 2027 GMT Subject: CN=F93F25D530458CEADBE81A4C060997EC11CF125B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:98:42:c1:a3:0c:6f:fd:c1:31:cc:be:36:11: 31:9b:e5:c2:45:fb:6c:48:6a:27:f3:9e:08:6a:dd: 8c:b6:8a:8d:7e:53:ea:be:8f:b7:6f:b3:44:87:51: 33:3c:e5:de:38:ca:34:20:0c:64:5c:dd:1e:24:b4: a6:02:ba:ef:e2:bc:4f:74:e0:73:cd:e6:7a:c7:05: 9e:72:e6:ca:23:cf:9c:ce:81:eb:79:96:ea:1d:86: 46:56:e4:ef:46:b0:cc:39:55:c1:c4:cd:74:07:95: 10:48:d7:2d:6a:1e:ad:45:87:1f:2d:56:66:24:d5: bf:f4:57:cc:44:43:1a:1e:5e:56:96:0f:71:eb:be: 7f:eb:7d:05:52:c6:7b:26:22:b1:0c:1f:28:5c:c3: 66:37:47:77:cb:21:f0:c7:d3:f7:9c:81:e0:69:6d: ce:c6:21:df:eb:ab:3a:6d:b2:db:ea:d0:13:43:2c: 9b:88:1a:69:71:22:fb:04:41:70:be:fa:31:c3:0b: f5:cf:f2:a4:62:c3:2f:4d:a8:96:01:e5:cc:6a:0f: 8a:62:3f:5c:d6:65:79:0e:5f:b1:93:6b:4f:ff:6a: c5:1e:5d:03:5b:87:ac:ef:7b:d1:f4:3b:c3:08:f0: 1c:dd:0f:50:0e:45:9b:b9:6c:41:7e:51:7e:61:c7: 57:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:3F:25:D5:30:45:8C:EA:DB:E8:1A:4C:06:09:97:EC:11:CF:12:5B X509v3 Authority Key Identifier: keyid:AB:FE:6B:31:97:14:73:12:EC:1F:AE:05:A2:52:A3:96:4E:9B:B2:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/ABFE6B3197147312EC1FAE05A252A3964E9BB235.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/ABFE6B3197147312EC1FAE05A252A3964E9BB235.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/AS45700.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.11.204.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:84:43:de:43:c5:0d:14:e8:61:2a:16:77:ba:09:23:83:0a: d8:fe:19:58:5e:2c:49:b5:40:0f:65:bc:43:79:5e:99:9c:7f: 78:84:e5:ff:e5:4d:d3:e2:79:cc:d2:76:aa:a0:35:7c:4c:8f: a3:03:31:ef:2e:3a:3b:22:58:93:2e:e3:a9:56:8b:7c:8c:37: 4f:07:10:d6:35:8f:86:47:ef:b7:45:3f:7c:a7:d0:80:d1:f8: 04:d1:24:ad:9d:45:cc:0b:a6:58:de:e9:07:17:26:87:fc:a1: 62:b4:d3:dd:96:53:80:12:cd:ae:84:8f:bf:18:b4:05:4d:5b: 4b:b5:25:87:6d:7e:0d:32:0b:85:f9:43:67:54:e3:21:28:a6: 9d:53:8e:b1:5e:dc:13:db:db:04:a4:aa:4c:a7:a3:80:8a:3f: 0c:72:21:b7:b9:a7:64:14:5f:72:1d:86:bb:eb:63:40:76:c8: e5:56:eb:63:3e:9c:d1:80:65:28:79:92:8f:51:d6:79:39:5b: a3:75:08:06:2e:04:b0:6a:c9:41:5b:5f:f3:42:fe:ce:ec:47: 15:b6:fe:dc:84:9c:24:e9:bd:b9:e3:f2:bf:3a:ba:4a:16:ef: f1:e4:cb:1a:c9:99:8b:c1:a6:be:b1:9d:98:d6:a8:cf:e7:f5: 9d:23:be:31 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUSSBzWCOKu5pxQd6C20mlU0MtgScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUJGRTZCMzE5NzE0NzMxMkVDMUZBRTA1QTI1MkEzOTY0 RTlCQjIzNTAeFw0yNjA1MDMwMjE4MzFaFw0yNzA1MDIwMjIzMzFaMDMxMTAvBgNV BAMTKEY5M0YyNUQ1MzA0NThDRUFEQkU4MUE0QzA2MDk5N0VDMTFDRjEyNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCemELBowxv/cExzL42ETGb5cJF +2xIaifznghq3Yy2io1+U+q+j7dvs0SHUTM85d44yjQgDGRc3R4ktKYCuu/ivE90 4HPN5nrHBZ5y5sojz5zOget5luodhkZW5O9GsMw5VcHEzXQHlRBI1y1qHq1Fhx8t VmYk1b/0V8xEQxoeXlaWD3Hrvn/rfQVSxnsmIrEMHyhcw2Y3R3fLIfDH0/ecgeBp bc7GId/rqzptstvq0BNDLJuIGmlxIvsEQXC++jHDC/XP8qRiwy9NqJYB5cxqD4pi P1zWZXkOX7GTa0//asUeXQNbh6zve9H0O8MI8BzdD1AORZu5bEF+UX5hx1dFAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQU+T8l1TBFjOrb6BpMBgmX7BHPElswHwYDVR0j BBgwFoAUq/5rMZcUcxLsH64FolKjlk6bsjUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmZiNzA4MTgtMjM2Ni00MmUwLTlkYmQtMjU0MzgxMDY5ZTU3LzAvQUJGRTZCMzE5 NzE0NzMxMkVDMUZBRTA1QTI1MkEzOTY0RTlCQjIzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQkZFNkIzMTk3MTQ3MzEyRUMxRkFFMDVBMjUyQTM5NjRFOUJC MjM1LmNlcjBwBggrBgEFBQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBr aS1yc3luYy5pZG5pYy5uZXQvcmVwby8yZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0y NTQzODEwNjllNTcvMC9BUzQ1NzAwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBdwvMMA0GCSqGSIb3DQEB CwUAA4IBAQBthEPeQ8UNFOhhKhZ3ugkjgwrY/hlYXixJtUAPZbxDeV6ZnH94hOX/ 5U3T4nnM0naqoDV8TI+jAzHvLjo7IliTLuOpVot8jDdPBxDWNY+GR++3RT98p9CA 0fgE0SStnUXMC6ZY3ukHFyaH/KFitNPdllOAEs2uhI+/GLQFTVtLtSWHbX4NMguF +UNnVOMhKKadU46xXtwT29sEpKpMp6OAij8MciG3uadkFF9yHYa762NAdsjlVutj PpzRgGUoeZKPUdZ5OVujdQgGLgSwaslBW1/zQv7O7EcVtv7chJwk6b254/K/OrpK Fu/x5MsayZmLwaa+sZ2Y1qjP5/WdI74x -----END CERTIFICATE-----Generated at Wed May 13 00:51:47 2026 by rpki-client