$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS45317.roa File: AS45317.roa (raw, json) Hash identifier: bhqqRaqfy0lJ3RZwbzO/XRGOzBH5cG8W5ynZRRuuRvA= Subject key identifier: 2D:A1:79:45:68:6A:CA:7B:7F:35:1D:5A:4E:78:DB:FD:CA:E0:FF:24 Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 49254D745DC67AE0E6FD3E714002331970F1551B Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45317.roa Signing time: Sun 03 May 2026 08:16:08 +0000 ROA not before: Sun 03 May 2026 08:11:08 +0000 ROA not after: Sun 02 May 2027 08:16:08 +0000 asID: 45317 IP address blocks: 203.190.40.0/21 maxlen: 24 2406:1b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:25:4d:74:5d:c6:7a:e0:e6:fd:3e:71:40:02:33:19:70:f1:55:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 08:11:08 2026 GMT Not After : May 2 08:16:08 2027 GMT Subject: CN=2DA17945686ACA7B7F351D5A4E78DBFDCAE0FF24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b2:1a:03:e1:92:3b:01:79:78:55:e8:b0:45: ed:d8:37:bd:fa:fe:16:ae:21:8b:77:9b:cd:ff:d2: 21:82:5e:57:34:9b:c6:d5:fd:f8:c8:6e:dd:e0:71: f2:d1:f9:70:03:f8:4f:38:7f:96:42:70:e0:d3:19: 14:92:44:b2:c7:87:9f:a4:d8:af:eb:8a:43:86:7e: d7:f2:da:e4:fd:ef:53:f9:23:95:8d:59:80:d2:0c: 56:8f:33:56:21:56:44:fc:bb:88:7c:5e:df:59:67: a7:a9:9f:bf:1e:ce:9c:7d:6b:88:ea:84:26:7f:3e: d0:72:9a:f5:ba:aa:08:56:ff:0c:e5:bd:61:64:f1: 65:76:70:89:9e:70:09:e2:20:ac:52:6a:67:9a:06: 4c:3a:c5:64:c8:9a:50:53:76:37:22:96:6f:d7:25: fe:d7:92:21:6f:bd:f1:42:b7:fc:4a:0c:01:36:c9: 36:e5:1e:1c:78:22:5e:ef:3e:90:f8:e7:58:a6:d2: cb:cd:1a:8e:a3:da:35:24:43:90:8a:88:21:1e:13: 33:12:2d:c8:7e:22:33:18:a2:2f:8f:0e:88:00:df: e9:25:dd:e1:4a:1e:62:b2:f5:ba:8d:29:5a:57:48: e4:ff:5f:e4:96:3e:c7:04:0d:3f:c1:34:db:d8:96: 74:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A1:79:45:68:6A:CA:7B:7F:35:1D:5A:4E:78:DB:FD:CA:E0:FF:24 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS45317.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.190.40.0/21 IPv6: 2406:1b00::/48 Signature Algorithm: sha256WithRSAEncryption 8a:e5:ed:43:e2:c7:78:ee:53:4d:52:62:3c:df:e9:5c:34:14: 31:0e:80:33:4d:1f:3e:3b:cc:2c:69:85:a8:c0:03:b3:ac:8f: 95:7e:7e:78:7d:3a:83:79:b6:91:28:a8:0e:4e:c5:4d:1e:e2: 59:25:29:98:37:35:fc:99:3a:80:07:1c:b9:64:5e:74:ea:71: 52:46:1a:7d:a0:83:61:10:a7:f0:38:43:8b:6d:7f:05:8c:36: d6:80:12:5e:fa:af:12:93:db:37:42:a5:8d:d2:37:9e:72:30: 75:57:db:6b:2a:99:3c:12:19:d3:e3:c9:91:45:38:fc:a4:7a: 05:3f:a2:2f:54:8b:2e:65:1b:e0:37:51:39:cb:c4:6c:00:f3: 02:c4:da:b5:a7:4e:b1:b6:70:9b:7b:c8:a6:9a:e1:e4:10:8a: c4:6b:03:cd:8e:40:dc:72:38:a8:28:f2:c7:a6:ee:29:f4:92: 9a:63:e5:ae:ce:86:06:80:d3:4c:9a:a9:06:78:a9:29:c1:19: a5:cb:fe:8b:e0:ff:f1:c9:24:0d:d6:2f:7c:64:7d:ce:2c:91: 15:1c:5f:3a:d7:28:dd:9c:33:d9:c1:13:f5:99:32:1e:d1:be: 21:70:02:1f:73:67:26:f1:88:30:f1:af:a1:21:ae:b7:d0:01: 50:2a:4a:6a -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUSSVNdF3GeuDm/T5xQAIzGXDxVRswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzA4MTEwOFoX DTI3MDUwMjA4MTYwOFowMzExMC8GA1UEAxMoMkRBMTc5NDU2ODZBQ0E3QjdGMzUx RDVBNEU3OERCRkRDQUUwRkYyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPOyGgPhkjsBeXhV6LBF7dg3vfr+Fq4hi3ebzf/SIYJeVzSbxtX9+Mhu3eBx 8tH5cAP4Tzh/lkJw4NMZFJJEsseHn6TYr+uKQ4Z+1/La5P3vU/kjlY1ZgNIMVo8z ViFWRPy7iHxe31lnp6mfvx7OnH1riOqEJn8+0HKa9bqqCFb/DOW9YWTxZXZwiZ5w CeIgrFJqZ5oGTDrFZMiaUFN2NyKWb9cl/teSIW+98UK3/EoMATbJNuUeHHgiXu8+ kPjnWKbSy80ajqPaNSRDkIqIIR4TMxItyH4iMxiiL48OiADf6SXd4UoeYrL1uo0p WldI5P9f5JY+xwQNP8E029iWdBcCAwEAAaOCAdwwggHYMB0GA1UdDgQWBBQtoXlF aGrKe381HVpOeNv9yuD/JDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5 NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTNDUzMTcucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgAB MAYDBAPLvigwDwQCAAIwCQMHACQGGwAAADANBgkqhkiG9w0BAQsFAAOCAQEAiuXt Q+LHeO5TTVJiPN/pXDQUMQ6AM00fPjvMLGmFqMADs6yPlX5+eH06g3m2kSioDk7F TR7iWSUpmDc1/Jk6gAccuWRedOpxUkYafaCDYRCn8DhDi21/BYw21oASXvqvEpPb N0KljdI3nnIwdVfbayqZPBIZ0+PJkUU4/KR6BT+iL1SLLmUb4DdROcvEbADzAsTa tadOsbZwm3vIpprh5BCKxGsDzY5A3HI4qCjyx6buKfSSmmPlrs6GBoDTTJqpBnip KcEZpcv+i+D/8ckkDdYvfGR9ziyRFRxfOtco3Zwz2cET9ZkyHtG+IXACH3NnJvGI MPGvoSGut9ABUCpKag== -----END CERTIFICATE-----Generated at Tue May 12 22:42:17 2026 by rpki-client