$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa File: AS45288.roa (raw, json) Hash identifier: /l6fJdO1tlvs5BdxRgqEmTZuD9i8grO6ocaNc1rCyIc= Subject key identifier: A6:A0:57:B3:9D:64:30:D1:CD:93:62:99:9C:19:E2:50:E6:5C:FA:88 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C59BA0326C1A54F6E379F44852C6C2990CF6970 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa Signing time: Tue 10 Feb 2026 08:00:00 +0000 ROA not before: Tue 10 Feb 2026 07:55:00 +0000 ROA not after: Tue 09 Feb 2027 08:00:00 +0000 asID: 45288 IP address blocks: 202.164.222.0/23 maxlen: 24 202.164.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Mar 2026 02:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:59:ba:03:26:c1:a5:4f:6e:37:9f:44:85:2c:6c:29:90:cf:69:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 10 07:55:00 2026 GMT Not After : Feb 9 08:00:00 2027 GMT Subject: CN=A6A057B39D6430D1CD9362999C19E250E65CFA88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:45:b3:74:17:bf:8c:f8:4b:01:1e:89:c2:9d: 3c:a3:a0:fe:b9:f5:b4:49:25:c0:a6:f2:5e:00:f3: b1:57:a4:1f:77:13:97:15:16:b2:93:b7:59:2f:12: 2f:70:8d:48:69:75:ae:0d:3a:10:5a:1b:ef:2f:43: 4a:85:79:29:5b:85:22:6d:e8:41:c8:6f:c9:65:66: b0:2c:10:d5:07:48:ac:51:22:2a:3f:ea:f7:f3:2e: 14:a0:ec:62:a6:ee:5d:70:5e:7c:5a:e3:5f:a4:d6: 7d:36:b0:8d:5f:e5:d2:60:2d:c1:35:59:61:ff:08: db:b4:12:aa:5e:ef:09:91:56:b2:d1:2e:84:e4:22: 90:ca:7b:39:d6:9b:b6:65:18:8f:42:e1:b9:04:a0: 48:cc:46:3c:c8:a6:ef:42:0b:6f:8f:54:d6:23:ba: 9f:ec:fc:3e:a4:fb:e5:f9:bf:af:4d:89:29:c2:52: 50:e4:a3:2d:fc:2c:a8:8f:01:dc:a8:2f:99:b8:ac: 04:90:85:2e:9b:e3:12:72:cb:4c:87:8e:21:5b:7d: b8:f0:9d:5e:71:b7:04:1e:f7:18:29:93:e0:a8:d3: 28:76:53:41:4d:6e:6d:a2:1a:af:91:f6:68:81:4f: 59:6a:16:a0:b5:03:d1:30:41:37:c2:cd:2f:26:00: 99:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A0:57:B3:9D:64:30:D1:CD:93:62:99:9C:19:E2:50:E6:5C:FA:88 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45288.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.164.222.0/23 Signature Algorithm: sha256WithRSAEncryption 71:18:38:db:2f:26:ed:c9:19:5e:7d:c3:89:97:85:a5:a8:4a: 63:c4:0e:14:7c:5c:26:f0:d3:20:63:8e:1c:b9:34:87:a5:1a: c3:d9:da:a2:1b:6d:49:ac:2f:8a:1a:84:12:2a:44:6b:5d:35: d0:a8:be:e6:1b:0b:62:37:6e:21:10:27:73:3a:c3:e2:28:32: f8:6e:ed:df:e5:bd:97:8b:99:11:a8:9b:13:7d:08:be:85:cf: 0f:ff:09:48:11:2c:cd:38:e9:20:76:b5:09:27:88:6a:8b:6b: c5:9a:b0:20:a1:d4:8c:f3:21:5c:4f:f0:58:19:f6:f6:39:4f: b0:41:4c:55:d4:b4:c1:cc:b1:34:6b:07:6f:36:60:45:25:85: 20:9a:b3:7f:0e:9d:6a:93:22:64:db:20:d6:a5:58:00:85:9f: d7:79:59:b8:a7:33:79:5f:82:13:84:d1:4e:5c:85:92:63:63: e5:c8:21:17:25:ad:b0:3a:e2:2e:69:99:6a:66:14:ad:24:6f: 18:4a:87:a3:9b:2f:cd:13:51:82:ad:4c:b2:9c:fa:8b:b8:f3: 00:fe:e7:74:b6:d5:b9:31:6e:17:a9:d3:4c:2e:12:19:a8:3e: 5c:5e:f0:e3:3e:96:fc:19:8a:cd:34:ad:35:31:d0:65:90:3e: 1e:11:fd:91 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUPFm6AybBpU9uN59EhSxsKZDPaXAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDIxMDA3NTUwMFoX DTI3MDIwOTA4MDAwMFowMzExMC8GA1UEAxMoQTZBMDU3QjM5RDY0MzBEMUNEOTM2 Mjk5OUMxOUUyNTBFNjVDRkE4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZFs3QXv4z4SwEeicKdPKOg/rn1tEklwKbyXgDzsVekH3cTlxUWspO3WS8S L3CNSGl1rg06EFob7y9DSoV5KVuFIm3oQchvyWVmsCwQ1QdIrFEiKj/q9/MuFKDs YqbuXXBefFrjX6TWfTawjV/l0mAtwTVZYf8I27QSql7vCZFWstEuhOQikMp7Odab tmUYj0LhuQSgSMxGPMim70ILb49U1iO6n+z8PqT75fm/r02JKcJSUOSjLfwsqI8B 3KgvmbisBJCFLpvjEnLLTIeOIVt9uPCdXnG3BB73GCmT4KjTKHZTQU1ubaIar5H2 aIFPWWoWoLUD0TBBN8LNLyYAmcECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSmoFez nWQw0c2TYpmcGeJQ5lz6iDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1Mjg4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByqTeMA0GCSqGSIb3DQEBCwUAA4IBAQBxGDjbLybtyRlefcOJl4Wl qEpjxA4UfFwm8NMgY44cuTSHpRrD2dqiG21JrC+KGoQSKkRrXTXQqL7mGwtiN24h ECdzOsPiKDL4bu3f5b2Xi5kRqJsTfQi+hc8P/wlIESzNOOkgdrUJJ4hqi2vFmrAg odSM8yFcT/BYGfb2OU+wQUxV1LTBzLE0awdvNmBFJYUgmrN/Dp1qkyJk2yDWpVgA hZ/XeVm4pzN5X4IThNFOXIWSY2PlyCEXJa2wOuIuaZlqZhStJG8YSoejmy/NE1GC rUyynPqLuPMA/ud0ttW5MW4XqdNMLhIZqD5cXvDjPpb8GYrNNK01MdBlkD4eEf2R -----END CERTIFICATE-----Generated at Sun Mar 1 21:59:54 2026 by rpki-client