This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa File: AS131704.roa (raw, json) Hash identifier: K8yq0eBatdBr0/iYjCy/6DFaQSN3m1oGFQ7rB5qCifE= Subject key identifier: 68:E5:B7:73:2B:96:92:55:5E:8A:5C:D0:CA:7A:97:D5:12:EA:56:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 190B73DFD9CA1B0BF82C59BD652C9FF6C70EDDAC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa Signing time: Tue 11 Nov 2025 06:00:00 +0000 ROA not before: Tue 11 Nov 2025 05:55:00 +0000 ROA not after: Tue 10 Nov 2026 06:00:00 +0000 asID: 131704 IP address blocks: 119.2.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:0b:73:df:d9:ca:1b:0b:f8:2c:59:bd:65:2c:9f:f6:c7:0e:dd:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:00 2025 GMT Not After : Nov 10 06:00:00 2026 GMT Subject: CN=68E5B7732B9692555E8A5CD0CA7A97D512EA56FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2b:2a:88:de:1b:b1:21:ed:bd:b2:08:31:7d: 82:a6:fb:da:8b:de:4f:4d:65:28:68:02:37:5a:b2: 76:c7:2e:9f:ac:b9:16:32:02:0c:48:e2:a5:66:44: 2e:8c:0d:8e:be:6f:be:d2:9a:83:58:c9:2e:2d:94: 41:62:55:30:5e:d3:40:cf:61:e8:0d:ae:d1:97:76: d4:4d:1c:e6:26:27:81:6c:7e:4a:b6:14:1a:d0:10: ee:6c:04:69:1c:fa:7d:7a:c2:6e:b1:97:4e:71:1e: 7c:81:b6:ff:53:8e:ab:54:a4:07:2c:15:14:52:5e: f3:4e:92:71:9c:97:25:17:f1:5a:b8:8b:6b:30:5f: a7:93:c5:f1:8a:68:f4:ee:bb:9a:db:3e:3a:30:7b: 02:ab:a4:05:89:14:65:51:1b:0b:8a:c8:c8:52:85: 4c:04:a2:a5:9d:fb:10:5c:1c:e4:f3:29:8a:04:ff: 15:8f:60:e5:75:e6:0b:23:0b:d2:ff:60:7f:e4:a6: fc:1f:c9:6b:04:c9:d5:96:23:4b:8b:48:0b:5f:05: 3f:7b:75:a3:49:f1:6f:23:03:e3:6c:9f:6b:c8:dd: bd:cf:0e:0f:75:70:e2:be:b6:89:35:34:2c:e8:e0: 68:4b:cf:dd:c7:d3:03:ab:36:14:3f:28:7e:0c:a0: ba:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E5:B7:73:2B:96:92:55:5E:8A:5C:D0:CA:7A:97:D5:12:EA:56:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131704.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.64.0/19 Signature Algorithm: sha256WithRSAEncryption 97:50:1b:eb:f7:16:ec:f1:0e:4d:c6:3b:8c:d9:9a:c5:ba:5a: 69:ce:8a:88:15:a4:95:74:91:ce:52:d6:1f:e6:c3:d9:a8:97: 8c:07:f9:79:f8:98:f8:e6:15:94:e4:ba:fc:c9:40:82:1f:01: 8c:e7:a3:2d:b2:44:a6:68:82:49:f2:6e:ab:f8:10:2a:ef:09: dc:37:3b:0f:3d:00:33:57:95:1b:61:d4:88:e3:a0:e2:48:95: 8d:8b:f0:ee:98:46:0e:a7:58:d2:a5:7d:4b:2a:fc:4b:d2:02: 28:11:fd:78:93:a2:ec:b2:54:c8:26:77:09:dc:c8:a9:7b:53: 8f:3b:de:2d:54:d6:4a:2c:3b:4d:42:17:8a:92:95:98:f7:f9: 43:27:0a:0a:a2:ae:09:ed:48:15:4c:b6:29:9d:9d:c2:d4:c4: a7:14:8c:ec:d0:50:54:33:8c:12:20:72:45:cf:0a:fa:49:81: de:9a:e9:8a:de:1a:d0:54:22:2f:ce:c3:d5:a9:3d:94:40:9d: 59:63:21:84:56:dd:a4:8e:b0:6a:1e:fc:68:b5:e4:8d:c0:d0: 08:db:3a:cc:56:61:07:a0:0b:39:39:83:38:d9:7b:9f:b7:6a: 45:7d:b6:a7:b8:da:63:b1:76:8c:b9:5e:e0:09:a3:dc:38:dc: 1d:05:63:d0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGQtz39nKGwv4LFm9ZSyf9scO3awwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwMFoX DTI2MTExMDA2MDAwMFowMzExMC8GA1UEAxMoNjhFNUI3NzMyQjk2OTI1NTVFOEE1 Q0QwQ0E3QTk3RDUxMkVBNTZGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMErKojeG7Eh7b2yCDF9gqb72oveT01lKGgCN1qydscun6y5FjICDEjipWZE LowNjr5vvtKag1jJLi2UQWJVMF7TQM9h6A2u0Zd21E0c5iYngWx+SrYUGtAQ7mwE aRz6fXrCbrGXTnEefIG2/1OOq1SkBywVFFJe806ScZyXJRfxWriLazBfp5PF8Ypo 9O67mts+OjB7AqukBYkUZVEbC4rIyFKFTASipZ37EFwc5PMpigT/FY9g5XXmCyML 0v9gf+Sm/B/JawTJ1ZYjS4tIC18FP3t1o0nxbyMD42yfa8jdvc8OD3Vw4r62iTU0 LOjgaEvP3cfTA6s2FD8ofgyguq8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRo5bdz K5aSVV6KXNDKepfVEupW/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBXcCQDANBgkqhkiG9w0BAQsFAAOCAQEAl1Ab6/cW7PEOTcY7jNma xbpaac6KiBWklXSRzlLWH+bD2aiXjAf5efiY+OYVlOS6/MlAgh8BjOejLbJEpmiC SfJuq/gQKu8J3Dc7Dz0AM1eVG2HUiOOg4kiVjYvw7phGDqdY0qV9Syr8S9ICKBH9 eJOi7LJUyCZ3CdzIqXtTjzveLVTWSiw7TUIXipKVmPf5QycKCqKuCe1IFUy2KZ2d wtTEpxSM7NBQVDOMEiByRc8K+kmB3prpit4a0FQiL87D1ak9lECdWWMhhFbdpI6w ah78aLXkjcDQCNs6zFZhB6ALOTmDONl7n7dqRX22p7jaY7F2jLle4Amj3DjcHQVj 0A== -----END CERTIFICATE-----Generated at Wed Dec 3 14:41:37 2025 by rpki-client