This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131719.roa File: AS131719.roa (raw, json) Hash identifier: dwvkJcl4dLmKkiMCSZrjFMspVn3FFCvhoGiPZzAWq6M= Subject key identifier: 5F:71:2A:E6:4D:C8:A6:82:07:49:FD:D5:04:05:5E:58:BA:79:2B:74 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6897E0C831FE34E2A2795967D7D973F15CF24447 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131719.roa Signing time: Tue 11 Nov 2025 06:00:25 +0000 ROA not before: Tue 11 Nov 2025 05:55:25 +0000 ROA not after: Tue 10 Nov 2026 06:00:25 +0000 asID: 131719 IP address blocks: 103.239.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:97:e0:c8:31:fe:34:e2:a2:79:59:67:d7:d9:73:f1:5c:f2:44:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:25 2025 GMT Not After : Nov 10 06:00:25 2026 GMT Subject: CN=5F712AE64DC8A6820749FDD504055E58BA792B74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:91:13:c6:f4:95:e9:88:a2:8a:88:94:5d:34: 91:f6:7f:65:44:35:e9:4f:38:b6:ef:82:1a:20:4e: be:b5:e6:1f:e2:a0:2c:95:cd:8d:4c:ad:23:44:20: 2b:97:48:4e:b1:03:c0:f4:5e:d2:b3:d9:46:3f:97: 36:5d:93:55:0a:86:9a:f1:4c:f1:ea:b0:38:8b:46: b2:6e:3d:f5:f3:d8:df:52:5e:6b:c8:ba:d9:15:60: 09:48:05:ce:a1:7f:49:e3:4f:c5:81:8e:ce:5f:c8: ab:3d:26:08:4f:47:d1:d7:ef:14:35:c3:ad:56:45: 5c:cc:e0:ea:38:4a:88:97:83:15:5f:82:6d:c7:fe: 1c:3e:d6:b9:72:72:2a:71:c7:6e:67:66:1f:ff:61: 40:d4:ac:e3:01:3e:74:5a:dd:c8:4d:15:85:0c:bd: 4e:93:1f:3b:10:7e:26:af:11:fd:da:eb:d4:f8:e2: 8b:76:75:06:98:ff:0b:90:41:69:21:49:24:0a:43: d1:34:5c:0b:50:42:a8:47:66:63:4f:59:dd:8e:e2: 24:ec:13:8b:a9:99:2f:aa:14:dc:12:52:6f:4c:ca: 87:37:dd:ea:ac:14:0c:92:80:83:3e:91:8e:c8:78: fa:cc:cf:34:50:0c:42:87:2c:1e:12:03:7b:82:b8: 33:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:71:2A:E6:4D:C8:A6:82:07:49:FD:D5:04:05:5E:58:BA:79:2B:74 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131719.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.165.0/24 Signature Algorithm: sha256WithRSAEncryption 72:da:d8:c1:70:45:58:4c:ce:a3:27:79:92:d0:c8:b4:dd:01: 0f:b3:94:5f:86:7e:28:b7:55:85:6a:46:58:24:5d:71:0c:5f: 0b:fb:b9:13:80:93:f2:cf:bd:09:39:5b:0c:56:d7:d3:4f:b6: 94:5a:7d:f8:b8:e5:56:d8:6f:5c:3a:6f:e6:d7:99:6f:74:23: 53:c5:cc:23:a8:2c:34:97:ab:ab:c4:7f:f1:90:c0:29:09:9d: ce:c9:b2:b9:ae:25:0a:05:21:0c:6d:a2:66:47:2c:7a:c4:ba: 96:09:d3:87:a3:22:8c:4e:da:82:f9:91:1d:25:c2:70:89:42: 0c:a4:c5:a7:1c:ed:91:32:d5:53:18:f3:6a:b8:65:ab:84:9f: 69:6e:76:b8:a9:bc:6e:40:0c:29:7b:42:14:4d:ad:81:42:d4: 7b:53:1c:d2:2d:95:14:77:88:0b:84:c7:2d:d0:b8:97:92:f5: dc:07:2f:73:52:64:c4:48:cd:0d:2e:c3:16:a5:73:8e:1c:7f: 76:db:3d:a6:72:85:3e:65:ec:5a:d1:04:01:d0:c5:a8:c7:91: 67:f0:09:2c:8b:7d:26:fa:22:9d:c6:95:38:f9:cf:28:cc:7c: dc:c8:84:9f:9d:4c:25:30:f1:d7:b9:77:d6:09:ed:6e:44:8e: a8:8d:1b:d3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUaJfgyDH+NOKieVln19lz8VzyREcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyNVoX DTI2MTExMDA2MDAyNVowMzExMC8GA1UEAxMoNUY3MTJBRTY0REM4QTY4MjA3NDlG REQ1MDQwNTVFNThCQTc5MkI3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+RE8b0lemIooqIlF00kfZ/ZUQ16U84tu+CGiBOvrXmH+KgLJXNjUytI0Qg K5dITrEDwPRe0rPZRj+XNl2TVQqGmvFM8eqwOItGsm499fPY31Jea8i62RVgCUgF zqF/SeNPxYGOzl/Iqz0mCE9H0dfvFDXDrVZFXMzg6jhKiJeDFV+Cbcf+HD7WuXJy KnHHbmdmH/9hQNSs4wE+dFrdyE0VhQy9TpMfOxB+Jq8R/drr1Pjii3Z1Bpj/C5BB aSFJJApD0TRcC1BCqEdmY09Z3Y7iJOwTi6mZL6oU3BJSb0zKhzfd6qwUDJKAgz6R jsh4+szPNFAMQocsHhIDe4K4MzcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRfcSrm TcimggdJ/dUEBV5YunkrdDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTcxOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfvpTANBgkqhkiG9w0BAQsFAAOCAQEActrYwXBFWEzOoyd5ktDI tN0BD7OUX4Z+KLdVhWpGWCRdcQxfC/u5E4CT8s+9CTlbDFbX00+2lFp9+LjlVthv XDpv5teZb3QjU8XMI6gsNJerq8R/8ZDAKQmdzsmyua4lCgUhDG2iZkcsesS6lgnT h6MijE7agvmRHSXCcIlCDKTFpxztkTLVUxjzarhlq4SfaW52uKm8bkAMKXtCFE2t gULUe1Mc0i2VFHeIC4THLdC4l5L13Acvc1JkxEjNDS7DFqVzjhx/dts9pnKFPmXs WtEEAdDFqMeRZ/AJLIt9JvoincaVOPnPKMx83MiEn51MJTDx17l31gntbkSOqI0b 0w== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:31 2025 by rpki-client