This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa File: AS131736.roa (raw, json) Hash identifier: 5GF9iuCf6L0PHYt4Z9iMjtmk3QOye5NSENuN1M8xxrY= Subject key identifier: B3:C0:56:BA:33:98:B1:8D:01:0A:53:0B:AE:97:B4:87:5B:F2:B3:A3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53D417348C186242F073C1B7CB63392EBD42155A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa Signing time: Tue 11 Nov 2025 06:00:14 +0000 ROA not before: Tue 11 Nov 2025 05:55:14 +0000 ROA not after: Tue 10 Nov 2026 06:00:14 +0000 asID: 131736 IP address blocks: 103.132.12.0/22 maxlen: 24 202.183.0.0/20 maxlen: 24 202.183.16.0/20 maxlen: 24 2404:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d4:17:34:8c:18:62:42:f0:73:c1:b7:cb:63:39:2e:bd:42:15:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:14 2025 GMT Not After : Nov 10 06:00:14 2026 GMT Subject: CN=B3C056BA3398B18D010A530BAE97B4875BF2B3A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7b:df:69:d5:f2:f9:7d:9c:e8:ae:8c:e0:72: 9e:21:90:e0:79:2e:63:04:b6:69:47:92:56:2d:90: 48:6a:aa:2f:59:1b:de:a9:ca:65:43:cf:bd:8e:98: 00:20:09:21:25:fd:d2:b9:c5:87:6f:c7:db:c5:a7: f9:a8:66:fa:96:5c:80:d6:2a:23:37:a4:47:36:70: 9e:66:06:a3:77:92:3a:9e:f7:2d:1b:c3:f3:f6:74: 54:77:5e:b9:53:4a:1c:29:ef:c1:f8:d2:be:6f:54: 93:28:4d:38:22:97:51:82:16:0a:4d:8c:52:12:73: ef:03:43:cc:d0:f5:2e:6b:92:6c:b3:89:5d:c8:67: c0:ca:d9:08:85:49:d2:06:8a:7c:cb:8a:01:e6:3e: 00:02:59:82:34:3c:89:25:b7:bf:9b:bc:36:cc:63: ec:12:d3:db:bc:51:91:f8:65:0a:32:68:a7:c5:80: a0:6d:78:f9:31:eb:e5:7b:87:e4:1f:a2:de:1a:0e: 99:7c:71:c7:c9:54:bb:49:a0:9a:43:d6:86:a2:bc: cf:2d:f7:84:3d:7d:36:a1:96:7e:ac:18:47:9c:71: b8:fe:78:68:d1:3e:28:41:aa:7f:c1:27:dd:91:54: 5b:40:77:ae:10:e8:30:38:f5:cb:24:3b:cd:dd:62: ae:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C0:56:BA:33:98:B1:8D:01:0A:53:0B:AE:97:B4:87:5B:F2:B3:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS131736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.12.0/22 202.183.0.0/19 IPv6: 2404:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 10:de:f6:09:98:16:3f:27:66:49:ad:5d:a9:c2:44:56:37:12: 92:f1:17:41:75:3a:b0:e8:6b:5a:7f:9b:a4:98:d8:3e:bc:e1: 47:ac:6e:d4:1c:a9:ab:74:ec:f7:17:20:07:94:5b:6a:02:34: c3:17:08:fe:b4:11:4a:28:57:e1:db:00:94:68:04:79:76:4a: fb:db:c2:16:c6:d2:e0:c6:3b:38:a0:81:e7:0c:d1:f8:0a:67: 89:69:a0:25:e0:c2:d1:49:03:49:f8:d6:6a:d2:2d:4e:ec:a9: e7:0a:fe:c3:ce:88:b8:62:b1:6f:7c:eb:f6:f9:37:02:4e:7a: e4:22:1a:92:14:14:cf:8b:24:2a:6e:73:4e:56:30:9e:16:dd: 27:18:5e:ca:53:64:21:86:a1:e2:40:82:65:fa:66:15:b7:00: 72:0e:e2:c7:0c:a1:99:c9:30:9a:ef:13:ce:ea:aa:cf:c7:58: 44:65:c4:5e:6d:03:08:a7:39:a6:a3:2f:19:03:e7:d3:5b:72: 73:c8:c4:42:6a:20:5e:3d:b4:21:19:50:43:69:89:47:ee:18: 78:93:f0:c9:e7:0d:dc:19:37:85:2c:ed:be:b9:56:72:3e:5c: 67:7c:7b:4e:a9:aa:ca:bf:51:7d:ea:82:35:60:e7:52:42:e7: 98:ec:9c:5d -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUU9QXNIwYYkLwc8G3y2M5Lr1CFVowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxNFoX DTI2MTExMDA2MDAxNFowMzExMC8GA1UEAxMoQjNDMDU2QkEzMzk4QjE4RDAxMEE1 MzBCQUU5N0I0ODc1QkYyQjNBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANx732nV8vl9nOiujOByniGQ4HkuYwS2aUeSVi2QSGqqL1kb3qnKZUPPvY6Y ACAJISX90rnFh2/H28Wn+ahm+pZcgNYqIzekRzZwnmYGo3eSOp73LRvD8/Z0VHde uVNKHCnvwfjSvm9UkyhNOCKXUYIWCk2MUhJz7wNDzND1LmuSbLOJXchnwMrZCIVJ 0gaKfMuKAeY+AAJZgjQ8iSW3v5u8Nsxj7BLT27xRkfhlCjJop8WAoG14+THr5XuH 5B+i3hoOmXxxx8lUu0mgmkPWhqK8zy33hD19NqGWfqwYR5xxuP54aNE+KEGqf8En 3ZFUW0B3rhDoMDj1yyQ7zd1irpkCAwEAAaOCAeUwggHhMB0GA1UdDgQWBBSzwFa6 M5ixjQEKUwuul7SHW/KzozAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMTczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAmeEDAMEBcq3ADANBAIAAjAHAwUAJAQswDANBgkqhkiG9w0BAQsF AAOCAQEAEN72CZgWPydmSa1dqcJEVjcSkvEXQXU6sOhrWn+bpJjYPrzhR6xu1Byp q3Ts9xcgB5RbagI0wxcI/rQRSihX4dsAlGgEeXZK+9vCFsbS4MY7OKCB5wzR+Apn iWmgJeDC0UkDSfjWatItTuyp5wr+w86IuGKxb3zr9vk3Ak565CIakhQUz4skKm5z TlYwnhbdJxheylNkIYah4kCCZfpmFbcAcg7ixwyhmckwmu8Tzuqqz8dYRGXEXm0D CKc5pqMvGQPn01tyc8jEQmogXj20IRlQQ2mJR+4YeJPwyecN3Bk3hSztvrlWcj5c Z3x7Tqmqyr9RfeqCNWDnUkLnmOycXQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:56 2025 by rpki-client