This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132670.roa File: AS132670.roa (raw, json) Hash identifier: r6zEjowPcC9BN9HsJwrLr10S3PjTmy13Ixh50TNK3Ac= Subject key identifier: 18:75:61:55:79:98:19:67:71:9E:AE:25:87:CA:69:D8:7C:56:4F:85 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B9237703EF05B2DE916135C4813D9306264B5F5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132670.roa Signing time: Tue 11 Nov 2025 06:00:12 +0000 ROA not before: Tue 11 Nov 2025 05:55:12 +0000 ROA not after: Tue 10 Nov 2026 06:00:12 +0000 asID: 132670 IP address blocks: 103.27.36.0/24 maxlen: 24 2001:df3:2c80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:92:37:70:3e:f0:5b:2d:e9:16:13:5c:48:13:d9:30:62:64:b5:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:12 2025 GMT Not After : Nov 10 06:00:12 2026 GMT Subject: CN=1875615579981967719EAE2587CA69D87C564F85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:4c:db:3c:d5:1c:9f:6c:83:19:b2:95:ba: af:08:5a:a5:b4:a0:c2:c9:75:e9:5e:3f:ae:2f:98: 11:8e:b4:4a:1e:ab:43:39:ce:40:56:74:71:03:f6: ee:13:20:51:ca:bb:60:98:7a:49:5e:6a:60:f0:28: 89:77:18:79:76:49:8a:2a:70:97:8b:b6:c5:bf:79: 36:22:6e:55:58:78:e7:50:c1:b7:b6:24:ce:51:bb: 64:44:43:43:fc:83:97:f3:a4:27:3a:c6:a9:0a:7f: 16:4f:ab:e0:8c:39:06:5c:2a:3d:ea:c2:4a:70:dd: 2b:3b:91:de:49:f0:a0:ca:c2:16:06:e7:58:82:6e: 71:40:50:93:ec:a7:97:69:78:8a:eb:17:4e:be:70: 14:e2:5b:e9:d4:78:2d:d3:52:71:67:0d:30:82:e8: 1d:87:9f:8e:7b:ac:fa:34:b8:8c:60:68:16:f8:c9: 0e:f2:a4:00:89:92:dc:2e:56:98:19:48:cd:84:21: 9c:0c:bd:04:05:b4:76:7a:22:c6:c7:b8:cd:0f:35: 22:fa:14:9a:c9:c2:06:31:0c:79:1c:9d:47:06:71: b1:91:c6:56:65:ba:83:55:3d:7e:20:a6:97:cc:e2: f7:6a:e4:a2:3a:70:8e:1c:05:62:a8:ec:85:1f:97: 67:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:75:61:55:79:98:19:67:71:9E:AE:25:87:CA:69:D8:7C:56:4F:85 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132670.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.27.36.0/24 IPv6: 2001:df3:2c80::/48 Signature Algorithm: sha256WithRSAEncryption 67:47:84:67:b1:aa:96:5e:a5:62:fc:78:7d:40:a0:4f:a1:94: 23:d1:56:d5:44:80:8b:e7:ce:8d:e9:70:fe:bf:ea:12:c7:bb: 28:ca:67:14:6b:f9:f7:70:81:f7:54:53:43:93:01:5f:92:6e: 24:a4:36:ab:3a:b0:5f:ad:5f:99:7f:f5:e2:34:86:e3:20:c5: 5c:07:ab:59:83:e7:3e:bd:ae:93:b6:22:79:74:5a:91:23:14: 92:ae:78:d0:d6:65:05:02:cb:af:1f:b9:a0:91:e7:ca:3c:01: d8:76:f4:71:4d:cf:8d:4e:37:c1:a2:f0:b9:92:9a:c3:5a:d1: d2:7f:01:6a:51:00:bb:b3:de:24:aa:e5:e9:85:b4:da:63:96: 79:ad:81:ef:08:be:de:16:bd:6c:7b:35:f7:9c:1c:33:7b:9a: e2:a0:ee:ed:c2:71:6e:55:e3:74:bc:c3:35:38:a8:c3:05:70: 5b:4b:bc:93:3a:e7:ca:b9:73:6c:29:a3:b7:04:ec:05:e0:b5: c9:67:93:b1:81:e9:13:a9:cb:d9:32:bb:17:83:cb:78:be:f2: 25:0a:67:1f:2a:c6:b4:7b:21:31:8c:c8:d2:75:17:ff:cf:9f: 59:64:e8:81:4b:d8:05:cc:fc:4a:0b:1c:62:00:bd:34:9d:dc: 13:70:09:f4 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUS5I3cD7wWy3pFhNcSBPZMGJktfUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMloX DTI2MTExMDA2MDAxMlowMzExMC8GA1UEAxMoMTg3NTYxNTU3OTk4MTk2NzcxOUVB RTI1ODdDQTY5RDg3QzU2NEY4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSNTNs81RyfbIMZspW6rwhapbSgwsl16V4/ri+YEY60Sh6rQznOQFZ0cQP2 7hMgUcq7YJh6SV5qYPAoiXcYeXZJiipwl4u2xb95NiJuVVh451DBt7YkzlG7ZERD Q/yDl/OkJzrGqQp/Fk+r4Iw5BlwqPerCSnDdKzuR3knwoMrCFgbnWIJucUBQk+yn l2l4iusXTr5wFOJb6dR4LdNScWcNMILoHYefjnus+jS4jGBoFvjJDvKkAImS3C5W mBlIzYQhnAy9BAW0dnoixse4zQ81IvoUmsnCBjEMeRydRwZxsZHGVmW6g1U9fiCm l8zi92rkojpwjhwFYqjshR+XZ4kCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQYdWFV eZgZZ3GeriWHymnYfFZPhTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMjY3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGcbJDAPBAIAAjAJAwcAIAEN8yyAMA0GCSqGSIb3DQEBCwUAA4IB AQBnR4RnsaqWXqVi/Hh9QKBPoZQj0VbVRICL586N6XD+v+oSx7soymcUa/n3cIH3 VFNDkwFfkm4kpDarOrBfrV+Zf/XiNIbjIMVcB6tZg+c+va6TtiJ5dFqRIxSSrnjQ 1mUFAsuvH7mgkefKPAHYdvRxTc+NTjfBovC5kprDWtHSfwFqUQC7s94kquXphbTa Y5Z5rYHvCL7eFr1sezX3nBwze5rioO7twnFuVeN0vMM1OKjDBXBbS7yTOufKuXNs KaO3BOwF4LXJZ5OxgekTqcvZMrsXg8t4vvIlCmcfKsa0eyExjMjSdRf/z59ZZOiB S9gFzPxKCxxiAL00ndwTcAn0 -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:09 2025 by rpki-client