This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133355.roa File: AS133355.roa (raw, json) Hash identifier: FMEEgZgJFB1fxsLLBng59q6XMrCi0VeODqGRWtu/QdU= Subject key identifier: 0E:6F:B3:15:71:89:67:9E:5E:01:F2:70:71:1F:5A:F7:5A:F4:7E:EC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C46F935B031C88D2B03C2077F83264EA5A0CFF4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133355.roa Signing time: Tue 11 Nov 2025 06:00:16 +0000 ROA not before: Tue 11 Nov 2025 05:55:16 +0000 ROA not after: Tue 10 Nov 2026 06:00:16 +0000 asID: 133355 IP address blocks: 103.209.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:46:f9:35:b0:31:c8:8d:2b:03:c2:07:7f:83:26:4e:a5:a0:cf:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:16 2025 GMT Not After : Nov 10 06:00:16 2026 GMT Subject: CN=0E6FB3157189679E5E01F270711F5AF75AF47EEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:d8:40:a5:ed:67:d4:7d:c4:92:2d:bd:fb: 4a:b7:9a:ee:de:2d:a1:8a:51:85:f8:68:7c:2d:f4: e4:8c:dc:74:69:0d:15:30:73:f8:41:b0:1a:18:c6: a3:98:88:b7:63:10:70:fa:5b:8c:11:e8:c6:ce:74: 43:0e:d1:82:c4:5e:06:27:d9:d7:4f:13:a9:d0:40: cf:ca:a2:11:94:49:06:78:bc:d9:e4:b7:da:33:44: 99:05:a5:2d:64:65:bf:b8:75:18:73:5a:08:ad:41: 30:7b:b7:26:1b:16:ad:94:86:57:21:a1:1b:66:51: 3d:56:23:64:bf:3e:37:7c:09:94:48:26:03:2e:bb: a4:57:f7:e2:49:3d:6e:6a:79:e2:6b:41:b1:a2:b3: 9b:95:1b:17:9c:68:3b:2c:0d:a5:72:ad:0d:d7:c5: 8c:8b:71:42:19:80:66:3d:dd:c2:17:ac:7d:a9:1f: 61:52:47:a7:83:6c:66:fb:d3:d1:d7:22:a8:52:66: e1:10:a4:ec:f1:fc:78:d5:75:94:4a:de:4c:fe:3f: 74:42:87:2d:9f:35:f4:2f:57:08:88:c5:f4:11:40: 78:da:50:da:36:53:12:5f:0b:7f:6f:98:74:b3:04: d5:f1:e1:9c:12:6c:ad:25:d8:8f:5b:58:c3:7d:c8: 5a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6F:B3:15:71:89:67:9E:5E:01:F2:70:71:1F:5A:F7:5A:F4:7E:EC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133355.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.131.0/24 Signature Algorithm: sha256WithRSAEncryption 23:f0:96:d6:18:27:77:cc:b3:0f:e1:02:72:54:6c:5d:d9:2d: bc:d5:8d:18:7c:cc:72:90:04:ff:e5:cb:7b:c0:c7:1b:60:f4: ab:64:43:c7:41:c1:86:95:5b:5b:15:ba:84:ba:0a:4d:7c:3a: 3a:24:56:b2:0c:9e:2a:0f:55:76:1f:5c:2f:65:36:31:f0:9a: b2:92:10:cc:e3:08:1a:52:ce:1a:a9:31:6e:dd:28:b5:3c:f4: 91:4b:5d:33:73:01:f3:c8:e1:18:83:d7:9e:51:1a:f0:5a:23: 5d:f1:46:07:7e:b9:74:f7:d2:7e:f4:70:12:4a:32:1f:5c:a2: 37:c6:23:df:31:34:86:fb:c5:2b:09:61:19:ba:fd:d9:44:cd: dc:a8:92:0f:28:21:00:d0:56:25:36:88:60:bb:c2:a0:f4:a3: c1:9f:16:3e:a7:96:99:ee:49:20:7a:ff:da:3f:35:05:21:d9: 69:eb:06:ab:7c:1a:b9:0f:fd:b3:04:0b:a5:3b:b6:fe:13:80: 74:cb:8d:06:1e:29:c5:10:f3:7e:ac:97:2d:ac:4d:d9:e9:05: 1d:16:41:df:40:3b:63:dc:5d:aa:88:97:a3:2b:7a:31:01:02: db:0c:5e:01:04:57:fd:6e:f1:a4:15:f2:ec:98:07:ff:09:6e: 71:80:aa:6b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHEb5NbAxyI0rA8IHf4MmTqWgz/QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxNloX DTI2MTExMDA2MDAxNlowMzExMC8GA1UEAxMoMEU2RkIzMTU3MTg5Njc5RTVFMDFG MjcwNzExRjVBRjc1QUY0N0VFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3k2ECl7WfUfcSSLb37Srea7t4toYpRhfhofC305IzcdGkNFTBz+EGwGhjG o5iIt2MQcPpbjBHoxs50Qw7RgsReBifZ108TqdBAz8qiEZRJBni82eS32jNEmQWl LWRlv7h1GHNaCK1BMHu3JhsWrZSGVyGhG2ZRPVYjZL8+N3wJlEgmAy67pFf34kk9 bmp54mtBsaKzm5UbF5xoOywNpXKtDdfFjItxQhmAZj3dwhesfakfYVJHp4NsZvvT 0dciqFJm4RCk7PH8eNV1lEreTP4/dEKHLZ819C9XCIjF9BFAeNpQ2jZTEl8Lf2+Y dLME1fHhnBJsrSXYj1tYw33IWpcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQOb7MV cYlnnl4B8nBxH1r3WvR+7DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzM1NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfRgzANBgkqhkiG9w0BAQsFAAOCAQEAI/CW1hgnd8yzD+ECclRs XdktvNWNGHzMcpAE/+XLe8DHG2D0q2RDx0HBhpVbWxW6hLoKTXw6OiRWsgyeKg9V dh9cL2U2MfCaspIQzOMIGlLOGqkxbt0otTz0kUtdM3MB88jhGIPXnlEa8FojXfFG B365dPfSfvRwEkoyH1yiN8Yj3zE0hvvFKwlhGbr92UTN3KiSDyghANBWJTaIYLvC oPSjwZ8WPqeWme5JIHr/2j81BSHZaesGq3wauQ/9swQLpTu2/hOAdMuNBh4pxRDz fqyXLaxN2ekFHRZB30A7Y9xdqoiXoyt6MQEC2wxeAQRX/W7xpBXy7JgH/wlucYCq aw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:57 2025 by rpki-client