This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa File: AS133805.roa (raw, json) Hash identifier: IXzX7r+YNXRas+VJpNkaJ0PWDpko4PGDAoPeeQXCdmY= Subject key identifier: 02:BD:91:F0:A6:BD:BA:10:9A:F9:93:3C:E8:90:D1:9E:B5:5F:BF:A9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14F9B6DB1D8BFAC14ACE958DC4AE732653B7175C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa Signing time: Tue 18 Nov 2025 10:00:00 +0000 ROA not before: Tue 18 Nov 2025 09:55:00 +0000 ROA not after: Tue 17 Nov 2026 10:00:00 +0000 asID: 133805 IP address blocks: 103.48.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f9:b6:db:1d:8b:fa:c1:4a:ce:95:8d:c4:ae:73:26:53:b7:17:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 18 09:55:00 2025 GMT Not After : Nov 17 10:00:00 2026 GMT Subject: CN=02BD91F0A6BDBA109AF9933CE890D19EB55FBFA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f2:8e:f0:df:9e:7e:1a:be:72:79:20:d5:ee: 07:5f:64:af:9f:6f:cc:ba:45:70:c7:75:2e:c0:6f: d2:95:6b:27:c4:c7:7d:c5:73:b3:5e:b4:ca:77:b1: 96:1c:5f:d4:af:43:b0:28:44:3a:01:f6:86:41:29: ab:fa:42:e7:6b:3a:c6:3c:75:39:2d:27:23:6b:c9: d5:92:97:63:86:07:12:a9:60:f4:1e:5f:d0:a5:63: 35:95:ff:40:b3:49:6d:fb:81:c4:b9:d2:d8:3f:2d: 6e:44:c6:1f:4f:05:7e:0a:ce:d4:82:59:4f:84:40: f1:c4:1e:a6:0b:a9:ff:f1:7e:e1:c6:ef:f9:b4:ef: c0:db:63:e6:36:13:9e:08:f0:2a:55:21:86:fe:d1: 4b:b1:e9:e7:c4:fb:02:db:2a:18:55:83:1e:e9:23: f7:0d:97:99:58:19:3e:3e:e5:78:db:04:9a:6e:73: ec:1c:da:02:89:28:1f:97:28:5c:8d:8c:6a:b3:d8: 60:2c:11:7d:f1:d0:de:c3:5a:1e:c9:ce:e7:89:07: 8f:c2:36:cc:07:04:11:f9:75:b3:4b:8e:43:55:f4: 94:0c:ca:66:65:eb:69:e2:1a:9a:8e:c6:7c:48:ae: 5c:32:fd:6e:7f:28:df:5c:fd:a3:0e:58:ef:b2:da: d2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:BD:91:F0:A6:BD:BA:10:9A:F9:93:3C:E8:90:D1:9E:B5:5F:BF:A9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133805.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.48.27.0/24 Signature Algorithm: sha256WithRSAEncryption 45:b5:cc:0c:52:b4:6a:0b:6b:3a:91:67:00:3b:ea:ce:bb:4a: 79:99:0b:2a:00:2a:df:c0:01:b7:d1:54:90:dc:44:0a:45:6d: ec:8b:74:40:4c:a8:7a:67:f7:13:14:57:79:78:81:49:07:31: 18:66:29:35:e7:63:97:eb:3a:3b:af:6e:33:a3:ab:f3:fb:14: 5a:da:33:ee:52:58:ad:8f:cd:cb:e9:5e:b5:cb:c5:7e:e5:92: b3:5d:db:da:65:c8:1b:01:9c:bf:75:7f:14:6f:32:f4:1b:29: 88:54:4d:bd:1c:01:12:30:b2:f7:23:23:7f:57:ba:7c:e9:6e: 88:98:b1:1c:a1:1d:f3:e6:6a:dd:f6:77:1b:ca:12:21:bf:49: 1d:10:f9:4e:d5:ef:d0:c0:8c:31:85:b5:71:fc:2d:2f:ef:55: 75:45:cb:b0:ac:d4:a5:98:e4:d0:f0:19:0b:d6:4e:39:b3:ac: c5:64:41:27:1f:44:71:aa:62:03:44:e7:05:6e:d7:f6:3d:61: f6:c6:9e:38:07:5d:ba:d1:b4:93:36:f2:83:54:a6:cb:4a:36: 97:55:e4:f6:31:4a:07:7d:5d:09:5f:99:7c:c8:70:f5:5e:8e: eb:ee:0c:b4:d9:bd:db:27:2b:6a:55:5e:e0:59:12:07:49:27: 3c:e8:49:e2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFPm22x2L+sFKzpWNxK5zJlO3F1wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExODA5NTUwMFoX DTI2MTExNzEwMDAwMFowMzExMC8GA1UEAxMoMDJCRDkxRjBBNkJEQkExMDlBRjk5 MzNDRTg5MEQxOUVCNTVGQkZBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLyjvDfnn4avnJ5INXuB19kr59vzLpFcMd1LsBv0pVrJ8THfcVzs160ynex lhxf1K9DsChEOgH2hkEpq/pC52s6xjx1OS0nI2vJ1ZKXY4YHEqlg9B5f0KVjNZX/ QLNJbfuBxLnS2D8tbkTGH08FfgrO1IJZT4RA8cQepgup//F+4cbv+bTvwNtj5jYT ngjwKlUhhv7RS7Hp58T7AtsqGFWDHukj9w2XmVgZPj7leNsEmm5z7BzaAokoH5co XI2MarPYYCwRffHQ3sNaHsnO54kHj8I2zAcEEfl1s0uOQ1X0lAzKZmXraeIamo7G fEiuXDL9bn8o31z9ow5Y77La0mMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQCvZHw pr26EJr5kzzokNGetV+/qTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzgwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcwGzANBgkqhkiG9w0BAQsFAAOCAQEARbXMDFK0agtrOpFnADvq zrtKeZkLKgAq38ABt9FUkNxECkVt7It0QEyoemf3ExRXeXiBSQcxGGYpNedjl+s6 O69uM6Or8/sUWtoz7lJYrY/Ny+letcvFfuWSs13b2mXIGwGcv3V/FG8y9BspiFRN vRwBEjCy9yMjf1e6fOluiJixHKEd8+Zq3fZ3G8oSIb9JHRD5TtXv0MCMMYW1cfwt L+9VdUXLsKzUpZjk0PAZC9ZOObOsxWRBJx9EcapiA0TnBW7X9j1h9saeOAddutG0 kzbyg1Smy0o2l1Xk9jFKB31dCV+ZfMhw9V6O6+4MtNm92ycralVe4FkSB0knPOhJ 4g== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:47 2025 by rpki-client