This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa File: AS134630.roa (raw, json) Hash identifier: SzFawLfkW7Rnk1rxhhrH+pTEasQW1AAIySYYZFC1MDo= Subject key identifier: 35:02:16:97:FB:0E:8F:4A:EB:73:67:9D:C1:EF:9B:5E:73:72:C4:52 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 79B55508C97883FD06BC871EFE2353D1B9921890 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa Signing time: Thu 07 Aug 2025 03:00:00 +0000 ROA not before: Thu 07 Aug 2025 02:55:00 +0000 ROA not after: Thu 06 Aug 2026 03:00:00 +0000 asID: 134630 IP address blocks: 49.156.20.0/23 maxlen: 24 49.156.22.0/23 maxlen: 24 103.200.16.0/23 maxlen: 24 103.200.18.0/23 maxlen: 24 2403:8680::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:b5:55:08:c9:78:83:fd:06:bc:87:1e:fe:23:53:d1:b9:92:18:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 7 02:55:00 2025 GMT Not After : Aug 6 03:00:00 2026 GMT Subject: CN=35021697FB0E8F4AEB73679DC1EF9B5E7372C452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:77:9d:b0:2c:56:1c:71:09:5d:46:c3:c9:fd: 67:d7:e8:b4:47:49:8b:e8:89:a3:52:f7:c5:eb:c4: e6:2c:7c:f7:04:03:55:c4:f5:e2:3a:ab:95:11:ee: 16:bd:6f:84:be:4c:92:0c:8d:31:8e:61:8e:b3:a6: 70:89:9d:29:75:4c:96:b7:40:b2:d6:5d:29:c8:84: fc:d3:2c:3f:58:21:a3:87:84:ad:8c:13:1c:89:9c: a3:ca:93:09:29:95:32:7f:3d:54:41:62:fa:34:f8: 05:f6:90:b7:6a:1d:21:ff:8b:64:67:9c:8c:ee:06: e5:fc:1a:b1:40:e6:00:95:b3:56:98:e3:6d:a9:af: f6:fc:67:30:a0:db:b3:3e:71:a6:89:9d:0a:88:43: f0:4c:a0:19:b7:e8:2a:62:cc:86:81:35:97:64:61: 08:a3:40:13:9f:7d:26:e5:ca:23:53:44:26:f3:b0: 84:6b:74:64:34:a0:4a:ec:9d:6a:79:58:e3:92:11: f7:33:5a:f8:3b:7d:66:6d:49:89:6f:e0:ea:ae:cc: e7:0a:46:b3:db:8e:64:9c:ed:8b:d3:6f:c8:c2:d2: 55:80:fc:31:76:a7:17:ad:40:d8:18:ee:f6:98:22: 40:ce:6c:12:ad:0b:ae:aa:a3:91:9a:ca:0a:c6:45: 30:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:02:16:97:FB:0E:8F:4A:EB:73:67:9D:C1:EF:9B:5E:73:72:C4:52 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.156.20.0/22 103.200.16.0/22 IPv6: 2403:8680::/32 Signature Algorithm: sha256WithRSAEncryption 13:b1:55:e9:a0:4a:d0:83:f0:fd:4a:da:84:42:31:e0:4f:18: bb:05:92:6f:2f:bf:bf:6f:dc:3e:16:2d:ed:2a:4b:19:df:07: 82:14:f1:66:70:99:81:0a:85:ca:36:b3:12:f4:0b:9f:50:e2: e8:c5:c9:87:05:a5:4e:02:41:7c:a8:7f:cb:09:59:8d:98:04: 56:9a:7b:2b:de:33:07:d5:75:39:90:41:78:7f:da:7b:e1:1c: ff:55:09:0e:48:ab:e6:ea:9a:34:16:10:a0:f7:dd:8e:3c:40: 54:c8:aa:22:2e:c0:c1:5f:09:f3:0e:b8:34:ea:3b:61:f2:62: 99:df:96:56:ac:db:48:65:a0:a3:49:6e:dd:2f:4c:01:1f:17: 1b:a7:f2:39:38:f1:6e:ce:74:67:fd:8a:a6:e9:5f:29:bd:d3: 2e:35:99:28:da:e1:35:ed:43:d6:b8:8e:41:a2:99:d8:74:09: 35:07:4c:62:0e:50:a9:64:77:7b:ee:7b:60:90:1b:7c:b7:bc: 5a:e2:1e:d6:cf:f7:f1:d9:34:08:22:3a:92:0a:e1:7b:76:2b: 65:e0:77:4f:36:b7:2e:39:82:b9:01:57:d9:94:38:4f:0b:c1: 67:8c:52:6e:5b:9e:50:be:07:27:01:b9:40:0b:eb:93:16:ca: 0f:ac:52:be -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUebVVCMl4g/0GvIce/iNT0bmSGJAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgwNzAyNTUwMFoX DTI2MDgwNjAzMDAwMFowMzExMC8GA1UEAxMoMzUwMjE2OTdGQjBFOEY0QUVCNzM2 NzlEQzFFRjlCNUU3MzcyQzQ1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL13nbAsVhxxCV1Gw8n9Z9fotEdJi+iJo1L3xevE5ix89wQDVcT14jqrlRHu Fr1vhL5MkgyNMY5hjrOmcImdKXVMlrdAstZdKciE/NMsP1gho4eErYwTHImco8qT CSmVMn89VEFi+jT4BfaQt2odIf+LZGecjO4G5fwasUDmAJWzVpjjbamv9vxnMKDb sz5xpomdCohD8EygGbfoKmLMhoE1l2RhCKNAE599JuXKI1NEJvOwhGt0ZDSgSuyd anlY45IR9zNa+Dt9Zm1JiW/g6q7M5wpGs9uOZJzti9NvyMLSVYD8MXanF61A2Bju 9pgiQM5sEq0LrqqjkZrKCsZFMFECAwEAAaOCAeUwggHhMB0GA1UdDgQWBBQ1AhaX +w6PSutzZ53B75tec3LEUjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDYzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAjGcFAMEAmfIEDANBAIAAjAHAwUAJAOGgDANBgkqhkiG9w0BAQsF AAOCAQEAE7FV6aBK0IPw/UrahEIx4E8YuwWSby+/v2/cPhYt7SpLGd8HghTxZnCZ gQqFyjazEvQLn1Di6MXJhwWlTgJBfKh/ywlZjZgEVpp7K94zB9V1OZBBeH/ae+Ec /1UJDkir5uqaNBYQoPfdjjxAVMiqIi7AwV8J8w64NOo7YfJimd+WVqzbSGWgo0lu 3S9MAR8XG6fyOTjxbs50Z/2KpulfKb3TLjWZKNrhNe1D1riOQaKZ2HQJNQdMYg5Q qWR3e+57YJAbfLe8WuIe1s/38dk0CCI6kgrhe3YrZeB3Tza3LjmCuQFX2ZQ4TwvB Z4xSblueUL4HJwG5QAvrkxbKD6xSvg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:51 2025 by rpki-client