This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134658.roa File: AS134658.roa (raw, json) Hash identifier: HBS10YkjrU/LKjyTwAT4nICh85kHyx3gDNzW2WKJTXM= Subject key identifier: 76:E6:F0:44:BF:4A:B4:29:15:9B:72:78:01:D9:79:7E:7B:49:64:AE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 564DCECE78468838169058A982FCD13DAC3C8AE3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134658.roa Signing time: Wed 04 Jun 2025 09:00:00 +0000 ROA not before: Wed 04 Jun 2025 08:55:00 +0000 ROA not after: Wed 03 Jun 2026 09:00:00 +0000 asID: 134658 IP address blocks: 2001:df1:32c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:4d:ce:ce:78:46:88:38:16:90:58:a9:82:fc:d1:3d:ac:3c:8a:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 4 08:55:00 2025 GMT Not After : Jun 3 09:00:00 2026 GMT Subject: CN=76E6F044BF4AB429159B727801D9797E7B4964AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:56:83:80:e7:11:f1:03:9e:b5:05:cf:30:bd: 7e:23:38:95:03:55:a2:ba:cb:20:25:af:97:8f:e4: 0e:1e:6a:d3:e6:f0:69:17:ee:83:5c:bc:98:7a:34: 2d:09:15:c4:b3:96:8c:a7:d7:a8:d9:c0:3b:45:cd: a0:9e:20:9b:31:cd:b6:89:ee:75:3c:7a:cd:f0:d1: b2:69:d6:fd:9f:ea:6e:08:4c:79:5d:0d:92:c9:b7: ec:53:8d:21:4b:63:1a:56:41:bd:1f:56:a7:28:0f: a3:73:c4:58:d4:6a:2a:d2:61:72:17:81:07:c6:48: 6b:d1:2c:a2:9d:1e:37:2b:8e:e7:96:8c:26:24:32: 23:55:ea:75:d4:eb:46:32:ad:9a:04:5f:d3:49:3a: 92:af:d1:6c:72:66:f5:2d:1d:33:09:a9:db:7b:a0: 33:3c:b0:c0:02:37:4e:a6:89:8a:37:48:ae:83:85: 1e:fa:da:7f:b6:9b:3f:ac:0a:0a:80:7b:0e:b2:ff: f6:3d:71:a3:d1:e7:dd:80:02:e5:53:f0:12:2c:ea: 8d:61:25:be:c8:ef:fa:32:c5:d7:2f:e5:6b:06:d5: 2a:14:0c:2d:6c:c4:ae:f5:fd:f1:5e:4f:c5:e0:f9: d9:4b:de:d5:2b:1e:f3:87:d9:b5:e8:72:4c:bd:6a: 2f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E6:F0:44:BF:4A:B4:29:15:9B:72:78:01:D9:79:7E:7B:49:64:AE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS134658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:32c0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:2a:51:5d:06:04:fc:2c:2b:01:b4:25:c0:2b:df:85:6b:75: 9d:7c:28:3f:70:c9:0a:87:12:7e:14:33:84:bc:ca:fb:c0:11: 47:e6:81:fb:44:ba:41:04:86:ba:03:0f:cf:69:eb:49:01:83: e3:2e:31:7a:cb:66:82:a2:e9:4d:17:f2:b4:b6:25:46:ea:c4: d8:16:b3:04:16:c9:a9:e8:b7:19:64:43:2d:6d:83:fb:07:4f: 9f:47:65:8d:53:81:b2:ed:09:26:6b:15:e4:b2:44:37:36:e0: dd:7e:5d:94:84:c8:77:aa:be:4d:22:6d:ec:84:c4:9e:9c:63: f3:75:6a:09:8f:db:2c:77:0d:ab:a9:fa:f2:c1:64:46:49:7a: 95:8f:6f:6b:a6:ca:d9:df:37:83:c9:c8:30:e5:c2:da:56:a4: e1:79:a6:d6:59:d8:c9:f5:4f:1a:6d:a9:b2:46:e6:4b:3b:0a: 29:89:a6:df:70:3d:50:02:fb:d5:84:8e:76:de:1a:e0:0e:4c: 50:e0:a3:a5:28:b7:2a:2d:15:0b:10:07:ed:eb:13:2c:7b:d8: 53:6d:62:e4:50:35:ee:7f:f2:af:42:f4:5a:66:64:ec:0c:07: 75:07:02:24:4a:49:65:fe:cc:6b:5e:48:aa:87:9a:44:0a:bd: 60:9f:ea:ad -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUVk3OznhGiDgWkFipgvzRPaw8iuMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwNDA4NTUwMFoX DTI2MDYwMzA5MDAwMFowMzExMC8GA1UEAxMoNzZFNkYwNDRCRjRBQjQyOTE1OUI3 Mjc4MDFEOTc5N0U3QjQ5NjRBRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVWg4DnEfEDnrUFzzC9fiM4lQNVorrLICWvl4/kDh5q0+bwaRfug1y8mHo0 LQkVxLOWjKfXqNnAO0XNoJ4gmzHNtonudTx6zfDRsmnW/Z/qbghMeV0Nksm37FON IUtjGlZBvR9WpygPo3PEWNRqKtJhcheBB8ZIa9Esop0eNyuO55aMJiQyI1XqddTr RjKtmgRf00k6kq/RbHJm9S0dMwmp23ugMzywwAI3TqaJijdIroOFHvraf7abP6wK CoB7DrL/9j1xo9Hn3YAC5VPwEizqjWElvsjv+jLF1y/lawbVKhQMLWzErvX98V5P xeD52Uve1Sse84fZtehyTL1qL08CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBR25vBE v0q0KRWbcngB2Xl+e0lkrjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNDY1OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfEywDANBgkqhkiG9w0BAQsFAAOCAQEAOypRXQYE/CwrAbQl wCvfhWt1nXwoP3DJCocSfhQzhLzK+8ARR+aB+0S6QQSGugMPz2nrSQGD4y4xestm gqLpTRfytLYlRurE2BazBBbJqei3GWRDLW2D+wdPn0dljVOBsu0JJmsV5LJENzbg 3X5dlITId6q+TSJt7ITEnpxj83VqCY/bLHcNq6n68sFkRkl6lY9va6bK2d83g8nI MOXC2lak4Xmm1lnYyfVPGm2pskbmSzsKKYmm33A9UAL71YSOdt4a4A5MUOCjpSi3 Ki0VCxAH7esTLHvYU21i5FA17n/yr0L0WmZk7AwHdQcCJEpJZf7Ma15IqoeaRAq9 YJ/qrQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:50 2025 by rpki-client