This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa File: AS136073.roa (raw, json) Hash identifier: ml+Pc1p40ijRMQrWSiD8dC/WW+I5O9Qu6fCpKS8o/00= Subject key identifier: A2:12:AA:35:E5:E1:9A:EE:1D:B3:04:E1:14:0B:3B:D7:D0:A6:80:9E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 12F123359BB8358D346023E14E998918CBC8CE0F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa Signing time: Tue 25 Nov 2025 08:00:00 +0000 ROA not before: Tue 25 Nov 2025 07:55:00 +0000 ROA not after: Tue 24 Nov 2026 08:00:00 +0000 asID: 136073 IP address blocks: 103.55.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:f1:23:35:9b:b8:35:8d:34:60:23:e1:4e:99:89:18:cb:c8:ce:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 25 07:55:00 2025 GMT Not After : Nov 24 08:00:00 2026 GMT Subject: CN=A212AA35E5E19AEE1DB304E1140B3BD7D0A6809E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a4:b2:32:85:d7:01:e1:9e:92:04:b8:bf:c4: 2d:f9:72:fb:ab:70:23:a6:fc:30:97:f1:b6:57:cf: 70:f0:c3:07:62:ca:7d:15:84:54:5d:31:f9:99:0c: 44:af:64:73:08:7d:1a:12:6a:47:14:72:b3:a3:e1: 5c:aa:41:80:33:8e:82:4f:3b:b7:cd:b4:03:df:8d: 28:d2:e0:50:74:10:41:17:eb:bd:38:e6:cc:c8:71: 27:33:92:bf:be:34:32:9b:92:a3:75:6a:64:65:37: 23:59:cc:70:68:e9:ff:ef:4b:cf:c1:53:fc:36:2d: 3e:6d:ad:99:ab:7f:b8:dd:c4:5a:73:57:79:8b:a2: 4c:67:4f:75:71:eb:85:89:50:35:0a:96:49:78:92: 59:42:3b:35:c3:1a:d6:b3:f7:d0:77:d1:a2:7d:68: f6:e4:e3:82:21:3e:3a:b3:59:f4:aa:0f:0e:67:09: 67:1e:15:6f:11:cf:c8:ad:66:33:e8:81:52:16:e9: 20:74:79:df:6f:ff:bf:42:f7:a4:76:de:3e:24:1e: fd:7e:0d:54:20:0b:9c:cc:59:43:eb:ec:a9:66:60: 51:92:5b:b8:53:58:f2:91:64:be:36:74:f4:e5:d5: 98:e5:16:10:08:91:92:b9:58:06:0e:77:8c:1f:cf: a2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:12:AA:35:E5:E1:9A:EE:1D:B3:04:E1:14:0B:3B:D7:D0:A6:80:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.160.0/24 Signature Algorithm: sha256WithRSAEncryption 72:c5:ac:78:22:ad:31:06:32:52:37:4d:42:3f:f0:33:b3:d0: 2a:50:cb:ca:e1:7c:a3:d0:c3:9e:f3:e5:9b:c1:1d:d0:c2:70: 12:39:7c:33:3b:85:6f:73:01:57:ab:f3:36:91:9e:f7:76:2e: 8d:c9:5a:c2:b1:d0:7f:b8:ed:a5:7b:96:68:6c:f9:ea:05:92: 17:6e:8a:f0:67:f1:bd:aa:91:6e:2a:c2:d1:85:bd:6d:95:d4: 41:40:65:2a:69:34:2e:d2:d1:12:26:5c:3c:0c:e5:e0:33:50: 36:e8:b2:ed:d3:b1:7b:8c:aa:f2:b8:84:d0:37:6a:32:7d:73: 61:ff:84:32:28:11:2c:ae:4a:1d:89:78:aa:4c:08:2e:7b:e7: 80:85:05:10:85:34:6e:eb:b1:bd:42:64:b7:b3:7a:3c:19:88: cc:53:fb:94:87:9f:d4:cf:4f:c1:c9:f4:16:b4:9b:b6:37:f6: c2:82:59:67:fc:ef:4d:99:39:50:e0:9d:7c:d4:ca:21:fb:7b: a8:7b:33:57:5e:e9:90:76:55:4f:eb:6d:6e:86:ca:a6:22:a6: bc:36:d8:ee:54:a6:8f:67:c9:52:2f:d2:0f:fc:9a:30:08:24: ed:50:fc:f0:c2:4f:09:78:1d:29:0a:d7:95:7c:30:da:e4:7c: ac:18:f9:37 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEvEjNZu4NY00YCPhTpmJGMvIzg8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNTA3NTUwMFoX DTI2MTEyNDA4MDAwMFowMzExMC8GA1UEAxMoQTIxMkFBMzVFNUUxOUFFRTFEQjMw NEUxMTQwQjNCRDdEMEE2ODA5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmksjKF1wHhnpIEuL/ELfly+6twI6b8MJfxtlfPcPDDB2LKfRWEVF0x+ZkM RK9kcwh9GhJqRxRys6PhXKpBgDOOgk87t820A9+NKNLgUHQQQRfrvTjmzMhxJzOS v740MpuSo3VqZGU3I1nMcGjp/+9Lz8FT/DYtPm2tmat/uN3EWnNXeYuiTGdPdXHr hYlQNQqWSXiSWUI7NcMa1rP30HfRon1o9uTjgiE+OrNZ9KoPDmcJZx4VbxHPyK1m M+iBUhbpIHR532//v0L3pHbePiQe/X4NVCALnMxZQ+vsqWZgUZJbuFNY8pFkvjZ0 9OXVmOUWEAiRkrlYBg53jB/PopMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSiEqo1 5eGa7h2zBOEUCzvX0KaAnjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjA3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGc3oDANBgkqhkiG9w0BAQsFAAOCAQEAcsWseCKtMQYyUjdNQj/w M7PQKlDLyuF8o9DDnvPlm8Ed0MJwEjl8MzuFb3MBV6vzNpGe93YujclawrHQf7jt pXuWaGz56gWSF26K8GfxvaqRbirC0YW9bZXUQUBlKmk0LtLREiZcPAzl4DNQNuiy 7dOxe4yq8riE0DdqMn1zYf+EMigRLK5KHYl4qkwILnvngIUFEIU0buuxvUJkt7N6 PBmIzFP7lIef1M9Pwcn0FrSbtjf2woJZZ/zvTZk5UOCdfNTKIft7qHszV17pkHZV T+ttbobKpiKmvDbY7lSmj2fJUi/SD/yaMAgk7VD88MJPCXgdKQrXlXww2uR8rBj5 Nw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:04 2025 by rpki-client