This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137298.roa File: AS137298.roa (raw, json) Hash identifier: +CnPYKCiRepbNuoup9edk2CGKEF9vXKiix9dEdCWU/M= Subject key identifier: 62:60:C2:6F:A6:3C:98:4B:96:82:AD:C1:6D:42:4B:5C:3E:B9:58:81 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 649CF5A4D8B20E9EB3999CA4210BAF8D5D962A67 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137298.roa Signing time: Fri 14 Nov 2025 06:52:08 +0000 ROA not before: Fri 14 Nov 2025 06:47:08 +0000 ROA not after: Fri 13 Nov 2026 06:52:08 +0000 asID: 137298 IP address blocks: 103.107.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:9c:f5:a4:d8:b2:0e:9e:b3:99:9c:a4:21:0b:af:8d:5d:96:2a:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 06:47:08 2025 GMT Not After : Nov 13 06:52:08 2026 GMT Subject: CN=6260C26FA63C984B9682ADC16D424B5C3EB95881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c0:69:b4:96:f6:a8:4c:9e:83:2e:68:4d:da: 92:e7:5e:0e:4a:b7:4f:d5:27:4f:a4:2e:6a:4b:93: 2b:93:d4:cc:b4:88:77:fd:b4:0a:5f:f4:18:db:72: 37:6d:1f:89:b5:f0:38:84:3b:45:79:0d:29:99:98: c8:17:4f:42:74:15:7d:1c:30:44:27:fd:c1:05:45: 74:a6:15:96:00:1f:1a:74:05:e6:ed:14:d0:0f:33: 0c:b6:42:cd:b2:17:ae:54:87:12:c3:f0:9f:30:65: b0:66:ac:87:10:f3:68:fd:ef:e8:a3:19:b5:dc:6f: 13:3d:11:3d:83:64:57:33:69:1f:0a:1d:f3:19:cf: 67:cf:e9:e1:8c:ce:3c:c6:38:07:15:27:e5:35:0a: 9a:1f:e2:96:ab:a0:d9:27:9a:6a:da:9b:90:2b:14: 0b:4c:ce:91:d9:cd:5d:e3:dc:78:49:5b:eb:81:16: 9b:94:93:fe:a8:c2:94:ea:e2:b8:6a:a8:35:35:e6: 88:30:d3:a2:5c:f0:7b:f8:58:a3:84:6b:c8:75:22: 86:57:42:d7:60:82:08:56:7e:10:89:96:a0:54:0d: df:43:54:d2:a6:27:15:f9:78:48:8a:70:08:19:a2: 00:e1:59:d0:25:e1:f3:b1:99:dc:d8:04:65:c4:a2: 45:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:60:C2:6F:A6:3C:98:4B:96:82:AD:C1:6D:42:4B:5C:3E:B9:58:81 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137298.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.147.0/24 Signature Algorithm: sha256WithRSAEncryption 13:27:b7:8b:26:00:a2:22:17:8e:89:05:84:5f:52:22:65:bf: ec:4b:79:50:d9:a3:8d:07:18:81:91:04:7c:69:14:a2:2d:ae: ac:c3:03:4c:88:08:81:29:4d:f7:30:58:e1:72:69:61:36:e4: a9:9c:3b:20:49:98:25:e3:5e:ea:58:e5:46:93:fd:7d:45:e3: 0d:14:2f:e6:21:af:85:ee:f3:c0:83:9b:6b:c7:73:a9:ec:fe: 1c:fd:f9:82:55:66:03:d6:45:09:7b:e8:d5:13:43:7c:6b:a2: 5e:56:f7:c4:69:db:4e:09:cd:e4:9c:49:a7:5e:1a:b0:08:c9: 3f:b1:fb:0b:d4:b7:12:07:d1:12:a0:8f:14:06:17:10:cf:26: 08:e0:33:ca:92:55:73:cc:28:63:7c:f5:10:8c:15:0d:c8:c9: ad:fc:a9:9d:1a:86:da:fb:18:61:12:0b:54:b0:e7:7a:57:67: 32:2d:f1:7f:13:45:6c:cb:ef:1b:a9:be:67:ad:f5:44:55:c1: 9e:86:1e:f5:78:f2:17:06:d5:3c:ad:dc:39:81:89:07:b9:f6: 9e:51:d9:f1:05:f2:4f:5f:25:d8:b5:42:77:e2:94:60:86:a5: f3:7d:cd:5e:4d:2f:65:b7:b7:90:55:02:20:a0:6a:8a:9b:78: c6:7e:0e:49 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZJz1pNiyDp6zmZykIQuvjV2WKmcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExNDA2NDcwOFoX DTI2MTExMzA2NTIwOFowMzExMC8GA1UEAxMoNjI2MEMyNkZBNjNDOTg0Qjk2ODJB REMxNkQ0MjRCNUMzRUI5NTg4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTAabSW9qhMnoMuaE3akudeDkq3T9UnT6QuakuTK5PUzLSId/20Cl/0GNty N20fibXwOIQ7RXkNKZmYyBdPQnQVfRwwRCf9wQVFdKYVlgAfGnQF5u0U0A8zDLZC zbIXrlSHEsPwnzBlsGashxDzaP3v6KMZtdxvEz0RPYNkVzNpHwod8xnPZ8/p4YzO PMY4BxUn5TUKmh/ilqug2SeaatqbkCsUC0zOkdnNXePceElb64EWm5ST/qjClOri uGqoNTXmiDDTolzwe/hYo4RryHUihldC12CCCFZ+EImWoFQN30NU0qYnFfl4SIpw CBmiAOFZ0CXh87GZ3NgEZcSiRRECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRiYMJv pjyYS5aCrcFtQktcPrlYgTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzI5OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdrkzANBgkqhkiG9w0BAQsFAAOCAQEAEye3iyYAoiIXjokFhF9S ImW/7Et5UNmjjQcYgZEEfGkUoi2urMMDTIgIgSlN9zBY4XJpYTbkqZw7IEmYJeNe 6ljlRpP9fUXjDRQv5iGvhe7zwIOba8dzqez+HP35glVmA9ZFCXvo1RNDfGuiXlb3 xGnbTgnN5JxJp14asAjJP7H7C9S3EgfREqCPFAYXEM8mCOAzypJVc8woY3z1EIwV DcjJrfypnRqG2vsYYRILVLDneldnMi3xfxNFbMvvG6m+Z631RFXBnoYe9XjyFwbV PK3cOYGJB7n2nlHZ8QXyT18l2LVCd+KUYIal833NXk0vZbe3kFUCIKBqipt4xn4O SQ== -----END CERTIFICATE-----Generated at Wed Dec 3 14:54:50 2025 by rpki-client