This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa File: AS137299.roa (raw, json) Hash identifier: Xf3lah40H3+UtYswZpHQP6+arG6b6XcEKqFTVij+QBc= Subject key identifier: E7:07:B1:39:C7:22:A9:B4:81:23:F9:56:89:A1:DE:F7:FD:D9:6A:32 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5EC4860B88853CBB79EB3D15F487FFDB0C2B4CAB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa Signing time: Tue 11 Nov 2025 06:00:21 +0000 ROA not before: Tue 11 Nov 2025 05:55:21 +0000 ROA not after: Tue 10 Nov 2026 06:00:21 +0000 asID: 137299 IP address blocks: 103.107.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:c4:86:0b:88:85:3c:bb:79:eb:3d:15:f4:87:ff:db:0c:2b:4c:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:21 2025 GMT Not After : Nov 10 06:00:21 2026 GMT Subject: CN=E707B139C722A9B48123F95689A1DEF7FDD96A32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:11:e7:ef:0c:ce:ec:4f:dc:6c:70:64:e8:06: b3:e2:ab:a1:bf:c7:6b:35:cf:f9:bc:36:de:8d:c2: 47:89:c5:61:23:08:11:4e:bf:6e:a5:79:17:f1:bc: eb:fe:8d:3e:21:ab:d1:ca:2a:bb:81:cc:2a:29:5a: c8:04:a1:2f:dd:f0:b3:ff:5a:ef:de:e7:d3:20:e3: f6:94:49:5c:a5:a4:26:48:d0:ab:83:4b:54:ec:af: 36:ea:06:22:69:26:27:8f:7b:9b:1d:aa:f0:df:86: 88:74:6c:1f:6d:e1:f7:52:4c:47:86:e8:9f:71:6c: 76:61:60:ce:ca:85:3c:2d:f0:07:e5:c6:e3:45:0b: 6b:27:8e:25:b5:ea:4b:5e:e2:6f:12:fc:6d:89:01: bb:c7:67:19:33:37:d8:d2:3e:10:cc:fa:51:c4:57: 52:9e:b1:dc:38:13:c7:c8:27:a0:f1:7d:ae:ba:59: 76:9e:cc:df:91:e9:29:d5:f0:fe:e1:bd:4b:31:9f: 08:72:86:6f:a2:ed:99:96:a5:b7:6e:3a:2c:e5:1a: e8:d2:75:1f:ad:0f:62:c2:1b:07:32:41:13:d7:72: 9d:9b:e3:47:24:f2:eb:9e:1a:ce:70:58:fc:0b:d6: 5d:44:2d:3a:05:1f:55:c7:6f:09:5c:ef:eb:c0:06: 1b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:07:B1:39:C7:22:A9:B4:81:23:F9:56:89:A1:DE:F7:FD:D9:6A:32 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.186.0/24 Signature Algorithm: sha256WithRSAEncryption 91:60:7a:ed:48:ed:0d:4f:c9:5a:73:ff:fd:05:27:21:d0:7e: 02:4e:8e:27:c0:df:f1:4e:48:c4:f5:ef:94:98:b4:a1:c9:b4: 44:dd:98:26:5e:95:34:de:6b:39:7e:41:fb:50:15:cb:02:aa: e9:02:b7:b3:e4:90:b7:ac:1b:8f:b2:7e:23:97:c1:53:32:84: eb:ea:cf:71:af:0e:ac:32:15:72:3e:5c:e1:6b:14:90:99:62: 6f:9f:e3:dc:60:0a:ec:dd:48:a6:c3:11:42:cb:2a:f1:56:2c: 1e:f3:bc:62:06:96:09:f7:ef:ca:b7:5a:21:d1:82:f8:b6:f6: ef:d5:23:cb:e3:54:e9:e6:f5:e0:e9:fb:60:e8:c0:2d:2e:b3: b6:1f:ad:17:37:e0:60:51:1c:af:63:d3:49:08:e7:ff:42:d5: 0a:8b:14:0a:ab:dd:8e:30:18:48:e8:49:98:59:1f:5a:34:dd: a5:e3:57:af:03:4e:22:68:49:81:21:48:68:cc:2c:26:a0:1f: 99:11:b9:81:bc:05:a4:77:3e:7d:c6:d7:37:81:63:3e:64:6d: 84:65:dd:07:b0:14:e8:84:84:dc:6b:f6:c9:1b:bb:d2:78:c9: 00:d0:9d:60:e6:e8:fe:0c:2f:f8:3c:2f:95:31:d7:9e:ec:2c: 2c:8b:a8:79 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXsSGC4iFPLt56z0V9If/2wwrTKswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyMVoX DTI2MTExMDA2MDAyMVowMzExMC8GA1UEAxMoRTcwN0IxMzlDNzIyQTlCNDgxMjNG OTU2ODlBMURFRjdGREQ5NkEzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMR5+8MzuxP3GxwZOgGs+Krob/HazXP+bw23o3CR4nFYSMIEU6/bqV5F/G8 6/6NPiGr0coqu4HMKilayAShL93ws/9a797n0yDj9pRJXKWkJkjQq4NLVOyvNuoG ImkmJ497mx2q8N+GiHRsH23h91JMR4bon3FsdmFgzsqFPC3wB+XG40ULayeOJbXq S17ibxL8bYkBu8dnGTM32NI+EMz6UcRXUp6x3DgTx8gnoPF9rrpZdp7M35HpKdXw /uG9SzGfCHKGb6LtmZalt246LOUa6NJ1H60PYsIbBzJBE9dynZvjRyTy654aznBY /AvWXUQtOgUfVcdvCVzv68AGGyMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTnB7E5 xyKptIEj+VaJod73/dlqMjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzI5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdrujANBgkqhkiG9w0BAQsFAAOCAQEAkWB67UjtDU/JWnP//QUn IdB+Ak6OJ8Df8U5IxPXvlJi0ocm0RN2YJl6VNN5rOX5B+1AVywKq6QK3s+SQt6wb j7J+I5fBUzKE6+rPca8OrDIVcj5c4WsUkJlib5/j3GAK7N1IpsMRQssq8VYsHvO8 YgaWCffvyrdaIdGC+Lb279Ujy+NU6eb14On7YOjALS6zth+tFzfgYFEcr2PTSQjn /0LVCosUCqvdjjAYSOhJmFkfWjTdpeNXrwNOImhJgSFIaMwsJqAfmRG5gbwFpHc+ fcbXN4FjPmRthGXdB7AU6ISE3Gv2yRu70njJANCdYObo/gwv+DwvlTHXnuwsLIuo eQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:20 2025 by rpki-client