This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137311.roa File: AS137311.roa (raw, json) Hash identifier: BcExM2Fv+EitJEdO+ZOoKwMmdLsFbqCQ8+D6vB4pr/k= Subject key identifier: D2:F6:5E:74:63:87:24:78:42:58:0D:E1:F3:F6:45:51:AE:73:7F:B4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 8518ECAD80D11E7B96A3331DEB3CCC16A2F3FC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137311.roa Signing time: Tue 02 Dec 2025 02:00:00 +0000 ROA not before: Tue 02 Dec 2025 01:55:00 +0000 ROA not after: Tue 01 Dec 2026 02:00:00 +0000 asID: 137311 IP address blocks: 103.232.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85:18:ec:ad:80:d1:1e:7b:96:a3:33:1d:eb:3c:cc:16:a2:f3:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 2 01:55:00 2025 GMT Not After : Dec 1 02:00:00 2026 GMT Subject: CN=D2F65E746387247842580DE1F3F64551AE737FB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:f1:fd:58:b7:42:b1:53:1c:e9:f4:7a:4b:be: 16:b1:d4:c4:ad:f1:cf:9c:d6:ee:5a:ca:b9:8f:86: 0d:98:70:96:89:f4:6c:fe:62:5b:e2:29:0c:51:70: 2a:2a:24:7a:0c:12:7b:26:76:a2:8e:ee:93:c3:6c: f5:9a:4c:32:e4:4d:ec:63:91:ab:c4:9e:57:e3:42: 39:dd:ec:ef:8c:7c:16:71:13:3a:2e:f2:73:46:c3: 0c:ff:9e:68:2b:4c:47:3c:1d:b8:ee:2d:05:78:93: fd:b5:ab:33:2f:c5:a1:17:72:2a:e7:29:fe:32:f9: 07:27:a3:f7:09:da:4e:a2:5b:63:23:c4:62:e1:b3: 63:20:2f:05:07:8b:14:72:4e:58:67:3a:02:44:d1: 65:d8:80:f0:62:70:fb:4e:83:7e:a7:41:ca:3c:a7: b9:92:b4:fe:a7:e4:b3:0d:a5:64:ef:67:94:54:10: fc:28:fd:c0:a3:04:9f:bb:38:e2:2b:64:6d:ab:e6: 13:3b:13:ef:a8:ab:cb:48:1c:52:7f:a7:09:61:47: 62:ed:8e:8f:60:65:f7:db:b8:7a:d7:25:9d:52:cd: 65:4b:0d:76:a0:b8:b5:14:39:d5:8f:a1:2f:1b:be: 3b:27:e5:46:af:3a:da:f1:da:81:d2:ad:9d:cf:f3: da:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F6:5E:74:63:87:24:78:42:58:0D:E1:F3:F6:45:51:AE:73:7F:B4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137311.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.64.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:ac:1f:ad:89:af:77:1a:7e:73:70:61:9d:15:f4:48:08:7f: be:6f:f0:60:e1:c6:81:e2:a1:b2:86:a4:b7:07:fd:d8:04:cd: 49:78:a0:84:18:88:cd:b6:5e:5a:9b:fb:f9:1c:06:6b:a1:4b: b0:58:9c:b3:6a:44:14:f9:4d:c0:1f:57:b6:91:5d:4e:44:19: 2b:10:65:de:13:f5:e6:af:d0:9e:96:ac:86:66:f9:80:ed:05: 65:ec:c2:54:d2:b1:61:64:80:16:35:52:44:b2:73:8d:e4:92: 28:ca:62:cf:61:93:53:15:cd:f6:c3:26:b2:13:29:d7:e7:7a: 8d:c7:81:86:1a:56:e3:59:46:e4:f4:39:14:a4:1a:42:ec:bf: 38:9e:3c:bf:02:43:55:4d:de:a5:b5:e9:09:c5:fc:6b:73:09: 42:c1:b0:d5:f9:40:6f:65:2e:32:60:26:c6:b1:c1:b7:41:53: 8f:50:78:70:d6:65:99:3e:65:85:f4:30:22:55:05:4c:97:b9: 53:3d:cd:9c:9c:5a:86:35:4e:f3:48:11:bb:27:e8:6a:e6:c7: e9:28:58:11:40:08:01:7c:f2:97:af:57:d9:d2:83:87:b9:18: 76:2a:de:06:d4:a1:41:8f:cb:5a:be:be:68:8b:23:cd:81:b2: 95:6c:f3:49 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAIUY7K2A0R57lqMzHes8zBai8/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIwMjAxNTUwMFoX DTI2MTIwMTAyMDAwMFowMzExMC8GA1UEAxMoRDJGNjVFNzQ2Mzg3MjQ3ODQyNTgw REUxRjNGNjQ1NTFBRTczN0ZCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPLx/Vi3QrFTHOn0eku+FrHUxK3xz5zW7lrKuY+GDZhwlon0bP5iW+IpDFFw KiokegwSeyZ2oo7uk8Ns9ZpMMuRN7GORq8SeV+NCOd3s74x8FnETOi7yc0bDDP+e aCtMRzwduO4tBXiT/bWrMy/FoRdyKucp/jL5Byej9wnaTqJbYyPEYuGzYyAvBQeL FHJOWGc6AkTRZdiA8GJw+06DfqdByjynuZK0/qfksw2lZO9nlFQQ/Cj9wKMEn7s4 4itkbavmEzsT76iry0gcUn+nCWFHYu2Oj2Bl99u4etclnVLNZUsNdqC4tRQ51Y+h Lxu+OyflRq862vHagdKtnc/z2n0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTS9l50 Y4ckeEJYDeHz9kVRrnN/tDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzMxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfoQDANBgkqhkiG9w0BAQsFAAOCAQEAHawfrYmvdxp+c3BhnRX0 SAh/vm/wYOHGgeKhsoaktwf92ATNSXighBiIzbZeWpv7+RwGa6FLsFics2pEFPlN wB9XtpFdTkQZKxBl3hP15q/Qnpashmb5gO0FZezCVNKxYWSAFjVSRLJzjeSSKMpi z2GTUxXN9sMmshMp1+d6jceBhhpW41lG5PQ5FKQaQuy/OJ48vwJDVU3epbXpCcX8 a3MJQsGw1flAb2UuMmAmxrHBt0FTj1B4cNZlmT5lhfQwIlUFTJe5Uz3NnJxahjVO 80gRuyfoaubH6ShYEUAIAXzyl69X2dKDh7kYdireBtShQY/LWr6+aIsjzYGylWzz SQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:25 2025 by rpki-client