This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa File: AS137383.roa (raw, json) Hash identifier: yPdIgNReSKRVSEDJVgVQnGxDvRlV4Kj8FkGx7VvL578= Subject key identifier: F2:AF:FA:7B:6C:BA:03:24:FA:09:11:1F:C2:0A:98:D3:8A:97:99:EA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B28F017D01E33A926DEC98F4C8519577974BC31 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa Signing time: Tue 11 Nov 2025 06:00:16 +0000 ROA not before: Tue 11 Nov 2025 05:55:16 +0000 ROA not after: Tue 10 Nov 2026 06:00:16 +0000 asID: 137383 IP address blocks: 103.120.244.0/24 maxlen: 24 103.141.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:28:f0:17:d0:1e:33:a9:26:de:c9:8f:4c:85:19:57:79:74:bc:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:16 2025 GMT Not After : Nov 10 06:00:16 2026 GMT Subject: CN=F2AFFA7B6CBA0324FA09111FC20A98D38A9799EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0a:c6:ab:2e:59:a5:e5:e0:e0:34:0c:c8:e5: b2:51:80:24:ac:98:3f:c8:8e:79:c5:17:28:c0:49: 41:b7:6e:27:75:4a:7c:ff:f2:48:cf:d8:00:4c:f5: d9:2c:7d:89:c4:4f:7f:00:3d:6e:a7:be:1a:d2:0e: 26:0a:de:1e:9a:24:86:da:48:7b:cc:44:26:f4:96: ff:d3:fe:14:66:2d:f5:e0:8c:5a:bf:83:58:78:30: 2d:95:62:fa:a1:f6:4c:80:53:8b:5c:f2:6c:08:59: de:63:ce:25:ef:4a:9d:3e:92:97:cb:a8:b6:f7:c9: cd:25:e7:e3:6e:df:1d:85:38:22:de:0c:48:4c:2f: 1b:0a:24:20:98:04:93:dc:42:d0:cb:13:53:21:aa: f4:71:9d:f5:fb:a1:61:8b:5c:8d:7a:f2:90:67:37: 0c:1b:dd:05:96:e6:ad:c8:50:99:5c:73:83:a2:95: a5:fd:37:b7:5a:90:cb:09:0a:4d:cd:e0:68:de:8f: 6d:61:2e:1e:f5:b4:06:ef:4c:1b:1f:44:b8:9c:7b: 1c:4b:81:05:20:8e:5c:50:88:4d:ae:8e:2d:24:a3: 95:4b:be:92:93:33:23:86:9c:df:d8:0e:58:88:25: 96:e7:fc:6b:66:c8:cf:30:f2:fa:71:b6:2f:77:c8: f7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:AF:FA:7B:6C:BA:03:24:FA:09:11:1F:C2:0A:98:D3:8A:97:99:EA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.244.0/24 103.141.228.0/24 Signature Algorithm: sha256WithRSAEncryption 07:b2:ec:38:5d:64:75:1e:47:4e:45:16:f5:58:cd:9b:24:b6: 1d:6b:cf:c3:07:4c:b6:94:6b:d2:97:33:06:64:5d:99:a9:d6: 43:68:9e:cb:bb:63:cc:72:00:a5:c9:c8:64:81:a4:bf:80:0a: 48:dd:ab:a6:9a:b7:b4:70:d8:f1:e6:f8:14:65:7b:2e:04:84: f8:86:1e:66:b5:be:bf:a3:3e:cf:77:95:a3:66:fb:51:51:dc: 1a:c5:47:1f:5e:41:8b:19:4a:40:c3:fb:2e:5d:b4:65:e5:73: 85:c0:11:d0:38:a2:19:75:6b:33:7f:e0:e8:23:dc:a6:e9:d3: ee:10:2b:35:03:0b:0c:e0:9b:e9:14:7c:68:4a:29:d3:77:0a: 92:2f:fa:58:b2:71:c6:9f:20:ab:1d:13:9e:14:cd:a2:ba:b0: af:35:66:84:df:ac:0e:15:a4:a2:65:a4:69:7f:b8:f3:52:5a: 99:32:20:80:04:18:ba:3f:4b:18:74:4d:3a:1c:b5:2a:ef:c1: 63:8f:8b:d2:9b:91:b2:2d:a6:d8:94:88:13:ce:04:e1:ee:16: ee:62:9c:d4:b3:ec:46:0e:0d:42:5a:fe:58:fc:9c:73:f3:23: 1f:c4:c1:cc:2a:52:79:1e:3a:aa:b3:c6:88:e1:b6:e4:43:20: 3a:c2:08:22 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUSyjwF9AeM6km3smPTIUZV3l0vDEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxNloX DTI2MTExMDA2MDAxNlowMzExMC8GA1UEAxMoRjJBRkZBN0I2Q0JBMDMyNEZBMDkx MTFGQzIwQTk4RDM4QTk3OTlFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOQKxqsuWaXl4OA0DMjlslGAJKyYP8iOecUXKMBJQbduJ3VKfP/ySM/YAEz1 2Sx9icRPfwA9bqe+GtIOJgreHpokhtpIe8xEJvSW/9P+FGYt9eCMWr+DWHgwLZVi +qH2TIBTi1zybAhZ3mPOJe9KnT6Sl8uotvfJzSXn427fHYU4It4MSEwvGwokIJgE k9xC0MsTUyGq9HGd9fuhYYtcjXrykGc3DBvdBZbmrchQmVxzg6KVpf03t1qQywkK Tc3gaN6PbWEuHvW0Bu9MGx9EuJx7HEuBBSCOXFCITa6OLSSjlUu+kpMzI4ac39gO WIglluf8a2bIzzDy+nG2L3fI908CAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTyr/p7 bLoDJPoJER/CCpjTipeZ6jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzM4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGd49AMEAGeN5DANBgkqhkiG9w0BAQsFAAOCAQEAB7LsOF1kdR5H TkUW9VjNmyS2HWvPwwdMtpRr0pczBmRdmanWQ2iey7tjzHIApcnIZIGkv4AKSN2r ppq3tHDY8eb4FGV7LgSE+IYeZrW+v6M+z3eVo2b7UVHcGsVHH15BixlKQMP7Ll20 ZeVzhcAR0DiiGXVrM3/g6CPcpunT7hArNQMLDOCb6RR8aEop03cKki/6WLJxxp8g qx0TnhTNorqwrzVmhN+sDhWkomWkaX+481JamTIggAQYuj9LGHRNOhy1Ku/BY4+L 0puRsi2m2JSIE84E4e4W7mKc1LPsRg4NQlr+WPycc/MjH8TBzCpSeR46qrPGiOG2 5EMgOsIIIg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:01 2025 by rpki-client