This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147072.roa File: AS147072.roa (raw, json) Hash identifier: Fg/3EuJ2U0g/8YHrb2LjSvjpM+xpTthcQKGukHEyhrA= Subject key identifier: F5:16:52:39:FB:91:80:73:13:50:71:61:02:CF:DF:64:FA:D8:38:27 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 528FD9D9A89AC3F122D7209F333C62AB24F53AEF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147072.roa Signing time: Tue 11 Nov 2025 06:00:11 +0000 ROA not before: Tue 11 Nov 2025 05:55:11 +0000 ROA not after: Tue 10 Nov 2026 06:00:11 +0000 asID: 147072 IP address blocks: 103.172.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:8f:d9:d9:a8:9a:c3:f1:22:d7:20:9f:33:3c:62:ab:24:f5:3a:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:11 2025 GMT Not After : Nov 10 06:00:11 2026 GMT Subject: CN=F5165239FB9180731350716102CFDF64FAD83827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:05:ce:68:0f:f2:a3:41:5f:aa:7b:69:d9:b3: d8:9d:c4:b5:7c:d8:ca:ea:ac:50:c5:6f:1f:74:5a: 1c:af:c6:ee:dc:28:a9:7f:c2:94:eb:53:d1:cc:2d: 29:a8:9c:27:f6:d3:5c:6c:fa:8a:2c:47:4b:c4:7d: d9:75:c7:a8:81:4f:3d:0f:70:af:c0:dd:7d:54:7a: 5b:27:1d:2e:9c:01:24:38:d0:aa:2e:ee:b1:8d:6e: f9:d9:b4:b9:1b:83:95:54:21:c3:d6:5a:b7:f4:ff: 33:cd:86:cd:a0:1b:b0:b4:32:8d:fe:6c:e5:c9:c6: a6:2d:a8:3b:ee:55:db:5e:7d:a6:b0:80:2a:b8:aa: 2b:fa:7b:aa:7f:84:79:23:8a:4c:e8:68:ba:fc:a1: c5:e3:e2:f0:41:a0:b4:29:2e:73:34:bb:a7:95:d6: 8c:0f:d9:ce:4f:a0:4f:7b:d1:d3:93:e2:45:73:48: a0:12:c3:3e:d4:72:cd:80:76:74:7d:65:8a:2d:5a: 48:4c:8b:f2:68:89:ff:93:69:76:2f:b4:ee:a9:94: de:45:d8:8b:72:9f:7f:85:77:e8:14:62:bc:29:e1: 04:65:68:5a:c0:e2:86:b4:1e:b4:af:8b:0f:f9:c6: 7c:d2:6c:2f:44:8d:c8:93:08:58:30:9c:21:f0:ec: 1e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:16:52:39:FB:91:80:73:13:50:71:61:02:CF:DF:64:FA:D8:38:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147072.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.244.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:95:c2:29:c5:40:d8:b1:cc:97:82:53:08:4f:c9:de:0a:d7: 12:61:b2:59:96:b0:62:bc:9f:af:44:c2:ed:42:65:ea:f6:12: b3:87:77:bb:bc:4a:38:65:9d:67:c2:5a:6b:3b:d7:22:4e:62: 51:6a:20:c0:09:31:ae:a5:3a:e8:cb:54:fa:e9:c8:58:ba:34: 59:21:7b:fe:26:e3:f1:05:a4:8f:de:61:b9:da:67:01:ce:81: e5:bd:96:d7:46:e6:3f:08:48:ab:2a:a0:80:fd:3c:3d:e6:ca: d3:30:62:a8:d2:de:b3:40:11:0e:59:7f:63:2e:7a:2f:df:31: 37:fb:1f:92:38:55:fe:b7:3e:91:83:9c:e7:62:9b:85:78:f7: 57:e3:d7:38:20:a3:cf:d9:e1:64:f6:72:59:70:eb:a6:e5:f6: 5c:6b:4d:a0:b6:45:c9:0a:cd:64:6d:9b:84:05:13:8c:cc:f9: ec:28:57:f0:21:a5:45:cc:29:78:7f:ae:b6:19:98:3c:03:99: ae:2c:aa:97:e9:9b:50:e8:2c:d4:97:92:9f:58:b2:9e:fa:3b: 65:f4:67:36:44:11:7f:5f:c2:50:1c:38:ce:1b:33:eb:b8:12: 4b:1a:95:60:ce:30:50:36:9a:8e:0f:20:e1:44:92:13:f0:37: 81:2c:6e:99 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUo/Z2aiaw/Ei1yCfMzxiqyT1Ou8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMVoX DTI2MTExMDA2MDAxMVowMzExMC8GA1UEAxMoRjUxNjUyMzlGQjkxODA3MzEzNTA3 MTYxMDJDRkRGNjRGQUQ4MzgyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQFzmgP8qNBX6p7admz2J3EtXzYyuqsUMVvH3RaHK/G7twoqX/ClOtT0cwt KaicJ/bTXGz6iixHS8R92XXHqIFPPQ9wr8DdfVR6WycdLpwBJDjQqi7usY1u+dm0 uRuDlVQhw9Zat/T/M82GzaAbsLQyjf5s5cnGpi2oO+5V2159prCAKriqK/p7qn+E eSOKTOhouvyhxePi8EGgtCkuczS7p5XWjA/Zzk+gT3vR05PiRXNIoBLDPtRyzYB2 dH1lii1aSEyL8miJ/5Npdi+07qmU3kXYi3Kff4V36BRivCnhBGVoWsDihrQetK+L D/nGfNJsL0SNyJMIWDCcIfDsHgcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT1FlI5 +5GAcxNQcWECz99k+tg4JzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzA3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWes9DANBgkqhkiG9w0BAQsFAAOCAQEAj5XCKcVA2LHMl4JTCE/J 3grXEmGyWZawYryfr0TC7UJl6vYSs4d3u7xKOGWdZ8JaazvXIk5iUWogwAkxrqU6 6MtU+unIWLo0WSF7/ibj8QWkj95hudpnAc6B5b2W10bmPwhIqyqggP08PebK0zBi qNLes0ARDll/Yy56L98xN/sfkjhV/rc+kYOc52KbhXj3V+PXOCCjz9nhZPZyWXDr puX2XGtNoLZFyQrNZG2bhAUTjMz57ChX8CGlRcwpeH+uthmYPAOZriyql+mbUOgs 1JeSn1iynvo7ZfRnNkQRf1/CUBw4zhsz67gSSxqVYM4wUDaajg8g4USSE/A3gSxu mQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:25 2025 by rpki-client