This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa File: AS147103.roa (raw, json) Hash identifier: pBAwXhXF5Var/Ty9tcuNvwIaKZCdDUEWI5EeZwLW3rw= Subject key identifier: 54:8E:61:30:92:57:1F:01:1C:7E:74:B1:74:3A:AD:FC:03:F6:88:0D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07E8FBEC0AC377539F22A7D5AE1F89534D224438 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa Signing time: Tue 11 Nov 2025 06:00:10 +0000 ROA not before: Tue 11 Nov 2025 05:55:10 +0000 ROA not after: Tue 10 Nov 2026 06:00:10 +0000 asID: 147103 IP address blocks: 103.174.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:e8:fb:ec:0a:c3:77:53:9f:22:a7:d5:ae:1f:89:53:4d:22:44:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:10 2025 GMT Not After : Nov 10 06:00:10 2026 GMT Subject: CN=548E613092571F011C7E74B1743AADFC03F6880D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6c:a8:a7:0b:84:c8:a3:ab:e0:3a:0e:90:3a: 65:b0:71:07:c5:7d:66:9c:15:0d:74:59:9b:98:12: 95:8a:c7:27:05:b1:1d:dc:a6:31:c6:d2:aa:0a:8b: c1:8c:a7:3d:fd:77:7c:b1:1a:f1:dc:75:07:72:c1: e1:ac:15:3a:8a:b6:01:4f:fa:f6:01:c1:b1:1e:f2: c1:71:e6:84:a3:b3:20:26:49:1a:a8:68:bd:24:7a: 71:e2:7a:a7:09:d1:05:a6:dd:1c:c9:c1:e8:92:6e: 47:d8:b7:b4:c1:6c:04:8d:7b:cf:6d:52:a6:50:4b: c3:1c:9b:a7:c4:01:3c:98:ef:9b:54:d9:06:c4:05: ce:fb:55:e3:c3:25:d4:3a:e0:01:13:75:f6:62:7a: 5f:39:b5:15:66:dd:8a:4a:5c:31:d0:0e:25:19:fd: 18:52:4d:f3:27:d0:54:d9:37:0f:f1:f3:36:ca:40: 83:97:cd:8f:33:bd:01:69:79:59:9a:33:83:c1:d9: ce:57:cf:dd:42:f3:32:aa:a0:2b:3e:a2:01:e6:4c: 3f:6a:b1:e3:76:c9:a5:ff:71:44:50:82:6a:aa:c0: 4b:c1:87:a3:22:30:8b:bf:28:3b:f5:4f:54:14:bb: 3e:be:23:fd:d7:e8:37:fe:d7:ab:cf:d1:de:07:00: 7b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:8E:61:30:92:57:1F:01:1C:7E:74:B1:74:3A:AD:FC:03:F6:88:0D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147103.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.223.0/24 Signature Algorithm: sha256WithRSAEncryption 84:65:28:89:20:90:1f:6b:dc:af:ed:aa:1d:b0:d6:90:40:df: 33:08:f5:82:6e:7d:a5:9d:89:c9:ff:8b:6f:6c:99:d9:a7:1c: ef:38:24:48:8a:a7:93:21:3b:e0:c6:ae:f7:e3:bd:48:59:9e: ee:ee:37:2f:48:c7:6c:d0:5c:86:5c:2d:4e:d5:eb:5f:66:9d: 12:0d:ba:83:3f:16:fd:89:ec:de:77:61:96:10:da:06:28:11: a7:75:57:a2:d3:a3:d6:f6:54:a1:f9:09:75:05:58:62:bf:3a: 99:66:12:b1:99:eb:9e:d9:2d:bd:dc:15:7f:12:9f:a3:4a:82: 9d:99:ff:96:7d:20:89:96:93:a3:8c:08:5d:a6:39:b7:c6:3d: d5:57:c8:9d:28:e5:73:63:dd:73:46:52:5a:a2:db:33:d4:0a: d9:41:14:56:ba:c5:4a:d1:f6:a9:9f:9d:68:0c:4f:f3:d3:8f: a6:b5:9a:49:38:e9:70:db:92:bb:2e:7a:5c:81:ae:56:63:86: 28:87:b7:c6:78:7b:c4:8b:2c:4d:6b:70:92:85:10:ac:16:07: 16:b5:e2:e2:1c:b9:40:6c:ff:19:c6:c0:92:c1:99:d9:16:94: 5d:d8:b3:83:0d:cc:56:d7:e6:3e:6a:57:62:cf:8d:73:91:ce: 6f:24:31:1b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB+j77ArDd1OfIqfVrh+JU00iRDgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMFoX DTI2MTExMDA2MDAxMFowMzExMC8GA1UEAxMoNTQ4RTYxMzA5MjU3MUYwMTFDN0U3 NEIxNzQzQUFERkMwM0Y2ODgwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhsqKcLhMijq+A6DpA6ZbBxB8V9ZpwVDXRZm5gSlYrHJwWxHdymMcbSqgqL wYynPf13fLEa8dx1B3LB4awVOoq2AU/69gHBsR7ywXHmhKOzICZJGqhovSR6ceJ6 pwnRBabdHMnB6JJuR9i3tMFsBI17z21SplBLwxybp8QBPJjvm1TZBsQFzvtV48Ml 1DrgARN19mJ6Xzm1FWbdikpcMdAOJRn9GFJN8yfQVNk3D/HzNspAg5fNjzO9AWl5 WZozg8HZzlfP3ULzMqqgKz6iAeZMP2qx43bJpf9xRFCCaqrAS8GHoyIwi78oO/VP VBS7Pr4j/dfoN/7Xq8/R3gcAe2UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRUjmEw klcfARx+dLF0Oq38A/aIDTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeu3zANBgkqhkiG9w0BAQsFAAOCAQEAhGUoiSCQH2vcr+2qHbDW kEDfMwj1gm59pZ2Jyf+Lb2yZ2acc7zgkSIqnkyE74Mau9+O9SFme7u43L0jHbNBc hlwtTtXrX2adEg26gz8W/Yns3ndhlhDaBigRp3VXotOj1vZUofkJdQVYYr86mWYS sZnrntktvdwVfxKfo0qCnZn/ln0giZaTo4wIXaY5t8Y91VfInSjlc2Pdc0ZSWqLb M9QK2UEUVrrFStH2qZ+daAxP89OPprWaSTjpcNuSuy56XIGuVmOGKIe3xnh7xIss TWtwkoUQrBYHFrXi4hy5QGz/GcbAksGZ2RaUXdizgw3MVtfmPmpXYs+Nc5HObyQx Gw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:54 2025 by rpki-client