This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa File: AS147106.roa (raw, json) Hash identifier: TGM+DXyTVidIIxh2GTiaZtlSQxjH1fn/1iPWD5rA9H4= Subject key identifier: D2:9C:0E:B9:EA:41:60:C4:E6:E2:EA:47:BF:13:10:FC:14:20:DD:CA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 43AA25ABBB19E01B7C2CC38D5D905E1B9D06078F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa Signing time: Fri 11 Jul 2025 03:00:00 +0000 ROA not before: Fri 11 Jul 2025 02:55:00 +0000 ROA not after: Fri 10 Jul 2026 03:00:00 +0000 asID: 147106 IP address blocks: 103.174.236.0/23 maxlen: 24 2401:1fa0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:aa:25:ab:bb:19:e0:1b:7c:2c:c3:8d:5d:90:5e:1b:9d:06:07:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 11 02:55:00 2025 GMT Not After : Jul 10 03:00:00 2026 GMT Subject: CN=D29C0EB9EA4160C4E6E2EA47BF1310FC1420DDCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:14:45:03:0e:14:cc:52:75:4b:5b:56:a1:50: 41:87:5d:12:97:fd:ff:77:f3:96:f1:a5:93:e0:e6: e6:b8:c3:cd:30:e2:be:c8:dc:b5:6d:0f:b5:5c:7f: 80:dd:da:2a:ca:ff:52:ef:43:40:e0:be:a2:68:e3: b2:01:9d:93:66:86:09:c0:68:08:f8:a4:f6:fe:40: 7a:d7:68:09:65:c4:4b:df:86:b8:24:d3:e5:62:9d: ae:a6:46:02:7b:9b:b2:0c:75:b0:ed:98:ff:7c:b1: 89:87:43:a9:64:b1:d6:9c:ff:31:8a:e3:b7:35:7a: c7:b6:d0:28:72:79:9a:a8:94:1c:ab:c7:44:2e:63: b5:97:65:5d:c1:e9:21:db:4d:95:a5:95:18:62:59: 1a:e6:f7:0b:9d:49:95:03:be:98:91:25:50:0a:9c: c2:fd:3e:f3:38:f4:e1:1b:9c:8a:6a:89:64:d5:11: d3:8a:c8:e5:60:1b:43:72:a7:f7:c4:c5:61:99:ec: d6:0d:0d:b5:7d:52:86:ff:ce:6c:2e:f0:90:60:68: 44:28:3b:f4:6b:e3:c2:9d:43:1e:ae:c7:b0:c5:80: b2:f3:d8:6f:ad:8d:bd:18:ae:aa:70:e3:42:47:75: 7e:2a:38:b0:b6:f2:5b:e6:66:ba:64:6a:e6:d1:5e: ab:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:9C:0E:B9:EA:41:60:C4:E6:E2:EA:47:BF:13:10:FC:14:20:DD:CA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147106.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.236.0/23 IPv6: 2401:1fa0::/32 Signature Algorithm: sha256WithRSAEncryption 4c:d0:d4:ff:f9:45:38:d8:8d:ff:5e:59:48:27:c8:ee:6c:18: 60:7e:73:0d:f1:2d:57:dd:ae:cc:e5:ba:9f:f7:44:15:d5:2c: 02:cd:93:a2:fe:a0:61:bf:3d:0d:69:5d:dc:24:fa:fb:4f:78: 99:2b:b8:27:dc:b4:a9:f6:74:b9:c3:99:69:6a:95:98:87:0c: 4e:1d:ec:11:8a:5a:7a:6d:e4:e0:d0:17:fe:26:95:bd:5d:c0: 83:58:fd:c5:8e:f3:d3:0d:3a:27:38:a0:c6:ca:c5:c1:b4:2e: 89:c9:e8:96:f8:b3:6d:87:7f:af:2c:a8:2c:4f:5a:8e:d8:4f: c5:c8:4b:bf:0f:80:c7:28:73:a9:b8:84:6e:aa:b7:db:b4:6d: a1:b6:5d:ac:8f:79:6f:e9:e0:d0:9f:d5:32:10:8d:cf:65:10: a6:ad:69:9e:76:ca:10:e9:07:7b:0f:f0:af:00:a6:35:05:9b: 17:c0:fc:ee:68:9f:8f:8e:5a:4b:f7:36:9a:b4:ae:82:cd:bc: 8c:79:d5:df:1d:19:9c:86:60:15:66:bd:16:c7:b1:c2:85:2d: ed:4f:75:16:5c:d1:2d:27:7e:d4:1f:9a:d6:a7:c8:a3:74:84: d8:40:9b:41:e8:62:da:a2:a4:eb:3c:30:f4:1e:13:7e:a7:c6: 0a:bc:7d:b3 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUQ6olq7sZ4Bt8LMONXZBeG50GB48wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxMTAyNTUwMFoX DTI2MDcxMDAzMDAwMFowMzExMC8GA1UEAxMoRDI5QzBFQjlFQTQxNjBDNEU2RTJF QTQ3QkYxMzEwRkMxNDIwRERDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANkURQMOFMxSdUtbVqFQQYddEpf9/3fzlvGlk+Dm5rjDzTDivsjctW0PtVx/ gN3aKsr/Uu9DQOC+omjjsgGdk2aGCcBoCPik9v5AetdoCWXES9+GuCTT5WKdrqZG Anubsgx1sO2Y/3yxiYdDqWSx1pz/MYrjtzV6x7bQKHJ5mqiUHKvHRC5jtZdlXcHp IdtNlaWVGGJZGub3C51JlQO+mJElUAqcwv0+8zj04RucimqJZNUR04rI5WAbQ3Kn 98TFYZns1g0NtX1Shv/ObC7wkGBoRCg79Gvjwp1DHq7HsMWAsvPYb62NvRiuqnDj Qkd1fio4sLbyW+ZmumRq5tFeq70CAwEAAaOCAd8wggHbMB0GA1UdDgQWBBTSnA65 6kFgxObi6ke/ExD8FCDdyjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0w DAQCAAEwBgMEAWeu7DANBAIAAjAHAwUAJAEfoDANBgkqhkiG9w0BAQsFAAOCAQEA TNDU//lFONiN/15ZSCfI7mwYYH5zDfEtV92uzOW6n/dEFdUsAs2Tov6gYb89DWld 3CT6+094mSu4J9y0qfZ0ucOZaWqVmIcMTh3sEYpaem3k4NAX/iaVvV3Ag1j9xY7z 0w06JzigxsrFwbQuicnolvizbYd/ryyoLE9ajthPxchLvw+AxyhzqbiEbqq327Rt obZdrI95b+ng0J/VMhCNz2UQpq1pnnbKEOkHew/wrwCmNQWbF8D87mifj45aS/c2 mrSugs28jHnV3x0ZnIZgFWa9FsexwoUt7U91FlzRLSd+1B+a1qfIo3SE2ECbQehi 2qKk6zww9B4TfqfGCrx9sw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:47 2025 by rpki-client