This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147107.roa File: AS147107.roa (raw, json) Hash identifier: vJ1gSY9zavlRQyD24ij3FhWrwaNkoO+ehcdGFM8uMZc= Subject key identifier: 95:05:21:75:F2:6C:7B:20:29:C7:78:71:9F:4A:7F:D9:EB:96:17:E5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1985F1E0E2E02C7BAB7BE6E937A300FD37145D6A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147107.roa Signing time: Fri 26 Dec 2025 07:00:00 +0000 ROA not before: Fri 26 Dec 2025 06:55:00 +0000 ROA not after: Fri 25 Dec 2026 07:00:00 +0000 asID: 147107 IP address blocks: 2400:e420::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:85:f1:e0:e2:e0:2c:7b:ab:7b:e6:e9:37:a3:00:fd:37:14:5d:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 26 06:55:00 2025 GMT Not After : Dec 25 07:00:00 2026 GMT Subject: CN=95052175F26C7B2029C778719F4A7FD9EB9617E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:49:c7:f6:db:62:7e:2f:7c:11:9b:64:1d: a8:6b:6a:5f:49:d3:9e:8e:99:c0:30:98:4e:74:63: b6:e1:ea:ac:de:e1:05:f0:d5:64:ea:ca:22:62:9c: 85:cc:72:e6:1a:85:e5:ce:35:65:f2:66:49:b2:41: 41:0d:2a:8d:2c:1a:e6:a0:51:0d:b9:3e:fc:3e:64: dd:42:38:ad:b2:c0:32:78:ba:16:fe:36:87:e6:8e: c7:3e:85:35:73:c6:e4:f4:7f:e8:f2:e5:ae:54:3f: 3d:9d:4f:54:a1:a0:6e:4e:76:b7:ea:92:63:00:3e: e9:16:48:c8:d5:0d:c4:e9:df:38:4c:69:c6:f2:cb: 2d:6a:9a:ad:d8:ac:8a:55:9e:f4:bb:22:ca:92:b9: 6e:80:b9:7d:e8:df:e5:7c:c7:93:f3:50:e2:aa:83: a0:e3:90:d3:ea:6f:16:26:3f:60:21:22:6c:c9:09: 51:35:32:86:b3:0a:ba:44:4e:8a:36:df:1e:fc:d4: b0:be:a5:87:74:a1:fa:8b:1a:6b:ce:3c:6d:ec:49: 1a:7a:b1:e7:44:7e:d9:d5:eb:7b:e5:9f:a4:8c:b3: 37:2d:aa:0d:e4:23:2a:c7:37:24:bc:6f:75:3c:90: 84:0e:ae:74:ab:59:48:02:ca:79:f3:2d:cc:e8:c8: 6b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:05:21:75:F2:6C:7B:20:29:C7:78:71:9F:4A:7F:D9:EB:96:17:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147107.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:e420::/32 Signature Algorithm: sha256WithRSAEncryption 56:4f:8b:0c:2c:47:24:d7:5c:83:4f:13:46:f0:d7:48:78:2a: 61:f3:95:f6:4b:8f:59:f2:8d:72:9a:d4:5c:e8:68:77:06:50: f4:ec:88:3d:d3:a4:f4:4b:26:67:98:ad:dd:71:0c:58:38:33: f8:8e:e1:e7:49:e5:24:df:af:15:06:ff:ff:d8:c8:33:7a:28: 15:92:5a:1f:8e:61:75:e2:91:6b:99:c8:df:61:34:cd:b9:7b: 41:79:54:b6:16:19:91:6a:e3:5e:54:02:7e:9f:85:4d:39:c7: d5:7b:85:b4:3e:8e:74:ec:11:5b:8a:c3:87:71:51:fa:a2:c8: 70:00:21:dd:c3:8f:37:16:d8:0f:44:21:38:21:8c:24:1c:29: cf:7e:69:26:6c:0b:42:d4:f7:00:ac:ac:6a:1d:50:f9:6c:fb: 15:79:94:85:7d:ed:98:10:d5:98:7c:77:87:4d:e0:b8:aa:8b: bf:46:c1:76:e8:9b:2a:a3:25:3a:a8:5b:9f:ad:7b:f7:c9:05: 47:d5:a4:b0:7d:7c:8c:42:e9:c6:2b:ca:29:10:8a:6b:a5:e6: 56:75:88:a3:fb:01:58:e7:94:a5:f5:49:f1:aa:bd:7e:87:5e: 16:a2:b4:d0:0a:74:c1:30:3a:3f:69:11:a5:9a:7a:cc:4a:42: b2:eb:0e:db -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUGYXx4OLgLHure+bpN6MA/TcUXWowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIyNjA2NTUwMFoX DTI2MTIyNTA3MDAwMFowMzExMC8GA1UEAxMoOTUwNTIxNzVGMjZDN0IyMDI5Qzc3 ODcxOUY0QTdGRDlFQjk2MTdFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALX+Scf222J+L3wRm2QdqGtqX0nTno6ZwDCYTnRjtuHqrN7hBfDVZOrKImKc hcxy5hqF5c41ZfJmSbJBQQ0qjSwa5qBRDbk+/D5k3UI4rbLAMni6Fv42h+aOxz6F NXPG5PR/6PLlrlQ/PZ1PVKGgbk52t+qSYwA+6RZIyNUNxOnfOExpxvLLLWqardis ilWe9LsiypK5boC5fejf5XzHk/NQ4qqDoOOQ0+pvFiY/YCEibMkJUTUyhrMKukRO ijbfHvzUsL6lh3Sh+osaa848bexJGnqx50R+2dXre+WfpIyzNy2qDeQjKsc3JLxv dTyQhA6udKtZSALKefMtzOjIazMCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSVBSF1 8mx7ICnHeHGfSn/Z65YX5TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQA5CAwDQYJKoZIhvcNAQELBQADggEBAFZPiwwsRyTXXINPE0bw 10h4KmHzlfZLj1nyjXKa1FzoaHcGUPTsiD3TpPRLJmeYrd1xDFg4M/iO4edJ5STf rxUG///YyDN6KBWSWh+OYXXikWuZyN9hNM25e0F5VLYWGZFq415UAn6fhU05x9V7 hbQ+jnTsEVuKw4dxUfqiyHAAId3DjzcW2A9EITghjCQcKc9+aSZsC0LU9wCsrGod UPls+xV5lIV97ZgQ1Zh8d4dN4Liqi79GwXbomyqjJTqoW5+te/fJBUfVpLB9fIxC 6cYryikQimul5lZ1iKP7AVjnlKX1SfGqvX6HXhaitNAKdMEwOj9pEaWaesxKQrLr Dts= -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:36 2026 by rpki-client