This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa File: AS147109.roa (raw, json) Hash identifier: IL5NHd8NHmWxAvVacEV6mRpAQxlwat+blecCJOTMzhM= Subject key identifier: B4:C5:15:43:D7:3F:97:A7:0B:55:A9:B3:B9:4B:7F:1D:D3:51:83:9C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4427596E1E377E0C34F5DF74A26D52B76B907D1E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa Signing time: Tue 11 Nov 2025 06:00:25 +0000 ROA not before: Tue 11 Nov 2025 05:55:25 +0000 ROA not after: Tue 10 Nov 2026 06:00:25 +0000 asID: 147109 IP address blocks: 103.175.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:27:59:6e:1e:37:7e:0c:34:f5:df:74:a2:6d:52:b7:6b:90:7d:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:25 2025 GMT Not After : Nov 10 06:00:25 2026 GMT Subject: CN=B4C51543D73F97A70B55A9B3B94B7F1DD351839C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b3:3f:80:58:9d:64:57:7f:89:a5:3d:58:3f: 0d:8f:b6:cc:be:73:56:91:1c:e5:57:4f:b0:62:4b: ae:58:69:27:f7:2f:b7:77:a0:b7:13:43:7e:0b:d0: b8:80:d4:62:86:dc:0f:f7:4f:a4:32:f9:f6:05:2d: 0b:bf:e6:d0:18:d6:4c:d9:d0:a1:a2:69:70:a8:85: 75:d3:0a:9d:57:97:e2:1a:2c:36:41:96:af:bc:fe: 4f:d8:e1:e8:41:9b:f0:e2:db:7a:2b:9e:04:0c:2c: ae:77:ad:32:22:2d:f8:34:4b:a5:27:f7:fb:b1:2a: 38:9e:cf:f0:de:26:88:78:32:3f:57:59:21:60:74: 1e:b4:e6:48:ab:5a:5c:01:d3:91:c3:fe:c2:3c:1d: 8c:f4:12:45:38:90:bc:66:54:cb:e9:c0:96:ef:bc: 6c:b3:50:8f:6c:f2:99:6b:86:9a:fd:10:64:a4:a4: 24:0e:b4:ea:3d:c5:9f:a5:41:2a:48:4e:71:d9:a3: 23:fb:fc:cc:87:09:55:ec:31:3c:f9:cf:5d:c1:03: 5b:fa:b7:49:8e:c9:d6:f2:e5:13:99:76:c1:fe:fa: c4:ce:6c:63:9e:e2:53:2a:02:60:38:e4:bb:97:6c: 0d:7d:94:b1:11:05:bb:78:d3:ae:37:72:84:c3:cf: d8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C5:15:43:D7:3F:97:A7:0B:55:A9:B3:B9:4B:7F:1D:D3:51:83:9C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147109.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.46.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:0e:4b:29:82:15:09:fd:fe:14:dc:8f:f3:16:cb:fd:a2:19: a8:8a:c6:73:43:06:6d:d7:88:74:51:ff:84:be:cf:7b:fe:cf: 8e:aa:c9:4a:29:bb:16:ee:11:9d:49:4b:13:d0:07:80:39:53: 06:f2:4a:fd:d0:81:f6:2d:69:1f:80:a4:1b:82:74:c7:54:ff: 1f:a3:a3:87:e2:ea:a3:13:0f:9f:67:2a:d6:3e:47:8b:53:23: 15:2a:59:05:0c:ea:04:8b:77:d0:9f:45:8d:4f:0f:40:30:63: e3:7d:79:ca:b1:70:4d:fe:49:6f:1a:b7:3a:74:64:c7:62:72: e9:09:da:e7:70:8a:d8:f2:29:e8:e6:d8:35:56:f1:df:d3:bc: e0:b3:a9:cc:3d:31:d3:a0:0b:42:31:96:00:50:e6:6f:8a:d9: b1:f4:83:5d:66:6a:c3:3b:a1:be:4f:49:9b:25:ba:cf:60:b0: e1:c3:5b:73:22:da:32:99:01:ae:03:75:2e:d7:4d:61:65:9e: 49:06:3e:2e:b7:07:f2:cc:34:87:b8:53:5c:f2:6d:ef:a9:b9: 01:b2:2d:92:17:a8:77:e1:3c:b1:b1:d6:c9:7c:cc:07:8c:e4: d2:3d:0b:f9:45:3d:7d:e1:a9:56:48:01:c9:d0:5e:8d:01:6f: 60:23:ff:ae -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURCdZbh43fgw09d90om1St2uQfR4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyNVoX DTI2MTExMDA2MDAyNVowMzExMC8GA1UEAxMoQjRDNTE1NDNENzNGOTdBNzBCNTVB OUIzQjk0QjdGMUREMzUxODM5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANuzP4BYnWRXf4mlPVg/DY+2zL5zVpEc5VdPsGJLrlhpJ/cvt3egtxNDfgvQ uIDUYobcD/dPpDL59gUtC7/m0BjWTNnQoaJpcKiFddMKnVeX4hosNkGWr7z+T9jh 6EGb8OLbeiueBAwsrnetMiIt+DRLpSf3+7EqOJ7P8N4miHgyP1dZIWB0HrTmSKta XAHTkcP+wjwdjPQSRTiQvGZUy+nAlu+8bLNQj2zymWuGmv0QZKSkJA606j3Fn6VB KkhOcdmjI/v8zIcJVewxPPnPXcEDW/q3SY7J1vLlE5l2wf76xM5sY57iUyoCYDjk u5dsDX2UsREFu3jTrjdyhMPP2KUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS0xRVD 1z+XpwtVqbO5S38d01GDnDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWevLjANBgkqhkiG9w0BAQsFAAOCAQEAmw5LKYIVCf3+FNyP8xbL /aIZqIrGc0MGbdeIdFH/hL7Pe/7PjqrJSim7Fu4RnUlLE9AHgDlTBvJK/dCB9i1p H4CkG4J0x1T/H6Ojh+LqoxMPn2cq1j5Hi1MjFSpZBQzqBIt30J9FjU8PQDBj4315 yrFwTf5Jbxq3OnRkx2Jy6Qna53CK2PIp6ObYNVbx39O84LOpzD0x06ALQjGWAFDm b4rZsfSDXWZqwzuhvk9JmyW6z2Cw4cNbcyLaMpkBrgN1LtdNYWWeSQY+LrcH8sw0 h7hTXPJt76m5AbItkheod+E8sbHWyXzMB4zk0j0L+UU9feGpVkgBydBejQFvYCP/ rg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:04 2025 by rpki-client