This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa File: AS24537.roa (raw, json) Hash identifier: foHJIRclkwSJ9m+upnnznlrkmOBdw3gkFxR3H9mF7XM= Subject key identifier: 3A:76:D4:B8:E6:FD:D3:A2:15:23:B1:AC:D8:8F:7E:17:E7:0D:35:05 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34C5FA5D506B41ABB1CF3021A2B53E4509D87E8A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa Signing time: Tue 11 Nov 2025 06:00:05 +0000 ROA not before: Tue 11 Nov 2025 05:55:05 +0000 ROA not after: Tue 10 Nov 2026 06:00:05 +0000 asID: 24537 IP address blocks: 103.173.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c5:fa:5d:50:6b:41:ab:b1:cf:30:21:a2:b5:3e:45:09:d8:7e:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:05 2025 GMT Not After : Nov 10 06:00:05 2026 GMT Subject: CN=3A76D4B8E6FDD3A21523B1ACD88F7E17E70D3505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a6:96:72:0c:fc:96:03:ae:b5:e4:9e:f5:78: d2:90:84:46:19:98:d7:2e:28:e7:cf:e6:b2:52:bc: b7:b5:cd:fa:75:58:41:a6:2d:3b:76:31:87:f0:ad: 29:e7:15:8c:d4:5d:22:11:36:ba:bc:d6:a8:06:8e: 7f:ab:c0:af:6f:f9:71:b2:37:31:a7:9b:d1:19:dd: 24:a7:6b:35:9b:9e:3f:5d:79:ff:68:19:b7:97:a1: 2e:70:d8:b8:88:f7:41:41:48:d9:27:f2:7b:f9:af: 8f:3c:6f:e7:ad:65:c2:5a:69:6d:85:c3:2f:8b:bb: b9:9b:3f:1e:a7:24:c4:06:a5:3a:99:e7:44:1b:ea: 7e:82:83:fc:56:c0:4c:dd:10:cb:6d:61:94:4d:cd: 1f:cb:4d:f4:0c:f7:13:38:92:b0:9c:bf:06:8f:1f: 9d:53:b9:e5:f4:7c:e3:49:84:84:c9:01:4a:a1:f9: 9e:d0:af:f4:c8:0e:3d:80:dd:54:b0:30:39:de:33: b4:2f:7e:97:57:17:c7:fb:31:a9:fb:7e:9e:90:99: a0:bd:0c:73:29:89:0f:5d:6f:68:f9:bc:c5:4d:f9: 2d:a8:43:93:01:25:71:48:24:5d:df:da:e0:56:0f: 30:10:7f:26:6e:4f:e6:84:c4:7e:81:e8:37:de:1c: dd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:76:D4:B8:E6:FD:D3:A2:15:23:B1:AC:D8:8F:7E:17:E7:0D:35:05 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.162.0/23 Signature Algorithm: sha256WithRSAEncryption 02:fc:0f:2b:8c:06:4c:5f:79:3a:b6:6e:d9:b1:df:a8:6d:21: 5f:57:7f:92:28:1b:eb:9b:85:2f:bd:8b:39:ea:54:0a:e3:7e: f6:ff:38:42:13:96:21:04:bc:cf:d5:30:35:e2:f4:0f:a0:7c: 50:f2:7f:ca:f5:be:96:6f:aa:82:e8:0d:50:5f:f9:dd:88:03: 9d:74:1e:6d:37:e4:11:40:42:fb:2a:7e:f5:13:17:cb:a1:22: af:9c:04:93:c1:49:63:3d:0a:59:de:ca:ca:a7:16:ad:de:90: 46:a9:43:4f:23:34:64:45:e4:ee:ac:f8:48:97:93:99:7f:73: 5e:3c:61:17:b6:07:ec:f8:d4:9c:0e:55:32:60:a2:f4:6e:1a: 89:f5:dc:16:42:31:7d:b3:0c:d0:af:7f:11:7c:4c:c7:58:2e: 6c:8f:43:93:b1:16:d8:8d:46:15:28:10:02:75:5f:e5:c1:58: 01:77:3f:af:b2:46:06:b1:2e:22:6a:84:57:18:c7:b3:1b:0a: a8:b0:37:f1:6e:4d:a1:b6:36:ed:49:66:9e:dc:2f:9c:16:73: dd:21:85:12:cd:d0:cc:2a:44:8b:2e:7b:20:e5:fd:f8:68:c8: 87:2e:16:4f:88:fc:82:63:01:75:0a:45:2d:77:83:9b:d1:29: 61:16:0f:66 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUNMX6XVBrQauxzzAhorU+RQnYfoowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwNVoX DTI2MTExMDA2MDAwNVowMzExMC8GA1UEAxMoM0E3NkQ0QjhFNkZERDNBMjE1MjNC MUFDRDg4RjdFMTdFNzBEMzUwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGmlnIM/JYDrrXknvV40pCERhmY1y4o58/mslK8t7XN+nVYQaYtO3Yxh/Ct KecVjNRdIhE2urzWqAaOf6vAr2/5cbI3Maeb0RndJKdrNZueP115/2gZt5ehLnDY uIj3QUFI2Sfye/mvjzxv561lwlppbYXDL4u7uZs/HqckxAalOpnnRBvqfoKD/FbA TN0Qy21hlE3NH8tN9Az3EziSsJy/Bo8fnVO55fR840mEhMkBSqH5ntCv9MgOPYDd VLAwOd4ztC9+l1cXx/sxqft+npCZoL0McymJD11vaPm8xU35LahDkwElcUgkXd/a 4FYPMBB/Jm5P5oTEfoHoN94c3f8CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQ6dtS4 5v3TohUjsazYj34X5w01BTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzI0NTM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ62iMA0GCSqGSIb3DQEBCwUAA4IBAQAC/A8rjAZMX3k6tm7Zsd+o bSFfV3+SKBvrm4UvvYs56lQK4372/zhCE5YhBLzP1TA14vQPoHxQ8n/K9b6Wb6qC 6A1QX/ndiAOddB5tN+QRQEL7Kn71ExfLoSKvnASTwUljPQpZ3srKpxat3pBGqUNP IzRkReTurPhIl5OZf3NePGEXtgfs+NScDlUyYKL0bhqJ9dwWQjF9swzQr38RfEzH WC5sj0OTsRbYjUYVKBACdV/lwVgBdz+vskYGsS4iaoRXGMezGwqosDfxbk2htjbt SWae3C+cFnPdIYUSzdDMKkSLLnsg5f34aMiHLhZPiPyCYwF1CkUtd4Ob0SlhFg9m -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:02 2025 by rpki-client