This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38524.roa File: AS38524.roa (raw, json) Hash identifier: 6tj2XLHHHIKTQ21gCvPHeyBmHRWMoq3q+a/VNQ+ZMxQ= Subject key identifier: 86:E1:E2:AC:F1:03:43:40:0D:8F:0D:BA:60:00:15:5C:AC:89:7C:DD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58F208C861F4585D15950C33357469B799B06856 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38524.roa Signing time: Sat 13 Dec 2025 09:29:47 +0000 ROA not before: Sat 13 Dec 2025 09:24:47 +0000 ROA not after: Sat 12 Dec 2026 09:29:47 +0000 asID: 38524 IP address blocks: 103.191.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f2:08:c8:61:f4:58:5d:15:95:0c:33:35:74:69:b7:99:b0:68:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 13 09:24:47 2025 GMT Not After : Dec 12 09:29:47 2026 GMT Subject: CN=86E1E2ACF10343400D8F0DBA6000155CAC897CDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b7:de:88:5f:b9:7a:90:dc:58:7d:52:18:ce: 25:88:0e:01:af:6d:63:e9:35:47:7f:d1:12:f0:46: 80:1f:64:07:e3:93:82:18:50:ba:0a:9a:e9:76:b2: 75:12:e1:0a:4a:10:56:b0:18:97:00:d5:fc:5c:82: 86:a6:37:be:06:1d:59:3e:0b:af:2a:39:63:4d:a0: 5f:0b:06:1d:aa:a7:e8:ec:86:57:17:27:06:42:b3: 55:87:0e:f9:b4:4b:2f:98:61:38:b8:34:7c:21:72: 67:c2:92:cb:98:18:6b:9b:d8:35:13:f7:46:9f:9f: 66:1e:47:4c:49:1a:dc:8e:78:0c:90:86:65:01:19: 93:65:cb:68:43:db:ee:d2:f5:07:5c:15:98:f7:52: bb:a7:eb:49:e8:a4:e4:82:ea:20:1d:c6:91:b9:12: 2d:80:97:90:e2:37:3c:69:10:6b:3b:57:85:57:c9: 5b:20:26:a5:33:96:69:fe:6f:18:cd:50:04:84:f0: 8c:ea:86:61:e4:4b:e9:3d:53:04:9e:17:b9:84:0a: cb:b2:02:79:88:f5:83:01:85:2f:65:06:00:8e:1f: 5c:ac:5e:6e:7a:4c:36:de:5a:18:4e:a1:90:99:32: dd:0a:ee:e6:50:77:8f:f5:47:2e:59:b6:94:76:b3: 97:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E1:E2:AC:F1:03:43:40:0D:8F:0D:BA:60:00:15:5C:AC:89:7C:DD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38524.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.152.0/23 Signature Algorithm: sha256WithRSAEncryption 80:52:94:73:67:ea:87:d4:2e:8d:17:0e:7d:c9:70:19:59:cc: 9e:9b:80:bd:da:f0:5f:60:7a:d3:7f:c5:8d:d6:9c:e6:92:93: 16:22:b9:bc:e3:5f:69:0d:00:db:fb:4a:d1:61:91:f6:cf:68: 70:ef:ec:fe:38:98:23:eb:01:63:2f:f2:c7:27:3f:2d:6e:60: 4e:a0:57:1b:90:94:40:3b:f7:cc:7d:01:30:35:bc:d9:ca:5b: 5f:6d:1c:99:a8:9a:ed:b0:0e:04:ac:15:36:be:ce:2d:f3:c1: 7b:3a:ed:07:88:14:4c:e3:9e:ba:45:df:fe:9e:a4:6a:e6:ab: 05:98:b8:fb:e9:1e:22:5f:63:57:0a:03:d4:fa:6b:d6:7e:3d: 5d:6e:9b:a3:df:08:2f:33:14:0c:48:69:62:92:1c:cf:b3:37: 43:0c:57:0b:9e:84:d7:e1:50:36:88:a9:dd:d6:54:75:bf:d3: 89:a8:73:fc:b3:53:c4:a5:e3:b8:17:c8:fe:64:6b:6e:7d:5c: 30:49:9c:1a:97:56:7a:b9:52:ce:87:c1:40:0e:23:78:3c:77: 7f:35:5c:f3:23:64:93:86:bc:9d:eb:03:d4:bd:d2:88:da:0d: 48:79:2d:ab:f4:37:97:8d:8c:aa:5a:3e:f1:d1:64:37:59:f4: 67:75:15:55 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUWPIIyGH0WF0VlQwzNXRpt5mwaFYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxMzA5MjQ0N1oX DTI2MTIxMjA5Mjk0N1owMzExMC8GA1UEAxMoODZFMUUyQUNGMTAzNDM0MDBEOEYw REJBNjAwMDE1NUNBQzg5N0NERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALS33ohfuXqQ3Fh9UhjOJYgOAa9tY+k1R3/REvBGgB9kB+OTghhQugqa6Xay dRLhCkoQVrAYlwDV/FyChqY3vgYdWT4Lryo5Y02gXwsGHaqn6OyGVxcnBkKzVYcO +bRLL5hhOLg0fCFyZ8KSy5gYa5vYNRP3Rp+fZh5HTEka3I54DJCGZQEZk2XLaEPb 7tL1B1wVmPdSu6frSeik5ILqIB3GkbkSLYCXkOI3PGkQaztXhVfJWyAmpTOWaf5v GM1QBITwjOqGYeRL6T1TBJ4XuYQKy7ICeYj1gwGFL2UGAI4fXKxebnpMNt5aGE6h kJky3Qru5lB3j/VHLlm2lHazl0UCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSG4eKs 8QNDQA2PDbpgABVcrIl83TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4NTI0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ7+YMA0GCSqGSIb3DQEBCwUAA4IBAQCAUpRzZ+qH1C6NFw59yXAZ Wcyem4C92vBfYHrTf8WN1pzmkpMWIrm8419pDQDb+0rRYZH2z2hw7+z+OJgj6wFj L/LHJz8tbmBOoFcbkJRAO/fMfQEwNbzZyltfbRyZqJrtsA4ErBU2vs4t88F7Ou0H iBRM4566Rd/+nqRq5qsFmLj76R4iX2NXCgPU+mvWfj1dbpuj3wgvMxQMSGlikhzP szdDDFcLnoTX4VA2iKnd1lR1v9OJqHP8s1PEpeO4F8j+ZGtufVwwSZwal1Z6uVLO h8FADiN4PHd/NVzzI2SThryd6wPUvdKI2g1IeS2r9DeXjYyqWj7x0WQ3WfRndRVV -----END CERTIFICATE-----Generated at Fri Dec 19 06:37:23 2025 by rpki-client