This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45658.roa File: AS45658.roa (raw, json) Hash identifier: oy3Hdj/VM92qKDS+zUREGRNL00f9DugBN4zvPoKh61A= Subject key identifier: BC:91:C3:44:2C:4C:7A:C5:31:61:AE:E3:FB:D1:FB:3C:DD:6B:F7:A3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6837ADFE6923DFE7207697AE63E96217EF5E0FFC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45658.roa Signing time: Mon 01 Dec 2025 11:00:00 +0000 ROA not before: Mon 01 Dec 2025 10:55:00 +0000 ROA not after: Mon 30 Nov 2026 11:00:00 +0000 asID: 45658 IP address blocks: 103.135.94.0/24 maxlen: 24 103.135.96.0/23 maxlen: 24 202.58.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:37:ad:fe:69:23:df:e7:20:76:97:ae:63:e9:62:17:ef:5e:0f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 1 10:55:00 2025 GMT Not After : Nov 30 11:00:00 2026 GMT Subject: CN=BC91C3442C4C7AC53161AEE3FBD1FB3CDD6BF7A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:19:76:65:b6:cb:c2:53:56:47:d0:51:74:58: be:9f:0a:0e:99:db:ea:a6:23:9c:bd:39:33:95:5a: 21:88:36:32:5a:51:55:e4:f0:d8:c0:71:bc:03:6f: 1e:cc:0c:5c:78:1e:2b:0d:47:a8:00:2e:d6:5b:9e: a4:96:1b:93:98:87:00:aa:32:11:b7:e2:7d:8c:49: 00:45:a3:11:69:82:0e:e1:9f:50:4a:a6:be:2c:34: c5:c7:b6:8e:26:0a:d3:51:2e:64:9d:9a:ec:b6:46: 22:5c:08:bb:31:79:db:88:2e:47:4b:88:0c:9f:4a: 56:00:68:33:11:6c:e2:41:cf:94:9b:bd:08:44:69: 7c:84:9d:02:87:da:1c:c2:88:57:20:6a:c7:50:d9: 00:26:97:d2:d6:24:25:1a:87:18:12:f4:1d:21:aa: b4:50:41:69:00:c5:3d:2f:79:cf:09:5c:65:b4:54: 77:f5:8e:ea:99:74:33:bf:fb:cd:07:a8:bd:0b:ab: b4:e4:7f:38:19:63:f5:f5:59:99:66:5a:b6:bf:6a: cc:b1:2c:c3:81:87:95:ea:1e:0a:ca:48:05:ed:06: 7a:fc:aa:e1:fe:97:15:3d:99:f1:63:d3:8b:1a:5f: 0e:10:0b:b7:26:93:07:19:92:21:d0:12:55:85:7e: 1e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:91:C3:44:2C:4C:7A:C5:31:61:AE:E3:FB:D1:FB:3C:DD:6B:F7:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.94.0/24 103.135.96.0/23 202.58.124.0/24 Signature Algorithm: sha256WithRSAEncryption 24:fc:8c:91:0e:6c:c6:fd:56:19:d2:d1:52:8d:6a:0d:f4:8f: d6:ff:0a:f3:34:af:db:0c:32:8f:8a:7c:fa:de:b3:1f:b3:93: fc:a1:95:8a:39:59:2f:9a:25:63:79:0e:f8:bd:db:50:ec:c7: a1:31:fb:2f:22:4d:19:89:22:bb:fc:c0:3f:41:f8:15:55:ff: e9:2b:a9:ae:0f:25:4c:dd:c1:d5:30:58:17:6f:0c:63:4f:5a: 02:e7:af:61:49:45:8c:9e:db:d0:16:6b:c7:f8:3c:80:19:ce: df:47:e6:5a:36:7c:b0:6b:4c:66:60:a8:10:56:ec:bf:80:8b: ba:fa:30:a1:35:1c:9f:aa:2a:7b:6f:c9:28:8d:24:16:56:92: 21:69:f2:9f:f5:f0:a1:d8:b3:b7:6e:e8:e9:55:d8:21:c3:d3: 84:93:80:4f:3f:dd:5f:f1:c5:df:3a:fa:f2:1f:31:87:42:f7: cd:e0:45:70:7a:cb:94:eb:99:dc:0c:74:f3:43:8d:d2:a6:d1: 97:d0:0c:bb:7b:5c:49:51:35:3b:80:4e:66:25:65:98:b8:af: 5e:18:54:f4:1c:80:97:8b:1d:ec:80:00:51:77:11:d2:e5:a3: a7:f3:9d:a8:3b:c8:25:5c:f9:ff:36:ed:f9:82:85:72:55:38: 7a:2a:5b:d2 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUaDet/mkj3+cgdpeuY+liF+9eD/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIwMTEwNTUwMFoX DTI2MTEzMDExMDAwMFowMzExMC8GA1UEAxMoQkM5MUMzNDQyQzRDN0FDNTMxNjFB RUUzRkJEMUZCM0NERDZCRjdBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANkZdmW2y8JTVkfQUXRYvp8KDpnb6qYjnL05M5VaIYg2MlpRVeTw2MBxvANv HswMXHgeKw1HqAAu1luepJYbk5iHAKoyEbfifYxJAEWjEWmCDuGfUEqmviw0xce2 jiYK01EuZJ2a7LZGIlwIuzF524guR0uIDJ9KVgBoMxFs4kHPlJu9CERpfISdAofa HMKIVyBqx1DZACaX0tYkJRqHGBL0HSGqtFBBaQDFPS95zwlcZbRUd/WO6pl0M7/7 zQeovQurtOR/OBlj9fVZmWZatr9qzLEsw4GHleoeCspIBe0Gevyq4f6XFT2Z8WPT ixpfDhALtyaTBxmSIdASVYV+HgcCAwEAAaOCAdswggHXMB0GA1UdDgQWBBS8kcNE LEx6xTFhruP70fs83Wv3ozAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NjU4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAZ4deAwQBZ4dgAwQAyjp8MA0GCSqGSIb3DQEBCwUAA4IBAQAk/IyR DmzG/VYZ0tFSjWoN9I/W/wrzNK/bDDKPinz63rMfs5P8oZWKOVkvmiVjeQ74vdtQ 7MehMfsvIk0ZiSK7/MA/QfgVVf/pK6muDyVM3cHVMFgXbwxjT1oC569hSUWMntvQ FmvH+DyAGc7fR+ZaNnywa0xmYKgQVuy/gIu6+jChNRyfqip7b8kojSQWVpIhafKf 9fCh2LO3bujpVdghw9OEk4BPP91f8cXfOvryHzGHQvfN4EVwesuU65ncDHTzQ43S ptGX0Ay7e1xJUTU7gE5mJWWYuK9eGFT0HICXix3sgABRdxHS5aOn852oO8glXPn/ Nu35goVyVTh6KlvS -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:58 2025 by rpki-client