This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa File: AS45708.roa (raw, json) Hash identifier: /xd1r6sEHI0oMAUVU5XZncfUTAjjqkE6i+2qjurnRwE= Subject key identifier: F4:22:0D:2C:01:4D:34:95:90:DC:57:A9:D7:52:5E:F8:22:E1:B5:1B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6B6AF5959654FA0D77A77B82C2C717FB15DEA460 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa Signing time: Tue 11 Nov 2025 06:00:15 +0000 ROA not before: Tue 11 Nov 2025 05:55:15 +0000 ROA not after: Tue 10 Nov 2026 06:00:15 +0000 asID: 45708 IP address blocks: 112.140.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6a:f5:95:96:54:fa:0d:77:a7:7b:82:c2:c7:17:fb:15:de:a4:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:15 2025 GMT Not After : Nov 10 06:00:15 2026 GMT Subject: CN=F4220D2C014D349590DC57A9D7525EF822E1B51B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0c:ba:07:2e:bd:9e:aa:7b:26:6a:d2:4a:92: d8:aa:81:6b:11:6b:06:2a:a5:59:ae:7e:3d:92:d4: 2d:ee:75:56:ab:0a:b8:1d:2f:51:22:a6:36:05:56: 65:e1:15:98:58:c3:de:f0:8d:34:9e:f6:7c:0c:3b: 48:da:d3:b1:84:fa:a0:3e:0e:f1:55:19:96:88:66: 95:49:90:02:dd:cc:43:1d:0b:5b:3d:96:20:8e:44: 7f:97:3a:f3:c6:01:c2:fe:24:61:38:80:9b:00:7d: c5:91:03:6a:48:38:68:0b:65:99:9d:43:e4:9f:8f: 17:40:c3:a5:97:3e:0c:56:62:91:ba:70:f9:a6:0e: 46:9d:49:34:20:e8:c0:85:7e:ba:bf:ac:8b:b8:ec: fa:05:0f:57:9d:a1:88:c3:11:6e:a9:f0:8a:20:0d: 17:e8:d7:e5:be:c3:95:70:72:b6:d3:5e:7e:be:34: ea:2f:e2:0d:de:e5:6c:21:22:a5:8c:77:b1:31:b1: 15:32:14:3d:47:0e:a8:06:36:49:98:9b:da:4d:42: 8c:0f:20:6d:2e:dd:de:8f:c8:5d:30:32:17:cf:6a: 13:18:2a:9f:12:ae:63:31:44:a8:20:7c:b9:4c:ad: 13:7e:37:38:fe:e4:7c:28:16:38:f0:f1:b3:82:de: cd:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:22:0D:2C:01:4D:34:95:90:DC:57:A9:D7:52:5E:F8:22:E1:B5:1B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45708.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 112.140.160.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:a5:66:dd:57:36:ec:9f:43:be:dd:72:48:9a:2a:a6:44:73: 0c:71:f7:62:11:4e:82:c6:5e:6c:74:a8:32:6b:ed:ce:27:d8: 62:22:94:21:ca:aa:41:d4:85:08:d8:ca:f3:8f:ba:1a:fb:66: 55:72:cb:4a:95:de:47:b0:71:1c:8c:66:2a:52:65:72:a7:85: dd:ff:ae:a4:a8:8f:ed:e7:eb:47:91:a1:99:a8:28:7a:c5:ef: 15:eb:a1:4d:eb:17:03:35:e3:8a:7c:53:30:81:8a:7a:1c:46: 05:b0:d6:c6:ac:bf:dc:b6:35:20:ab:d6:34:c2:e7:1e:f5:96: c9:85:3c:f4:9e:98:58:75:b5:7a:eb:f3:72:f8:d9:23:e9:1f: a9:99:6e:e9:3e:70:1d:3a:e9:1d:e7:a6:2b:f4:f1:b0:89:a4: 95:50:80:d4:5e:13:1e:66:bd:a3:9e:1d:fc:ba:df:44:44:2c: 80:35:a4:fc:72:bc:a3:42:cb:40:59:62:fa:62:37:00:ee:5f: 6b:21:d5:72:90:91:23:da:31:4c:e8:00:99:19:9e:e5:12:48: 22:a9:07:c8:60:7a:c0:95:a9:12:1b:84:f6:3d:36:65:d1:2f: 46:b2:6b:ae:35:98:78:77:41:65:28:e0:14:94:de:6b:ca:27: ca:bd:52:0c -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUa2r1lZZU+g13p3uCwscX+xXepGAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxNVoX DTI2MTExMDA2MDAxNVowMzExMC8GA1UEAxMoRjQyMjBEMkMwMTREMzQ5NTkwREM1 N0E5RDc1MjVFRjgyMkUxQjUxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4MugcuvZ6qeyZq0kqS2KqBaxFrBiqlWa5+PZLULe51VqsKuB0vUSKmNgVW ZeEVmFjD3vCNNJ72fAw7SNrTsYT6oD4O8VUZlohmlUmQAt3MQx0LWz2WII5Ef5c6 88YBwv4kYTiAmwB9xZEDakg4aAtlmZ1D5J+PF0DDpZc+DFZikbpw+aYORp1JNCDo wIV+ur+si7js+gUPV52hiMMRbqnwiiANF+jX5b7DlXByttNefr406i/iDd7lbCEi pYx3sTGxFTIUPUcOqAY2SZib2k1CjA8gbS7d3o/IXTAyF89qExgqnxKuYzFEqCB8 uUytE343OP7kfCgWOPDxs4LezYECAwEAAaOCAc8wggHLMB0GA1UdDgQWBBT0Ig0s AU00lZDcV6nXUl74IuG1GzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzA4LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDcIygMA0GCSqGSIb3DQEBCwUAA4IBAQAfpWbdVzbsn0O+3XJImiqm RHMMcfdiEU6Cxl5sdKgya+3OJ9hiIpQhyqpB1IUI2Mrzj7oa+2ZVcstKld5HsHEc jGYqUmVyp4Xd/66kqI/t5+tHkaGZqCh6xe8V66FN6xcDNeOKfFMwgYp6HEYFsNbG rL/ctjUgq9Y0wuce9ZbJhTz0nphYdbV66/Ny+Nkj6R+pmW7pPnAdOukd56Yr9PGw iaSVUIDUXhMeZr2jnh38ut9ERCyANaT8cryjQstAWWL6YjcA7l9rIdVykJEj2jFM 6ACZGZ7lEkgiqQfIYHrAlakSG4T2PTZl0S9GsmuuNZh4d0FlKOAUlN5ryifKvVIM -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:20 2025 by rpki-client