This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa File: AS45724.roa (raw, json) Hash identifier: CE6k8haJJn6XQv3Kn3S2wRlsnFZGe77IVrfg8ednDLk= Subject key identifier: FC:3D:42:45:32:7F:D6:92:31:2A:99:D5:8C:17:C2:E3:BC:E9:16:5F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 77F2EDB6A0D55FCEB585F62B63D272B97BB7892C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa Signing time: Tue 11 Nov 2025 06:00:09 +0000 ROA not before: Tue 11 Nov 2025 05:55:09 +0000 ROA not after: Tue 10 Nov 2026 06:00:09 +0000 asID: 45724 IP address blocks: 2407:e5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f2:ed:b6:a0:d5:5f:ce:b5:85:f6:2b:63:d2:72:b9:7b:b7:89:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:09 2025 GMT Not After : Nov 10 06:00:09 2026 GMT Subject: CN=FC3D4245327FD692312A99D58C17C2E3BCE9165F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:24:3c:1f:1c:b1:0c:77:9a:a6:ed:c4:01:2a: 78:1f:75:d6:53:b5:22:49:c2:4d:cb:72:35:7c:80: 26:f9:02:2a:3f:63:0a:2a:68:d0:04:79:c0:2b:3d: 68:07:0c:51:89:39:c2:f6:df:45:3f:3b:e6:27:43: e9:ec:ac:9c:80:f3:8b:6d:c9:71:10:13:04:ca:dd: e4:ae:54:87:e8:41:56:60:f0:f2:a9:78:f2:a5:3c: bc:40:7f:29:f8:f5:d2:58:55:61:b6:2c:77:3d:e6: 56:42:40:0c:21:07:79:8f:fe:cc:bc:a6:33:80:c1: 85:28:e4:ec:54:fe:80:ab:75:24:07:8f:95:07:5b: 4b:09:27:0b:91:69:8a:4e:34:f8:dc:c2:36:33:b6: 42:c8:40:f4:3e:0c:65:0e:ee:a5:f1:ef:8f:0e:8f: 36:79:42:68:60:dc:58:78:72:cf:94:60:8a:20:43: ed:1e:e1:58:13:ab:d2:ce:bc:b0:3d:23:c2:cb:59: ca:85:73:09:7d:d5:12:54:b2:70:5a:37:75:1f:fa: d0:8f:df:2b:7f:3b:0c:56:15:bb:aa:37:d6:f3:16: de:e4:a4:cb:da:a8:09:15:8e:35:ae:fd:f5:5e:00: 66:b3:87:24:74:fe:9f:1e:a1:63:53:31:c3:ab:9a: fc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3D:42:45:32:7F:D6:92:31:2A:99:D5:8C:17:C2:E3:BC:E9:16:5F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS45724.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:e5c0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:f9:ed:94:75:2e:40:99:cf:7a:b7:ff:4a:89:48:7c:16:73: db:36:e9:db:ec:e2:9f:0e:88:1d:2b:1d:ff:24:cf:4a:60:f4: fb:cf:44:09:9d:a0:33:42:4e:e0:7e:6c:42:cb:50:2e:22:b4: e3:99:80:17:f3:23:e7:94:88:4b:fe:1c:42:22:d2:9b:8c:90: 21:9d:d7:7f:02:8d:cc:ba:15:1a:92:98:48:84:b2:1c:fa:4d: 39:cd:e5:00:f7:dc:79:a8:ed:52:e4:79:35:7b:99:4d:b1:a4: 6f:30:cc:84:0d:14:ac:36:29:05:f6:4a:0f:e8:65:bc:7a:d1: b0:c9:c6:64:62:3b:af:6b:ac:d2:09:70:12:be:21:72:59:93: 35:20:ab:18:c3:92:62:c3:41:44:2b:09:c7:25:26:1d:73:7e: 8b:78:36:ab:41:f0:93:44:64:b4:c4:46:fc:59:80:e6:d1:f7: 7a:9f:4f:e9:70:c1:99:3b:ab:cb:ae:91:51:3c:2b:16:62:9c: 50:3f:0d:ac:c9:3b:fc:8a:c2:62:ab:da:50:a8:b0:eb:7c:bc: 3e:2d:c8:90:e7:56:ee:00:16:80:11:ff:26:89:e8:f3:ff:21: 79:67:69:a3:31:bc:b3:ab:a3:3f:e1:25:a4:2e:24:63:ff:34: bc:0a:1c:17 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUd/LttqDVX861hfYrY9JyuXu3iSwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwOVoX DTI2MTExMDA2MDAwOVowMzExMC8GA1UEAxMoRkMzRDQyNDUzMjdGRDY5MjMxMkE5 OUQ1OEMxN0MyRTNCQ0U5MTY1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAkPB8csQx3mqbtxAEqeB911lO1IknCTctyNXyAJvkCKj9jCipo0AR5wCs9 aAcMUYk5wvbfRT875idD6eysnIDzi23JcRATBMrd5K5Uh+hBVmDw8ql48qU8vEB/ Kfj10lhVYbYsdz3mVkJADCEHeY/+zLymM4DBhSjk7FT+gKt1JAePlQdbSwknC5Fp ik40+NzCNjO2QshA9D4MZQ7upfHvjw6PNnlCaGDcWHhyz5RgiiBD7R7hWBOr0s68 sD0jwstZyoVzCX3VElSycFo3dR/60I/fK387DFYVu6o31vMW3uSky9qoCRWONa79 9V4AZrOHJHT+nx6hY1Mxw6ua/D0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT8PUJF Mn/WkjEqmdWMF8LjvOkWXzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzQ1NzI0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAflwDANBgkqhkiG9w0BAQsFAAOCAQEADvntlHUuQJnPerf/SolI fBZz2zbp2+zinw6IHSsd/yTPSmD0+89ECZ2gM0JO4H5sQstQLiK045mAF/Mj55SI S/4cQiLSm4yQIZ3XfwKNzLoVGpKYSISyHPpNOc3lAPfceajtUuR5NXuZTbGkbzDM hA0UrDYpBfZKD+hlvHrRsMnGZGI7r2us0glwEr4hclmTNSCrGMOSYsNBRCsJxyUm HXN+i3g2q0Hwk0RktMRG/FmA5tH3ep9P6XDBmTury66RUTwrFmKcUD8NrMk7/IrC YqvaUKiw63y8Pi3IkOdW7gAWgBH/Jono8/8heWdpozG8s6ujP+ElpC4kY/80vAoc Fw== -----END CERTIFICATE-----Generated at Wed Dec 3 14:42:47 2025 by rpki-client