This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa File: AS56246.roa (raw, json) Hash identifier: A2gD7dzFg9dCFn1DOd3fQeyouYYcy5dtUAZnGHp11Nk= Subject key identifier: 3D:4E:C9:42:B2:0D:AC:BE:A2:66:5D:CE:0C:A4:4D:F1:65:19:3C:51 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 540CDBFBDE314E40E62D8BEB534D179A80CAE2D1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa Signing time: Thu 29 Jan 2026 02:31:09 +0000 ROA not before: Thu 29 Jan 2026 02:26:09 +0000 ROA not after: Thu 28 Jan 2027 02:31:09 +0000 asID: 56246 IP address blocks: 103.143.223.0/24 maxlen: 24 103.152.234.0/23 maxlen: 24 114.198.240.0/21 maxlen: 24 114.198.244.0/24 maxlen: 24 114.198.245.0/24 maxlen: 24 116.68.166.0/24 maxlen: 24 116.68.170.0/24 maxlen: 24 116.68.171.0/24 maxlen: 24 116.68.172.0/24 maxlen: 24 116.68.173.0/24 maxlen: 24 116.68.174.0/24 maxlen: 24 116.68.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 14:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:0c:db:fb:de:31:4e:40:e6:2d:8b:eb:53:4d:17:9a:80:ca:e2:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 29 02:26:09 2026 GMT Not After : Jan 28 02:31:09 2027 GMT Subject: CN=3D4EC942B20DACBEA2665DCE0CA44DF165193C51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d1:a3:f7:04:e6:55:de:af:b2:7c:18:60:c0: f3:b8:d5:d3:60:16:ee:38:d4:53:92:59:dc:78:45: 0e:2a:67:b7:65:c6:0e:4f:37:ee:80:1d:26:ae:95: 2d:f4:0d:d3:4a:4d:1a:43:8a:83:a2:d9:1a:cf:e3: 5f:23:d3:01:12:26:11:ba:df:ad:94:53:f9:e4:de: da:9f:11:14:fa:ac:c4:77:71:28:01:38:4b:45:98: 7e:5c:2d:80:8a:01:3b:17:76:49:4e:7b:7d:68:e4: de:44:a9:c6:73:97:da:af:fa:26:60:40:49:a5:01: f7:17:a6:90:02:6c:4c:b9:7d:8d:10:45:4e:ed:c3: b4:36:1a:2b:a0:2a:44:b4:f6:37:e3:95:ea:96:a1: ed:40:79:17:51:5a:71:f8:65:03:09:e5:8c:09:9d: 78:31:55:be:a1:f7:24:1e:13:2e:b7:1c:04:09:21: 6f:a9:76:34:58:7f:4e:27:10:72:48:fc:8e:8b:f7: 4e:af:c1:dc:9d:fe:33:ba:af:7f:9e:bf:3a:11:de: 11:b8:bd:11:39:0b:32:b7:79:ac:37:b7:24:8a:41: c2:c6:40:90:1f:2b:14:15:9e:cd:30:2d:b2:3a:29: d2:26:5b:5a:aa:e8:ba:7d:2a:8a:fc:b7:2a:d3:51: 18:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:4E:C9:42:B2:0D:AC:BE:A2:66:5D:CE:0C:A4:4D:F1:65:19:3C:51 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS56246.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.223.0/24 103.152.234.0/23 114.198.240.0/21 116.68.166.0/24 116.68.170.0-116.68.175.255 Signature Algorithm: sha256WithRSAEncryption 42:3b:da:26:7b:69:60:e9:8c:17:8a:02:f5:0b:c0:54:bc:80: cc:2b:43:09:42:ae:cc:dd:f3:0b:56:e8:4b:ef:08:97:95:5f: 65:fa:a5:7e:ee:12:85:f7:dd:3d:af:d9:94:5d:24:e3:bc:e9: 44:d0:f5:57:fc:41:5a:fe:58:29:0c:81:f5:43:72:6d:f6:7f: 69:6f:f0:82:1c:a4:c3:6c:b7:c4:68:33:5f:ce:1b:d2:26:ff: 92:98:b3:d7:32:1e:21:f0:6f:42:b2:54:57:d8:05:4c:e0:64: 4d:5f:4d:54:84:ca:b6:b4:d9:a7:f2:c9:52:33:3a:de:07:63: 33:02:c4:59:81:3b:fa:ad:70:30:99:c1:3c:92:bb:4a:ee:d8: 32:9c:24:3b:10:da:73:c6:af:ea:ac:30:00:c8:27:56:43:89: cf:f6:5f:d0:b9:c0:6a:f7:9c:f5:a0:ce:b2:d2:29:f3:5a:2e: b2:82:bc:04:c4:cf:d1:48:e0:3e:c8:71:5c:e9:8f:a1:73:d0: 53:06:92:f4:23:f1:7e:41:97:3f:9f:bb:35:bc:2e:62:25:4b: 34:6a:10:0a:9c:ea:fc:09:cd:c1:4e:21:56:3b:e1:91:6a:bd: a6:81:fc:e3:92:71:44:c0:7a:6e:7a:37:25:20:de:11:b2:d4: 4d:16:a7:09 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgIUVAzb+94xTkDmLYvrU00XmoDK4tEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyOTAyMjYwOVoX DTI3MDEyODAyMzEwOVowMzExMC8GA1UEAxMoM0Q0RUM5NDJCMjBEQUNCRUEyNjY1 RENFMENBNDRERjE2NTE5M0M1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzRo/cE5lXer7J8GGDA87jV02AW7jjUU5JZ3HhFDipnt2XGDk837oAdJq6V LfQN00pNGkOKg6LZGs/jXyPTARImEbrfrZRT+eTe2p8RFPqsxHdxKAE4S0WYflwt gIoBOxd2SU57fWjk3kSpxnOX2q/6JmBASaUB9xemkAJsTLl9jRBFTu3DtDYaK6Aq RLT2N+OV6pah7UB5F1FacfhlAwnljAmdeDFVvqH3JB4TLrccBAkhb6l2NFh/TicQ ckj8jov3Tq/B3J3+M7qvf56/OhHeEbi9ETkLMrd5rDe3JIpBwsZAkB8rFBWezTAt sjop0iZbWqroun0qivy3KtNRGLECAwEAAaOCAe8wggHrMB0GA1UdDgQWBBQ9TslC sg2svqJmXc4MpE3xZRk8UTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU2MjQ2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAATAmAwQAZ4/fAwQBZ5jqAwQDcsbwAwQAdESmMAwDBAF0RKoDBAR0RKAwDQYJ KoZIhvcNAQELBQADggEBAEI72iZ7aWDpjBeKAvULwFS8gMwrQwlCrszd8wtW6Evv CJeVX2X6pX7uEoX33T2v2ZRdJOO86UTQ9Vf8QVr+WCkMgfVDcm32f2lv8IIcpMNs t8RoM1/OG9Im/5KYs9cyHiHwb0KyVFfYBUzgZE1fTVSEyra02afyyVIzOt4HYzMC xFmBO/qtcDCZwTySu0ru2DKcJDsQ2nPGr+qsMADIJ1ZDic/2X9C5wGr3nPWgzrLS KfNaLrKCvATEz9FI4D7IcVzpj6Fz0FMGkvQj8X5Blz+fuzW8LmIlSzRqEAqc6vwJ zcFOIVY74ZFqvaaB/OOScUTAem56NyUg3hGy1E0Wpwk= -----END CERTIFICATE-----Generated at Mon Feb 2 08:11:31 2026 by rpki-client