This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS137245.roa File: AS137245.roa (raw, json) Hash identifier: WOxZ+dU+W0QCyPn0vBh6I8U9rxnBBJ1j9Bbvhsmk7o0= Subject key identifier: 9D:8E:ED:1A:D0:1A:BD:72:1D:74:29:2E:48:4E:A3:53:83:C5:AA:94 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4C2DC9F4EC88EF33562BB941998F732376638547 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS137245.roa Signing time: Tue 09 Dec 2025 09:51:59 +0000 ROA not before: Tue 09 Dec 2025 09:46:59 +0000 ROA not after: Tue 08 Dec 2026 09:51:59 +0000 asID: 137245 IP address blocks: 144.79.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 09:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:2d:c9:f4:ec:88:ef:33:56:2b:b9:41:99:8f:73:23:76:63:85:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 9 09:46:59 2025 GMT Not After : Dec 8 09:51:59 2026 GMT Subject: CN=9D8EED1AD01ABD721D74292E484EA35383C5AA94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:99:14:5d:a7:3f:86:d7:cc:cc:fd:fe:ef:3c: d2:0f:f1:16:44:43:b0:b0:36:e5:a1:57:54:f9:50: ec:c0:41:e7:d8:30:d6:3f:58:ae:dc:68:1b:34:21: a2:1b:cc:ad:f2:91:78:06:e1:30:94:ca:d8:ba:ea: d7:88:82:0d:54:2e:27:84:3f:6f:29:47:ec:46:2d: 69:17:b5:89:9b:67:2e:7d:21:ed:d6:f8:5f:e1:d3: 3c:54:3b:cd:89:5e:38:b8:a6:b6:88:ec:fa:bc:9f: b5:6c:38:51:ae:af:c7:d7:bb:5b:49:77:a7:6e:b5: d6:84:dd:0a:73:7e:f4:7d:66:44:8e:90:21:40:95: 7f:16:5f:b7:06:4b:fd:a4:7d:ea:b0:8a:65:e5:fb: ab:18:b1:5b:6a:21:74:71:42:18:aa:7b:c1:6b:f8: da:1a:85:09:a3:b5:15:2d:ff:a0:b8:60:0c:01:8a: 0f:7a:16:69:c3:2b:46:ce:df:c6:0c:7c:2b:e1:9a: b6:df:e3:48:08:18:07:a7:07:9c:18:62:9a:96:52: 21:66:f5:73:19:a2:32:ab:12:f2:72:88:0d:1f:2a: 9f:15:38:06:c7:e5:8d:cf:f6:a6:75:83:4b:1e:1d: d6:3a:04:c7:d9:e7:b8:da:98:44:9a:2b:dd:8f:36: d9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8E:ED:1A:D0:1A:BD:72:1D:74:29:2E:48:4E:A3:53:83:C5:AA:94 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS137245.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.65.0/24 Signature Algorithm: sha256WithRSAEncryption 05:a9:d7:4c:db:3a:45:78:c4:39:8d:69:69:6f:0b:5a:ef:5d: ae:96:07:7f:d5:fb:15:ed:bc:f0:9f:a0:f1:57:26:b6:7e:04: f3:a6:fe:df:43:5a:94:b9:29:38:10:bc:e6:3a:0f:25:bd:0b: 44:5d:53:5e:a1:06:29:6f:a7:f3:a5:17:5a:ca:d7:6f:9f:c2: 1b:a0:34:07:bf:e7:24:69:da:1a:96:c2:a0:9d:b5:ca:bc:2f: 41:84:64:f7:e5:a9:19:66:a9:0a:97:ad:2e:0b:34:e4:f0:ce: 00:92:64:b9:60:5f:af:6d:86:93:c3:72:c5:8b:00:62:e5:e7: d4:0b:75:db:4e:87:7e:0a:c8:aa:f2:ac:d5:79:4a:ba:9f:d9: be:a8:53:ee:97:8a:e9:9c:bc:04:7a:aa:c4:26:4f:71:22:aa: 8b:98:0b:12:f9:03:17:7f:bf:22:a5:26:ff:b4:84:e3:31:bc: 1a:9d:be:45:6b:03:b2:5e:3c:43:2e:9f:76:d1:29:5c:86:bb: ca:cc:9c:d3:e5:f0:db:ea:97:c2:fe:d4:c1:46:00:0e:3a:00: 39:3b:cf:fd:56:fe:7a:b8:7b:59:b3:e3:27:f4:45:96:93:79: 89:81:3b:e1:18:6b:a5:90:e2:87:33:73:03:53:9c:96:8a:a4: 52:c8:93:8a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTC3J9OyI7zNWK7lBmY9zI3ZjhUcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIwOTA5NDY1OVoX DTI2MTIwODA5NTE1OVowMzExMC8GA1UEAxMoOUQ4RUVEMUFEMDFBQkQ3MjFENzQy OTJFNDg0RUEzNTM4M0M1QUE5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMaZFF2nP4bXzMz9/u880g/xFkRDsLA25aFXVPlQ7MBB59gw1j9YrtxoGzQh ohvMrfKReAbhMJTK2Lrq14iCDVQuJ4Q/bylH7EYtaRe1iZtnLn0h7db4X+HTPFQ7 zYleOLimtojs+ryftWw4Ua6vx9e7W0l3p2611oTdCnN+9H1mRI6QIUCVfxZftwZL /aR96rCKZeX7qxixW2ohdHFCGKp7wWv42hqFCaO1FS3/oLhgDAGKD3oWacMrRs7f xgx8K+Gatt/jSAgYB6cHnBhimpZSIWb1cxmiMqsS8nKIDR8qnxU4Bsfljc/2pnWD Sx4d1joEx9nnuNqYRJor3Y822RcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSdju0a 0Bq9ch10KS5ITqNTg8WqlDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzNzI0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJBPQTANBgkqhkiG9w0BAQsFAAOCAQEABanXTNs6RXjEOY1paW8L Wu9drpYHf9X7Fe288J+g8Vcmtn4E86b+30NalLkpOBC85joPJb0LRF1TXqEGKW+n 86UXWsrXb5/CG6A0B7/nJGnaGpbCoJ21yrwvQYRk9+WpGWapCpetLgs05PDOAJJk uWBfr22Gk8NyxYsAYuXn1At1206HfgrIqvKs1XlKup/ZvqhT7peK6Zy8BHqqxCZP cSKqi5gLEvkDF3+/IqUm/7SE4zG8Gp2+RWsDsl48Qy6fdtEpXIa7ysyc0+Xw2+qX wv7UwUYADjoAOTvP/Vb+erh7WbPjJ/RFlpN5iYE74RhrpZDihzNzA1OcloqkUsiT ig== -----END CERTIFICATE-----Generated at Wed Dec 17 20:07:26 2025 by rpki-client