This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS45700.roa File: AS45700.roa (raw, json) Hash identifier: T0QDLh2TXMtKg8UkR4Bl1KSQJBn0lHw0cDMXG/GQ/NE= Subject key identifier: 64:CC:0F:C5:34:3C:5E:96:E9:B7:C8:D6:41:C3:E8:17:1D:AE:3B:C0 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 262B23A88E8C3616393FB9875300AE2D407F69D4 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS45700.roa Signing time: Mon 01 Dec 2025 10:01:13 +0000 ROA not before: Mon 01 Dec 2025 09:56:13 +0000 ROA not after: Mon 30 Nov 2026 10:01:13 +0000 asID: 45700 IP address blocks: 161.248.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:2b:23:a8:8e:8c:36:16:39:3f:b9:87:53:00:ae:2d:40:7f:69:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 1 09:56:13 2025 GMT Not After : Nov 30 10:01:13 2026 GMT Subject: CN=64CC0FC5343C5E96E9B7C8D641C3E8171DAE3BC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4b:8a:ed:72:93:8f:d9:b2:fe:c8:13:18:14: ed:cc:ec:0d:12:57:79:a3:5c:e1:d6:fd:78:0d:23: 0a:d4:f9:cc:49:bb:09:2d:d4:b8:14:57:c3:24:23: 88:80:6d:9d:34:fb:82:b3:e5:e5:b4:8e:92:00:21: 96:1e:d4:f8:84:03:d3:af:01:00:3a:d1:4a:d3:f7: 9a:73:a2:8b:31:c6:26:3a:ca:22:4c:7b:a9:e7:9e: 81:39:e6:86:a3:fc:d3:2e:ce:51:3e:09:04:fe:c5: 46:bd:48:07:58:47:55:94:98:cc:e8:73:a8:67:a7: 01:e5:04:89:ca:bd:04:ea:00:ff:e3:c3:75:2c:34: 20:c2:21:08:6f:68:56:14:a8:e4:be:df:b6:3a:45: 19:bf:f7:6b:66:98:ec:74:7a:35:4e:c3:dd:5a:4e: ce:a8:af:26:39:68:6a:3a:08:71:2a:8a:3a:35:c6: f2:72:49:a0:2f:26:e0:41:2d:46:a8:ad:7c:fc:6e: 66:de:1a:38:9b:f8:62:1d:37:8b:b5:04:97:3f:ed: 97:25:97:9a:7f:3d:8e:c3:66:3b:d9:de:40:d6:c9: e2:2d:fc:5c:8d:ee:43:3d:6c:08:4d:ec:b1:95:9a: a3:9d:c8:c4:f0:47:60:a7:9e:63:9e:b6:52:c6:42: 42:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:CC:0F:C5:34:3C:5E:96:E9:B7:C8:D6:41:C3:E8:17:1D:AE:3B:C0 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS45700.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.248.12.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:87:0f:75:31:34:48:9c:5e:4d:4c:68:2e:cb:bd:d2:66:04: 98:ef:34:01:ae:92:da:2e:d8:9f:cb:6d:64:ec:d7:e1:f3:08: 82:ea:52:8a:57:9b:6a:17:4c:4b:13:4d:33:b5:f3:b4:8a:74: 4f:a6:9b:04:60:04:6d:ac:43:14:48:45:ad:78:54:58:43:81: cc:18:2e:e5:69:0e:86:03:90:0d:5f:f6:60:65:8b:da:bb:0c: 0c:84:a0:95:38:b7:97:f7:71:e8:c8:ad:40:31:da:58:56:96: da:c6:d0:ef:f7:ca:05:f5:c5:41:54:d6:49:91:bf:33:6c:c6: 13:22:cd:99:da:bd:e5:c7:ec:b9:23:1e:0e:b2:be:fd:f8:d5: 1d:00:cf:f5:55:d3:95:63:92:2e:12:6f:7a:5e:06:9f:24:29: ea:fc:10:c5:5d:87:90:ac:b1:36:94:f4:03:07:70:d0:85:c4: f0:eb:9c:97:a0:45:a9:4f:61:72:d9:c4:38:8b:c2:21:66:a5: 0a:03:4e:13:91:3d:fc:4f:58:91:42:45:c8:9c:5b:5c:7e:e9: e2:56:a4:23:d9:ca:08:90:e9:b1:18:fe:ca:2e:9e:37:68:43: 97:7d:79:bc:c6:f5:bd:6a:c5:60:0d:36:e1:d2:4e:aa:b2:92: b2:c8:d3:dc -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUJisjqI6MNhY5P7mHUwCuLUB/adQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIwMTA5NTYxM1oX DTI2MTEzMDEwMDExM1owMzExMC8GA1UEAxMoNjRDQzBGQzUzNDNDNUU5NkU5QjdD OEQ2NDFDM0U4MTcxREFFM0JDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKNLiu1yk4/Zsv7IExgU7czsDRJXeaNc4db9eA0jCtT5zEm7CS3UuBRXwyQj iIBtnTT7grPl5bSOkgAhlh7U+IQD068BADrRStP3mnOiizHGJjrKIkx7qeeegTnm hqP80y7OUT4JBP7FRr1IB1hHVZSYzOhzqGenAeUEicq9BOoA/+PDdSw0IMIhCG9o VhSo5L7ftjpFGb/3a2aY7HR6NU7D3VpOzqivJjloajoIcSqKOjXG8nJJoC8m4EEt RqitfPxuZt4aOJv4Yh03i7UElz/tlyWXmn89jsNmO9neQNbJ4i38XI3uQz1sCE3s sZWao53IxPBHYKeeY562UsZCQocCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBRkzA/F NDxelum3yNZBw+gXHa47wDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzQ1NzAwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBofgMMA0GCSqGSIb3DQEBCwUAA4IBAQBthw91MTRInF5NTGguy73S ZgSY7zQBrpLaLtify21k7Nfh8wiC6lKKV5tqF0xLE00ztfO0inRPppsEYARtrEMU SEWteFRYQ4HMGC7laQ6GA5ANX/ZgZYvauwwMhKCVOLeX93HoyK1AMdpYVpbaxtDv 98oF9cVBVNZJkb8zbMYTIs2Z2r3lx+y5Ix4Osr79+NUdAM/1VdOVY5IuEm96Xgaf JCnq/BDFXYeQrLE2lPQDB3DQhcTw65yXoEWpT2Fy2cQ4i8IhZqUKA04TkT38T1iR QkXInFtcfuniVqQj2coIkOmxGP7KLp43aEOXfXm8xvW9asVgDTbh0k6qspKyyNPc -----END CERTIFICATE-----Generated at Sat Dec 6 12:54:09 2025 by rpki-client