This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132634.roa File: AS132634.roa (raw, json) Hash identifier: g84el/trJ5G5b5c/8Ww5Rv5sdIa6Tb9hYi/xdGyICpw= Subject key identifier: B4:48:06:80:9B:D3:26:92:42:36:1E:50:14:2C:65:DD:1E:04:EE:9E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 209D544975F60BD7B7F552C99ED80B232B1D65A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132634.roa Signing time: Tue 11 Nov 2025 06:00:17 +0000 ROA not before: Tue 11 Nov 2025 05:55:17 +0000 ROA not after: Tue 10 Nov 2026 06:00:17 +0000 asID: 132634 IP address blocks: 103.170.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:9d:54:49:75:f6:0b:d7:b7:f5:52:c9:9e:d8:0b:23:2b:1d:65:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:17 2025 GMT Not After : Nov 10 06:00:17 2026 GMT Subject: CN=B44806809BD3269242361E50142C65DD1E04EE9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:14:b4:4e:94:08:e2:d2:17:b0:b0:e7:c0:a0: 99:c2:28:13:a4:72:1f:be:08:06:22:f5:9f:07:ab: 53:b5:99:70:40:ad:17:31:77:d8:b2:9a:0c:90:43: c2:f8:53:00:7f:f5:74:9c:4c:07:5a:3f:d0:1a:a2: 1f:2c:85:b6:a7:fa:17:22:16:bf:f7:0e:b1:12:f6: d3:0f:d7:b3:31:f6:ee:11:e5:d3:74:15:73:aa:71: e3:c9:5a:06:d2:1e:90:b7:0e:40:5e:2b:56:40:39: 94:d6:c9:be:28:fc:d7:08:e7:74:85:43:ee:5f:6d: 45:5a:f8:5e:75:ba:93:4e:04:49:62:3f:dc:94:a3: 07:99:d5:1e:44:ca:2a:dc:01:dd:85:63:88:be:01: de:90:75:c4:0b:60:e1:0d:7b:65:27:75:a5:a5:0a: e4:ed:03:42:ea:73:a6:f3:48:12:48:4b:1b:62:56: 83:23:30:25:27:8e:20:9d:a9:33:6d:87:dc:41:de: 0a:bb:fc:06:ef:a7:ef:b0:ac:98:7b:d3:1b:89:f8: 56:1a:50:96:f0:64:67:02:62:0b:37:f4:ef:65:dc: 17:9a:4b:22:27:ed:42:99:04:ff:a7:08:74:5f:e4: f6:83:b6:c6:92:f8:74:62:ba:3b:71:49:17:60:82: a5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:48:06:80:9B:D3:26:92:42:36:1E:50:14:2C:65:DD:1E:04:EE:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS132634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.104.0/23 Signature Algorithm: sha256WithRSAEncryption 65:3c:79:03:12:78:a2:f7:a9:ad:07:ac:c1:65:86:d7:27:ea: c0:e9:52:6f:3e:fe:2e:06:2f:6d:87:69:eb:de:39:c3:37:85: 36:2b:5b:95:2f:e3:8d:ae:0d:e8:59:31:8d:76:48:f9:e2:ec: fd:f2:3c:8b:20:c0:ec:dd:ea:68:e4:15:bb:7b:87:06:fc:51: 60:73:0e:b6:d4:4e:cf:89:18:f2:39:36:d6:46:be:10:a4:2c: d3:2a:eb:95:ce:2b:96:6d:e4:bb:dd:58:d8:9a:b6:22:c6:d5: 15:3b:f1:03:63:3c:15:9d:ef:94:6d:e2:f4:8a:89:1e:70:3c: 9a:f1:72:85:4d:e3:30:cb:b7:cf:80:9a:2c:4f:c5:e7:58:bb: 51:42:71:ce:c3:73:42:ed:c7:7b:e8:21:ea:cb:7e:67:63:0e: 88:bb:47:55:f2:74:d5:65:f2:a1:b9:ae:b3:80:6a:03:e8:73: 14:20:0b:3f:35:a0:99:85:a0:c8:af:46:96:de:19:f8:99:18: 36:11:94:45:a2:2d:38:8d:f3:88:5e:24:09:b6:6f:12:a7:b2: 48:6d:3f:1b:98:22:2b:b0:19:8f:54:49:1d:4c:a2:29:bd:94: 72:05:c2:4c:7e:af:6d:29:a0:00:bd:32:48:b3:98:50:5a:37: 7e:50:7a:f2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIJ1USXX2C9e39VLJntgLIysdZaMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxN1oX DTI2MTExMDA2MDAxN1owMzExMC8GA1UEAxMoQjQ0ODA2ODA5QkQzMjY5MjQyMzYx RTUwMTQyQzY1REQxRTA0RUU5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKgUtE6UCOLSF7Cw58CgmcIoE6RyH74IBiL1nwerU7WZcECtFzF32LKaDJBD wvhTAH/1dJxMB1o/0BqiHyyFtqf6FyIWv/cOsRL20w/XszH27hHl03QVc6px48la BtIekLcOQF4rVkA5lNbJvij81wjndIVD7l9tRVr4XnW6k04ESWI/3JSjB5nVHkTK KtwB3YVjiL4B3pB1xAtg4Q17ZSd1paUK5O0DQupzpvNIEkhLG2JWgyMwJSeOIJ2p M22H3EHeCrv8Bu+n77CsmHvTG4n4VhpQlvBkZwJiCzf072XcF5pLIiftQpkE/6cI dF/k9oO2xpL4dGK6O3FJF2CCpYcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS0SAaA m9MmkkI2HlAULGXdHgTunjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMjYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeqaDANBgkqhkiG9w0BAQsFAAOCAQEAZTx5AxJ4oveprQeswWWG 1yfqwOlSbz7+LgYvbYdp6945wzeFNitblS/jja4N6FkxjXZI+eLs/fI8iyDA7N3q aOQVu3uHBvxRYHMOttROz4kY8jk21ka+EKQs0yrrlc4rlm3ku91Y2Jq2IsbVFTvx A2M8FZ3vlG3i9IqJHnA8mvFyhU3jMMu3z4CaLE/F51i7UUJxzsNzQu3He+gh6st+ Z2MOiLtHVfJ01WXyobmus4BqA+hzFCALPzWgmYWgyK9Glt4Z+JkYNhGURaItOI3z iF4kCbZvEqeySG0/G5giK7AZj1RJHUyiKb2UcgXCTH6vbSmgAL0ySLOYUFo3flB6 8g== -----END CERTIFICATE-----Generated at Sat Dec 6 22:52:19 2025 by rpki-client