This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa File: AS133337.roa (raw, json) Hash identifier: VoGlk6s0DTolcZ5+yl86oBZatxOKas7Q8ImEhQ8uiHw= Subject key identifier: 1F:64:F7:96:85:41:54:BC:38:C7:E3:14:3E:32:DE:51:B5:CC:4E:C8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 37748EB43C666AD44193562C7F1049269A5AFCF5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa Signing time: Tue 11 Nov 2025 06:00:26 +0000 ROA not before: Tue 11 Nov 2025 05:55:26 +0000 ROA not after: Tue 10 Nov 2026 06:00:26 +0000 asID: 133337 IP address blocks: 103.174.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:74:8e:b4:3c:66:6a:d4:41:93:56:2c:7f:10:49:26:9a:5a:fc:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:26 2025 GMT Not After : Nov 10 06:00:26 2026 GMT Subject: CN=1F64F796854154BC38C7E3143E32DE51B5CC4EC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:41:bc:92:9d:dc:d6:96:93:1b:25:f1:53:27: c6:4e:8e:c9:13:41:6e:54:8c:4b:e4:43:42:ac:80: b4:8a:b5:6d:e5:27:3c:cd:c9:d9:ad:8c:3b:85:87: b4:09:1c:b1:18:f2:cb:86:48:c8:77:6e:6f:e9:c4: 7c:67:18:9d:27:75:4c:dc:b5:37:36:a6:2a:e8:85: f2:39:44:86:36:b8:b3:71:95:2c:fa:4d:03:26:ca: 6b:a8:21:e6:47:c2:68:6d:57:6f:f4:e8:27:51:bb: c9:26:12:b2:19:99:f7:3a:e0:43:61:96:fd:ed:c2: 9c:3a:14:88:37:1e:e9:81:03:d9:5c:c1:f0:25:83: a8:35:9f:03:85:db:50:25:cd:70:51:8d:98:e1:11: 52:37:26:f1:a8:7d:12:4c:dc:24:45:6c:c7:47:7c: 16:9b:41:1a:27:db:78:1a:ff:7e:01:5d:6d:50:7b: 32:de:7d:9c:5d:c4:45:40:20:ca:92:d5:a0:1a:49: b2:08:44:dc:86:34:91:2b:2b:eb:22:77:a4:68:e7: 38:40:b1:21:5b:71:f2:ad:13:b0:85:9c:48:81:0a: ad:8c:9f:f0:e2:4b:02:0d:7c:6c:cc:50:3e:ee:92: 66:e2:71:37:bd:06:40:3a:90:7a:90:37:7b:0e:b0: a6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:64:F7:96:85:41:54:BC:38:C7:E3:14:3E:32:DE:51:B5:CC:4E:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS133337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.67.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:6d:16:30:30:99:7f:96:c7:8f:61:15:a2:7a:32:5c:8c:9a: 4f:c8:cf:2b:e3:35:f7:fe:8b:5d:50:07:f7:c4:dc:35:2d:a4: 5e:3e:15:3b:39:71:2a:e2:00:2e:04:3e:08:a2:bd:60:00:f3: e1:cc:39:ab:4a:f2:b4:a8:93:16:fc:58:66:e8:3a:03:d4:69: 00:32:09:09:0b:47:e8:7c:0b:8e:12:fe:68:7f:4a:c1:3b:b6: 2e:7f:7d:48:99:93:db:c1:fe:1c:87:85:e7:09:6d:50:1d:72: ea:66:2d:fc:c0:9b:a0:18:43:97:c7:9e:7d:12:1b:4b:06:ba: ed:2f:7c:8a:24:e3:51:e8:ef:92:8c:6e:4b:cc:60:80:b6:57: ea:10:e0:3a:4a:8e:ed:7d:fd:6c:ce:ef:f9:c9:8b:92:a7:47: 93:79:96:d5:18:47:be:41:95:8a:59:6e:ed:cb:d7:d2:d6:b3: 7e:9b:57:c5:d9:a4:96:5c:4a:60:30:c8:5d:99:9e:2e:54:4f: 10:44:d8:7b:61:5e:4e:fb:01:35:3a:8a:00:0b:e5:3f:8c:2f: ea:6a:fa:d6:e1:c4:6b:3f:66:67:d4:3a:2c:da:e9:7a:d9:df: b5:a4:8d:07:34:95:18:93:97:74:76:ed:e5:bb:75:f1:30:8f: ad:bb:19:06 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUN3SOtDxmatRBk1YsfxBJJppa/PUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyNloX DTI2MTExMDA2MDAyNlowMzExMC8GA1UEAxMoMUY2NEY3OTY4NTQxNTRCQzM4QzdF MzE0M0UzMkRFNTFCNUNDNEVDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK5BvJKd3NaWkxsl8VMnxk6OyRNBblSMS+RDQqyAtIq1beUnPM3J2a2MO4WH tAkcsRjyy4ZIyHdub+nEfGcYnSd1TNy1NzamKuiF8jlEhja4s3GVLPpNAybKa6gh 5kfCaG1Xb/ToJ1G7ySYSshmZ9zrgQ2GW/e3CnDoUiDce6YED2VzB8CWDqDWfA4Xb UCXNcFGNmOERUjcm8ah9EkzcJEVsx0d8FptBGifbeBr/fgFdbVB7Mt59nF3ERUAg ypLVoBpJsghE3IY0kSsr6yJ3pGjnOECxIVtx8q0TsIWcSIEKrYyf8OJLAg18bMxQ Pu6SZuJxN70GQDqQepA3ew6wptMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQfZPeW hUFUvDjH4xQ+Mt5RtcxOyDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzMzMzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeuQzANBgkqhkiG9w0BAQsFAAOCAQEAWm0WMDCZf5bHj2EVonoy XIyaT8jPK+M19/6LXVAH98TcNS2kXj4VOzlxKuIALgQ+CKK9YADz4cw5q0rytKiT FvxYZug6A9RpADIJCQtH6HwLjhL+aH9KwTu2Ln99SJmT28H+HIeF5wltUB1y6mYt /MCboBhDl8eefRIbSwa67S98iiTjUejvkoxuS8xggLZX6hDgOkqO7X39bM7v+cmL kqdHk3mW1RhHvkGVillu7cvX0tazfptXxdmkllxKYDDIXZmeLlRPEETYe2FeTvsB NTqKAAvlP4wv6mr61uHEaz9mZ9Q6LNrpetnftaSNBzSVGJOXdHbt5bt18TCPrbsZ Bg== -----END CERTIFICATE-----Generated at Sat Dec 6 19:19:09 2025 by rpki-client