This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136823.roa File: AS136823.roa (raw, json) Hash identifier: JDFa+l36OTNFYC3pyhq4AR/WrG/6Gvp+HEuDz+ouwsU= Subject key identifier: 71:99:E3:1E:38:26:B8:99:0E:A7:40:7E:C3:0D:A9:46:68:A9:15:8C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1627A462894535D97050A546E47208A403543DCF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136823.roa Signing time: Tue 11 Nov 2025 06:00:23 +0000 ROA not before: Tue 11 Nov 2025 05:55:23 +0000 ROA not after: Tue 10 Nov 2026 06:00:23 +0000 asID: 136823 IP address blocks: 103.92.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:27:a4:62:89:45:35:d9:70:50:a5:46:e4:72:08:a4:03:54:3d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:23 2025 GMT Not After : Nov 10 06:00:23 2026 GMT Subject: CN=7199E31E3826B8990EA7407EC30DA94668A9158C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:27:c4:9a:c5:fa:a0:2c:c6:6d:db:78:4a:a7: 52:cc:76:5e:ec:93:a6:b6:ce:c2:52:90:91:71:bf: ed:fa:9f:8c:64:69:34:a8:be:32:4c:fd:97:cd:09: 03:94:e3:71:f8:00:b9:e6:a3:02:20:73:98:46:ae: b4:2a:24:e1:f6:84:99:97:ef:66:07:7b:03:2b:85: b6:d1:4f:7d:22:e7:48:d0:fc:13:32:bd:c7:97:ae: a4:84:32:c5:57:3b:9d:d9:77:3e:64:80:bd:c3:65: 36:92:3a:47:3e:63:8e:97:f8:0b:b0:7c:79:8b:bd: 57:b5:b4:dd:bb:6d:9d:99:6f:64:e4:c0:7c:58:68: e4:4b:82:ce:1c:06:6a:6d:7d:f4:0f:2e:4a:42:52: 53:0a:fb:86:68:5a:60:1f:34:fd:5f:f6:09:ab:af: 13:00:09:96:30:cb:cd:6b:bb:2e:74:04:0c:f5:49: b8:b2:51:ee:5a:74:35:4b:d1:f1:5f:96:a9:2b:37: 88:58:13:c0:15:68:c8:83:cb:2f:20:32:29:98:2f: 65:52:fb:50:6b:d6:03:0c:a1:5d:39:a9:e3:3a:ba: 40:37:7f:b7:af:d0:31:1f:a9:be:66:4f:2d:79:4b: ec:8d:fa:03:bf:ef:43:33:4f:82:82:c0:99:47:19: 0d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:99:E3:1E:38:26:B8:99:0E:A7:40:7E:C3:0D:A9:46:68:A9:15:8C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS136823.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.92.224.0/22 Signature Algorithm: sha256WithRSAEncryption 98:1d:21:5a:e5:de:e1:b3:e4:c9:fc:68:87:06:93:5b:d7:ef: 53:65:b0:ce:e1:75:a5:bb:84:3b:66:8b:4f:29:e8:24:24:05: d3:f8:f1:89:30:02:1a:b0:76:e9:88:1f:9f:53:79:c4:4f:ba: 80:81:5e:93:92:6b:47:f0:d0:c8:b0:87:36:a7:03:d0:22:56: 04:8a:e7:4f:e2:b9:07:b4:fa:f2:32:25:56:21:c4:92:d8:3d: 15:0a:03:c1:2f:c8:5e:24:21:4a:36:3c:5f:b0:1f:0b:fd:dd: af:9e:9b:ff:24:53:9d:eb:b3:49:04:32:5d:43:8d:c6:09:f8: 95:11:0a:c0:d8:ca:da:35:c8:42:f5:15:5d:7c:f6:e8:b9:25: 99:b9:06:d0:e1:f2:10:31:3c:dc:40:b6:a1:48:b2:30:fa:2f: 7c:f0:19:b3:53:fe:a4:e0:14:15:f5:50:07:69:50:60:72:76: b6:56:d6:dc:d7:84:56:7a:e4:65:55:59:5d:32:d3:ad:9b:29: 45:ef:b7:ad:ea:a9:96:f6:c2:f5:79:f6:9a:61:32:c7:34:28: 68:87:ca:50:bb:d5:31:df:f7:c0:65:18:a2:7b:2b:17:25:6a: 4b:2a:db:96:d8:c9:f9:18:3d:61:21:57:41:61:8a:af:90:16: ba:f9:69:73 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFiekYolFNdlwUKVG5HIIpANUPc8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyM1oX DTI2MTExMDA2MDAyM1owMzExMC8GA1UEAxMoNzE5OUUzMUUzODI2Qjg5OTBFQTc0 MDdFQzMwREE5NDY2OEE5MTU4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4nxJrF+qAsxm3beEqnUsx2XuyTprbOwlKQkXG/7fqfjGRpNKi+Mkz9l80J A5TjcfgAueajAiBzmEautCok4faEmZfvZgd7AyuFttFPfSLnSND8EzK9x5eupIQy xVc7ndl3PmSAvcNlNpI6Rz5jjpf4C7B8eYu9V7W03bttnZlvZOTAfFho5EuCzhwG am199A8uSkJSUwr7hmhaYB80/V/2CauvEwAJljDLzWu7LnQEDPVJuLJR7lp0NUvR 8V+WqSs3iFgTwBVoyIPLLyAyKZgvZVL7UGvWAwyhXTmp4zq6QDd/t6/QMR+pvmZP LXlL7I36A7/vQzNPgoLAmUcZDWECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRxmeMe OCa4mQ6nQH7DDalGaKkVjDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNjgyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdc4DANBgkqhkiG9w0BAQsFAAOCAQEAmB0hWuXe4bPkyfxohwaT W9fvU2WwzuF1pbuEO2aLTynoJCQF0/jxiTACGrB26Ygfn1N5xE+6gIFek5JrR/DQ yLCHNqcD0CJWBIrnT+K5B7T68jIlViHEktg9FQoDwS/IXiQhSjY8X7AfC/3dr56b /yRTneuzSQQyXUONxgn4lREKwNjK2jXIQvUVXXz26LklmbkG0OHyEDE83EC2oUiy MPovfPAZs1P+pOAUFfVQB2lQYHJ2tlbW3NeEVnrkZVVZXTLTrZspRe+3reqplvbC 9Xn2mmEyxzQoaIfKULvVMd/3wGUYonsrFyVqSyrbltjJ+Rg9YSFXQWGKr5AWuvlp cw== -----END CERTIFICATE-----Generated at Sat Dec 6 22:51:38 2025 by rpki-client