This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS23679.roa File: AS23679.roa (raw, json) Hash identifier: PKY3X5x7LLHP+3uUI7Pl0JdfDPnVOdbnD2GZUK8Q5BQ= Subject key identifier: 02:20:A6:AB:99:AD:0B:80:76:D5:6A:BC:91:40:62:55:9E:95:8E:F3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2184CF4103D32BEDC56E7964DF3AB039157ABFF6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS23679.roa Signing time: Mon 24 Nov 2025 10:06:55 +0000 ROA not before: Mon 24 Nov 2025 10:01:55 +0000 ROA not after: Mon 23 Nov 2026 10:06:55 +0000 asID: 23679 IP address blocks: 27.121.112.0/23 maxlen: 24 103.31.46.0/24 maxlen: 24 103.114.76.0/24 maxlen: 24 103.114.77.0/24 maxlen: 24 103.114.78.0/24 maxlen: 24 103.196.116.0/24 maxlen: 24 110.232.65.0/24 maxlen: 24 110.232.68.0/23 maxlen: 24 110.232.70.0/24 maxlen: 24 110.232.91.0/24 maxlen: 24 124.158.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:84:cf:41:03:d3:2b:ed:c5:6e:79:64:df:3a:b0:39:15:7a:bf:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 24 10:01:55 2025 GMT Not After : Nov 23 10:06:55 2026 GMT Subject: CN=0220A6AB99AD0B8076D56ABC914062559E958EF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:25:c4:9b:9d:ae:17:e2:72:36:30:87:a3:7a: 73:1b:64:41:7e:e3:1c:d2:a7:16:74:99:e7:ff:76: 66:17:da:bc:28:8e:e4:0e:28:ee:34:04:13:dd:97: bb:7c:4e:63:c2:43:f7:dc:69:d3:3f:c7:6c:12:61: 97:6a:9c:35:f8:25:11:27:d1:dc:af:d5:e7:05:7f: ba:58:59:c5:8c:20:82:f5:fc:14:b7:f8:9c:d5:1f: 06:62:7f:eb:b8:6f:fe:39:22:8b:1e:be:47:1f:6f: f8:5f:c5:84:0d:2d:d0:6a:a2:b1:ec:b1:f1:2b:91: 81:5c:6c:6f:26:fa:d5:9f:a0:73:3b:7e:43:74:41: c4:9e:11:bb:8d:03:df:b9:f6:f8:2d:c8:7f:4d:55: 94:21:97:fc:21:da:51:96:3f:e9:a4:1a:b5:10:12: 66:17:be:9d:38:3c:aa:32:81:9f:74:4a:16:25:e4: 55:ef:79:4d:ed:23:97:02:b2:2a:68:90:ed:20:07: d7:bb:82:70:46:3a:68:71:51:37:ef:dd:db:a4:84: ae:cb:c3:30:b5:4c:09:de:74:f1:58:bd:c0:a9:e8: e5:98:3a:6c:d2:f9:05:a6:e4:f1:8c:4a:be:1a:e2: 89:91:4f:2c:13:8e:d8:40:d8:3e:3c:ce:98:3f:95: 88:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:20:A6:AB:99:AD:0B:80:76:D5:6A:BC:91:40:62:55:9E:95:8E:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS23679.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.121.112.0/23 103.31.46.0/24 103.114.76.0-103.114.78.255 103.196.116.0/24 110.232.65.0/24 110.232.68.0-110.232.70.255 110.232.91.0/24 124.158.116.0/23 Signature Algorithm: sha256WithRSAEncryption 11:99:85:63:c3:01:5b:d4:f8:e7:86:59:4b:47:2a:62:ab:c4: f8:c8:3f:93:7e:8c:c9:01:1a:8e:d0:de:93:18:3c:63:55:ea: 02:c9:48:dc:7f:0c:bf:09:f4:3d:8c:fb:a5:9f:ee:e3:4e:58: 20:92:a4:7c:da:07:9f:1b:a6:df:7f:4d:e8:40:d4:94:dc:57: c7:3a:0c:f9:81:e7:72:e7:85:4e:b2:3e:06:53:75:05:68:f6: d9:02:e8:a3:be:19:4e:aa:0f:be:dc:45:03:58:c9:df:3c:44: c4:ab:a9:42:7b:38:fe:0a:c9:2c:f4:92:60:cb:42:f1:16:d2: 28:a1:ae:3a:a7:93:f9:18:9b:af:27:59:ec:e0:e9:1e:da:f2: fd:82:32:ec:31:69:59:2f:4c:08:f3:04:c5:0d:01:90:13:f2: 4b:7e:30:3d:81:43:37:ac:9a:76:c1:95:8b:8a:2c:ec:6c:60: eb:1d:e4:1d:c9:bb:1e:7f:8e:d4:13:07:d7:ff:eb:a9:3c:e0: f8:73:31:14:a2:4a:d6:98:3c:01:11:53:13:24:e1:7d:d4:e3: 8c:fd:07:1b:df:f3:61:9a:78:1f:21:d9:73:2a:e6:7c:9a:68: 7a:f1:c7:c1:08:c0:2e:e2:d7:ee:ea:92:63:71:11:a6:9e:93: 84:d0:e4:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUIYTPQQPTK+3Fbnlk3zqwORV6v/YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNDEwMDE1NVoX DTI2MTEyMzEwMDY1NVowMzExMC8GA1UEAxMoMDIyMEE2QUI5OUFEMEI4MDc2RDU2 QUJDOTE0MDYyNTU5RTk1OEVGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALclxJudrhficjYwh6N6cxtkQX7jHNKnFnSZ5/92ZhfavCiO5A4o7jQEE92X u3xOY8JD99xp0z/HbBJhl2qcNfglESfR3K/V5wV/ulhZxYwggvX8FLf4nNUfBmJ/ 67hv/jkiix6+Rx9v+F/FhA0t0Gqiseyx8SuRgVxsbyb61Z+gczt+Q3RBxJ4Ru40D 37n2+C3If01VlCGX/CHaUZY/6aQatRASZhe+nTg8qjKBn3RKFiXkVe95Te0jlwKy KmiQ7SAH17uCcEY6aHFRN+/d26SErsvDMLVMCd508Vi9wKno5Zg6bNL5Babk8YxK vhriiZFPLBOO2EDYPjzOmD+ViCECAwEAAaOCAgkwggIFMB0GA1UdDgQWBBQCIKar ma0LgHbVaryRQGJVnpWO8zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzIzNjc5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGCCsGAQUFBwEHAQH/BEowSDBG BAIAATBAAwQBG3lwAwQAZx8uMAwDBAJnckwDBABnck4DBABnxHQDBABu6EEwDAME Am7oRAMEAG7oRgMEAG7oWwMEAXyedDANBgkqhkiG9w0BAQsFAAOCAQEAEZmFY8MB W9T454ZZS0cqYqvE+Mg/k36MyQEajtDekxg8Y1XqAslI3H8Mvwn0PYz7pZ/u405Y IJKkfNoHnxum339N6EDUlNxXxzoM+YHncueFTrI+BlN1BWj22QLoo74ZTqoPvtxF A1jJ3zxExKupQns4/grJLPSSYMtC8RbSKKGuOqeT+RibrydZ7ODpHtry/YIy7DFp WS9MCPMExQ0BkBPyS34wPYFDN6yadsGVi4os7Gxg6x3kHcm7Hn+O1BMH1//rqTzg +HMxFKJK1pg8ARFTEyThfdTjjP0HG9/zYZp4HyHZcyrmfJpoevHHwQjALuLX7uqS Y3ERpp6ThNDkvg== -----END CERTIFICATE-----Generated at Sun Dec 7 04:34:10 2025 by rpki-client