This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24534.roa File: AS24534.roa (raw, json) Hash identifier: 9vzVtZfQ5edDgyeQ5A5wu5M6pKnlo/DwB/kf6JP2sxM= Subject key identifier: DE:05:06:F1:29:6D:2C:5A:77:81:56:CF:4C:0D:EB:94:EB:B4:F8:2D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 64C326093F628219A332076203B484C8C81AFD64 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24534.roa Signing time: Tue 25 Nov 2025 01:38:25 +0000 ROA not before: Tue 25 Nov 2025 01:33:25 +0000 ROA not after: Tue 24 Nov 2026 01:38:25 +0000 asID: 24534 IP address blocks: 103.52.68.0/23 maxlen: 24 103.52.70.0/23 maxlen: 24 103.136.78.0/23 maxlen: 24 103.149.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c3:26:09:3f:62:82:19:a3:32:07:62:03:b4:84:c8:c8:1a:fd:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 25 01:33:25 2025 GMT Not After : Nov 24 01:38:25 2026 GMT Subject: CN=DE0506F1296D2C5A778156CF4C0DEB94EBB4F82D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:78:3e:e3:a9:40:41:5b:b3:96:29:dd:28:a9: e6:95:22:f2:d6:12:d5:eb:30:37:04:ec:d5:f0:b3: 17:1e:3f:41:1c:c2:f7:c7:33:ae:ea:49:b1:65:20: 1c:29:2e:c4:14:07:fc:9f:ef:e3:e1:ef:42:de:3b: bc:5c:dd:a5:39:af:d6:e0:8f:80:3f:05:15:1a:dd: 24:f6:e7:33:0e:77:f8:a5:20:ee:37:55:a9:d7:a8: c4:d1:5f:05:e7:95:46:0d:a9:e8:c2:75:6f:ac:41: 8d:0d:be:38:be:c0:65:82:f5:82:43:08:8b:38:fe: 41:c6:10:b6:40:c3:92:10:8a:a1:b4:16:e5:43:dc: 90:01:8a:7a:f7:6a:89:74:0e:35:44:5c:73:75:1d: 2f:f0:b6:c6:0b:4c:a5:6b:a8:3c:cd:39:ab:28:a6: 85:ed:4f:c5:41:9d:9d:e9:41:5c:d8:63:16:97:d8: 19:f3:84:f3:e5:1d:7e:37:72:31:ff:b4:b1:63:d6: 28:26:62:49:32:e9:2b:cd:fa:1f:e7:ca:91:37:83: ae:bb:17:d6:ce:7f:77:f1:d0:9f:b1:f6:b0:17:77: df:9a:88:ae:a1:63:59:6c:05:a9:d4:05:61:28:13: b3:dd:2d:8c:31:de:6b:9e:a7:0d:34:de:f8:8d:88: c3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:05:06:F1:29:6D:2C:5A:77:81:56:CF:4C:0D:EB:94:EB:B4:F8:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.68.0/22 103.136.78.0/23 103.149.14.0/23 Signature Algorithm: sha256WithRSAEncryption 99:f4:4a:56:b5:8c:80:fa:ae:ab:aa:9f:23:54:f2:d6:c6:d7: cc:9d:ae:9b:9f:94:a9:6e:c6:10:c8:6f:de:3d:65:27:a3:22: c5:c1:d5:65:ef:6a:87:34:56:83:82:91:bf:5b:b3:e1:ef:13: aa:4e:c4:20:76:c5:1b:7c:e1:81:52:be:06:9c:0c:60:c3:2f: 1f:ed:d1:fc:28:70:3d:a0:d2:5d:86:08:78:a6:0d:25:94:4d: 97:31:5b:88:38:ea:a8:94:39:e3:b4:77:fe:1c:c9:80:a8:4d: ce:d3:ac:2d:42:7b:e8:13:4d:43:09:95:84:54:ad:42:fb:56: ea:4d:26:1b:ae:58:6f:ee:ae:17:26:b2:04:16:34:6a:cc:f3: 89:e3:97:80:c8:3a:98:98:02:43:09:b0:50:d2:dd:e6:c8:19: af:a5:f2:46:99:42:db:56:05:a9:84:6c:a8:53:21:77:6f:68: 34:09:e5:5b:3d:f7:f7:d9:5b:5f:09:c8:1f:e4:6d:d5:d0:c7: 90:7a:81:be:1c:d5:5f:75:bd:8c:80:f8:50:ad:eb:b9:71:de: b7:8b:af:d6:48:9c:5f:be:97:bd:9a:bc:d9:57:9a:74:df:d4: 2e:8b:19:48:3d:de:0f:4f:cf:f9:45:8b:43:5e:56:55:5b:2c: 50:fa:8b:67 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUZMMmCT9ighmjMgdiA7SEyMga/WQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNTAxMzMyNVoX DTI2MTEyNDAxMzgyNVowMzExMC8GA1UEAxMoREUwNTA2RjEyOTZEMkM1QTc3ODE1 NkNGNEMwREVCOTRFQkI0RjgyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMx4PuOpQEFbs5Yp3Sip5pUi8tYS1eswNwTs1fCzFx4/QRzC98czrupJsWUg HCkuxBQH/J/v4+HvQt47vFzdpTmv1uCPgD8FFRrdJPbnMw53+KUg7jdVqdeoxNFf BeeVRg2p6MJ1b6xBjQ2+OL7AZYL1gkMIizj+QcYQtkDDkhCKobQW5UPckAGKevdq iXQONURcc3UdL/C2xgtMpWuoPM05qyimhe1PxUGdnelBXNhjFpfYGfOE8+Udfjdy Mf+0sWPWKCZiSTLpK836H+fKkTeDrrsX1s5/d/HQn7H2sBd335qIrqFjWWwFqdQF YSgTs90tjDHea56nDTTe+I2Iw70CAwEAAaOCAdswggHXMB0GA1UdDgQWBBTeBQbx KW0sWneBVs9MDeuU67T4LTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzI0NTM0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCZzREAwQBZ4hOAwQBZ5UOMA0GCSqGSIb3DQEBCwUAA4IBAQCZ9EpW tYyA+q6rqp8jVPLWxtfMna6bn5SpbsYQyG/ePWUnoyLFwdVl72qHNFaDgpG/W7Ph 7xOqTsQgdsUbfOGBUr4GnAxgwy8f7dH8KHA9oNJdhgh4pg0llE2XMVuIOOqolDnj tHf+HMmAqE3O06wtQnvoE01DCZWEVK1C+1bqTSYbrlhv7q4XJrIEFjRqzPOJ45eA yDqYmAJDCbBQ0t3myBmvpfJGmULbVgWphGyoUyF3b2g0CeVbPff32VtfCcgf5G3V 0MeQeoG+HNVfdb2MgPhQreu5cd63i6/WSJxfvpe9mrzZV5p039QuixlIPd4PT8/5 RYtDXlZVWyxQ+otn -----END CERTIFICATE-----Generated at Sat Dec 6 20:19:30 2025 by rpki-client