This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa File: AS55685.roa (raw, json) Hash identifier: UO8F8OYqE+Tkc9IRyYtRukwH+/Yc2KBFU5av1N4TBWc= Subject key identifier: 48:F7:C7:16:03:E7:19:50:2F:D9:CA:18:DB:37:C9:2A:69:1F:B5:E3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1978B9C722F4087D19363295F2190CDAA8538BAA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa Signing time: Mon 19 Jan 2026 06:33:01 +0000 ROA not before: Mon 19 Jan 2026 06:28:01 +0000 ROA not after: Mon 18 Jan 2027 06:33:01 +0000 asID: 55685 IP address blocks: 103.247.40.0/24 maxlen: 24 103.247.41.0/24 maxlen: 24 103.247.42.0/24 maxlen: 24 103.247.43.0/24 maxlen: 24 202.51.192.0/21 maxlen: 24 202.51.192.0/22 maxlen: 24 202.51.196.0/23 maxlen: 24 202.51.200.0/24 maxlen: 24 202.51.201.0/24 maxlen: 24 202.51.202.0/24 maxlen: 24 202.51.203.0/24 maxlen: 24 202.51.204.0/22 maxlen: 24 202.51.208.0/24 maxlen: 24 202.51.209.0/24 maxlen: 24 202.51.210.0/23 maxlen: 24 202.51.212.0/24 maxlen: 24 202.51.213.0/24 maxlen: 24 202.51.215.0/24 maxlen: 24 202.51.216.0/24 maxlen: 24 202.51.217.0/24 maxlen: 24 202.51.220.0/24 maxlen: 24 202.51.221.0/24 maxlen: 24 202.145.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:78:b9:c7:22:f4:08:7d:19:36:32:95:f2:19:0c:da:a8:53:8b:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 19 06:28:01 2026 GMT Not After : Jan 18 06:33:01 2027 GMT Subject: CN=48F7C71603E719502FD9CA18DB37C92A691FB5E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1b:1f:88:b5:8e:59:a2:b0:f4:cf:37:d8:fd: ee:89:e8:b9:85:fe:a0:54:16:32:80:63:41:c7:76: 74:24:69:b2:10:8e:5f:d0:a0:13:28:56:6c:14:11: 55:0b:48:3f:d8:95:b9:3f:eb:83:54:e1:bf:25:c2: a4:9e:cb:e1:43:f3:2e:8e:7d:c3:65:c3:ac:d5:1c: a3:11:4a:58:ff:fd:f1:32:6f:a8:14:59:71:64:5d: 5a:b4:2d:f6:08:8d:a8:2a:20:42:2c:07:98:ba:69: 39:de:76:ee:65:01:c1:cf:1c:65:b1:1b:7b:41:05: df:15:6d:b0:0e:b7:02:bf:73:c1:4d:5f:93:e0:ea: 86:d3:7a:d2:da:ee:05:02:64:73:c7:d1:87:cf:c3: c0:71:0b:d1:1b:e2:b7:fd:fb:60:0c:67:7d:fc:23: c2:76:c9:18:01:60:95:57:0b:b6:35:ac:2b:62:7c: 1a:c0:3a:27:b4:c3:f4:de:88:30:a4:a8:78:f3:b3: 87:dc:21:c0:30:26:90:a8:4b:c9:8e:28:82:ca:49: 00:e6:25:63:31:54:ef:da:23:02:02:8a:be:01:fb: 8f:ad:e4:ba:b6:98:22:54:01:82:dd:20:ff:7d:42: ca:42:48:3c:d7:67:38:7b:ed:ea:2e:fa:c8:1c:da: 4e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:F7:C7:16:03:E7:19:50:2F:D9:CA:18:DB:37:C9:2A:69:1F:B5:E3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS55685.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.40.0/22 202.51.192.0-202.51.213.255 202.51.215.0-202.51.217.255 202.51.220.0/23 202.145.4.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:c4:3c:df:e0:8a:d4:4c:b5:d0:00:d4:8f:60:54:40:0b:6f: da:07:67:3e:da:82:1f:a4:25:8b:67:7e:eb:0c:e0:0d:0e:80: 5f:86:ce:ff:ac:31:d1:15:99:b6:7f:07:1d:99:16:da:99:e2: 1f:13:07:90:31:ac:67:81:8a:e4:7b:83:51:06:aa:ad:83:c9: ab:c7:81:b3:80:01:a0:fd:18:1d:3c:58:61:ac:f2:b3:5d:72: 47:5e:29:42:6c:f7:f5:01:9b:3a:b4:39:58:32:ab:52:85:ef: 3f:13:a0:01:39:16:e9:ea:f5:32:30:7b:55:82:9a:63:9c:b6: b5:22:26:11:69:1e:82:99:6a:c9:a1:63:78:81:72:ad:bd:4b: 19:24:95:2d:c0:7a:bc:59:4b:5f:06:02:47:c6:7a:cf:fd:dd: f7:30:e7:ca:a2:e2:f5:f2:fb:99:3c:a9:b8:ab:1e:11:c2:d0: 20:a4:5f:20:88:83:e6:36:30:a1:4d:80:c3:c6:1c:e5:0c:09: e9:c6:17:50:95:5e:0c:25:27:65:4c:a0:dd:9f:36:54:54:9a: 82:05:88:d5:48:68:06:bc:45:e0:3d:ed:7d:1d:ab:10:92:ad: a8:07:b4:03:4b:53:b4:bc:60:95:c9:06:46:58:0a:45:ef:48: 9d:8e:ad:e5 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUGXi5xyL0CH0ZNjKV8hkM2qhTi6owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExOTA2MjgwMVoX DTI3MDExODA2MzMwMVowMzExMC8GA1UEAxMoNDhGN0M3MTYwM0U3MTk1MDJGRDlD QTE4REIzN0M5MkE2OTFGQjVFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJwbH4i1jlmisPTPN9j97onouYX+oFQWMoBjQcd2dCRpshCOX9CgEyhWbBQR VQtIP9iVuT/rg1ThvyXCpJ7L4UPzLo59w2XDrNUcoxFKWP/98TJvqBRZcWRdWrQt 9giNqCogQiwHmLppOd527mUBwc8cZbEbe0EF3xVtsA63Ar9zwU1fk+DqhtN60tru BQJkc8fRh8/DwHEL0Rvit/37YAxnffwjwnbJGAFglVcLtjWsK2J8GsA6J7TD9N6I MKSoePOzh9whwDAmkKhLyY4ogspJAOYlYzFU79ojAgKKvgH7j63kuraYIlQBgt0g /31CykJIPNdnOHvt6i76yBzaTjsCAwEAAaOCAfcwggHzMB0GA1UdDgQWBBRI98cW A+cZUC/ZyhjbN8kqaR+14zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU1Njg1LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjA0 BAIAATAuAwQCZ/coMAwDBAbKM8ADBAHKM9QwDAMEAMoz1wMEAcoz2AMEAcoz3AME AcqRBDANBgkqhkiG9w0BAQsFAAOCAQEAjcQ83+CK1Ey10ADUj2BUQAtv2gdnPtqC H6Qli2d+6wzgDQ6AX4bO/6wx0RWZtn8HHZkW2pniHxMHkDGsZ4GK5HuDUQaqrYPJ q8eBs4ABoP0YHTxYYazys11yR14pQmz39QGbOrQ5WDKrUoXvPxOgATkW6er1MjB7 VYKaY5y2tSImEWkegplqyaFjeIFyrb1LGSSVLcB6vFlLXwYCR8Z6z/3d9zDnyqLi 9fL7mTypuKseEcLQIKRfIIiD5jYwoU2Aw8Yc5QwJ6cYXUJVeDCUnZUyg3Z82VFSa ggWI1UhoBrxF4D3tfR2rEJKtqAe0A0tTtLxglckGRlgKRe9InY6t5Q== -----END CERTIFICATE-----Generated at Sun Jan 25 21:41:47 2026 by rpki-client