This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137289.roa File: AS137289.roa (raw, json) Hash identifier: mbl3zd4jWxqvY7U7LMpqbvQEGwTFsjmV0o0bI37hfA4= Subject key identifier: 9E:53:7B:5D:5D:E5:D3:A7:AE:D1:74:EB:79:F5:DE:59:BA:CB:9F:5A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4DC20319367273F2128175AEB28F508F4B029318 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137289.roa Signing time: Thu 18 Dec 2025 06:44:13 +0000 ROA not before: Thu 18 Dec 2025 06:39:13 +0000 ROA not after: Thu 17 Dec 2026 06:44:13 +0000 asID: 137289 IP address blocks: 103.107.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 13:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c2:03:19:36:72:73:f2:12:81:75:ae:b2:8f:50:8f:4b:02:93:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 18 06:39:13 2025 GMT Not After : Dec 17 06:44:13 2026 GMT Subject: CN=9E537B5D5DE5D3A7AED174EB79F5DE59BACB9F5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4d:cf:fd:1f:1b:38:3b:71:e1:8c:87:b2:49: d2:61:23:54:24:a5:b2:ab:04:cb:5c:f9:9e:12:97: 32:03:42:7a:ba:c8:53:a1:a7:0c:b4:33:4b:6d:d9: c9:40:c5:ad:0b:f8:24:0f:94:5d:e4:b5:73:42:46: 2d:75:70:d3:44:77:e6:20:35:fe:e5:c3:94:2d:ff: 71:0f:24:5d:e6:64:66:aa:e2:d0:b1:08:f2:8d:5b: 27:e6:d1:9c:a8:2e:55:19:59:23:21:de:7d:61:be: 9a:e4:0a:80:48:1e:c3:ec:b1:5d:b5:59:ff:eb:d7: 0d:a1:d7:74:d1:8b:ef:fe:6d:37:74:71:e0:2f:b4: e4:a9:4c:5d:c9:88:bb:21:46:48:9b:a0:74:08:0a: 4c:b5:69:d5:d8:17:b8:b6:02:c1:5f:ff:68:b4:3b: c4:48:31:4a:fa:44:75:94:d9:d5:ad:56:0e:15:e6: b4:50:df:df:3a:e5:71:00:96:89:c3:f9:aa:a2:d9: 3a:98:58:cc:9b:64:7b:cd:b7:a6:a4:e6:42:23:de: b6:ba:0d:d2:8f:90:43:e9:63:6e:08:a4:30:80:29: 38:21:53:29:f1:93:91:b5:6d:39:3e:e7:b8:bf:80: b4:88:21:6d:e4:57:59:ce:97:ef:67:bc:15:18:5b: 40:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:53:7B:5D:5D:E5:D3:A7:AE:D1:74:EB:79:F5:DE:59:BA:CB:9F:5A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137289.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.100.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:24:bd:0c:8a:d0:33:38:6a:a4:0e:44:e4:aa:57:0d:b9:5a: 3e:fc:c0:55:f4:b5:20:53:59:60:03:f8:c9:96:34:a1:78:41: ef:ea:a6:42:81:53:33:1a:e2:c6:2a:91:35:cd:50:56:0c:18: c3:16:35:76:2a:ee:da:b9:3a:86:88:1a:b4:54:cf:72:b3:9e: 99:63:06:f3:f7:55:68:86:d8:02:92:84:da:92:50:f0:3a:6d: dc:25:e4:c6:0d:34:74:67:8c:65:6c:7c:35:87:16:cc:bf:80: 8d:bc:4f:a1:7a:73:94:b1:76:60:5f:f1:85:55:2b:9c:9d:84: d4:ba:42:39:17:33:37:48:ed:23:c2:8d:4c:58:31:f2:81:70: 0c:9c:9b:ad:70:fb:ee:14:a4:28:60:8c:a3:5f:7b:18:0d:87: 77:9d:d9:69:93:dc:78:42:bc:7b:51:4c:1a:2c:68:e3:59:8a: a6:88:45:cf:47:76:d3:f5:56:dd:dc:96:c9:78:82:b4:6c:f2: 2e:7c:3c:77:ae:b1:95:07:2f:24:9b:28:18:9b:9b:17:51:3f: 87:03:e1:2c:cf:fb:2f:ac:5f:0a:8f:d4:ea:28:bf:c4:4a:b5: 9e:db:f0:f5:1e:3d:8b:eb:44:a4:80:db:17:6f:e7:05:41:f6: 0f:ef:1c:9b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTcIDGTZyc/ISgXWuso9Qj0sCkxgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxODA2MzkxM1oX DTI2MTIxNzA2NDQxM1owMzExMC8GA1UEAxMoOUU1MzdCNUQ1REU1RDNBN0FFRDE3 NEVCNzlGNURFNTlCQUNCOUY1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANVNz/0fGzg7ceGMh7JJ0mEjVCSlsqsEy1z5nhKXMgNCerrIU6GnDLQzS23Z yUDFrQv4JA+UXeS1c0JGLXVw00R35iA1/uXDlC3/cQ8kXeZkZqri0LEI8o1bJ+bR nKguVRlZIyHefWG+muQKgEgew+yxXbVZ/+vXDaHXdNGL7/5tN3Rx4C+05KlMXcmI uyFGSJugdAgKTLVp1dgXuLYCwV//aLQ7xEgxSvpEdZTZ1a1WDhXmtFDf3zrlcQCW icP5qqLZOphYzJtke823pqTmQiPetroN0o+QQ+ljbgikMIApOCFTKfGTkbVtOT7n uL+AtIghbeRXWc6X72e8FRhbQO8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSeU3td XeXTp67RdOt59d5ZusufWjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzI4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdrZDANBgkqhkiG9w0BAQsFAAOCAQEADiS9DIrQMzhqpA5E5KpX DblaPvzAVfS1IFNZYAP4yZY0oXhB7+qmQoFTMxrixiqRNc1QVgwYwxY1diru2rk6 hogatFTPcrOemWMG8/dVaIbYApKE2pJQ8Dpt3CXkxg00dGeMZWx8NYcWzL+AjbxP oXpzlLF2YF/xhVUrnJ2E1LpCORczN0jtI8KNTFgx8oFwDJybrXD77hSkKGCMo197 GA2Hd53ZaZPceEK8e1FMGixo41mKpohFz0d20/VW3dyWyXiCtGzyLnw8d66xlQcv JJsoGJubF1E/hwPhLM/7L6xfCo/U6ii/xEq1ntvw9R49i+tEpIDbF2/nBUH2D+8c mw== -----END CERTIFICATE-----Generated at Fri Dec 19 01:19:14 2025 by rpki-client