This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa File: AS147104.roa (raw, json) Hash identifier: WmJeypI/M8XYXf0Ya9VMaVAPpveiT6r8WDs1H3IbDUA= Subject key identifier: 9F:A1:3E:A4:EE:0C:38:D2:E0:86:77:21:6C:41:A7:83:E2:3E:90:07 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 23E6204C791F3C87AA4CD574AFA75AC3F16F953A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa Signing time: Thu 11 Dec 2025 04:00:00 +0000 ROA not before: Thu 11 Dec 2025 03:55:00 +0000 ROA not after: Thu 10 Dec 2026 04:00:00 +0000 asID: 147104 IP address blocks: 103.174.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 07:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e6:20:4c:79:1f:3c:87:aa:4c:d5:74:af:a7:5a:c3:f1:6f:95:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 11 03:55:00 2025 GMT Not After : Dec 10 04:00:00 2026 GMT Subject: CN=9FA13EA4EE0C38D2E08677216C41A783E23E9007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:24:b1:c3:ac:8c:3a:18:69:e6:0d:33:8e:89: f5:68:fd:e4:59:ab:03:be:81:4b:ef:35:be:e6:8a: 8e:d8:a4:50:03:b8:e4:63:0f:8b:0b:99:21:73:43: 87:a2:44:7a:5d:64:85:0b:a2:d3:e0:8d:84:54:e3: 2f:7c:ef:9e:9e:b1:a4:3b:b7:42:9d:4d:eb:ed:7b: 1c:01:02:f7:49:93:24:27:cb:65:04:5c:36:39:e5: a8:c2:cd:60:fa:08:1f:ed:da:3f:22:58:71:be:cd: fd:f2:9f:5a:1c:90:7c:77:96:8c:0f:4c:68:90:b0: 3f:38:a2:6b:96:2a:bb:dd:e4:70:96:c4:4b:32:4f: 89:10:15:47:49:26:8f:40:3a:46:69:f2:19:47:43: 53:be:3b:0c:27:db:9a:82:c1:53:28:7e:de:a4:43: 47:33:5b:4a:c1:30:b2:21:6e:8a:79:25:70:56:bb: 98:48:05:8a:14:a2:ce:99:d3:18:51:59:35:7d:25: 63:81:53:e6:ef:a7:09:92:89:8d:8b:8b:80:cb:44: 86:19:62:be:a3:4c:e3:86:ad:5e:85:91:b9:45:50: 92:e6:f8:41:5e:66:40:50:25:89:af:f0:ef:01:d1: 7e:28:33:23:12:19:12:57:51:c2:97:74:8e:eb:56: 8f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A1:3E:A4:EE:0C:38:D2:E0:86:77:21:6C:41:A7:83:E2:3E:90:07 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS147104.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.172.0/24 Signature Algorithm: sha256WithRSAEncryption 41:f5:0e:41:37:b4:ea:d0:88:ee:db:8f:1b:18:46:8d:42:47: e0:13:d7:38:cf:79:dc:c5:89:8d:b5:08:dd:f0:c2:e4:03:ed: b2:17:f6:89:f4:d9:28:32:79:22:16:63:50:80:c1:04:48:dc: d9:27:6f:93:d2:8e:b1:ca:8e:8f:94:c1:3a:ab:34:ba:1a:fc: ed:a5:e0:e8:d7:fc:b9:18:2e:5d:36:38:1b:2a:1a:2d:8f:da: 2e:70:75:5d:c4:32:0c:ad:51:17:d4:91:bf:65:b4:91:9b:db: cd:0c:1a:2e:26:8d:2b:5f:29:cf:ea:24:16:99:03:ef:ca:77: 98:ca:ec:a9:c1:e4:e9:70:90:15:b8:aa:17:f2:50:17:cf:5b: 36:40:06:e8:a0:34:a7:36:e2:63:13:af:3e:a8:59:56:01:29: 63:88:e1:33:e9:c8:79:bd:c5:c5:91:44:5a:71:a6:9b:85:b3: cb:8f:24:9a:2f:e0:7d:dd:86:a5:ff:4b:9c:f6:0c:12:95:bb: e9:29:cf:3b:0f:d1:c3:d7:20:6f:69:07:46:05:54:bd:a7:1d: 68:e9:34:08:f8:e0:aa:fc:31:ab:90:2e:8d:70:9f:4c:5d:8b: 80:d6:69:eb:d9:6f:3e:33:df:61:20:68:82:39:ef:06:00:1b: 39:3d:d9:1d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUI+YgTHkfPIeqTNV0r6daw/FvlTowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxMTAzNTUwMFoX DTI2MTIxMDA0MDAwMFowMzExMC8GA1UEAxMoOUZBMTNFQTRFRTBDMzhEMkUwODY3 NzIxNkM0MUE3ODNFMjNFOTAwNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANUkscOsjDoYaeYNM46J9Wj95FmrA76BS+81vuaKjtikUAO45GMPiwuZIXND h6JEel1khQui0+CNhFTjL3zvnp6xpDu3Qp1N6+17HAEC90mTJCfLZQRcNjnlqMLN YPoIH+3aPyJYcb7N/fKfWhyQfHeWjA9MaJCwPziia5Yqu93kcJbESzJPiRAVR0km j0A6RmnyGUdDU747DCfbmoLBUyh+3qRDRzNbSsEwsiFuinklcFa7mEgFihSizpnT GFFZNX0lY4FT5u+nCZKJjYuLgMtEhhlivqNM44atXoWRuUVQkub4QV5mQFAlia/w 7wHRfigzIxIZEldRwpd0jutWj1cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSfoT6k 7gw40uCGdyFsQaeD4j6QBzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0NzEwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeurDANBgkqhkiG9w0BAQsFAAOCAQEAQfUOQTe06tCI7tuPGxhG jUJH4BPXOM953MWJjbUI3fDC5APtshf2ifTZKDJ5IhZjUIDBBEjc2Sdvk9KOscqO j5TBOqs0uhr87aXg6Nf8uRguXTY4GyoaLY/aLnB1XcQyDK1RF9SRv2W0kZvbzQwa LiaNK18pz+okFpkD78p3mMrsqcHk6XCQFbiqF/JQF89bNkAG6KA0pzbiYxOvPqhZ VgEpY4jhM+nIeb3FxZFEWnGmm4Wzy48kmi/gfd2Gpf9LnPYMEpW76SnPOw/Rw9cg b2kHRgVUvacdaOk0CPjgqvwxq5AujXCfTF2LgNZp69lvPjPfYSBogjnvBgAbOT3Z HQ== -----END CERTIFICATE-----Generated at Fri Dec 19 01:27:39 2025 by rpki-client