This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa File: AS24537.roa (raw, json) Hash identifier: uxi/Yf79uo/817ryEQS1TniGi/8E+RBAA/KIDQi3jv8= Subject key identifier: 24:17:9B:C0:6E:45:40:65:2F:3F:C3:7B:2D:0E:C6:5C:70:1D:77:8A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 31007F3C83E2BC53A75035754C2B045C6A9B6121 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa Signing time: Tue 16 Dec 2025 07:30:41 +0000 ROA not before: Tue 16 Dec 2025 07:25:41 +0000 ROA not after: Tue 15 Dec 2026 07:30:41 +0000 asID: 24537 IP address blocks: 103.173.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 07:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:00:7f:3c:83:e2:bc:53:a7:50:35:75:4c:2b:04:5c:6a:9b:61:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 16 07:25:41 2025 GMT Not After : Dec 15 07:30:41 2026 GMT Subject: CN=24179BC06E4540652F3FC37B2D0EC65C701D778A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b6:23:b5:df:41:3b:c0:44:06:3e:04:02:92: ba:53:e2:1e:ca:3c:42:7e:f8:ca:a4:c5:fa:d6:a2: 75:91:5c:75:94:9f:e8:7b:ab:98:26:8b:bc:43:d0: aa:6c:ff:59:09:37:7a:12:82:08:c7:e2:6d:5f:b4: e1:08:1a:4f:a6:03:2c:1d:88:1c:2b:68:0f:c3:e0: 72:e6:01:5b:b7:f6:f6:3d:e4:c7:14:7e:ac:fd:91: 61:cb:d8:d1:bc:b7:69:26:84:7d:32:91:58:eb:a3: 09:bd:eb:a6:68:3d:55:67:9f:46:9c:e9:c7:75:32: 9d:d7:4d:97:e5:62:bf:0e:c5:aa:a6:53:88:0c:cf: 33:62:82:c9:f8:45:2f:e9:34:ad:02:ff:dd:e2:f8: c8:2d:eb:82:14:f6:93:34:49:02:36:f8:1c:f7:8a: 5a:f4:91:c3:6b:be:92:98:5e:92:ec:eb:98:65:06: 16:ae:fa:c5:9d:73:9d:26:ac:f3:45:91:9a:9f:19: 44:77:16:68:49:bd:d2:36:3c:95:8d:27:c0:6c:ac: 38:79:8b:ae:9d:61:3f:9a:ee:20:29:84:cc:20:c6: 02:b6:8e:a7:af:62:74:d5:1d:76:2e:b0:59:7f:1e: f3:1d:5a:10:5a:f1:c7:4c:13:f7:66:4b:18:14:80: c5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:17:9B:C0:6E:45:40:65:2F:3F:C3:7B:2D:0E:C6:5C:70:1D:77:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS24537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.163.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:06:c0:28:6a:79:99:5b:cc:02:ce:c2:5f:e4:2f:cb:06:86: bc:52:18:55:72:07:53:0a:54:24:7a:4c:0c:f7:1b:d4:f2:2f: c1:10:a0:fe:a4:62:a5:06:8e:c9:0a:9b:ce:ff:ed:5c:c6:70: 47:c8:1c:74:10:61:bd:9a:23:b3:98:6c:9d:9b:7f:8b:b4:61: 3d:f0:96:2a:da:f5:fc:97:00:fa:d0:0c:fc:f6:a5:e7:54:f4: 7a:b5:c8:ee:88:38:9b:ac:48:a0:63:95:e8:ba:5e:2e:26:7b: 2a:b8:eb:b7:85:92:44:30:f5:51:12:bd:90:0d:0b:7a:eb:c4: 74:e9:5c:d7:6b:ee:c2:81:fe:de:12:94:8b:be:c2:8f:81:39: 98:16:40:4f:35:22:c6:f3:33:c3:4a:8a:92:ab:48:eb:1f:5c: e7:7f:a5:50:e7:16:b7:3b:56:db:99:b7:42:43:58:24:5c:fa: 2e:62:bb:f0:d9:c5:ba:cc:23:6b:e1:2d:05:3c:c8:24:5d:0f: af:e5:a6:d7:41:c4:77:ac:f2:60:55:f4:07:35:73:f6:2a:8a: ea:af:10:81:dc:38:ad:53:12:82:c9:72:02:fb:d4:81:45:51: 94:df:a1:cf:94:a2:76:5b:0f:6b:93:73:4d:3e:2b:bb:64:6e: 5c:11:4a:4a -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUMQB/PIPivFOnUDV1TCsEXGqbYSEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxNjA3MjU0MVoX DTI2MTIxNTA3MzA0MVowMzExMC8GA1UEAxMoMjQxNzlCQzA2RTQ1NDA2NTJGM0ZD MzdCMkQwRUM2NUM3MDFENzc4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKe2I7XfQTvARAY+BAKSulPiHso8Qn74yqTF+taidZFcdZSf6HurmCaLvEPQ qmz/WQk3ehKCCMfibV+04QgaT6YDLB2IHCtoD8PgcuYBW7f29j3kxxR+rP2RYcvY 0by3aSaEfTKRWOujCb3rpmg9VWefRpzpx3UynddNl+Vivw7FqqZTiAzPM2KCyfhF L+k0rQL/3eL4yC3rghT2kzRJAjb4HPeKWvSRw2u+kphekuzrmGUGFq76xZ1znSas 80WRmp8ZRHcWaEm90jY8lY0nwGysOHmLrp1hP5ruICmEzCDGAraOp69idNUddi6w WX8e8x1aEFrxx0wT92ZLGBSAxQcCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQkF5vA bkVAZS8/w3stDsZccB13ijAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzI0NTM3LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ62jMA0GCSqGSIb3DQEBCwUAA4IBAQBtBsAoanmZW8wCzsJf5C/L Boa8UhhVcgdTClQkekwM9xvU8i/BEKD+pGKlBo7JCpvO/+1cxnBHyBx0EGG9miOz mGydm3+LtGE98JYq2vX8lwD60Az89qXnVPR6tcjuiDibrEigY5Xoul4uJnsquOu3 hZJEMPVREr2QDQt668R06VzXa+7Cgf7eEpSLvsKPgTmYFkBPNSLG8zPDSoqSq0jr H1znf6VQ5xa3O1bbmbdCQ1gkXPouYrvw2cW6zCNr4S0FPMgkXQ+v5abXQcR3rPJg VfQHNXP2KorqrxCB3DitUxKCyXIC+9SBRVGU36HPlKJ2Ww9rk3NNPiu7ZG5cEUpK -----END CERTIFICATE-----Generated at Fri Dec 19 01:27:42 2025 by rpki-client