This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140913.roa File: AS140913.roa (raw, json) Hash identifier: VDK5FULvTFgCFdRGt6KAOz5R/Qry+/q3Zn7bhYhnM+0= Subject key identifier: 29:3F:63:E8:62:DE:CD:FA:EF:52:C8:BA:7E:B3:E4:C8:1A:75:1B:5C Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7F2C494669A9812C49D61014CEC7CA284BE32EED Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140913.roa Signing time: Thu 06 Nov 2025 04:30:54 +0000 ROA not before: Thu 06 Nov 2025 04:25:54 +0000 ROA not after: Thu 05 Nov 2026 04:30:54 +0000 asID: 140913 IP address blocks: 138.252.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:2c:49:46:69:a9:81:2c:49:d6:10:14:ce:c7:ca:28:4b:e3:2e:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 6 04:25:54 2025 GMT Not After : Nov 5 04:30:54 2026 GMT Subject: CN=293F63E862DECDFAEF52C8BA7EB3E4C81A751B5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2e:58:3e:a5:26:7e:63:a9:63:61:c4:51:db: a4:8e:83:fd:73:70:01:32:e1:49:30:f7:cd:4a:fa: b6:7e:c4:aa:dd:aa:95:da:39:e6:ed:b3:b8:ba:2d: dc:55:1a:e3:af:cc:ad:45:2f:27:67:04:9f:51:e9: 8b:07:b9:f4:58:e2:58:43:07:b1:a8:1d:11:f6:78: 28:fd:7c:cd:1e:f1:6c:9a:17:b1:7c:9e:29:15:e1: a9:13:21:4f:dc:d0:39:d2:d6:03:52:1d:0c:40:a2: f3:a9:c1:0c:51:f5:b2:83:8f:80:9e:51:95:a9:16: 56:c2:d6:81:e3:d2:14:e1:c6:c9:b0:00:ee:af:b1: c7:ac:cd:80:18:6c:16:53:51:50:a6:09:0a:03:14: a5:7a:96:ee:56:3b:e3:95:1c:d8:09:e2:b7:6c:be: 5c:c9:43:12:f1:c8:cc:b1:2e:5c:e2:cf:11:10:be: 97:20:ab:0e:52:dd:0b:49:1e:d6:e0:9a:05:9a:fe: 60:85:5c:ad:fa:be:e3:e1:ff:a5:6a:4a:c5:f1:e2: 2d:c4:d3:78:b1:4c:d6:b4:4c:17:64:30:af:df:30: 47:17:4c:85:ae:86:37:b2:ae:e2:ac:76:23:dc:3d: 16:df:a8:6c:6e:a9:b3:aa:3d:08:81:48:93:16:a3: f9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3F:63:E8:62:DE:CD:FA:EF:52:C8:BA:7E:B3:E4:C8:1A:75:1B:5C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140913.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.122.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:5c:27:f2:d8:41:d0:fa:32:ff:48:c6:23:6e:4b:98:a1:b9: 7b:75:51:63:60:f1:19:27:ff:46:fe:d1:3b:a7:65:8a:bd:f9: b6:ba:8d:37:eb:f5:3a:77:d8:e0:c2:b9:0f:d5:24:f6:af:af: 95:92:cb:89:45:ca:d0:2a:2c:d5:74:15:b5:09:8b:e0:f6:28: 78:e0:c9:b8:61:7f:75:bb:e1:e5:67:65:26:f8:4f:d2:85:a2: ac:2c:2c:3e:e6:75:b7:25:7e:24:aa:d5:44:b9:52:4d:7a:ca: 1e:a5:a7:19:9f:c0:9f:a6:da:82:3c:57:15:79:24:36:ce:5c: bc:48:68:8a:4c:d8:6a:5a:42:95:b7:96:3a:3e:b0:1c:74:c4: 40:2e:68:12:6c:34:fc:7f:25:1d:68:ad:4d:ae:e3:53:3a:e5: f5:20:70:9a:e3:0e:3b:bd:3c:cb:73:68:04:eb:de:10:db:f6: 16:fe:2f:41:c6:ac:16:46:09:de:a2:47:3e:fc:89:09:c4:4b: df:ea:53:32:35:bb:a7:63:70:02:3f:d9:2f:a7:7a:d0:bb:f2: 7f:5a:3b:a0:ed:df:b6:e0:2e:3f:16:3a:d5:69:71:81:8f:52: 93:7b:27:c4:0b:1c:ad:53:1b:ea:6c:a4:9d:2a:f4:ae:e5:25: 5d:ea:f6:c3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfyxJRmmpgSxJ1hAUzsfKKEvjLu0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTEwNjA0MjU1NFoX DTI2MTEwNTA0MzA1NFowMzExMC8GA1UEAxMoMjkzRjYzRTg2MkRFQ0RGQUVGNTJD OEJBN0VCM0U0QzgxQTc1MUI1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOMuWD6lJn5jqWNhxFHbpI6D/XNwATLhSTD3zUr6tn7Eqt2qldo55u2zuLot 3FUa46/MrUUvJ2cEn1Hpiwe59FjiWEMHsagdEfZ4KP18zR7xbJoXsXyeKRXhqRMh T9zQOdLWA1IdDECi86nBDFH1soOPgJ5RlakWVsLWgePSFOHGybAA7q+xx6zNgBhs FlNRUKYJCgMUpXqW7lY745Uc2Anit2y+XMlDEvHIzLEuXOLPERC+lyCrDlLdC0ke 1uCaBZr+YIVcrfq+4+H/pWpKxfHiLcTTeLFM1rRMF2Qwr98wRxdMha6GN7Ku4qx2 I9w9Ft+obG6ps6o9CIFIkxaj+RsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQpP2Po Yt7N+u9SyLp+s+TIGnUbXDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MDkxMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAYr8ejANBgkqhkiG9w0BAQsFAAOCAQEAelwn8thB0Poy/0jGI25L mKG5e3VRY2DxGSf/Rv7RO6dlir35trqNN+v1OnfY4MK5D9Uk9q+vlZLLiUXK0Cos 1XQVtQmL4PYoeODJuGF/dbvh5WdlJvhP0oWirCwsPuZ1tyV+JKrVRLlSTXrKHqWn GZ/An6bagjxXFXkkNs5cvEhoikzYalpClbeWOj6wHHTEQC5oEmw0/H8lHWitTa7j Uzrl9SBwmuMOO708y3NoBOveENv2Fv4vQcasFkYJ3qJHPvyJCcRL3+pTMjW7p2Nw Aj/ZL6d60Lvyf1o7oO3ftuAuPxY61WlxgY9Sk3snxAscrVMb6myknSr0ruUlXer2 ww== -----END CERTIFICATE-----Generated at Wed Dec 3 16:19:37 2025 by rpki-client