This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140966.roa File: AS140966.roa (raw, json) Hash identifier: ceYZ13ZHj/KI2XM8PqXvbPX889/SGgGoPq1dAOI/xEc= Subject key identifier: 3F:92:EB:88:FF:D8:BD:E5:49:4F:B0:2B:05:9E:8F:66:75:79:5E:51 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6098856E72413620E5651215350D9CDF15EDDF1B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140966.roa Signing time: Mon 05 Jan 2026 03:31:37 +0000 ROA not before: Mon 05 Jan 2026 03:26:37 +0000 ROA not after: Mon 04 Jan 2027 03:31:37 +0000 asID: 140966 IP address blocks: 144.79.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:98:85:6e:72:41:36:20:e5:65:12:15:35:0d:9c:df:15:ed:df:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 5 03:26:37 2026 GMT Not After : Jan 4 03:31:37 2027 GMT Subject: CN=3F92EB88FFD8BDE5494FB02B059E8F6675795E51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:74:c5:91:14:3c:83:1a:cd:04:53:3b:80:aa: 46:99:9e:b5:2d:5d:ca:6f:2c:0b:91:cc:3a:5f:e3: ad:fc:7e:26:05:43:dd:63:42:da:96:49:27:a2:e9: 68:a2:07:93:ec:0a:95:b9:b2:67:cc:a4:cf:b3:09: 62:f2:25:bf:7b:cc:c6:41:37:db:f3:63:e8:36:3e: f5:eb:d8:a6:80:16:22:79:9f:de:a1:eb:bd:99:f1: 0e:f6:d7:e8:66:dd:24:bf:c0:79:56:a0:b4:76:b3: 09:fb:c5:4b:21:db:f8:45:df:1f:1a:cf:92:2d:6a: 2d:7d:a6:31:f4:d5:76:c9:f3:6d:ff:49:66:9d:75: d5:16:04:27:a3:b2:e2:97:94:98:fd:e3:c2:f4:86: dc:33:2e:4e:8b:fe:45:b5:39:57:85:d5:a5:bf:9d: 3f:d5:b6:85:d2:5e:9f:e2:cc:65:ba:4c:b6:cb:31: 0d:ff:88:4f:e5:cf:6b:2e:71:83:8e:3c:79:a9:bd: 40:73:1f:a5:ff:e3:cb:eb:ea:e7:9b:12:44:85:93: c5:3f:ef:43:d6:90:6d:e3:4a:72:7f:20:54:17:5e: 48:1e:7a:f1:a0:a2:1b:0a:75:40:0c:db:db:23:b1: 33:06:e4:6f:08:eb:1f:9f:50:f8:21:c5:b1:a7:54: a6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:92:EB:88:FF:D8:BD:E5:49:4F:B0:2B:05:9E:8F:66:75:79:5E:51 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS140966.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.203.0/24 Signature Algorithm: sha256WithRSAEncryption 09:5b:69:91:02:77:46:35:f5:ed:b7:a7:01:11:eb:e2:72:6d: dc:fe:bc:2a:fd:72:62:fb:a0:8b:b5:e4:c2:ef:63:e3:88:4e: d9:06:c1:ce:66:97:13:01:a5:fb:f5:32:34:a7:86:6f:a3:30: 2b:9a:25:e5:96:f1:cf:72:65:f0:bd:a9:d0:af:37:21:db:6a: b3:c2:a0:bc:2a:4e:af:84:0f:0a:15:66:9e:1e:0c:32:6c:88: d7:79:95:8f:95:1a:3d:f5:16:e9:5d:5d:63:87:0f:5f:15:78: 43:b2:4e:03:c8:58:0f:13:9d:26:01:de:8d:3e:82:89:c1:f9: 76:72:08:f2:e9:4c:f6:81:6e:1d:79:5e:ec:74:06:cc:17:31: fe:b4:75:65:01:5a:cb:07:04:54:6e:ad:31:79:cd:5f:1f:c2: c3:df:fb:4f:7c:a9:42:93:38:9b:58:72:99:10:3c:c8:ad:ed: 9b:3e:73:ef:6d:1e:4c:4c:10:fa:16:ae:d6:2d:67:9e:35:74: 69:4d:c1:e2:66:77:4b:13:27:81:e6:93:5a:21:b1:cd:94:51: 01:e7:0b:b7:78:79:39:70:60:a2:75:19:de:ad:15:75:cb:bf: 89:e7:63:0b:6b:9c:26:68:84:c7:a9:58:fb:f2:77:94:b5:46: 55:4f:e7:88 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYJiFbnJBNiDlZRIVNQ2c3xXt3xswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwNTAzMjYzN1oX DTI3MDEwNDAzMzEzN1owMzExMC8GA1UEAxMoM0Y5MkVCODhGRkQ4QkRFNTQ5NEZC MDJCMDU5RThGNjY3NTc5NUU1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAON0xZEUPIMazQRTO4CqRpmetS1dym8sC5HMOl/jrfx+JgVD3WNC2pZJJ6Lp aKIHk+wKlbmyZ8ykz7MJYvIlv3vMxkE32/Nj6DY+9evYpoAWInmf3qHrvZnxDvbX 6GbdJL/AeVagtHazCfvFSyHb+EXfHxrPki1qLX2mMfTVdsnzbf9JZp111RYEJ6Oy 4peUmP3jwvSG3DMuTov+RbU5V4XVpb+dP9W2hdJen+LMZbpMtssxDf+IT+XPay5x g448eam9QHMfpf/jy+vq55sSRIWTxT/vQ9aQbeNKcn8gVBdeSB568aCiGwp1QAzb 2yOxMwbkbwjrH59Q+CHFsadUpuUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ/kuuI /9i95UlPsCsFno9mdXleUTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MDk2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJBPyzANBgkqhkiG9w0BAQsFAAOCAQEACVtpkQJ3RjX17benARHr 4nJt3P68Kv1yYvugi7Xkwu9j44hO2QbBzmaXEwGl+/UyNKeGb6MwK5ol5Zbxz3Jl 8L2p0K83Idtqs8KgvCpOr4QPChVmnh4MMmyI13mVj5UaPfUW6V1dY4cPXxV4Q7JO A8hYDxOdJgHejT6CicH5dnII8ulM9oFuHXle7HQGzBcx/rR1ZQFaywcEVG6tMXnN Xx/Cw9/7T3ypQpM4m1hymRA8yK3tmz5z720eTEwQ+hau1i1nnjV0aU3B4mZ3SxMn geaTWiGxzZRRAecLt3h5OXBgonUZ3q0Vdcu/iedjC2ucJmiEx6lY+/J3lLVGVU/n iA== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:53 2026 by rpki-client