This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142201.roa File: AS142201.roa (raw, json) Hash identifier: Nd87yNdY2PayKB49u4JLpGq1Ybicyo8i9O8IOKCHp1M= Subject key identifier: BA:0D:EE:7C:C0:44:D6:51:F7:8E:31:66:FD:03:74:DB:92:F4:25:D8 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5F06210692DC029D90A71BCD77075568287F7378 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142201.roa Signing time: Tue 20 Jan 2026 01:43:45 +0000 ROA not before: Tue 20 Jan 2026 01:38:45 +0000 ROA not after: Tue 19 Jan 2027 01:43:45 +0000 asID: 142201 IP address blocks: 192.232.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:06:21:06:92:dc:02:9d:90:a7:1b:cd:77:07:55:68:28:7f:73:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 20 01:38:45 2026 GMT Not After : Jan 19 01:43:45 2027 GMT Subject: CN=BA0DEE7CC044D651F78E3166FD0374DB92F425D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d7:02:9e:f9:ee:48:da:1b:88:83:96:24:32: b9:44:d3:cf:6e:1a:74:81:10:4e:1d:16:44:4c:f0: 77:c9:1a:b8:63:65:d7:a6:c4:f0:f0:17:dd:60:ff: 56:de:3c:13:d0:d4:fa:9c:0f:e0:cb:01:e8:f1:de: 84:35:aa:b4:c0:c2:06:a8:4f:c7:61:e5:cd:3c:16: b1:20:2c:63:af:bd:22:4a:ee:d2:33:6b:71:9f:f0: a9:63:ab:17:a1:13:5d:c9:cf:e7:80:1f:3b:26:e3: 89:88:c8:63:4d:76:23:64:3e:1f:da:b7:55:da:ae: 86:a3:61:61:53:06:b0:95:69:a4:6e:46:ea:ab:95: 2c:84:2a:4c:8d:42:17:f9:6c:1c:2c:4a:65:43:f7: 50:43:26:70:dd:16:d0:17:81:a0:be:fa:60:ac:00: f7:f2:0b:3b:8f:6b:5b:8f:df:2c:63:f3:44:35:a1: 20:74:b0:1b:f4:23:27:95:04:bd:1d:51:d6:fb:23: 84:df:9c:23:d5:3a:74:1c:3e:bc:38:8f:92:8e:52: bf:55:0f:d6:8e:01:be:4a:83:de:3b:11:91:6c:89: 3b:7a:7b:2a:8e:b2:d4:5b:ad:c8:36:49:f8:cb:28: 82:b6:97:2e:ce:bf:9e:35:38:2e:01:86:73:e1:72: cd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0D:EE:7C:C0:44:D6:51:F7:8E:31:66:FD:03:74:DB:92:F4:25:D8 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.232.48.0/23 Signature Algorithm: sha256WithRSAEncryption 56:b2:01:22:37:84:9f:08:e4:d9:f3:f6:d8:ec:e1:94:88:9f: 1d:c6:32:3a:e7:1a:83:74:c3:37:57:48:0e:44:71:24:79:7a: 13:a8:3a:bd:6a:28:55:4f:6b:c6:4e:97:55:a4:0f:3f:22:c0: 96:45:11:2c:a1:66:9f:b5:c5:b8:17:5a:c5:a0:54:75:0e:1a: 34:7e:6a:d9:56:48:04:d0:80:93:cb:ed:b2:d6:88:56:91:bb: 35:89:87:24:08:be:1e:4f:46:a8:90:b5:71:2f:5b:e9:da:d5: ac:98:28:45:c9:00:81:bf:3c:cd:ea:72:c3:b7:d3:6b:7f:83: 3b:38:e4:95:41:d9:24:20:84:31:3d:d8:51:77:88:5f:08:fb: 65:af:4e:2f:8e:b9:77:6b:0a:de:d5:5b:cd:16:e4:61:4a:18: 99:14:eb:47:ce:01:93:3d:25:19:16:45:c6:f2:d2:b6:50:93: fc:cb:56:73:19:97:9d:ee:24:6d:f3:5a:eb:4e:c5:27:b0:46: f3:6c:19:11:db:c3:b8:6c:aa:80:0d:ed:85:60:97:58:59:4b: 76:52:62:7c:4e:a2:cd:22:91:42:7a:81:71:70:88:35:81:f9: ef:81:fe:9f:f8:fc:3b:16:d5:32:32:71:42:db:46:db:6a:7b: 64:5e:9b:1a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXwYhBpLcAp2QpxvNdwdVaCh/c3gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEyMDAxMzg0NVoX DTI3MDExOTAxNDM0NVowMzExMC8GA1UEAxMoQkEwREVFN0NDMDQ0RDY1MUY3OEUz MTY2RkQwMzc0REI5MkY0MjVEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKzXAp757kjaG4iDliQyuUTTz24adIEQTh0WREzwd8kauGNl16bE8PAX3WD/ Vt48E9DU+pwP4MsB6PHehDWqtMDCBqhPx2HlzTwWsSAsY6+9Ikru0jNrcZ/wqWOr F6ETXcnP54AfOybjiYjIY012I2Q+H9q3VdquhqNhYVMGsJVppG5G6quVLIQqTI1C F/lsHCxKZUP3UEMmcN0W0BeBoL76YKwA9/ILO49rW4/fLGPzRDWhIHSwG/QjJ5UE vR1R1vsjhN+cI9U6dBw+vDiPko5Sv1UP1o4BvkqD3jsRkWyJO3p7Ko6y1FutyDZJ +MsograXLs6/njU4LgGGc+FyzQ0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS6De58 wETWUfeOMWb9A3TbkvQl2DAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MjIwMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAcDoMDANBgkqhkiG9w0BAQsFAAOCAQEAVrIBIjeEnwjk2fP22Ozh lIifHcYyOucag3TDN1dIDkRxJHl6E6g6vWooVU9rxk6XVaQPPyLAlkURLKFmn7XF uBdaxaBUdQ4aNH5q2VZIBNCAk8vtstaIVpG7NYmHJAi+Hk9GqJC1cS9b6drVrJgo RckAgb88zepyw7fTa3+DOzjklUHZJCCEMT3YUXeIXwj7Za9OL465d2sK3tVbzRbk YUoYmRTrR84Bkz0lGRZFxvLStlCT/MtWcxmXne4kbfNa607FJ7BG82wZEdvDuGyq gA3thWCXWFlLdlJifE6izSKRQnqBcXCINYH574H+n/j8OxbVMjJxQttG22p7ZF6b Gg== -----END CERTIFICATE-----Generated at Wed Jan 21 10:28:00 2026 by rpki-client