This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142219.roa File: AS142219.roa (raw, json) Hash identifier: aDn7a0E1Egk0Sq9gXWKMwL16+NQmIXvVCBit3fmGySs= Subject key identifier: 8A:6B:4B:5A:F8:8C:F8:37:EA:73:8C:ED:B3:24:E3:78:1A:D6:09:B4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2979D3A08BF8ED4D364BED80FA4835AEE60E2E1B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142219.roa Signing time: Wed 21 Jan 2026 03:00:55 +0000 ROA not before: Wed 21 Jan 2026 02:55:55 +0000 ROA not after: Wed 20 Jan 2027 03:00:55 +0000 asID: 142219 IP address blocks: 192.67.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:79:d3:a0:8b:f8:ed:4d:36:4b:ed:80:fa:48:35:ae:e6:0e:2e:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 21 02:55:55 2026 GMT Not After : Jan 20 03:00:55 2027 GMT Subject: CN=8A6B4B5AF88CF837EA738CEDB324E3781AD609B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2f:01:4f:df:c9:53:3b:13:7a:a2:0d:b4:15: 6b:d4:af:12:c3:74:61:8e:ca:de:0c:36:8d:7d:42: 21:7e:a1:39:2b:d5:45:d2:d9:9b:c9:dc:c4:b5:5a: 49:1a:19:e2:c5:e7:f3:9c:1a:26:f9:96:8c:98:8b: a4:8d:3e:26:c1:4e:42:4c:f5:53:05:d8:4a:17:04: c0:d1:9c:ac:ee:24:9a:17:11:c2:50:ce:39:08:16: f6:14:65:5b:15:89:55:85:b0:94:fa:37:0a:e0:8b: 94:9c:ad:c3:91:0b:8a:44:a3:9d:ae:0d:4e:60:7d: e2:e9:14:db:c3:9a:9c:16:a1:3e:83:c7:15:a6:36: 6d:1c:b9:98:6a:06:85:b9:55:1e:cb:d1:33:35:9c: 36:2f:0a:0e:98:df:69:49:f1:f5:5f:47:f7:72:4a: 68:62:cd:93:21:91:99:dd:cb:7a:9a:32:56:e7:3e: 19:e9:c4:2c:02:46:76:62:eb:ac:44:2c:1d:4a:4e: 05:44:5e:da:aa:d8:9a:69:54:e8:c2:c6:d6:f7:aa: b5:22:c2:90:bd:23:ef:74:3e:f4:66:ad:a4:c6:32: b2:85:24:a7:20:d5:dc:49:70:c5:42:5c:9d:ac:2b: 70:07:5e:7b:d2:8d:b6:7c:9d:45:30:e0:a2:7c:80: 82:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:6B:4B:5A:F8:8C:F8:37:EA:73:8C:ED:B3:24:E3:78:1A:D6:09:B4 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142219.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.67.1.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:40:35:f3:b5:fc:45:16:89:04:76:68:93:f9:2b:15:16:b5: 86:12:04:5c:04:81:35:b9:89:5b:3a:5f:87:5b:1e:cf:2d:0d: 5d:33:f4:32:9e:50:59:b5:df:0b:1a:00:91:d6:35:d4:93:13: 39:c3:fc:84:ba:66:dc:e3:ae:16:58:12:42:ce:f0:9f:aa:c5: 7e:b2:e2:99:a3:88:76:3a:ad:4a:92:1f:4d:7b:2a:02:87:a1: a6:e3:c4:1a:37:5a:f8:04:74:d9:8f:22:f4:ea:23:a4:de:25: ca:52:b4:85:f4:a4:d2:25:35:35:2b:fc:5d:cc:7f:31:8c:3d: 03:65:ca:43:81:fe:f0:7a:aa:b3:e1:0e:b6:8c:3e:45:b6:56: 34:94:de:48:2f:23:ee:cb:2d:bb:f5:60:e8:d6:75:f1:26:76: 6f:0e:c6:22:87:34:b4:37:f6:75:c3:a9:99:2a:10:7f:76:1d: 49:02:91:0e:1e:a5:a2:85:05:f8:af:c9:a7:88:7f:67:a0:fa: e2:89:45:24:bd:46:44:ab:ce:3f:08:bb:88:15:77:37:bb:eb: d6:ce:1d:22:33:84:5c:bb:1b:55:21:53:64:dd:4f:97:ee:cf: 7f:7c:4b:50:d0:3c:4c:df:11:a6:52:02:bd:92:19:12:48:24: 5a:16:1f:71 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKXnToIv47U02S+2A+kg1ruYOLhswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEyMTAyNTU1NVoX DTI3MDEyMDAzMDA1NVowMzExMC8GA1UEAxMoOEE2QjRCNUFGODhDRjgzN0VBNzM4 Q0VEQjMyNEUzNzgxQUQ2MDlCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsvAU/fyVM7E3qiDbQVa9SvEsN0YY7K3gw2jX1CIX6hOSvVRdLZm8ncxLVa SRoZ4sXn85waJvmWjJiLpI0+JsFOQkz1UwXYShcEwNGcrO4kmhcRwlDOOQgW9hRl WxWJVYWwlPo3CuCLlJytw5ELikSjna4NTmB94ukU28OanBahPoPHFaY2bRy5mGoG hblVHsvRMzWcNi8KDpjfaUnx9V9H93JKaGLNkyGRmd3LepoyVuc+GenELAJGdmLr rEQsHUpOBURe2qrYmmlU6MLG1veqtSLCkL0j73Q+9GatpMYysoUkpyDV3ElwxUJc nawrcAdee9KNtnydRTDgonyAgnkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSKa0ta +Iz4N+pzjO2zJON4GtYJtDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MjIxOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMBDATANBgkqhkiG9w0BAQsFAAOCAQEAWkA187X8RRaJBHZok/kr FRa1hhIEXASBNbmJWzpfh1sezy0NXTP0Mp5QWbXfCxoAkdY11JMTOcP8hLpm3OOu FlgSQs7wn6rFfrLimaOIdjqtSpIfTXsqAoehpuPEGjda+AR02Y8i9OojpN4lylK0 hfSk0iU1NSv8Xcx/MYw9A2XKQ4H+8Hqqs+EOtow+RbZWNJTeSC8j7sstu/Vg6NZ1 8SZ2bw7GIoc0tDf2dcOpmSoQf3YdSQKRDh6looUF+K/Jp4h/Z6D64olFJL1GRKvO Pwi7iBV3N7vr1s4dIjOEXLsbVSFTZN1Pl+7Pf3xLUNA8TN8RplICvZIZEkgkWhYf cQ== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:51 2026 by rpki-client