This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139403.roa File: AS139403.roa (raw, json) Hash identifier: ZcrodM221OQCGPCmDOaffj4SxVddjmupRMIOrpfI+TY= Subject key identifier: 85:8B:D2:8E:19:FF:8B:8C:D1:DC:3B:EC:4D:E1:85:1A:C9:83:86:79 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2745CE3DE027E3309DEB44E1EB23EEBF86C8C2DE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139403.roa Signing time: Mon 01 Dec 2025 05:00:00 +0000 ROA not before: Mon 01 Dec 2025 04:55:00 +0000 ROA not after: Mon 30 Nov 2026 05:00:00 +0000 asID: 139403 IP address blocks: 103.143.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:45:ce:3d:e0:27:e3:30:9d:eb:44:e1:eb:23:ee:bf:86:c8:c2:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 1 04:55:00 2025 GMT Not After : Nov 30 05:00:00 2026 GMT Subject: CN=858BD28E19FF8B8CD1DC3BEC4DE1851AC9838679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:34:98:bd:54:f5:e8:cc:1a:a4:07:71:4d:4c: 78:ba:5f:cc:77:42:81:8b:8a:8c:a0:1c:e8:01:21: 62:83:e8:d1:f7:96:93:6d:87:90:59:e6:4f:40:f4: 90:46:4e:7e:b4:80:73:ed:5c:4b:a9:99:6d:67:2f: ee:e0:dd:c1:1f:eb:01:de:cb:c4:20:0e:80:ff:a6: cd:4d:d2:3d:3a:25:5f:51:b8:2a:9f:26:20:e4:13: 6b:47:0c:1b:0e:e5:84:3f:aa:fc:68:77:16:7d:2b: 3f:39:73:3c:ca:74:0e:52:75:80:d3:b3:d0:74:c0: cc:ae:d4:76:55:c0:7b:f9:5b:64:95:68:89:4e:ba: ea:4a:1d:46:7e:25:2f:e8:24:06:0e:e8:7f:e9:cd: a1:d4:9b:3e:40:d2:32:4b:ce:5a:93:01:d1:1f:f2: 25:54:c3:88:4a:8e:c8:4e:70:3f:ad:ec:f2:be:45: c2:2b:14:ee:94:a4:a6:d7:c1:16:c6:c1:63:b8:6e: 9c:c1:79:92:2a:45:d2:25:e5:d6:4c:35:89:fb:25: 82:5a:8f:cc:54:b6:b0:ef:2b:1f:d6:39:86:b0:48: 30:40:6b:73:43:53:7f:76:db:9a:e5:3d:f8:da:a2: 96:0e:d6:1e:2d:ba:f2:bf:c0:de:4c:3b:ee:9f:d4: 6c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8B:D2:8E:19:FF:8B:8C:D1:DC:3B:EC:4D:E1:85:1A:C9:83:86:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139403.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.154.0/24 Signature Algorithm: sha256WithRSAEncryption 64:7f:2d:33:6e:33:19:a2:1e:1a:72:a1:77:64:06:96:5e:01: 64:26:6e:cd:42:32:a4:8c:81:2e:6d:1e:37:ed:f6:2c:d9:61: da:1e:5b:e7:cc:79:e3:66:ef:17:a3:4f:6f:41:bb:9d:2e:4e: 4d:62:27:38:c5:df:ef:59:3a:a2:fd:56:f8:80:18:03:0b:7c: 76:90:9c:c1:33:74:ea:d1:a2:20:1c:43:be:44:eb:0d:3e:7a: 5b:d2:31:f5:27:e3:22:9c:cd:14:5c:bd:2c:fc:53:0e:a9:84: d7:b0:d4:d9:e6:91:f3:13:4b:90:94:fd:6b:c6:ca:ea:09:b5: 98:15:9f:6e:8d:40:1b:3b:82:e6:af:6d:ab:f7:9f:19:76:00: e5:6e:6f:b7:f5:a3:71:3b:70:c4:bd:2c:46:66:7a:d2:19:f5: 09:c3:d5:0a:fe:ad:86:ee:99:43:6d:e7:7f:52:62:46:32:57: 7d:06:fc:f7:5a:29:28:c8:6a:02:6c:8b:d0:6e:20:9f:e7:0d: f3:ea:cd:ab:a6:80:4e:78:5a:e0:78:90:f4:9c:3d:e7:b7:95: 7d:fa:1d:55:93:30:ef:33:7d:5c:e4:4e:3b:ff:01:bf:49:7e: 8d:e1:e4:34:1d:49:9a:9d:1c:67:83:cc:79:3a:82:4d:66:87: a1:06:72:e5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJ0XOPeAn4zCd60Th6yPuv4bIwt4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIwMTA0NTUwMFoX DTI2MTEzMDA1MDAwMFowMzExMC8GA1UEAxMoODU4QkQyOEUxOUZGOEI4Q0QxREMz QkVDNERFMTg1MUFDOTgzODY3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMM0mL1U9ejMGqQHcU1MeLpfzHdCgYuKjKAc6AEhYoPo0feWk22HkFnmT0D0 kEZOfrSAc+1cS6mZbWcv7uDdwR/rAd7LxCAOgP+mzU3SPTolX1G4Kp8mIOQTa0cM Gw7lhD+q/Gh3Fn0rPzlzPMp0DlJ1gNOz0HTAzK7UdlXAe/lbZJVoiU666kodRn4l L+gkBg7of+nNodSbPkDSMkvOWpMB0R/yJVTDiEqOyE5wP63s8r5FwisU7pSkptfB FsbBY7hunMF5kipF0iXl1kw1ifslglqPzFS2sO8rH9Y5hrBIMEBrc0NTf3bbmuU9 +Nqilg7WHi268r/A3kw77p/UbIcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSFi9KO Gf+LjNHcO+xN4YUayYOGeTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGePmjANBgkqhkiG9w0BAQsFAAOCAQEAZH8tM24zGaIeGnKhd2QG ll4BZCZuzUIypIyBLm0eN+32LNlh2h5b58x542bvF6NPb0G7nS5OTWInOMXf71k6 ov1W+IAYAwt8dpCcwTN06tGiIBxDvkTrDT56W9Ix9SfjIpzNFFy9LPxTDqmE17DU 2eaR8xNLkJT9a8bK6gm1mBWfbo1AGzuC5q9tq/efGXYA5W5vt/WjcTtwxL0sRmZ6 0hn1CcPVCv6thu6ZQ23nf1JiRjJXfQb891opKMhqAmyL0G4gn+cN8+rNq6aATnha 4HiQ9Jw957eVffodVZMw7zN9XOROO/8Bv0l+jeHkNB1Jmp0cZ4PMeTqCTWaHoQZy 5Q== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:33 2025 by rpki-client