This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139426.roa File: AS139426.roa (raw, json) Hash identifier: h8raYHLn7vqWTap1ZXVAyiujwAoK5MlQClBG3niyMtw= Subject key identifier: 3B:F6:31:F4:80:17:D2:D1:5D:AC:28:4F:74:5C:C6:5B:D0:FD:8C:1D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 52702564DE10C06F0B0B8D3852AE751DF0F80DDF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139426.roa Signing time: Tue 11 Nov 2025 03:00:00 +0000 ROA not before: Tue 11 Nov 2025 02:55:00 +0000 ROA not after: Tue 10 Nov 2026 03:00:00 +0000 asID: 139426 IP address blocks: 103.144.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:70:25:64:de:10:c0:6f:0b:0b:8d:38:52:ae:75:1d:f0:f8:0d:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 02:55:00 2025 GMT Not After : Nov 10 03:00:00 2026 GMT Subject: CN=3BF631F48017D2D15DAC284F745CC65BD0FD8C1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:59:27:95:b1:f9:ae:5a:05:da:63:23:cf:a2: fa:dd:2f:14:41:0c:f2:ae:a3:f8:02:ae:52:76:ef: 93:e5:c6:c7:6c:90:37:07:67:1d:f4:7f:a9:09:4d: 6c:57:81:ff:06:f5:89:46:60:c4:80:69:77:6c:e3: cf:23:b7:72:aa:64:31:29:a9:e9:b8:56:6c:73:7e: 74:52:87:09:e4:df:45:b8:93:f5:4c:33:bf:dd:97: 35:16:2b:65:fa:99:3f:4c:ba:ca:f2:74:56:3a:77: cd:e6:c8:0b:90:6b:c9:8a:2e:3f:0d:72:ee:e3:88: 3a:5f:e5:81:e6:c9:9f:1c:41:ec:3f:8f:d8:4f:67: 6f:ec:ed:74:8c:de:8d:e4:26:0e:f4:42:63:05:78: 10:c5:1b:07:43:1f:be:c7:37:2c:ca:19:f2:9b:7e: 9c:c9:e1:57:62:13:fa:f9:4a:0b:bc:a6:41:5d:ab: 0a:40:cf:e7:f2:00:df:e0:75:2e:06:c1:48:78:0b: e6:d5:e1:6b:c5:41:ef:e2:fd:fc:aa:e6:cb:c2:1d: b8:53:79:1e:f4:9d:e2:ad:0e:a0:11:9e:76:f6:62: 8a:11:fe:10:f1:d5:8a:45:92:9f:fa:17:70:98:e2: 29:2f:0c:9e:3e:90:32:91:69:ee:49:37:a6:0a:86: a5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F6:31:F4:80:17:D2:D1:5D:AC:28:4F:74:5C:C6:5B:D0:FD:8C:1D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139426.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.144.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:5b:dd:ec:68:24:c9:49:b8:d2:c3:c0:af:1f:88:d6:f6:5c: 3d:fa:8a:07:c4:2f:22:42:c6:50:36:38:10:02:72:7c:f7:76: 08:13:8a:0c:f3:10:e6:c0:71:1a:a0:3e:ca:e4:d6:9b:de:25: 8b:fb:de:fa:f5:02:77:a4:d5:f4:e9:94:44:89:c3:35:32:d3: 9d:e5:2a:4d:2d:2f:e4:5b:17:d4:eb:ad:b8:34:9c:eb:02:36: 59:35:41:d4:83:da:c3:bb:fa:06:60:5e:93:9c:10:7b:45:6b: b4:63:02:e2:13:6c:76:c9:f0:d8:d9:2a:71:4c:55:09:f9:95: dd:21:49:e4:3c:68:c5:68:d1:1e:bf:88:7c:c2:e9:09:28:ec: 97:10:02:b1:df:ad:8f:bf:2c:80:d4:61:eb:a7:86:ce:9a:7b: 3c:96:52:f2:3e:4e:ce:af:2c:8b:f3:06:eb:6b:e8:db:68:3a: 91:f0:be:ec:c3:80:e8:5d:5b:86:44:aa:57:77:ee:79:5f:26: a5:f5:e9:38:dd:4c:41:b6:9a:c2:f6:fb:04:65:1a:b4:70:59: 1a:ac:6e:b3:18:e6:ed:91:1d:b4:59:37:f9:d7:c8:29:a3:21: 1b:8d:70:6c:d4:aa:25:60:21:12:50:66:b1:7e:77:e6:ef:50: aa:21:de:47 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUnAlZN4QwG8LC404Uq51HfD4Dd8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTAyNTUwMFoX DTI2MTExMDAzMDAwMFowMzExMC8GA1UEAxMoM0JGNjMxRjQ4MDE3RDJEMTVEQUMy ODRGNzQ1Q0M2NUJEMEZEOEMxRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALVZJ5Wx+a5aBdpjI8+i+t0vFEEM8q6j+AKuUnbvk+XGx2yQNwdnHfR/qQlN bFeB/wb1iUZgxIBpd2zjzyO3cqpkMSmp6bhWbHN+dFKHCeTfRbiT9Uwzv92XNRYr ZfqZP0y6yvJ0Vjp3zebIC5BryYouPw1y7uOIOl/lgebJnxxB7D+P2E9nb+ztdIze jeQmDvRCYwV4EMUbB0Mfvsc3LMoZ8pt+nMnhV2IT+vlKC7ymQV2rCkDP5/IA3+B1 LgbBSHgL5tXha8VB7+L9/Krmy8IduFN5HvSd4q0OoBGedvZiihH+EPHVikWSn/oX cJjiKS8Mnj6QMpFp7kk3pgqGpZMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ79jH0 gBfS0V2sKE90XMZb0P2MHTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTQyNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeQkDANBgkqhkiG9w0BAQsFAAOCAQEAfVvd7GgkyUm40sPArx+I 1vZcPfqKB8QvIkLGUDY4EAJyfPd2CBOKDPMQ5sBxGqA+yuTWm94li/ve+vUCd6TV 9OmURInDNTLTneUqTS0v5FsX1OutuDSc6wI2WTVB1IPaw7v6BmBek5wQe0VrtGMC 4hNsdsnw2NkqcUxVCfmV3SFJ5DxoxWjRHr+IfMLpCSjslxACsd+tj78sgNRh66eG zpp7PJZS8j5Ozq8si/MG62vo22g6kfC+7MOA6F1bhkSqV3fueV8mpfXpON1MQbaa wvb7BGUatHBZGqxusxjm7ZEdtFk3+dfIKaMhG41wbNSqJWAhElBmsX535u9QqiHe Rw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:21 2025 by rpki-client