This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139950.roa File: AS139950.roa (raw, json) Hash identifier: 2l/vrzxbwG3fs1mi7FNpem5SgMYVDbTY+2qvvdf0GTU= Subject key identifier: 30:7B:23:8C:FF:72:2E:08:70:66:3F:16:45:7D:B5:52:4E:CE:C8:E7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 457C815BD7CE3FD26D69848B2FA23F78CB4FD800 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139950.roa Signing time: Mon 24 Nov 2025 06:00:00 +0000 ROA not before: Mon 24 Nov 2025 05:55:00 +0000 ROA not after: Mon 23 Nov 2026 06:00:00 +0000 asID: 139950 IP address blocks: 103.147.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:7c:81:5b:d7:ce:3f:d2:6d:69:84:8b:2f:a2:3f:78:cb:4f:d8:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 24 05:55:00 2025 GMT Not After : Nov 23 06:00:00 2026 GMT Subject: CN=307B238CFF722E0870663F16457DB5524ECEC8E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a3:6d:f4:14:ab:8b:54:60:60:4c:22:e5:01: 5a:78:48:fd:a3:19:16:82:44:1a:b7:25:53:d5:e8: 88:66:bd:fd:0b:a8:8e:86:af:8b:a2:c4:90:74:9a: 99:23:ef:a7:e2:15:96:4f:68:a1:58:fb:fe:2f:e6: c1:8e:6e:21:23:73:a0:60:09:d3:48:51:40:3b:ca: 30:ad:f1:a9:3c:e4:4a:57:a1:5f:e5:d3:17:17:08: f9:78:5b:ec:ff:23:29:b3:d1:4b:79:7b:eb:a9:29: 32:d1:1f:f6:13:e6:b5:bb:c9:47:fd:11:92:e2:29: 05:b5:4b:46:12:00:0d:98:b4:14:65:f1:94:67:11: 57:21:55:7c:0d:0d:10:49:43:a2:86:20:be:95:94: 09:54:44:80:b5:50:47:e7:92:bc:2d:a9:37:f5:d3: 04:83:33:c8:a5:2f:50:b9:a2:66:87:90:29:d2:af: a3:1c:96:52:43:aa:71:d2:3c:de:46:a6:db:3f:a0: 68:ef:d6:69:5b:e3:98:fd:88:2e:14:74:0f:1a:cb: eb:f1:e3:31:62:7a:38:05:6e:d1:31:16:86:2d:59: c1:a8:d0:54:3c:58:07:43:37:c0:b6:d2:54:5c:29: a2:c3:04:cc:01:2c:8e:e9:4a:6d:21:18:3d:0c:01: d8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7B:23:8C:FF:72:2E:08:70:66:3F:16:45:7D:B5:52:4E:CE:C8:E7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139950.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.68.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:30:d3:2d:c8:96:50:14:69:4b:63:f2:e5:16:33:29:f1:0b: ec:5c:a8:33:61:45:1e:61:a8:5b:78:55:81:17:4b:60:5d:1c: ff:3a:80:0e:54:8d:2b:7e:ca:fd:df:bc:6b:b1:41:ed:15:b1: e0:74:53:88:d9:6a:ee:99:de:5b:09:37:24:0d:15:ee:df:11: dd:04:56:2f:5e:65:d0:c3:92:14:91:3a:10:6a:55:51:ec:83: 5e:da:ac:3b:63:5d:1d:fa:e4:cb:81:52:6c:c6:b5:c7:2e:4c: 77:e1:41:e0:49:40:19:24:f4:35:59:4a:56:d3:14:74:ef:66: 02:3d:74:15:a3:a8:25:7d:fa:66:ba:25:51:64:88:f1:52:7c: 51:87:d5:d6:ee:83:30:6a:3b:a2:9d:6d:fa:02:cc:2d:f5:25: da:52:90:8b:24:6c:69:ef:b5:10:00:f4:5b:7e:86:13:cd:f1: 84:ee:18:0b:f7:44:b1:b9:72:ba:f3:b3:8b:29:47:8b:2d:c9: 68:90:4e:51:a6:a8:91:43:da:9e:89:f1:f3:29:0e:35:7e:13: 98:da:14:58:dd:b1:84:d1:19:2a:96:92:89:71:cd:f7:35:ed: 96:e3:fa:75:98:b5:15:27:49:ac:e5:0a:df:0b:f5:4f:de:13: 81:60:0d:01 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURXyBW9fOP9JtaYSLL6I/eMtP2AAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNDA1NTUwMFoX DTI2MTEyMzA2MDAwMFowMzExMC8GA1UEAxMoMzA3QjIzOENGRjcyMkUwODcwNjYz RjE2NDU3REI1NTI0RUNFQzhFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANijbfQUq4tUYGBMIuUBWnhI/aMZFoJEGrclU9XoiGa9/Quojoavi6LEkHSa mSPvp+IVlk9ooVj7/i/mwY5uISNzoGAJ00hRQDvKMK3xqTzkSlehX+XTFxcI+Xhb 7P8jKbPRS3l766kpMtEf9hPmtbvJR/0RkuIpBbVLRhIADZi0FGXxlGcRVyFVfA0N EElDooYgvpWUCVREgLVQR+eSvC2pN/XTBIMzyKUvULmiZoeQKdKvoxyWUkOqcdI8 3kam2z+gaO/WaVvjmP2ILhR0DxrL6/HjMWJ6OAVu0TEWhi1ZwajQVDxYB0M3wLbS VFwposMEzAEsjulKbSEYPQwB2KcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQweyOM /3IuCHBmPxZFfbVSTs7I5zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk1MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeTRDANBgkqhkiG9w0BAQsFAAOCAQEAPDDTLciWUBRpS2Py5RYz KfEL7FyoM2FFHmGoW3hVgRdLYF0c/zqADlSNK37K/d+8a7FB7RWx4HRTiNlq7pne Wwk3JA0V7t8R3QRWL15l0MOSFJE6EGpVUeyDXtqsO2NdHfrky4FSbMa1xy5Md+FB 4ElAGST0NVlKVtMUdO9mAj10FaOoJX36ZrolUWSI8VJ8UYfV1u6DMGo7op1t+gLM LfUl2lKQiyRsae+1EAD0W36GE83xhO4YC/dEsblyuvOziylHiy3JaJBOUaaokUPa nonx8ykONX4TmNoUWN2xhNEZKpaSiXHN9zXtluP6dZi1FSdJrOUK3wv1T94TgWAN AQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:54 2025 by rpki-client