This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa File: AS139957.roa (raw, json) Hash identifier: 99G5iuomCnUCtuVAmzG5OSG5Bnbx8xrbjpRteBhXhhY= Subject key identifier: A5:F4:B5:80:83:30:EC:AF:76:0D:34:14:6B:88:F2:8F:D4:F6:17:C6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 61A611CD480B646CD89410642B86E280BC818289 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa Signing time: Tue 11 Nov 2025 06:00:09 +0000 ROA not before: Tue 11 Nov 2025 05:55:09 +0000 ROA not after: Tue 10 Nov 2026 06:00:09 +0000 asID: 139957 IP address blocks: 103.145.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:a6:11:cd:48:0b:64:6c:d8:94:10:64:2b:86:e2:80:bc:81:82:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:09 2025 GMT Not After : Nov 10 06:00:09 2026 GMT Subject: CN=A5F4B5808330ECAF760D34146B88F28FD4F617C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:33:af:86:ad:08:3c:f1:4e:be:99:5c:0a:50: 33:5b:91:e1:a3:3d:c2:5c:4e:24:09:e8:fb:12:52: 39:ac:03:90:ed:7e:37:51:60:52:fa:76:32:45:6f: 74:d3:89:9c:af:4d:08:86:2a:fe:39:be:09:86:44: 97:78:dd:71:c2:1c:ec:98:a0:66:9e:71:c7:0d:38: 49:80:a9:cd:67:b9:62:1e:5e:ed:8f:34:a4:ff:be: 24:f1:17:8d:33:e6:99:63:95:b2:93:33:74:62:fc: 17:be:5a:03:de:9a:9f:d5:b6:92:9e:d8:e3:03:fa: 1b:99:cc:bf:a9:0d:9a:c6:71:8e:72:18:e1:37:79: 92:c6:40:72:b1:de:51:6c:e2:5c:3d:01:7e:b9:a9: 0d:b9:2a:0f:bd:93:82:63:1e:9f:c8:51:42:db:3b: 31:db:f5:e2:5b:18:3c:62:d6:50:96:18:19:46:a0: 3a:f8:2d:e0:71:b7:17:48:24:7c:9c:d9:e1:52:cb: 70:37:63:39:23:2f:4f:9f:d2:68:76:9d:f0:05:b8: c0:9a:f4:2e:30:98:dd:7a:05:ef:1a:96:3a:cc:a3: e6:03:05:f2:7b:69:bf:bc:89:ee:c6:9f:5a:f3:fb: 81:ee:87:20:d3:48:a6:86:13:7d:4c:8d:34:65:93: a0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F4:B5:80:83:30:EC:AF:76:0D:34:14:6B:88:F2:8F:D4:F6:17:C6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139957.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.46.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:a7:62:34:73:e6:f3:d9:bd:87:a2:72:aa:85:e6:c8:97:ce: fa:a6:ed:5c:12:d3:e1:f6:c1:4a:1b:b1:5f:03:aa:d1:d4:2a: e0:c4:df:08:9f:be:9c:80:9b:83:f0:ed:bb:b5:ca:43:99:bb: 68:f9:63:f2:71:31:d6:39:c5:f2:5a:c0:f1:34:67:0d:b3:89: 5f:a0:cf:af:4a:39:fa:bc:da:ec:54:7a:8d:93:30:c8:b7:06: 86:93:a0:0a:fc:55:57:3b:fc:30:a4:a1:99:61:a8:79:84:61: 21:3f:0b:96:31:6b:35:89:12:5e:a2:67:ab:80:cf:ce:e9:7b: 73:68:d2:8c:e7:f6:6d:3f:df:a7:cc:e8:e2:6f:54:24:68:0d: be:a3:31:28:38:6f:ef:55:cd:83:dc:c2:95:8c:7e:6c:82:3c: 7d:fe:53:cc:a0:1b:fa:14:5b:f8:cd:51:59:16:82:b4:23:70: cd:50:83:78:e3:78:94:d0:45:06:3d:cb:a7:14:20:1c:34:54: 0e:49:9a:a8:84:2e:b5:b7:9a:9a:9e:5c:7a:68:a3:42:2d:95: c2:2b:4a:ad:40:ab:e2:5f:ef:bb:5f:33:56:5a:66:05:57:f6: f8:52:e4:40:b5:9e:e2:35:3d:63:e9:51:70:75:da:33:5e:74: 60:ca:83:6e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYaYRzUgLZGzYlBBkK4bigLyBgokwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwOVoX DTI2MTExMDA2MDAwOVowMzExMC8GA1UEAxMoQTVGNEI1ODA4MzMwRUNBRjc2MEQz NDE0NkI4OEYyOEZENEY2MTdDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALczr4atCDzxTr6ZXApQM1uR4aM9wlxOJAno+xJSOawDkO1+N1FgUvp2MkVv dNOJnK9NCIYq/jm+CYZEl3jdccIc7JigZp5xxw04SYCpzWe5Yh5e7Y80pP++JPEX jTPmmWOVspMzdGL8F75aA96an9W2kp7Y4wP6G5nMv6kNmsZxjnIY4Td5ksZAcrHe UWziXD0BfrmpDbkqD72TgmMen8hRQts7Mdv14lsYPGLWUJYYGUagOvgt4HG3F0gk fJzZ4VLLcDdjOSMvT5/SaHad8AW4wJr0LjCY3XoF7xqWOsyj5gMF8ntpv7yJ7saf WvP7ge6HINNIpoYTfUyNNGWToOcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSl9LWA gzDsr3YNNBRriPKP1PYXxjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTk1Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeRLjANBgkqhkiG9w0BAQsFAAOCAQEADqdiNHPm89m9h6JyqoXm yJfO+qbtXBLT4fbBShuxXwOq0dQq4MTfCJ++nICbg/Dtu7XKQ5m7aPlj8nEx1jnF 8lrA8TRnDbOJX6DPr0o5+rza7FR6jZMwyLcGhpOgCvxVVzv8MKShmWGoeYRhIT8L ljFrNYkSXqJnq4DPzul7c2jSjOf2bT/fp8zo4m9UJGgNvqMxKDhv71XNg9zClYx+ bII8ff5TzKAb+hRb+M1RWRaCtCNwzVCDeON4lNBFBj3LpxQgHDRUDkmaqIQutbea mp5cemijQi2VwitKrUCr4l/vu18zVlpmBVf2+FLkQLWe4jU9Y+lRcHXaM150YMqD bg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:06 2025 by rpki-client