This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa File: AS140386.roa (raw, json) Hash identifier: OHsb3mrRmA99mx0QFX9sPzmNWAsA/GJbeSJ9WZoM1ZQ= Subject key identifier: D8:A5:18:7D:DD:2C:8B:BC:4C:61:21:4A:18:4B:D5:AA:86:78:2E:56 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7387BD553360F70EB317DC6A85203BD19DF2FB24 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa Signing time: Tue 11 Nov 2025 06:00:11 +0000 ROA not before: Tue 11 Nov 2025 05:55:11 +0000 ROA not after: Tue 10 Nov 2026 06:00:11 +0000 asID: 140386 IP address blocks: 103.149.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:87:bd:55:33:60:f7:0e:b3:17:dc:6a:85:20:3b:d1:9d:f2:fb:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:11 2025 GMT Not After : Nov 10 06:00:11 2026 GMT Subject: CN=D8A5187DDD2C8BBC4C61214A184BD5AA86782E56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:39:80:76:d1:e0:d3:a7:34:51:ea:9f:2b:47: 4f:f6:74:74:86:d0:09:55:38:00:56:1f:f3:4a:55: e5:86:e8:e8:76:16:8c:a1:f8:e7:72:58:54:b4:4b: 78:bc:31:36:1a:3c:fa:47:cd:81:71:ec:f0:4a:fe: 41:82:cc:20:79:95:ae:ab:7f:4a:c2:19:30:94:a7: 6c:f7:2b:a0:b6:c4:fa:38:40:46:d7:6f:fd:1e:ed: a8:1e:c3:ab:bb:8e:da:ac:c4:d9:6a:33:f6:e8:70: 86:5f:93:22:1d:c5:a3:e7:aa:24:e2:32:e4:5f:27: d2:48:ec:1a:70:4c:5e:1b:eb:ed:66:d4:86:5f:75: 8a:94:18:1e:90:ff:e2:3a:e4:6d:2f:9e:14:fa:ac: bc:f1:61:6b:fd:00:b8:4a:6c:51:88:63:f8:cf:ec: e2:fe:ac:3c:c9:94:2f:6b:8b:cf:b2:60:42:a5:f3: a0:44:4c:e5:f7:e0:45:42:87:7f:cd:a0:b8:ea:cd: 8c:ae:cc:28:17:c9:b8:7d:f2:19:61:2a:83:de:0a: c8:16:2f:42:f6:f0:d0:d1:72:4e:d2:0a:ce:d0:34: 16:a1:38:35:8e:f4:08:d6:6a:c2:9a:1c:36:9f:ee: a8:ab:5b:58:4f:c3:56:95:ef:b0:1d:f3:01:1d:be: b7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A5:18:7D:DD:2C:8B:BC:4C:61:21:4A:18:4B:D5:AA:86:78:2E:56 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140386.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.209.0/24 Signature Algorithm: sha256WithRSAEncryption 71:15:32:04:01:d4:0e:5f:57:9f:5b:7b:1c:e7:34:3f:69:1e: f5:93:7a:33:66:55:ba:48:f5:95:70:10:ac:fa:c6:00:39:5c: 4d:42:49:20:0e:1e:1c:1b:8a:95:3f:91:8d:9a:59:bb:78:85: ce:ea:bc:b4:13:cf:87:0b:b2:e7:86:67:25:5d:ae:36:d6:83: 8d:72:e7:77:d8:3f:9e:2d:58:aa:e2:26:6d:4b:e5:b9:a2:a1: b9:92:d8:6c:b1:37:fd:1b:d6:71:d3:87:74:5c:4a:d5:81:bb: 47:34:bb:62:fb:c8:94:37:04:09:42:c8:b6:15:7e:8a:1e:25: f6:3a:59:eb:ec:f9:5d:ac:71:24:f1:19:72:ef:1a:f8:0e:3f: 4e:09:ac:07:be:02:77:76:e5:dc:61:be:ca:0e:a2:e2:b0:ff: 7f:89:d3:0a:98:90:9b:24:6f:d7:04:88:f2:1f:7d:76:80:71: 59:79:7a:4c:e9:c2:2d:da:b3:e9:f7:09:57:03:11:29:60:f6: 55:09:a3:a0:ac:07:08:fa:38:38:6d:17:78:50:e1:1a:e0:e9: 7e:40:ba:8d:fa:c2:83:2e:8d:bf:f8:b3:0e:b4:90:f8:a3:28: 63:27:3b:5b:2e:6e:05:a7:bc:77:89:f0:bf:bf:05:7f:5d:41: f2:c6:4f:2f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUc4e9VTNg9w6zF9xqhSA70Z3y+yQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMVoX DTI2MTExMDA2MDAxMVowMzExMC8GA1UEAxMoRDhBNTE4N0RERDJDOEJCQzRDNjEy MTRBMTg0QkQ1QUE4Njc4MkU1NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMo5gHbR4NOnNFHqnytHT/Z0dIbQCVU4AFYf80pV5Ybo6HYWjKH453JYVLRL eLwxNho8+kfNgXHs8Er+QYLMIHmVrqt/SsIZMJSnbPcroLbE+jhARtdv/R7tqB7D q7uO2qzE2Woz9uhwhl+TIh3Fo+eqJOIy5F8n0kjsGnBMXhvr7WbUhl91ipQYHpD/ 4jrkbS+eFPqsvPFha/0AuEpsUYhj+M/s4v6sPMmUL2uLz7JgQqXzoERM5ffgRUKH f82guOrNjK7MKBfJuH3yGWEqg94KyBYvQvbw0NFyTtIKztA0FqE4NY70CNZqwpoc Np/uqKtbWE/DVpXvsB3zAR2+t3MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTYpRh9 3SyLvExhIUoYS9WqhnguVjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDM4Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeV0TANBgkqhkiG9w0BAQsFAAOCAQEAcRUyBAHUDl9Xn1t7HOc0 P2ke9ZN6M2ZVukj1lXAQrPrGADlcTUJJIA4eHBuKlT+RjZpZu3iFzuq8tBPPhwuy 54ZnJV2uNtaDjXLnd9g/ni1YquImbUvluaKhuZLYbLE3/RvWcdOHdFxK1YG7RzS7 YvvIlDcECULIthV+ih4l9jpZ6+z5XaxxJPEZcu8a+A4/TgmsB74Cd3bl3GG+yg6i 4rD/f4nTCpiQmyRv1wSI8h99doBxWXl6TOnCLdqz6fcJVwMRKWD2VQmjoKwHCPo4 OG0XeFDhGuDpfkC6jfrCgy6Nv/izDrSQ+KMoYyc7Wy5uBae8d4nwv78Ff11B8sZP Lw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:41 2025 by rpki-client