This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140439.roa File: AS140439.roa (raw, json) Hash identifier: ueyJo7v2G9jTi5Mk0vHnkC+QZ2uXlwG1Uc+4aaFsI/o= Subject key identifier: 22:58:CA:A7:43:97:A1:AB:79:DA:C8:4D:11:A9:D9:F9:E3:E0:66:A8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 529584616A57B8AACE8BD7166935D531C70C6429 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140439.roa Signing time: Tue 27 Jan 2026 08:25:05 +0000 ROA not before: Tue 27 Jan 2026 08:20:05 +0000 ROA not after: Tue 26 Jan 2027 08:25:05 +0000 asID: 140439 IP address blocks: 103.152.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:95:84:61:6a:57:b8:aa:ce:8b:d7:16:69:35:d5:31:c7:0c:64:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 27 08:20:05 2026 GMT Not After : Jan 26 08:25:05 2027 GMT Subject: CN=2258CAA74397A1AB79DAC84D11A9D9F9E3E066A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:69:4b:ec:a2:46:6a:4a:b1:c4:b8:0a:fc:92: 0a:8b:17:7f:99:33:09:4e:8c:a0:45:49:80:a6:a5: 6a:ac:93:1e:1c:60:3d:34:e3:30:48:13:ce:85:d2: d0:57:0a:2a:4e:22:fd:25:43:00:73:94:26:dc:d8: 34:e5:6f:27:7a:e4:ed:72:f5:28:8e:c0:5d:a2:87: be:27:83:4f:23:32:26:33:ce:a0:63:7c:23:ac:63: 39:58:3e:5f:50:6c:6c:86:b8:d5:84:d5:cd:95:af: 51:32:57:75:6e:e7:cd:03:75:aa:df:b8:06:cd:a7: f7:5f:4a:4f:88:41:9e:07:40:5d:13:0a:68:ac:7e: a8:eb:79:6c:ae:3b:4f:56:1b:5e:15:2f:38:cc:f1: b3:f0:16:61:d4:e8:70:8c:63:80:b6:72:2e:e9:0f: d7:57:a7:08:83:2b:be:65:99:ea:92:bd:31:92:f8: c1:aa:08:95:84:08:37:56:93:5a:55:c1:76:32:00: cb:d4:40:f9:09:90:86:ab:bd:6e:86:4a:74:27:21: 8e:69:a0:97:5e:6b:1c:11:d1:b0:84:ff:b4:2d:a9: 6f:6c:d0:2a:11:2d:2b:bd:d7:4a:83:74:2d:58:24: 65:c0:58:2f:1c:28:7a:44:ca:5b:68:80:3f:5e:df: ca:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:58:CA:A7:43:97:A1:AB:79:DA:C8:4D:11:A9:D9:F9:E3:E0:66:A8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.108.0/24 Signature Algorithm: sha256WithRSAEncryption 55:50:19:9f:7f:8a:d0:28:c3:dc:ad:f3:6f:49:bb:73:f7:70: 38:cb:4f:85:49:f4:9f:b7:36:d7:cc:59:07:37:b5:76:66:d6: c2:f7:6d:6b:61:09:80:ad:e8:3e:b3:97:54:e5:0b:64:95:7c: e0:6e:37:bf:69:e6:70:5b:ac:0b:fa:4a:8e:92:9c:90:59:fc: 14:3e:71:a1:d2:0a:e2:fd:95:05:c5:a4:cc:8c:52:24:73:14: 13:fd:d5:2c:b7:40:18:58:a8:4b:85:23:a5:ef:47:63:cc:e7: 42:54:27:34:63:ca:32:ba:10:ca:48:5b:77:51:5d:08:bc:bb: f2:40:8e:1c:a3:ea:b1:ee:03:8b:6a:d1:a3:ed:fe:47:d0:bb: 72:43:b0:63:23:6a:7c:a9:d4:f8:2a:73:51:fb:08:0c:fe:d5: cb:c4:ab:46:5a:40:9a:e7:9a:f7:ff:da:26:79:39:6f:e3:26: ba:22:13:cb:76:2a:26:3f:62:3b:7b:af:04:09:13:2f:5a:c4: d2:fd:58:14:d5:48:4c:72:83:96:9b:b3:5c:bf:04:ec:b2:fc: 23:15:b8:de:c9:e3:6e:ff:a6:e7:fc:11:e5:97:dc:b1:ca:6f: 77:a0:01:ad:62:6c:ff:16:4a:91:9b:4b:6e:6e:0c:c5:84:41: a4:44:3b:41 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUpWEYWpXuKrOi9cWaTXVMccMZCkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyNzA4MjAwNVoX DTI3MDEyNjA4MjUwNVowMzExMC8GA1UEAxMoMjI1OENBQTc0Mzk3QTFBQjc5REFD ODREMTFBOUQ5RjlFM0UwNjZBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKlpS+yiRmpKscS4CvySCosXf5kzCU6MoEVJgKalaqyTHhxgPTTjMEgTzoXS 0FcKKk4i/SVDAHOUJtzYNOVvJ3rk7XL1KI7AXaKHvieDTyMyJjPOoGN8I6xjOVg+ X1BsbIa41YTVzZWvUTJXdW7nzQN1qt+4Bs2n919KT4hBngdAXRMKaKx+qOt5bK47 T1YbXhUvOMzxs/AWYdTocIxjgLZyLukP11enCIMrvmWZ6pK9MZL4waoIlYQIN1aT WlXBdjIAy9RA+QmQhqu9boZKdCchjmmgl15rHBHRsIT/tC2pb2zQKhEtK73XSoN0 LVgkZcBYLxwoekTKW2iAP17fymcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQiWMqn Q5ehq3nayE0Rqdn54+BmqDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeYbDANBgkqhkiG9w0BAQsFAAOCAQEAVVAZn3+K0CjD3K3zb0m7 c/dwOMtPhUn0n7c218xZBze1dmbWwvdta2EJgK3oPrOXVOULZJV84G43v2nmcFus C/pKjpKckFn8FD5xodIK4v2VBcWkzIxSJHMUE/3VLLdAGFioS4Ujpe9HY8znQlQn NGPKMroQykhbd1FdCLy78kCOHKPqse4Di2rRo+3+R9C7ckOwYyNqfKnU+CpzUfsI DP7Vy8SrRlpAmuea9//aJnk5b+MmuiITy3YqJj9iO3uvBAkTL1rE0v1YFNVITHKD lpuzXL8E7LL8IxW43snjbv+m5/wR5Zfcscpvd6ABrWJs/xZKkZtLbm4MxYRBpEQ7 QQ== -----END CERTIFICATE-----Generated at Mon Feb 2 08:06:55 2026 by rpki-client