This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa File: AS140460.roa (raw, json) Hash identifier: QUlzotsYqaFEYnQsV0jBabwO8+OtLpgSDuBBEz2WNpo= Subject key identifier: 8D:CC:C6:B1:F8:50:A2:D3:34:7C:9B:32:8A:75:8B:E2:65:82:03:17 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 61708AFBABDBFB2FEEC164077D7A6A5046A1F39E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa Signing time: Tue 18 Nov 2025 10:00:00 +0000 ROA not before: Tue 18 Nov 2025 09:55:00 +0000 ROA not after: Tue 17 Nov 2026 10:00:00 +0000 asID: 140460 IP address blocks: 2406:41c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:70:8a:fb:ab:db:fb:2f:ee:c1:64:07:7d:7a:6a:50:46:a1:f3:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 18 09:55:00 2025 GMT Not After : Nov 17 10:00:00 2026 GMT Subject: CN=8DCCC6B1F850A2D3347C9B328A758BE265820317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5f:2a:7c:e7:64:37:d6:78:4e:ec:69:6f:d3: 20:d5:8f:6b:78:76:e0:92:0c:9e:0f:41:ad:12:17: bc:d5:af:50:e9:26:6e:e9:4a:ef:c4:be:20:6f:59: a2:f4:55:ec:84:64:91:1c:c4:87:f2:fb:4c:5c:be: 71:fc:2c:79:0e:29:e5:3c:a6:2c:df:fe:78:9e:c9: 40:3f:6e:f4:b8:4c:e9:45:1e:a9:4a:a7:e1:9a:c8: c7:d8:71:44:33:c7:a3:ca:cc:cf:a3:a1:77:23:15: 03:71:52:75:1e:75:8a:8a:12:91:3a:8a:8c:01:58: 49:52:e5:99:9a:23:b3:b9:47:77:65:79:f6:d3:4e: b4:6f:06:99:9d:b8:ff:3f:1f:16:24:65:c3:3a:3a: 22:54:d4:05:67:d5:af:1b:df:53:5f:8d:3c:32:7f: 8a:cb:33:50:2e:bf:f6:61:af:9a:d4:d5:c5:20:ad: 03:d5:f8:2d:11:9f:bb:f1:61:a5:16:36:9e:77:1a: 4c:e4:04:35:3c:8c:22:6a:d9:32:62:12:10:d2:9c: 8f:20:2c:2c:16:2d:d8:17:2a:62:69:0c:a5:23:50: ca:a9:99:d0:1e:3c:43:b9:ed:f2:bd:ec:67:00:6a: 8f:c2:28:f0:61:74:af:f8:93:cb:a3:b5:2d:63:36: cb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CC:C6:B1:F8:50:A2:D3:34:7C:9B:32:8A:75:8B:E2:65:82:03:17 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140460.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:41c0::/32 Signature Algorithm: sha256WithRSAEncryption 76:20:b7:8d:cf:1b:c2:5a:2a:9e:3e:22:b5:cd:03:55:74:8f: 56:ad:03:78:d2:ff:3c:12:22:ea:18:82:89:8f:e3:20:7b:ae: 79:f1:c7:f9:e7:81:80:bd:76:be:12:a2:d5:0a:8a:05:e7:9f: 81:dd:c6:49:f8:96:de:3c:4c:4c:53:66:1d:20:ed:70:5f:20: 6a:89:70:b4:97:c1:49:66:96:7e:4b:95:ad:ab:12:ca:64:ed: 10:b6:7a:37:fa:6e:24:29:a8:e5:24:81:6a:23:ec:08:15:a1: bd:4f:6e:52:ae:fe:26:10:29:5c:6a:0c:49:57:2a:c4:cd:8a: 40:ec:0a:ed:70:6a:cc:5a:e3:c8:d8:5c:8b:10:c2:bf:ce:04: 90:59:3f:96:db:ff:de:a7:89:ab:b4:a2:df:d9:d1:7a:c7:17: f6:d4:44:2a:55:4e:45:ca:8d:b0:0c:64:c5:f5:e6:57:9c:37: 08:30:62:48:7a:4c:bd:84:f8:d7:5e:39:cd:a9:fd:32:47:32: 3a:d5:c9:57:06:27:a2:c5:70:97:d6:af:d4:cf:7d:09:82:ad: 37:1a:7e:ee:c8:55:31:ce:7e:b5:62:96:a3:dc:29:bc:db:98: 89:9c:3e:dd:7e:38:d6:10:65:be:10:f0:64:e4:08:9e:28:13: 16:9d:8c:b9 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUYXCK+6vb+y/uwWQHfXpqUEah854wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExODA5NTUwMFoX DTI2MTExNzEwMDAwMFowMzExMC8GA1UEAxMoOERDQ0M2QjFGODUwQTJEMzM0N0M5 QjMyOEE3NThCRTI2NTgyMDMxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANNfKnznZDfWeE7saW/TINWPa3h24JIMng9BrRIXvNWvUOkmbulK78S+IG9Z ovRV7IRkkRzEh/L7TFy+cfwseQ4p5TymLN/+eJ7JQD9u9LhM6UUeqUqn4ZrIx9hx RDPHo8rMz6OhdyMVA3FSdR51iooSkTqKjAFYSVLlmZojs7lHd2V59tNOtG8GmZ24 /z8fFiRlwzo6IlTUBWfVrxvfU1+NPDJ/isszUC6/9mGvmtTVxSCtA9X4LRGfu/Fh pRY2nncaTOQENTyMImrZMmISENKcjyAsLBYt2BcqYmkMpSNQyqmZ0B48Q7nt8r3s ZwBqj8Io8GF0r/iTy6O1LWM2y58CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSNzMax +FCi0zR8mzKKdYviZYIDFzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ2MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQGQcAwDQYJKoZIhvcNAQELBQADggEBAHYgt43PG8JaKp4+IrXN A1V0j1atA3jS/zwSIuoYgomP4yB7rnnxx/nngYC9dr4SotUKigXnn4Hdxkn4lt48 TExTZh0g7XBfIGqJcLSXwUlmln5Lla2rEspk7RC2ejf6biQpqOUkgWoj7AgVob1P blKu/iYQKVxqDElXKsTNikDsCu1wasxa48jYXIsQwr/OBJBZP5bb/96niau0ot/Z 0XrHF/bURCpVTkXKjbAMZMX15lecNwgwYkh6TL2E+NdeOc2p/TJHMjrVyVcGJ6LF cJfWr9TPfQmCrTcafu7IVTHOfrVilqPcKbzbmImcPt1+ONYQZb4Q8GTkCJ4oExad jLk= -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:20 2025 by rpki-client