This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa File: AS140470.roa (raw, json) Hash identifier: s2uVHwlKXzIFQur4lnyKsj/e/BEwi5Q6stvWwYAxCS0= Subject key identifier: 47:01:0D:E1:BC:C8:D5:53:F1:93:C4:9D:4F:12:89:6B:DC:33:99:B2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0DC6808C4933163DEA7015253ADE5F8C05EB76E0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa Signing time: Wed 12 Nov 2025 11:00:00 +0000 ROA not before: Wed 12 Nov 2025 10:55:00 +0000 ROA not after: Wed 11 Nov 2026 11:00:00 +0000 asID: 140470 IP address blocks: 2407:f340::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:c6:80:8c:49:33:16:3d:ea:70:15:25:3a:de:5f:8c:05:eb:76:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 12 10:55:00 2025 GMT Not After : Nov 11 11:00:00 2026 GMT Subject: CN=47010DE1BCC8D553F193C49D4F12896BDC3399B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e4:1f:9f:61:f5:4f:56:c0:55:39:70:79:86: 9b:89:70:9e:b4:8d:22:52:f8:ef:6e:be:d3:a0:58: 54:54:21:16:e6:d0:41:d1:39:20:c3:03:53:0c:c2: 4d:14:bf:81:30:26:2a:b3:7a:06:bf:f0:68:04:0c: 93:ae:3d:bd:c3:70:08:d9:80:3f:c5:38:f8:9a:78: a2:8e:b6:65:ed:b0:3e:b3:95:76:e6:42:8b:30:a8: 23:54:05:66:58:d5:c5:36:33:0c:39:06:46:58:e4: 52:06:b2:db:0b:d9:74:d0:10:84:3e:9a:c3:2c:9c: 15:78:88:52:eb:1b:b2:fc:d6:28:c0:4e:61:0a:8a: 1a:6c:33:8e:75:13:59:3d:8e:04:d3:7e:46:d6:36: d5:2d:c4:57:78:6d:d5:fb:21:72:83:19:03:42:04: 0d:31:7a:fe:32:d5:d4:3b:06:64:77:d5:b4:0d:7a: 30:7d:db:55:d1:82:88:f5:56:48:bc:d0:a9:01:43: e0:f1:0c:f1:33:bd:75:ea:9c:e5:73:b0:38:ae:f0: c9:74:90:da:77:98:1c:99:8c:b0:82:80:4c:69:45: fb:23:8a:fa:68:a0:82:0e:77:f1:d5:44:3c:86:a2: 2f:06:3c:a5:b5:92:b2:05:e0:e4:3c:b5:54:4c:4c: 13:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:01:0D:E1:BC:C8:D5:53:F1:93:C4:9D:4F:12:89:6B:DC:33:99:B2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:f340::/32 Signature Algorithm: sha256WithRSAEncryption 55:f8:13:a0:cc:ab:f4:3d:18:d0:93:8c:18:91:1b:c3:5f:d1: 7e:50:35:de:36:21:d1:61:b4:a0:2d:75:6a:c8:0e:74:ca:85: 29:cb:b6:d5:7c:5a:14:36:43:0a:ec:24:ff:e2:5e:46:64:99: 8a:cd:c7:d1:1c:57:ce:6b:6f:9f:6f:4b:4c:db:40:fe:fd:19: 6a:6f:3f:e5:c1:42:49:d1:39:9f:3a:7c:0c:62:21:f4:75:2d: b1:e0:c7:4e:a2:99:04:d3:a8:72:84:b3:c2:a5:78:c0:37:e6: 91:80:72:1e:b9:60:9e:3e:7a:c4:1f:31:6c:28:41:cb:40:26: e3:f5:d2:bb:be:4f:5f:ea:3d:6c:63:da:cf:66:03:fd:87:40: 3f:96:0b:c7:4f:a8:76:e0:75:3d:9e:c8:a7:5e:4d:16:73:e9: 78:fc:0b:ce:d3:5d:96:a0:bf:23:29:b3:eb:ee:2b:76:7e:4c: 2f:cf:13:a4:80:30:3f:b7:6c:60:25:44:03:74:c0:cb:67:2e: 0a:a0:22:0a:9f:5d:87:85:58:18:ae:6a:5e:a8:6c:04:d8:da: d1:c2:36:87:57:fe:e7:c1:c5:7f:3f:a3:b0:6b:9b:1f:fa:59: bb:f3:79:79:08:cd:60:28:60:0d:e4:1c:92:fe:b2:1f:96:59: b7:6d:57:c5 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUDcaAjEkzFj3qcBUlOt5fjAXrduAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMjEwNTUwMFoX DTI2MTExMTExMDAwMFowMzExMC8GA1UEAxMoNDcwMTBERTFCQ0M4RDU1M0YxOTND NDlENEYxMjg5NkJEQzMzOTlCMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfkH59h9U9WwFU5cHmGm4lwnrSNIlL4726+06BYVFQhFubQQdE5IMMDUwzC TRS/gTAmKrN6Br/waAQMk649vcNwCNmAP8U4+Jp4oo62Ze2wPrOVduZCizCoI1QF ZljVxTYzDDkGRljkUgay2wvZdNAQhD6awyycFXiIUusbsvzWKMBOYQqKGmwzjnUT WT2OBNN+RtY21S3EV3ht1fshcoMZA0IEDTF6/jLV1DsGZHfVtA16MH3bVdGCiPVW SLzQqQFD4PEM8TO9deqc5XOwOK7wyXSQ2neYHJmMsIKATGlF+yOK+miggg538dVE PIaiLwY8pbWSsgXg5Dy1VExME3ECAwEAAaOCAdEwggHNMB0GA1UdDgQWBBRHAQ3h vMjVU/GTxJ1PEolr3DOZsjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQH80AwDQYJKoZIhvcNAQELBQADggEBAFX4E6DMq/Q9GNCTjBiR G8Nf0X5QNd42IdFhtKAtdWrIDnTKhSnLttV8WhQ2QwrsJP/iXkZkmYrNx9EcV85r b59vS0zbQP79GWpvP+XBQknROZ86fAxiIfR1LbHgx06imQTTqHKEs8KleMA35pGA ch65YJ4+esQfMWwoQctAJuP10ru+T1/qPWxj2s9mA/2HQD+WC8dPqHbgdT2eyKde TRZz6Xj8C87TXZagvyMps+vuK3Z+TC/PE6SAMD+3bGAlRAN0wMtnLgqgIgqfXYeF WBiual6obATY2tHCNodX/ufBxX8/o7Brmx/6WbvzeXkIzWAoYA3kHJL+sh+WWbdt V8U= -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:09 2025 by rpki-client