This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa File: AS141054.roa (raw, json) Hash identifier: IiyoSneRglTgNsFTt1R3eb5jWtzYK3usW1SYm3x+34M= Subject key identifier: EF:00:60:BA:84:C9:11:3A:9C:12:91:11:68:8F:9B:2F:7D:EC:B6:01 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A5AB3A792E3AE3499A808378840E119E722BE08 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa Signing time: Tue 11 Nov 2025 05:00:01 +0000 ROA not before: Tue 11 Nov 2025 04:55:01 +0000 ROA not after: Tue 10 Nov 2026 05:00:01 +0000 asID: 141054 IP address blocks: 103.154.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5a:b3:a7:92:e3:ae:34:99:a8:08:37:88:40:e1:19:e7:22:be:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 04:55:01 2025 GMT Not After : Nov 10 05:00:01 2026 GMT Subject: CN=EF0060BA84C9113A9C129111688F9B2F7DECB601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1e:95:09:8b:4c:8e:c0:dc:4a:33:49:96:cb: ac:e6:92:1b:14:04:17:8e:68:21:8e:d8:4a:d9:68: b3:a0:f0:52:8d:6a:3c:b5:df:62:c2:10:36:94:b1: fc:0b:d4:18:0f:20:26:cb:ae:ee:1a:c2:e1:ee:d1: 14:a4:7b:8b:f6:a3:d9:0f:ee:95:9d:7e:13:d2:63: b5:af:35:ab:85:5b:0d:14:32:90:d4:d2:f8:2e:ae: 0b:96:97:2a:9c:5b:c7:8f:9b:fb:0d:39:aa:45:1e: c6:a6:34:2c:65:11:ee:84:0d:2b:43:d4:1b:c1:37: 74:4f:35:71:47:a7:f7:2e:77:d1:a0:57:df:fe:49: cd:3c:56:ac:fc:e4:a2:bd:ef:1d:1c:4c:51:95:b1: c9:84:ae:65:5c:28:00:4e:d3:35:db:9d:b7:7d:d5: 80:ee:63:c7:28:9e:30:81:18:23:83:0d:d5:18:81: 49:c2:ca:40:6c:f0:41:55:01:21:bf:9f:f8:fa:09: 33:b1:e5:7b:4c:34:65:34:2d:5b:bd:d6:98:cd:04: c6:12:74:bd:ec:7f:aa:6c:67:17:93:d7:1f:d7:28: cc:8d:4c:9b:c5:59:0d:17:52:dc:2b:91:6a:57:25: a2:eb:c3:23:e3:1b:1c:71:47:10:0d:62:01:4c:f7: 47:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:00:60:BA:84:C9:11:3A:9C:12:91:11:68:8F:9B:2F:7D:EC:B6:01 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141054.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.172.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:89:be:2a:05:74:1c:2c:64:aa:5c:fd:6e:e5:9e:a6:2f:fa: 89:4c:3c:53:23:f1:f3:8c:d1:50:ec:8a:90:dc:c9:07:59:d9: ad:90:a7:75:0c:e6:e4:af:4d:27:16:32:68:dc:80:59:1c:c2: a8:d6:00:0f:7b:2a:06:b6:ad:1d:2c:84:0e:8a:fd:6e:a0:12: a1:96:86:ff:55:40:ea:d0:bf:a2:6e:b3:96:65:65:ed:8a:e1: 54:82:2e:40:fd:c8:2d:64:8a:5a:bd:2c:44:97:76:ba:e2:fb: 8e:b8:92:41:93:eb:48:45:a9:77:da:03:bc:9b:b7:48:c5:03: 70:36:47:72:e3:25:66:0b:18:c4:fe:51:ad:a1:a8:42:28:c2: c8:39:42:55:12:e1:13:c4:a0:7e:67:b6:f4:4d:34:06:33:42: 2a:48:ca:9b:b4:31:08:99:3a:23:63:b1:89:a4:12:56:99:0f: 5f:4e:3e:90:f5:d8:2f:4e:86:2a:b3:d6:ff:a0:20:ec:4f:84: e1:90:38:41:8f:7a:8f:9e:d1:7c:c6:e9:6d:58:88:1c:f3:97: 3e:89:5d:e9:b5:7a:48:b1:1d:07:90:c0:7d:64:15:03:eb:71: 3d:7e:26:f7:e7:ce:40:86:b8:4c:d9:06:e6:8f:fe:48:86:b6: bf:7e:c4:ca -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOlqzp5LjrjSZqAg3iEDhGecivggwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA0NTUwMVoX DTI2MTExMDA1MDAwMVowMzExMC8GA1UEAxMoRUYwMDYwQkE4NEM5MTEzQTlDMTI5 MTExNjg4RjlCMkY3REVDQjYwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMcelQmLTI7A3EozSZbLrOaSGxQEF45oIY7YStlos6DwUo1qPLXfYsIQNpSx /AvUGA8gJsuu7hrC4e7RFKR7i/aj2Q/ulZ1+E9Jjta81q4VbDRQykNTS+C6uC5aX Kpxbx4+b+w05qkUexqY0LGUR7oQNK0PUG8E3dE81cUen9y530aBX3/5JzTxWrPzk or3vHRxMUZWxyYSuZVwoAE7TNdudt33VgO5jxyieMIEYI4MN1RiBScLKQGzwQVUB Ib+f+PoJM7Hle0w0ZTQtW73WmM0ExhJ0vex/qmxnF5PXH9cozI1Mm8VZDRdS3CuR alclouvDI+MbHHFHEA1iAUz3R1kCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTvAGC6 hMkROpwSkRFoj5svfey2ATAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWearDANBgkqhkiG9w0BAQsFAAOCAQEAD4m+KgV0HCxkqlz9buWe pi/6iUw8UyPx84zRUOyKkNzJB1nZrZCndQzm5K9NJxYyaNyAWRzCqNYAD3sqBrat HSyEDor9bqASoZaG/1VA6tC/om6zlmVl7YrhVIIuQP3ILWSKWr0sRJd2uuL7jriS QZPrSEWpd9oDvJu3SMUDcDZHcuMlZgsYxP5RraGoQijCyDlCVRLhE8Sgfme29E00 BjNCKkjKm7QxCJk6I2OxiaQSVpkPX04+kPXYL06GKrPW/6Ag7E+E4ZA4QY96j57R fMbpbViIHPOXPold6bV6SLEdB5DAfWQVA+txPX4m9+fOQIa4TNkG5o/+SIa2v37E yg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:39 2025 by rpki-client