This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141059.roa File: AS141059.roa (raw, json) Hash identifier: SC7LyHRU4o+PIj4EOvW/+to0kfWMqU7fclRMRNPnFvI= Subject key identifier: C5:91:C3:54:6D:1B:3E:BC:2F:58:70:98:15:AD:53:CA:89:21:80:9F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 019DEF520885352C5EFADBDCD6C8C9C3634F6490 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141059.roa Signing time: Tue 11 Nov 2025 06:00:03 +0000 ROA not before: Tue 11 Nov 2025 05:55:03 +0000 ROA not after: Tue 10 Nov 2026 06:00:03 +0000 asID: 141059 IP address blocks: 103.155.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:ef:52:08:85:35:2c:5e:fa:db:dc:d6:c8:c9:c3:63:4f:64:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:03 2025 GMT Not After : Nov 10 06:00:03 2026 GMT Subject: CN=C591C3546D1B3EBC2F58709815AD53CA8921809F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:21:bb:27:6b:0c:e3:7c:93:c7:8f:40:81:e5: 4d:06:46:3f:78:32:a6:d1:ed:c2:6c:cf:7c:a5:64: e1:c4:b4:7d:ed:8f:b8:e6:e4:c8:0f:6c:b9:05:86: d7:90:6a:7d:c6:3e:55:73:b5:21:58:0f:a7:aa:db: aa:50:4f:93:87:b2:d3:f5:98:35:06:61:a1:a3:a0: 1f:96:3a:45:b5:f8:3d:51:71:c1:db:1a:66:d2:7a: 87:55:c5:78:31:df:88:0f:1c:8e:41:33:6b:5d:cd: da:d5:03:af:eb:52:5d:1e:06:b2:02:13:63:56:ae: b3:ac:d3:ba:d0:a9:0f:a8:89:c7:ea:8e:5d:3a:30: 55:b3:35:1b:47:df:2a:32:41:27:89:7f:1b:b0:5d: f3:1d:34:40:c5:d0:8e:0c:46:fb:16:8c:7c:7b:63: 32:03:67:6a:27:a8:52:78:1c:6e:9a:01:26:85:3f: 99:37:02:27:6b:61:65:79:d7:21:66:32:07:e7:12: 91:db:33:44:d3:e2:7a:e5:c6:87:d3:f1:07:2b:ab: a4:ed:6b:72:d4:6e:f6:0e:5b:d4:09:4b:4e:a3:ae: 1d:dd:82:e9:f6:c2:89:75:5d:cf:d6:85:ed:78:b8: 28:e8:dd:91:85:c3:76:86:0d:96:3a:f8:4f:a4:8f: 7c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:91:C3:54:6D:1B:3E:BC:2F:58:70:98:15:AD:53:CA:89:21:80:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141059.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.125.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:51:ae:11:fa:bd:f9:86:65:dc:4f:f4:1b:af:5c:7a:89:f5: a9:f8:9c:51:a8:03:a7:c6:96:7d:30:f8:81:db:e1:3f:84:ee: 9a:f8:97:6f:2c:5d:72:65:e1:93:1b:c3:9f:fb:c8:fa:32:f8: 32:1f:41:77:bd:97:29:fb:e8:2f:f5:69:3d:03:b5:77:ba:e5: 86:f5:b5:00:23:0c:28:c3:d0:fb:18:da:88:42:a5:71:93:ec: a9:f1:44:57:87:bc:62:a2:c8:e7:27:6b:4c:19:ab:61:91:1d: d5:dd:2a:42:7c:e1:2a:89:00:97:95:e3:51:f9:45:8e:1e:86: 0d:f3:0f:d5:1c:06:d6:d5:11:6c:6d:25:44:ad:16:df:db:80: ec:5e:ee:69:b9:0b:0e:f1:e9:95:cc:5d:8c:35:83:4a:09:96: 70:db:ba:a7:67:82:2d:e0:28:47:75:db:e2:57:27:82:79:35: bc:7b:12:1e:5a:60:f0:88:e1:82:d4:96:83:3d:4e:ff:14:72: b6:55:a0:d8:78:b0:78:c9:30:02:c3:77:6d:7c:5e:23:1f:4f: 40:ee:86:97:b4:ae:22:55:70:ec:5d:9a:9f:a8:b8:33:2d:0c: 83:90:58:54:03:95:a3:3b:78:ee:e6:df:d8:f9:aa:0d:83:c7: f4:f9:fd:24 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUAZ3vUgiFNSxe+tvc1sjJw2NPZJAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwM1oX DTI2MTExMDA2MDAwM1owMzExMC8GA1UEAxMoQzU5MUMzNTQ2RDFCM0VCQzJGNTg3 MDk4MTVBRDUzQ0E4OTIxODA5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALchuydrDON8k8ePQIHlTQZGP3gyptHtwmzPfKVk4cS0fe2PuObkyA9suQWG 15BqfcY+VXO1IVgPp6rbqlBPk4ey0/WYNQZhoaOgH5Y6RbX4PVFxwdsaZtJ6h1XF eDHfiA8cjkEza13N2tUDr+tSXR4GsgITY1aus6zTutCpD6iJx+qOXTowVbM1G0ff KjJBJ4l/G7Bd8x00QMXQjgxG+xaMfHtjMgNnaieoUngcbpoBJoU/mTcCJ2thZXnX IWYyB+cSkdszRNPieuXGh9PxByurpO1rctRu9g5b1AlLTqOuHd2C6fbCiXVdz9aF 7Xi4KOjdkYXDdoYNljr4T6SPfCcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTFkcNU bRs+vC9YcJgVrVPKiSGAnzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA1OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGebfTANBgkqhkiG9w0BAQsFAAOCAQEAb1GuEfq9+YZl3E/0G69c eon1qficUagDp8aWfTD4gdvhP4TumviXbyxdcmXhkxvDn/vI+jL4Mh9Bd72XKfvo L/VpPQO1d7rlhvW1ACMMKMPQ+xjaiEKlcZPsqfFEV4e8YqLI5ydrTBmrYZEd1d0q QnzhKokAl5XjUflFjh6GDfMP1RwG1tURbG0lRK0W39uA7F7uabkLDvHplcxdjDWD SgmWcNu6p2eCLeAoR3Xb4lcngnk1vHsSHlpg8IjhgtSWgz1O/xRytlWg2HiweMkw AsN3bXxeIx9PQO6Gl7SuIlVw7F2an6i4My0Mg5BYVAOVozt47ubf2PmqDYPH9Pn9 JA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:32 2025 by rpki-client