This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa File: AS141085.roa (raw, json) Hash identifier: 56C94GKbWOqf5OZyYghhyaPYDwMLMx8MNal5+dDl4n8= Subject key identifier: 0A:42:61:60:EA:D9:E5:70:41:B4:28:F0:66:99:F5:47:25:48:52:50 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D883EF3DE8B58046278E3E6839AB215D013F432 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa Signing time: Tue 11 Nov 2025 06:00:09 +0000 ROA not before: Tue 11 Nov 2025 05:55:09 +0000 ROA not after: Tue 10 Nov 2026 06:00:09 +0000 asID: 141085 IP address blocks: 103.156.88.0/24 maxlen: 24 2001:df4:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:88:3e:f3:de:8b:58:04:62:78:e3:e6:83:9a:b2:15:d0:13:f4:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:09 2025 GMT Not After : Nov 10 06:00:09 2026 GMT Subject: CN=0A426160EAD9E57041B428F06699F54725485250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a0:b6:54:b5:e5:c8:b0:ea:7c:73:d8:22:d3: ae:3c:30:74:b9:f9:53:ef:39:ce:d1:58:10:70:a8: dd:0b:cb:f2:ce:a9:9a:e2:a2:a7:a1:5c:ba:fe:96: fb:0d:0d:51:9c:90:e2:4b:3f:38:97:d6:fc:fe:b4: 38:42:20:35:fe:b5:36:10:d1:24:aa:83:35:9f:07: 41:e3:7c:d1:f3:d7:33:3d:6f:d2:2f:98:3e:b9:36: 61:88:8e:a6:43:c8:e5:b8:08:6a:99:34:08:65:f1: 92:22:7e:24:45:71:c5:38:66:e6:55:42:16:aa:5e: 6d:b0:39:b8:44:c0:33:74:bb:92:67:f6:e0:a6:d8: 9f:ec:dc:33:a6:bd:4f:3c:41:1b:69:df:6f:dc:a5: 78:b4:87:e9:31:68:35:95:a7:c4:08:0b:3e:db:f1: d5:58:f5:a9:5f:df:d5:45:a6:6e:5c:12:78:7c:4f: 93:fd:dd:f0:3c:2e:1b:38:52:fb:bf:ff:9f:0a:e3: d4:68:b5:64:b4:61:64:de:2d:77:6a:ed:3c:a0:e3: e7:2f:05:27:a1:a4:d3:d0:95:ac:4a:2f:7e:56:d6: 2f:02:d9:6e:a6:32:85:47:11:a6:c0:08:f9:9f:53: 9f:7e:cc:72:f5:9a:e1:1c:b9:72:bf:7b:9c:86:7e: aa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:42:61:60:EA:D9:E5:70:41:B4:28:F0:66:99:F5:47:25:48:52:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141085.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.88.0/24 IPv6: 2001:df4:e880::/48 Signature Algorithm: sha256WithRSAEncryption 07:ab:41:0c:27:ff:39:73:58:72:4a:7e:e4:1a:ca:db:6b:1d: 7f:f3:a8:95:ef:25:82:37:3b:eb:e3:78:86:79:8f:55:0f:d3: ce:9e:9d:47:01:ae:6e:62:d0:50:da:9d:9e:2b:50:b6:3e:f5: e2:ba:02:29:59:1c:0b:f7:d1:4a:4b:6a:17:4c:fa:a9:9e:b3: f3:ba:15:5f:c5:e4:27:d7:42:e4:31:71:23:8f:b2:52:7e:c1: 50:7c:4d:06:ab:3b:52:6d:9c:6f:a4:eb:e7:f7:9c:95:cf:20: 08:3f:db:6d:c9:a0:c3:5a:44:06:8a:1a:ce:be:7e:e6:d0:62: b6:2e:7e:32:4a:7f:db:a3:ee:4a:a8:4a:8a:ce:93:09:cf:8d: 72:d0:25:fc:d4:a9:af:75:23:9d:39:da:b9:b3:aa:a9:9a:c9: 8f:a9:b6:54:2a:f2:ff:35:a1:f0:15:ec:55:7f:c0:5b:af:d1: e4:e4:1a:49:74:31:24:8f:20:33:8d:ce:63:e3:0a:c2:ec:62: 40:d7:5d:c7:25:60:c8:ee:8e:c7:f5:39:a8:8d:20:02:7c:42: 0f:49:f8:6a:d4:68:1a:e2:e7:65:a3:09:85:bc:aa:7d:62:db: bc:e7:0f:58:8b:6b:9a:af:05:fb:a7:46:fd:10:b9:e5:43:92: 89:cd:41:61 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUPYg+896LWARieOPmg5qyFdAT9DIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwOVoX DTI2MTExMDA2MDAwOVowMzExMC8GA1UEAxMoMEE0MjYxNjBFQUQ5RTU3MDQxQjQy OEYwNjY5OUY1NDcyNTQ4NTI1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+gtlS15ciw6nxz2CLTrjwwdLn5U+85ztFYEHCo3QvL8s6pmuKip6Fcuv6W +w0NUZyQ4ks/OJfW/P60OEIgNf61NhDRJKqDNZ8HQeN80fPXMz1v0i+YPrk2YYiO pkPI5bgIapk0CGXxkiJ+JEVxxThm5lVCFqpebbA5uETAM3S7kmf24KbYn+zcM6a9 TzxBG2nfb9yleLSH6TFoNZWnxAgLPtvx1Vj1qV/f1UWmblwSeHxPk/3d8DwuGzhS +7//nwrj1Gi1ZLRhZN4td2rtPKDj5y8FJ6Gk09CVrEovflbWLwLZbqYyhUcRpsAI +Z9Tn37McvWa4Ry5cr97nIZ+qrECAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQKQmFg 6tnlcEG0KPBmmfVHJUhSUDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAGecWDAPBAIAAjAJAwcAIAEN9OiAMA0GCSqGSIb3DQEBCwUAA4IB AQAHq0EMJ/85c1hySn7kGsrbax1/86iV7yWCNzvr43iGeY9VD9POnp1HAa5uYtBQ 2p2eK1C2PvXiugIpWRwL99FKS2oXTPqpnrPzuhVfxeQn10LkMXEjj7JSfsFQfE0G qztSbZxvpOvn95yVzyAIP9ttyaDDWkQGihrOvn7m0GK2Ln4ySn/bo+5KqEqKzpMJ z41y0CX81KmvdSOdOdq5s6qpmsmPqbZUKvL/NaHwFexVf8Bbr9Hk5BpJdDEkjyAz jc5j4wrC7GJA113HJWDI7o7H9TmojSACfEIPSfhq1Gga4udlowmFvKp9Ytu85w9Y i2uarwX7p0b9ELnlQ5KJzUFh -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:39 2025 by rpki-client