This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa File: AS141086.roa (raw, json) Hash identifier: MW8NSy/D2J7h5F6AcvZ8SLCKLJ6oI4qJRF+Wtap4ThI= Subject key identifier: 23:C5:8D:66:02:0F:54:21:5D:BF:B4:44:20:A9:00:9E:ED:13:57:5A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6014A318DC626760F36AE0D28582AFA197E1A575 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa Signing time: Tue 11 Nov 2025 06:00:13 +0000 ROA not before: Tue 11 Nov 2025 05:55:13 +0000 ROA not after: Tue 10 Nov 2026 06:00:13 +0000 asID: 141086 IP address blocks: 103.156.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:14:a3:18:dc:62:67:60:f3:6a:e0:d2:85:82:af:a1:97:e1:a5:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:13 2025 GMT Not After : Nov 10 06:00:13 2026 GMT Subject: CN=23C58D66020F54215DBFB44420A9009EED13575A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ec:61:d5:7b:9d:7c:4b:7d:4c:20:01:fa:7f: 82:f3:35:9a:c9:6d:18:02:4a:57:68:f6:c7:63:12: 59:ac:66:cd:b4:ce:eb:d7:a4:29:75:ea:e7:3d:b3: d6:f5:24:55:04:0e:4f:f9:c1:ab:ff:b2:3c:f3:f7: f8:02:63:58:78:02:bd:b1:60:7a:47:d0:8c:e5:ea: 3e:ae:1e:71:c9:4c:21:de:a9:5b:8b:74:41:58:44: 60:d4:18:7f:66:20:fc:6d:89:a5:bd:f9:eb:8f:e7: a2:d1:6a:ae:18:d6:46:63:ad:7b:ed:a8:36:49:c6: e2:53:2a:92:f4:1e:b9:5a:a7:73:5f:82:93:82:37: f8:8a:54:38:c5:d6:1e:f3:24:cf:f8:df:2c:22:59: 35:20:a0:04:1e:70:c6:ed:02:15:57:b4:5e:76:8e: 09:95:77:3e:56:8c:d2:c4:5e:54:05:48:2d:35:f2: 4f:da:4f:cd:f6:81:c0:c4:b2:b5:4f:93:bd:7e:bb: c7:a0:2a:f9:ac:26:90:01:51:94:7a:28:fe:b8:8f: 94:49:17:f8:ee:a4:ab:2f:ca:fa:ee:0e:4a:00:53: 9e:ad:98:ad:0a:f3:9c:83:49:d2:52:f8:57:f9:72: 92:8b:a8:52:fa:88:a9:3e:f8:8d:13:30:9b:38:28: 4a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C5:8D:66:02:0F:54:21:5D:BF:B4:44:20:A9:00:9E:ED:13:57:5A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141086.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.89.0/24 Signature Algorithm: sha256WithRSAEncryption 61:3d:b4:2a:bb:0b:ca:e7:fb:ed:4f:f1:0d:97:03:a9:0c:b5: 25:e2:bc:b8:42:21:54:cd:d8:94:a0:6c:4d:d5:7d:fd:d7:4a: 5f:c9:c7:3a:c7:58:43:f2:97:78:a2:87:64:44:4a:21:35:ea: 50:94:01:b7:7c:aa:99:05:20:6c:2c:32:be:15:82:4d:fb:90: fa:46:c1:b4:53:8b:e4:09:22:47:eb:78:fd:d3:3e:d6:e1:5b: 09:74:2a:fd:8a:d0:f8:d8:e4:cc:b0:78:aa:c3:5c:69:c8:21: d7:70:2f:cc:ac:50:11:f1:62:f9:20:f6:12:1b:5b:b9:f6:a5: 4f:38:d9:ca:49:35:f5:21:c2:01:bf:49:df:fe:27:b8:3c:92: 41:11:b0:e8:ba:87:79:b2:b4:b7:f8:a3:03:30:fe:50:52:9d: 3d:c0:d9:53:92:5a:a4:42:4d:6b:e1:ce:1b:2e:41:92:28:41: 5f:05:e1:66:d3:36:b5:af:01:99:e3:3b:82:6a:84:57:68:d2: 27:fe:fc:a5:e7:60:d5:75:3b:89:1b:c9:3c:c6:54:69:fb:29: d1:5a:11:0b:6f:c1:b0:6b:3b:db:34:c4:86:22:8c:a9:d7:ce: 4b:17:66:51:e2:f4:f7:dc:46:35:4d:3f:ed:b2:59:58:c5:0f: 99:8e:90:f6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYBSjGNxiZ2DzauDShYKvoZfhpXUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxM1oX DTI2MTExMDA2MDAxM1owMzExMC8GA1UEAxMoMjNDNThENjYwMjBGNTQyMTVEQkZC NDQ0MjBBOTAwOUVFRDEzNTc1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjsYdV7nXxLfUwgAfp/gvM1msltGAJKV2j2x2MSWaxmzbTO69ekKXXq5z2z 1vUkVQQOT/nBq/+yPPP3+AJjWHgCvbFgekfQjOXqPq4ecclMId6pW4t0QVhEYNQY f2Yg/G2Jpb3564/notFqrhjWRmOte+2oNknG4lMqkvQeuVqnc1+Ck4I3+IpUOMXW HvMkz/jfLCJZNSCgBB5wxu0CFVe0XnaOCZV3PlaM0sReVAVILTXyT9pPzfaBwMSy tU+TvX67x6Aq+awmkAFRlHoo/riPlEkX+O6kqy/K+u4OSgBTnq2YrQrznINJ0lL4 V/lykouoUvqIqT74jRMwmzgoSikCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQjxY1m Ag9UIV2/tEQgqQCe7RNXWjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA4Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGecWTANBgkqhkiG9w0BAQsFAAOCAQEAYT20KrsLyuf77U/xDZcD qQy1JeK8uEIhVM3YlKBsTdV9/ddKX8nHOsdYQ/KXeKKHZERKITXqUJQBt3yqmQUg bCwyvhWCTfuQ+kbBtFOL5AkiR+t4/dM+1uFbCXQq/YrQ+NjkzLB4qsNcacgh13Av zKxQEfFi+SD2EhtbufalTzjZykk19SHCAb9J3/4nuDySQRGw6LqHebK0t/ijAzD+ UFKdPcDZU5JapEJNa+HOGy5BkihBXwXhZtM2ta8BmeM7gmqEV2jSJ/78pedg1XU7 iRvJPMZUafsp0VoRC2/BsGs72zTEhiKMqdfOSxdmUeL099xGNU0/7bJZWMUPmY6Q 9g== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:23 2025 by rpki-client