This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa File: AS141104.roa (raw, json) Hash identifier: Rw5fpXa9G5ZkRGJEaRKFEMNPGfl71hkprTKweLQYxRI= Subject key identifier: 7E:6B:AA:58:DE:EE:92:06:C8:68:74:09:D3:E8:1C:8C:92:41:AB:F5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3F4D308C376738BFFBF5612CCDF1FCC9D53BA52F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa Signing time: Tue 11 Nov 2025 06:00:16 +0000 ROA not before: Tue 11 Nov 2025 05:55:16 +0000 ROA not after: Tue 10 Nov 2026 06:00:16 +0000 asID: 141104 IP address blocks: 103.156.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:4d:30:8c:37:67:38:bf:fb:f5:61:2c:cd:f1:fc:c9:d5:3b:a5:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:16 2025 GMT Not After : Nov 10 06:00:16 2026 GMT Subject: CN=7E6BAA58DEEE9206C8687409D3E81C8C9241ABF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e4:cc:39:69:f5:1a:85:7e:63:1f:10:e7:36: 95:7e:96:1a:f1:44:63:e5:87:bf:a4:09:9f:84:3d: 1b:8c:93:b5:e7:2f:8b:3b:d4:17:a3:12:b0:65:fd: 4b:95:6a:e5:96:4c:9e:e5:d9:26:80:d6:d1:33:97: 68:ff:bf:96:58:06:80:ea:d4:4e:bf:32:7c:d3:18: 2d:ab:6c:6a:fc:8f:ae:f9:45:cf:10:e8:ca:d0:aa: 7a:09:c7:e8:2e:d4:37:6a:1b:1a:dc:09:38:7b:d3: ed:b6:0b:61:7f:c2:04:17:18:db:66:a4:93:ed:5b: 9a:2a:7f:f8:c5:e3:02:ea:00:44:a3:2d:5c:8d:aa: e6:0b:d0:66:6a:43:b6:46:58:4c:0d:1a:7e:68:db: 38:e0:d6:e6:bc:e3:a9:de:1c:29:46:eb:f2:27:cb: 68:4b:ec:66:b7:1a:1d:20:98:f4:5c:47:be:1e:11: 89:da:b3:b7:c8:0f:be:87:c5:9a:dd:db:52:fe:e4: 80:6a:2a:d7:c9:59:5f:30:66:a3:c5:c0:f0:71:88: bb:58:3a:b0:34:23:f7:2b:cd:4d:2a:c2:0a:e3:66: 9b:c8:6f:e7:d0:a2:b0:ff:e8:5c:d0:07:dc:b2:18: 51:ff:a3:e4:6e:fe:d0:a4:9f:07:44:ab:07:ac:b6: c9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6B:AA:58:DE:EE:92:06:C8:68:74:09:D3:E8:1C:8C:92:41:AB:F5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141104.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.254.0/24 Signature Algorithm: sha256WithRSAEncryption 99:3c:0f:3c:0e:69:f1:0e:47:9a:30:09:76:fc:90:8c:3a:00: 89:58:dd:60:69:0e:18:80:66:e3:19:d6:8d:49:ad:d4:97:21: 7a:fd:34:3a:32:b1:4f:37:39:03:af:9a:f8:e6:f4:29:f7:52: 19:10:4b:06:7c:3b:2b:0b:b9:32:02:8c:32:77:f9:50:f9:4e: 99:80:ea:c8:e2:bc:f1:3e:f4:16:91:14:df:40:d8:6e:6a:71: c5:49:ae:9d:8a:00:c7:cf:bc:fd:39:87:e8:30:1e:65:a6:25: 62:38:8e:50:e7:2c:09:ee:44:e0:8f:e3:93:60:a1:44:33:44: ac:25:b2:1b:a8:18:bb:16:79:7f:d7:f0:e1:34:e2:23:04:fa: 9b:ff:b7:26:b1:7d:e0:4d:70:48:b3:7d:47:cc:06:58:d0:e4: 5f:8e:a3:f1:61:c0:73:72:5a:7b:be:84:7d:8a:8c:0a:9f:24: e4:89:6d:5c:81:a6:1d:1a:50:42:cc:f4:7f:c1:16:42:7f:03: 89:0a:fc:67:fc:c8:e9:05:94:e8:91:c9:b9:d7:b3:10:ff:a8: 31:15:d9:97:a0:be:eb:d2:2c:43:c0:bd:21:91:07:37:c6:84: 8d:ca:77:f9:46:78:59:c7:a9:af:46:3b:a9:eb:4c:ce:b6:01: 2f:f5:6f:af -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUP00wjDdnOL/79WEszfH8ydU7pS8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxNloX DTI2MTExMDA2MDAxNlowMzExMC8GA1UEAxMoN0U2QkFBNThERUVFOTIwNkM4Njg3 NDA5RDNFODFDOEM5MjQxQUJGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKzkzDlp9RqFfmMfEOc2lX6WGvFEY+WHv6QJn4Q9G4yTtecvizvUF6MSsGX9 S5Vq5ZZMnuXZJoDW0TOXaP+/llgGgOrUTr8yfNMYLatsavyPrvlFzxDoytCqegnH 6C7UN2obGtwJOHvT7bYLYX/CBBcY22akk+1bmip/+MXjAuoARKMtXI2q5gvQZmpD tkZYTA0afmjbOODW5rzjqd4cKUbr8ifLaEvsZrcaHSCY9FxHvh4Ridqzt8gPvofF mt3bUv7kgGoq18lZXzBmo8XA8HGIu1g6sDQj9yvNTSrCCuNmm8hv59CisP/oXNAH 3LIYUf+j5G7+0KSfB0SrB6y2yUcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR+a6pY 3u6SBshodAnT6ByMkkGr9TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGec/jANBgkqhkiG9w0BAQsFAAOCAQEAmTwPPA5p8Q5HmjAJdvyQ jDoAiVjdYGkOGIBm4xnWjUmt1Jchev00OjKxTzc5A6+a+Ob0KfdSGRBLBnw7Kwu5 MgKMMnf5UPlOmYDqyOK88T70FpEU30DYbmpxxUmunYoAx8+8/TmH6DAeZaYlYjiO UOcsCe5E4I/jk2ChRDNErCWyG6gYuxZ5f9fw4TTiIwT6m/+3JrF94E1wSLN9R8wG WNDkX46j8WHAc3Jae76EfYqMCp8k5IltXIGmHRpQQsz0f8EWQn8DiQr8Z/zI6QWU 6JHJudezEP+oMRXZl6C+69IsQ8C9IZEHN8aEjcp3+UZ4Wcepr0Y7qetMzrYBL/Vv rw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:51 2025 by rpki-client