This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141128.roa File: AS141128.roa (raw, json) Hash identifier: VtTb1mG4A/x7bZrq3dJmThpPnKIXxNs5YaSuuFMLwbM= Subject key identifier: 3D:28:46:6D:F6:A7:07:7C:D7:CC:42:26:2C:09:AF:59:B8:4F:9A:9B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 241D20C3B2B0ADBF8F6FA284CD2A322B49627030 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141128.roa Signing time: Tue 11 Nov 2025 06:00:21 +0000 ROA not before: Tue 11 Nov 2025 05:55:21 +0000 ROA not after: Tue 10 Nov 2026 06:00:21 +0000 asID: 141128 IP address blocks: 103.158.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:1d:20:c3:b2:b0:ad:bf:8f:6f:a2:84:cd:2a:32:2b:49:62:70:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:21 2025 GMT Not After : Nov 10 06:00:21 2026 GMT Subject: CN=3D28466DF6A7077CD7CC42262C09AF59B84F9A9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ce:67:4c:cb:5a:d2:28:d2:68:3f:3f:1a:38: ae:a7:ec:44:d9:f8:e5:fe:19:09:0c:60:ce:17:93: d7:e7:d8:8f:eb:fc:b5:69:3d:88:fc:4c:11:e4:db: 43:d9:37:14:0a:98:d9:ca:b9:60:37:ec:f5:4c:7b: 9e:9a:41:2a:87:83:bf:be:78:a6:b2:6d:7b:f9:f2: b0:2c:9d:19:2e:fd:0b:75:25:f6:eb:64:d3:5d:74: e2:ac:a8:4e:07:2d:3c:13:14:2a:1d:8f:c8:eb:a3: 97:4d:d7:09:c1:aa:2d:59:1c:a7:39:f9:8b:9e:ce: 24:7e:b5:c1:19:de:9a:95:31:2e:e3:d0:31:93:ab: c3:12:25:65:07:94:5d:29:33:72:47:c4:91:7c:3f: 0b:38:b9:ab:8d:82:87:ab:66:c8:3f:ac:d1:a7:49: 05:c4:40:c9:87:a4:a8:37:1b:04:5f:2a:af:0d:7c: f5:34:b9:0a:f6:0b:74:9a:90:d9:20:ba:cd:e8:fe: 94:ef:1c:cc:cc:7e:de:db:7e:73:9e:1c:8e:ec:f6: 69:64:70:14:0c:1a:f8:6c:56:bd:5d:e4:b0:27:5c: 62:93:85:e3:69:90:d8:70:65:90:8a:6a:62:cf:3d: cd:f8:1c:15:ff:e3:02:91:f0:84:29:26:36:59:b1: 05:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:28:46:6D:F6:A7:07:7C:D7:CC:42:26:2C:09:AF:59:B8:4F:9A:9B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141128.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.130.0/24 Signature Algorithm: sha256WithRSAEncryption 72:70:fe:06:f6:f5:2a:ad:8b:2a:ff:21:ac:6f:e4:6a:83:d2: 34:6b:1c:1f:75:d0:31:f4:96:62:fc:a5:db:97:8f:a5:30:8e: 33:e3:36:1e:3a:c3:bb:12:da:b8:b0:15:26:07:9a:d2:c4:51: 5a:25:45:07:19:ff:f9:e4:5a:d5:4b:84:86:2f:0f:a9:ad:9e: d2:87:5d:ba:ac:d3:cf:b8:da:85:1c:da:90:48:ce:10:cf:29: 23:1c:5c:29:d5:66:d5:43:0e:e8:1f:f0:96:30:26:b7:69:21: af:16:06:b3:4a:f9:01:67:e9:18:23:27:6a:21:d9:3a:60:0b: d8:b1:0d:5a:aa:ef:46:69:02:8a:69:5c:f6:7d:36:d0:b8:e6: 38:29:59:b4:43:07:e4:1d:b5:6b:5f:26:6e:af:fa:7d:3c:b7: 0e:2b:b3:ae:85:ef:b6:df:75:82:fc:b2:29:bf:3f:15:d0:2e: 83:ff:6e:56:c3:1d:15:0a:0f:d9:3c:62:39:f0:5a:89:d7:22: b3:c5:ce:26:52:ba:5a:8f:a6:69:4d:df:d7:91:34:b3:6d:00: 63:bd:10:78:49:96:35:37:a8:af:ec:9f:55:1a:8c:f2:3f:af: 05:fc:ab:a6:c6:a2:8a:aa:9b:02:af:ed:10:53:96:fe:af:d9: 46:87:fc:69 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJB0gw7Kwrb+Pb6KEzSoyK0licDAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyMVoX DTI2MTExMDA2MDAyMVowMzExMC8GA1UEAxMoM0QyODQ2NkRGNkE3MDc3Q0Q3Q0M0 MjI2MkMwOUFGNTlCODRGOUE5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ3OZ0zLWtIo0mg/Pxo4rqfsRNn45f4ZCQxgzheT1+fYj+v8tWk9iPxMEeTb Q9k3FAqY2cq5YDfs9Ux7nppBKoeDv754prJte/nysCydGS79C3Ul9utk01104qyo TgctPBMUKh2PyOujl03XCcGqLVkcpzn5i57OJH61wRnempUxLuPQMZOrwxIlZQeU XSkzckfEkXw/Czi5q42Ch6tmyD+s0adJBcRAyYekqDcbBF8qrw189TS5CvYLdJqQ 2SC6zej+lO8czMx+3tt+c54cjuz2aWRwFAwa+GxWvV3ksCdcYpOF42mQ2HBlkIpq Ys89zfgcFf/jApHwhCkmNlmxBQkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ9KEZt 9qcHfNfMQiYsCa9ZuE+amzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeegjANBgkqhkiG9w0BAQsFAAOCAQEAcnD+Bvb1Kq2LKv8hrG/k aoPSNGscH3XQMfSWYvyl25ePpTCOM+M2HjrDuxLauLAVJgea0sRRWiVFBxn/+eRa 1UuEhi8Pqa2e0odduqzTz7jahRzakEjOEM8pIxxcKdVm1UMO6B/wljAmt2khrxYG s0r5AWfpGCMnaiHZOmAL2LENWqrvRmkCimlc9n020LjmOClZtEMH5B21a18mbq/6 fTy3DiuzroXvtt91gvyyKb8/FdAug/9uVsMdFQoP2TxiOfBaidcis8XOJlK6Wo+m aU3f15E0s20AY70QeEmWNTeor+yfVRqM8j+vBfyrpsaiiqqbAq/tEFOW/q/ZRof8 aQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:50 2025 by rpki-client