This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa File: AS141131.roa (raw, json) Hash identifier: 9Pirh+uBMrC4y5axRVIev5jdf2N8AyZxijsZeMEmQI0= Subject key identifier: ED:F5:78:D0:1C:71:BB:41:2D:1F:29:60:1C:E3:7F:80:01:72:B1:36 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 316A450D36B6C1FAE8472E70EB479EF50EF49E0A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa Signing time: Tue 11 Nov 2025 06:00:11 +0000 ROA not before: Tue 11 Nov 2025 05:55:11 +0000 ROA not after: Tue 10 Nov 2026 06:00:11 +0000 asID: 141131 IP address blocks: 103.158.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:6a:45:0d:36:b6:c1:fa:e8:47:2e:70:eb:47:9e:f5:0e:f4:9e:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:11 2025 GMT Not After : Nov 10 06:00:11 2026 GMT Subject: CN=EDF578D01C71BB412D1F29601CE37F800172B136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:af:85:e4:5a:89:63:83:ee:86:42:8d:f0:20: 84:48:64:64:e1:b8:28:06:e4:72:f0:24:d9:a5:5b: 5f:f0:cc:68:ff:26:e4:e4:f5:eb:05:8a:fe:52:72: 59:62:a0:23:af:e4:9e:a8:15:ca:51:d5:43:f0:41: b3:9a:0f:5a:b7:02:95:a7:8e:ec:c6:bc:06:9a:cf: 03:1e:48:0d:a8:51:49:2e:57:38:1f:de:6a:af:46: d6:0a:3f:f4:b1:e1:54:19:09:9c:11:bc:c4:14:a2: 41:e6:bc:3c:f3:77:a8:ea:8b:1d:32:8e:a4:3e:67: 05:e4:1e:04:88:00:2c:31:02:d9:68:6a:78:99:dc: 10:b8:08:0d:ea:32:0c:45:e4:e3:57:4c:5a:55:5c: 73:7e:53:5e:8a:87:72:55:f3:d5:95:0e:60:2f:af: ca:f4:ac:0b:a6:88:3c:b3:51:19:d8:f7:ca:65:71: ca:0d:fa:0f:7e:df:35:28:a5:d2:50:ee:5b:d1:a5: 2b:fe:9e:63:e4:89:2e:f7:8a:18:46:42:5c:d2:51: 8a:64:2b:cc:12:2d:8d:67:09:b2:dc:6c:39:fc:c3: 46:8b:0e:f6:14:e2:ac:3f:d0:f8:6a:e6:c2:ec:dc: 4d:0a:3d:d6:49:9e:b3:be:ba:49:63:d9:69:31:76: 01:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F5:78:D0:1C:71:BB:41:2D:1F:29:60:1C:E3:7F:80:01:72:B1:36 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.143.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:d3:da:b6:11:62:87:e1:d6:2b:b5:31:65:67:fe:04:51:4f: e3:1e:41:d6:2e:76:96:78:9b:83:d5:3e:c6:cd:58:00:73:03: 71:17:60:11:0f:36:b8:6d:b4:09:6f:57:46:f2:0a:d9:6b:9d: e9:4d:55:2e:62:65:b6:4d:f8:40:f6:ce:31:25:3f:e8:2f:47: 6c:bb:4e:13:1a:be:6a:83:3b:34:31:1e:47:91:7f:75:1c:89: 41:49:ec:59:88:fe:8a:d0:17:df:2d:82:ba:46:a6:63:d1:1e: e5:88:6e:2c:1b:22:1c:a5:cf:df:47:0e:85:65:84:ee:90:90: ac:29:e0:a8:cc:82:75:7f:2f:e5:20:32:dc:40:70:ff:bb:dd: 04:01:cc:70:37:85:6d:b9:e0:c7:8a:99:04:d1:f3:7b:86:2d: b2:cb:50:59:83:fd:68:d9:24:1e:8d:b4:a3:00:1d:f3:82:af: 73:6e:af:55:7f:00:c5:a6:1b:9b:27:80:90:f5:8e:28:7d:12: 77:a9:4c:2d:62:d3:4c:40:72:37:c7:c6:ad:65:b3:09:10:45: b6:26:84:f3:f8:63:0c:3f:54:6f:82:82:89:63:02:2b:af:5c: 39:93:f1:f2:f2:ac:32:e3:3e:fd:c8:9d:57:95:e1:d2:56:3b: 8c:49:6d:50 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMWpFDTa2wfroRy5w60ee9Q70ngowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMVoX DTI2MTExMDA2MDAxMVowMzExMC8GA1UEAxMoRURGNTc4RDAxQzcxQkI0MTJEMUYy OTYwMUNFMzdGODAwMTcyQjEzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOWvheRaiWOD7oZCjfAghEhkZOG4KAbkcvAk2aVbX/DMaP8m5OT16wWK/lJy WWKgI6/knqgVylHVQ/BBs5oPWrcClaeO7Ma8BprPAx5IDahRSS5XOB/eaq9G1go/ 9LHhVBkJnBG8xBSiQea8PPN3qOqLHTKOpD5nBeQeBIgALDEC2WhqeJncELgIDeoy DEXk41dMWlVcc35TXoqHclXz1ZUOYC+vyvSsC6aIPLNRGdj3ymVxyg36D37fNSil 0lDuW9GlK/6eY+SJLveKGEZCXNJRimQrzBItjWcJstxsOfzDRosO9hTirD/Q+Grm wuzcTQo91kmes766SWPZaTF2AQMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTt9XjQ HHG7QS0fKWAc43+AAXKxNjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeejzANBgkqhkiG9w0BAQsFAAOCAQEALtPathFih+HWK7UxZWf+ BFFP4x5B1i52lnibg9U+xs1YAHMDcRdgEQ82uG20CW9XRvIK2Wud6U1VLmJltk34 QPbOMSU/6C9HbLtOExq+aoM7NDEeR5F/dRyJQUnsWYj+itAX3y2CukamY9Ee5Yhu LBsiHKXP30cOhWWE7pCQrCngqMyCdX8v5SAy3EBw/7vdBAHMcDeFbbngx4qZBNHz e4YtsstQWYP9aNkkHo20owAd84Kvc26vVX8AxaYbmyeAkPWOKH0Sd6lMLWLTTEBy N8fGrWWzCRBFtiaE8/hjDD9Ub4KCiWMCK69cOZPx8vKsMuM+/cidV5Xh0lY7jElt UA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:55 2025 by rpki-client