This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa File: AS141590.roa (raw, json) Hash identifier: a2OZAwrr0SN/fnX3dg6rGBSOT2WVrKupEWBnf2s3K8I= Subject key identifier: EE:D0:31:E8:A1:4C:94:DF:08:73:4A:87:BB:09:81:20:96:41:AF:10 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 293CDEBF5DDD936A4EB45205E38288F377066008 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa Signing time: Tue 11 Nov 2025 06:00:19 +0000 ROA not before: Tue 11 Nov 2025 05:55:19 +0000 ROA not after: Tue 10 Nov 2026 06:00:19 +0000 asID: 141590 IP address blocks: 103.158.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:3c:de:bf:5d:dd:93:6a:4e:b4:52:05:e3:82:88:f3:77:06:60:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:19 2025 GMT Not After : Nov 10 06:00:19 2026 GMT Subject: CN=EED031E8A14C94DF08734A87BB0981209641AF10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b6:25:21:8e:b2:bd:87:d4:8e:51:54:06:83: ad:ef:46:2a:31:f7:0e:30:77:76:b4:d4:5a:1f:db: 4a:45:13:3e:2d:ba:af:0e:b9:a4:cf:3a:c0:8e:96: 34:70:ea:28:f9:7a:65:89:a2:40:b7:ea:e2:a3:61: cc:92:23:b1:e9:b2:a7:3f:7c:5d:b2:c9:75:d7:c8: 2d:6e:99:0b:5b:8b:f4:2c:67:22:f3:28:3e:be:37: 91:1d:0c:fa:be:a9:1b:10:3c:bc:a7:67:20:fd:07: 84:9d:3d:01:d9:9e:b6:cf:42:f5:f1:9a:44:9d:bd: 90:45:5f:54:7b:f3:74:fd:15:dc:d5:0d:e3:ef:9e: 3e:ac:50:5f:19:04:e9:7c:ad:18:59:15:d4:b8:55: 4a:ee:a4:ed:86:48:55:00:a5:52:57:a7:02:12:70: 36:ee:4a:af:12:f9:20:45:1f:a0:49:75:08:52:ae: bb:0f:89:fb:86:76:ec:22:55:26:b3:a1:63:06:67: a1:03:ee:eb:9f:17:1f:80:6a:fe:a0:30:1b:63:78: 15:59:a6:ca:87:3f:c4:68:7e:a5:31:ef:f7:fa:73: cf:68:b9:27:69:e1:00:c1:0d:48:ee:ec:91:ee:0a: a1:f3:18:54:2a:72:a1:e8:29:7c:40:97:ff:2d:ea: 45:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D0:31:E8:A1:4C:94:DF:08:73:4A:87:BB:09:81:20:96:41:AF:10 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.22.0/23 Signature Algorithm: sha256WithRSAEncryption 75:08:e3:f8:c9:9c:ac:b1:dc:1d:7c:7e:10:01:39:37:11:a7: e8:04:0c:eb:c9:2b:42:2c:bf:f8:f8:4f:3a:63:12:5a:93:3d: b3:64:a4:81:3f:3b:88:8b:32:ab:d6:d7:48:f4:35:57:45:c3: d1:98:03:fe:df:2b:d5:48:3f:4f:be:98:7a:bf:e1:ef:42:c4: 8a:67:83:6f:88:eb:f0:69:19:c1:ed:33:f1:59:a5:bc:49:a8: 97:fe:ce:3e:ba:31:a6:ca:b9:86:ef:bd:0a:99:9e:b7:57:6c: a5:15:c0:d4:90:2f:fa:45:da:43:ce:0c:83:87:2d:5b:66:d0: d4:78:c3:fb:9e:be:5a:1f:60:f0:94:ea:8b:92:bc:10:3a:5b: fa:02:b7:3c:be:f5:e9:a0:ff:66:5f:92:ab:12:81:f7:16:96: da:96:ce:71:a8:68:af:6f:d5:e1:bf:83:b7:8a:8a:29:99:5c: 36:18:19:1e:03:41:23:93:a5:da:ad:4e:9d:bd:87:c8:b8:b2: 16:12:22:ca:49:12:62:0e:b4:a1:4e:dd:bf:45:2e:c4:12:f0: 07:d5:04:35:70:b6:07:3e:1b:80:32:4c:ac:a0:a8:2d:f5:f9: a2:1b:02:ca:ad:07:94:60:da:da:0d:ef:3a:71:e0:fc:e6:39: 8e:01:c5:e1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKTzev13dk2pOtFIF44KI83cGYAgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxOVoX DTI2MTExMDA2MDAxOVowMzExMC8GA1UEAxMoRUVEMDMxRThBMTRDOTRERjA4NzM0 QTg3QkIwOTgxMjA5NjQxQUYxMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJW2JSGOsr2H1I5RVAaDre9GKjH3DjB3drTUWh/bSkUTPi26rw65pM86wI6W NHDqKPl6ZYmiQLfq4qNhzJIjsemypz98XbLJddfILW6ZC1uL9CxnIvMoPr43kR0M +r6pGxA8vKdnIP0HhJ09Admets9C9fGaRJ29kEVfVHvzdP0V3NUN4++ePqxQXxkE 6XytGFkV1LhVSu6k7YZIVQClUlenAhJwNu5KrxL5IEUfoEl1CFKuuw+J+4Z27CJV JrOhYwZnoQPu658XH4Bq/qAwG2N4FVmmyoc/xGh+pTHv9/pzz2i5J2nhAMENSO7s ke4KofMYVCpyoegpfECX/y3qRYMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTu0DHo oUyU3whzSoe7CYEglkGvEDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTU5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeeFjANBgkqhkiG9w0BAQsFAAOCAQEAdQjj+MmcrLHcHXx+EAE5 NxGn6AQM68krQiy/+PhPOmMSWpM9s2SkgT87iIsyq9bXSPQ1V0XD0ZgD/t8r1Ug/ T76Yer/h70LEimeDb4jr8GkZwe0z8VmlvEmol/7OProxpsq5hu+9Cpmet1dspRXA 1JAv+kXaQ84Mg4ctW2bQ1HjD+56+Wh9g8JTqi5K8EDpb+gK3PL716aD/Zl+SqxKB 9xaW2pbOcahor2/V4b+Dt4qKKZlcNhgZHgNBI5Ol2q1Onb2HyLiyFhIiykkSYg60 oU7dv0UuxBLwB9UENXC2Bz4bgDJMrKCoLfX5ohsCyq0HlGDa2g3vOnHg/OY5jgHF 4Q== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:39 2025 by rpki-client