This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141628.roa File: AS141628.roa (raw, json) Hash identifier: bYWfSwu5tqp4VcD/bNNaHVnBri+003DNiTg2H4x3QQ4= Subject key identifier: A7:4C:A0:99:84:F7:A9:50:79:C0:82:3F:A7:39:D1:0F:A5:87:53:31 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 31C73BFF8DA87395D1802A4BD1309309610F45C5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141628.roa Signing time: Thu 27 Nov 2025 02:48:25 +0000 ROA not before: Thu 27 Nov 2025 02:43:25 +0000 ROA not after: Thu 26 Nov 2026 02:48:25 +0000 asID: 141628 IP address blocks: 2401:9a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:c7:3b:ff:8d:a8:73:95:d1:80:2a:4b:d1:30:93:09:61:0f:45:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 27 02:43:25 2025 GMT Not After : Nov 26 02:48:25 2026 GMT Subject: CN=A74CA09984F7A95079C0823FA739D10FA5875331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9b:78:4e:c4:0d:6f:b6:ca:04:ce:66:f2:1e: 71:35:4a:84:42:ea:b6:d7:83:5c:2b:88:13:e7:a1: 57:1d:e9:b4:99:75:a5:a6:42:00:0b:09:c2:02:97: 23:62:e6:5a:62:dc:0a:e3:b5:69:e5:a3:ea:a9:8c: b6:61:87:47:57:52:28:5e:0e:c8:9c:e5:d0:0f:ad: e1:36:5f:56:42:18:d9:89:dd:df:0b:0d:f4:9e:c9: c8:9c:5f:21:9e:4c:66:2a:2c:20:48:ae:9c:31:49: bc:a9:ff:92:87:51:4b:ef:82:d8:98:b9:86:87:6b: a8:b4:dd:2d:26:c6:45:10:3e:66:08:2b:75:64:30: bb:22:f7:16:c4:a5:4f:0a:bb:17:ad:6f:56:36:29: 50:de:28:5b:a1:4e:27:aa:62:38:a8:7b:22:3a:7f: 7b:ef:32:6e:87:26:9a:3b:b9:71:61:b0:b6:f2:b4: 9c:b2:a7:94:bb:67:1a:13:37:ef:26:f1:07:38:fa: d4:05:e2:bd:30:9c:b9:16:3f:fb:e3:c9:54:7b:2d: 97:d1:9c:3a:bb:76:67:40:0e:07:4b:8a:bf:f2:4e: 2a:94:47:d9:51:d2:93:7c:91:f6:77:9a:ae:bd:02: 87:db:ef:e2:b5:d5:67:30:02:12:e3:46:1d:27:4b: f7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:4C:A0:99:84:F7:A9:50:79:C0:82:3F:A7:39:D1:0F:A5:87:53:31 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141628.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:9a0::/32 Signature Algorithm: sha256WithRSAEncryption 74:b6:04:7c:e0:3d:ae:7d:e8:69:2b:d4:c1:f5:39:01:e0:d7: 82:7d:05:17:df:d0:aa:12:d0:44:69:f6:13:4f:3a:a8:83:12: 73:f6:a6:ff:56:7a:a4:bf:26:d7:29:d1:be:a0:a5:37:fb:44: 47:86:6c:5e:ba:06:8e:38:b1:92:c1:6b:c9:87:e2:73:d5:f5: 46:f3:6d:0d:0b:88:72:b2:a4:80:ae:7a:59:68:98:66:63:7f: aa:0d:34:89:4a:a7:80:be:9b:81:95:05:89:f9:79:5a:4f:bf: b1:08:01:eb:90:3d:fe:0a:38:bf:11:52:ca:dc:6f:51:7e:02: 3d:d0:07:f9:9f:87:5f:49:ae:15:c6:d1:c0:58:32:90:8b:11: 0a:3a:34:ee:40:2d:65:5f:57:0a:31:08:e1:c1:f0:e5:74:93: e8:b9:61:7d:9e:e0:d8:29:1c:ed:6b:29:15:f6:30:d9:7b:ef: fe:b3:86:08:14:79:79:2f:f9:97:9a:2d:6e:32:d6:52:fa:a1: 42:99:20:19:e5:f9:20:16:ec:09:5d:fa:e5:e4:91:d7:40:a2: c0:48:65:37:03:50:fd:c1:10:77:46:4f:c9:1b:d1:c3:85:80: 1c:2b:37:ea:e3:be:7e:73:b3:09:e5:c0:41:21:ac:d0:fe:c2: 26:be:ca:87 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUMcc7/42oc5XRgCpL0TCTCWEPRcUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNzAyNDMyNVoX DTI2MTEyNjAyNDgyNVowMzExMC8GA1UEAxMoQTc0Q0EwOTk4NEY3QTk1MDc5QzA4 MjNGQTczOUQxMEZBNTg3NTMzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2beE7EDW+2ygTOZvIecTVKhELqtteDXCuIE+ehVx3ptJl1paZCAAsJwgKX I2LmWmLcCuO1aeWj6qmMtmGHR1dSKF4OyJzl0A+t4TZfVkIY2Ynd3wsN9J7JyJxf IZ5MZiosIEiunDFJvKn/kodRS++C2Ji5hodrqLTdLSbGRRA+ZggrdWQwuyL3FsSl Twq7F61vVjYpUN4oW6FOJ6piOKh7Ijp/e+8ybocmmju5cWGwtvK0nLKnlLtnGhM3 7ybxBzj61AXivTCcuRY/++PJVHstl9GcOrt2Z0AOB0uKv/JOKpRH2VHSk3yR9nea rr0Ch9vv4rXVZzACEuNGHSdL90sCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSnTKCZ hPepUHnAgj+nOdEPpYdTMTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBCaAwDQYJKoZIhvcNAQELBQADggEBAHS2BHzgPa596Gkr1MH1 OQHg14J9BRff0KoS0ERp9hNPOqiDEnP2pv9WeqS/Jtcp0b6gpTf7REeGbF66Bo44 sZLBa8mH4nPV9UbzbQ0LiHKypICuellomGZjf6oNNIlKp4C+m4GVBYn5eVpPv7EI AeuQPf4KOL8RUsrcb1F+Aj3QB/mfh19JrhXG0cBYMpCLEQo6NO5ALWVfVwoxCOHB 8OV0k+i5YX2e4NgpHO1rKRX2MNl77/6zhggUeXkv+ZeaLW4y1lL6oUKZIBnl+SAW 7Ald+uXkkddAosBIZTcDUP3BEHdGT8kb0cOFgBwrN+rjvn5zswnlwEEhrND+wia+ yoc= -----END CERTIFICATE-----Generated at Wed Dec 3 14:54:50 2025 by rpki-client