This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa File: AS141638.roa (raw, json) Hash identifier: 754Jq88bBN/MsYo5/zKXCTIkilDu9fxtLyWfM05DEyI= Subject key identifier: 5C:BC:F7:9A:1D:CF:04:27:13:5C:46:D8:1D:60:28:AA:47:33:F4:14 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4BE2931604B0AC91CBE5D23326FD55F74B0684B0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa Signing time: Tue 11 Nov 2025 06:00:03 +0000 ROA not before: Tue 11 Nov 2025 05:55:03 +0000 ROA not after: Tue 10 Nov 2026 06:00:03 +0000 asID: 141638 IP address blocks: 103.162.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e2:93:16:04:b0:ac:91:cb:e5:d2:33:26:fd:55:f7:4b:06:84:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:03 2025 GMT Not After : Nov 10 06:00:03 2026 GMT Subject: CN=5CBCF79A1DCF0427135C46D81D6028AA4733F414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e5:88:0e:bf:8a:80:f8:d5:2e:bb:f5:2e:39: 9a:73:66:82:d4:83:18:9b:21:0b:04:3d:46:cd:19: aa:c1:0c:0c:f4:1d:32:3f:4d:9d:df:fd:6f:4d:b3: 2d:23:55:69:4b:8a:52:90:66:7e:37:93:82:3a:cb: e4:7f:be:9a:93:0e:04:f9:6f:05:1c:64:8b:39:3a: 16:4d:d1:c3:a4:b5:c8:f7:49:33:36:4d:33:7a:e1: 0c:0f:49:89:7f:7a:3d:9b:00:39:c5:a1:a4:f3:ac: a4:70:dc:3a:9e:fb:0b:ee:d9:2c:25:d6:4d:b5:16: 46:61:9c:ce:7e:97:a4:fc:23:a1:0f:5e:88:6c:b6: 09:54:29:e6:23:f7:e5:69:f9:65:9e:0a:53:f2:31: 70:14:b0:cc:89:3f:b4:11:f1:2f:cb:5e:9f:3f:0f: 86:77:8b:c3:72:36:99:11:00:36:24:a5:8a:32:e4: 06:c0:7e:cb:e9:53:c3:14:3f:b5:e4:68:88:6b:65: 77:6d:5a:61:28:19:aa:0a:6c:87:aa:77:59:8b:da: 01:fa:cc:72:36:4d:88:4d:be:1f:88:d0:d7:2b:41: d4:b8:5b:c9:c7:54:a0:5d:7d:41:f7:ed:89:b8:80: ab:16:da:61:de:4b:8c:65:e1:2a:57:74:f3:b5:71: b8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BC:F7:9A:1D:CF:04:27:13:5C:46:D8:1D:60:28:AA:47:33:F4:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.18.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:cb:f7:07:b7:89:dd:de:28:71:87:50:a3:3b:4e:58:61:3c: f7:20:d6:c1:0d:68:a0:b2:51:64:d6:a3:ef:c8:ef:81:3d:0f: 15:3b:b2:ec:a7:ad:27:01:69:74:6c:aa:89:c1:61:89:f0:d3: a8:75:f4:3c:54:a2:82:2f:4c:fa:14:f1:cb:e6:03:88:c6:49: a5:0f:b2:aa:38:d4:5b:79:4d:e6:86:1c:34:60:bc:6c:fa:de: 91:62:ed:76:83:94:a9:d8:0e:9b:70:f2:d3:e4:94:c8:29:eb: 62:cc:33:e2:99:d5:b1:76:d0:3c:49:e7:0a:81:e9:57:4f:23: 67:2d:79:2c:3e:f4:ce:39:b5:40:16:bf:40:b6:ca:b8:d8:41: b0:51:f7:31:52:3c:94:78:b9:c3:a4:ea:66:5d:fb:c6:5f:8d: d7:7d:09:5b:98:e5:2f:e8:69:2a:ba:28:e4:fd:8c:26:a4:c5: 5a:a1:18:d9:61:c3:c9:33:36:50:f9:0d:ce:a9:45:d8:ea:64: 81:c0:c8:8f:17:f1:c8:81:6c:70:fb:a0:fa:76:4a:1a:41:8d: 98:4e:0d:10:9b:f6:f2:1f:b4:e1:f9:5e:ec:e3:e9:71:38:8e: 63:b0:88:d2:18:a2:6a:a2:5b:70:23:81:e5:5c:cf:9e:6c:2b: 59:ab:93:69 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUS+KTFgSwrJHL5dIzJv1V90sGhLAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwM1oX DTI2MTExMDA2MDAwM1owMzExMC8GA1UEAxMoNUNCQ0Y3OUExRENGMDQyNzEzNUM0 NkQ4MUQ2MDI4QUE0NzMzRjQxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOPliA6/ioD41S679S45mnNmgtSDGJshCwQ9Rs0ZqsEMDPQdMj9Nnd/9b02z LSNVaUuKUpBmfjeTgjrL5H++mpMOBPlvBRxkizk6Fk3Rw6S1yPdJMzZNM3rhDA9J iX96PZsAOcWhpPOspHDcOp77C+7ZLCXWTbUWRmGczn6XpPwjoQ9eiGy2CVQp5iP3 5Wn5ZZ4KU/IxcBSwzIk/tBHxL8tenz8PhneLw3I2mREANiSlijLkBsB+y+lTwxQ/ teRoiGtld21aYSgZqgpsh6p3WYvaAfrMcjZNiE2+H4jQ1ytB1LhbycdUoF19Qfft ibiAqxbaYd5LjGXhKld087VxuEMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRcvPea Hc8EJxNcRtgdYCiqRzP0FDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeiEjANBgkqhkiG9w0BAQsFAAOCAQEAXMv3B7eJ3d4ocYdQoztO WGE89yDWwQ1ooLJRZNaj78jvgT0PFTuy7KetJwFpdGyqicFhifDTqHX0PFSigi9M +hTxy+YDiMZJpQ+yqjjUW3lN5oYcNGC8bPrekWLtdoOUqdgOm3Dy0+SUyCnrYswz 4pnVsXbQPEnnCoHpV08jZy15LD70zjm1QBa/QLbKuNhBsFH3MVI8lHi5w6TqZl37 xl+N130JW5jlL+hpKroo5P2MJqTFWqEY2WHDyTM2UPkNzqlF2OpkgcDIjxfxyIFs cPug+nZKGkGNmE4NEJv28h+04fle7OPpcTiOY7CI0hiiaqJbcCOB5VzPnmwrWauT aQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:09 2025 by rpki-client