This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa File: AS141668.roa (raw, json) Hash identifier: 7KLX43LfiAjav/ru1r0ya/qTJ4jpUSezOBBk4I26En0= Subject key identifier: 1B:73:E9:13:47:8D:7C:2E:59:7B:CE:B0:6D:11:C9:62:4C:CD:56:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 27268E00E5B29B6376BE13E49166E119E540A58F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa Signing time: Tue 11 Nov 2025 06:00:26 +0000 ROA not before: Tue 11 Nov 2025 05:55:26 +0000 ROA not after: Tue 10 Nov 2026 06:00:26 +0000 asID: 141668 IP address blocks: 103.162.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:26:8e:00:e5:b2:9b:63:76:be:13:e4:91:66:e1:19:e5:40:a5:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:26 2025 GMT Not After : Nov 10 06:00:26 2026 GMT Subject: CN=1B73E913478D7C2E597BCEB06D11C9624CCD56FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:01:80:c6:9d:39:6a:da:19:06:b1:c1:81:bd: a4:50:fa:ce:c9:16:81:42:07:da:a0:c8:e4:d6:06: 6f:37:29:d6:9e:f2:07:82:b1:67:ae:be:76:68:44: 05:1d:29:de:3f:84:53:04:e3:02:4b:ca:75:03:4c: d0:29:0b:75:1d:74:b9:f1:9c:67:45:22:e4:eb:5b: 31:9e:c6:24:e8:53:10:ec:34:c6:fe:db:18:82:7b: 4e:f4:b7:e0:bc:d0:d0:9b:3c:87:e5:e5:20:72:09: e0:76:31:12:5f:71:ba:98:1a:20:cc:2c:2c:26:8e: b3:63:35:ad:e7:6f:19:3f:40:93:3d:2f:e8:dc:62: c6:f5:d8:64:89:ae:b6:33:f1:da:b4:43:d7:e5:64: 71:cd:1f:76:4f:73:41:7c:bc:84:ef:06:00:d8:b0: ab:d6:a4:09:c3:72:96:0d:da:bc:06:72:54:3f:10: 56:c6:a4:65:5f:f2:b0:b6:1e:36:bd:26:ed:23:5d: 69:2e:4c:c0:47:f5:cb:30:83:06:a2:9e:91:67:5a: 4d:52:58:b2:1a:b9:86:29:c3:9d:e6:af:ab:a7:2c: bf:df:e3:3e:05:8b:98:14:27:e3:13:e8:ea:67:dc: 53:fb:7c:bc:77:fa:59:0e:06:ee:15:b7:6c:be:11: ff:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:73:E9:13:47:8D:7C:2E:59:7B:CE:B0:6D:11:C9:62:4C:CD:56:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141668.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.141.0/24 Signature Algorithm: sha256WithRSAEncryption 08:83:47:ea:17:18:fe:b6:8b:5e:9a:37:3e:3e:34:1e:fa:5d: 24:f4:2d:af:6d:d9:f1:60:a4:0e:bc:d7:e3:c9:07:ee:49:81: 12:be:71:97:73:75:fe:c9:2f:f0:5f:a3:36:13:ec:f5:8c:3b: 46:04:a9:a2:cc:a6:66:cc:24:57:2c:3d:dc:a0:be:2d:76:67: 48:10:b1:1f:12:f0:ac:e7:dc:8a:3d:b1:19:e3:fc:c6:e5:9e: 0c:4f:cc:12:8a:83:0e:55:25:d0:cf:0a:5a:b2:4f:d6:78:27: 3c:19:9f:c9:b2:f5:bc:f2:3a:0c:9f:b6:75:46:95:f6:46:a1: 9b:4e:73:88:d7:5d:40:47:1c:09:fb:08:bf:a4:fe:b1:41:7d: c8:60:df:1f:3b:f8:8c:29:0c:52:4f:0a:58:f9:70:5c:15:f5: 30:53:c0:e8:f4:e5:06:1e:e8:54:8b:fc:1b:82:37:17:c0:c5: 29:ff:63:a7:c5:97:5b:6d:7f:5d:93:0a:94:25:4e:77:8e:1b: d9:04:bf:d0:da:a0:c4:cd:77:89:40:0c:71:c9:5c:ad:ef:c9: bf:c4:eb:e1:90:12:c4:fe:d5:66:11:3d:16:dd:7f:63:c9:f6: e8:2c:f0:0c:38:24:1f:1a:c4:ac:16:fb:6e:e2:93:f7:a6:26: 73:86:91:58 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJyaOAOWym2N2vhPkkWbhGeVApY8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyNloX DTI2MTExMDA2MDAyNlowMzExMC8GA1UEAxMoMUI3M0U5MTM0NzhEN0MyRTU5N0JD RUIwNkQxMUM5NjI0Q0NENTZGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOUBgMadOWraGQaxwYG9pFD6zskWgUIH2qDI5NYGbzcp1p7yB4KxZ66+dmhE BR0p3j+EUwTjAkvKdQNM0CkLdR10ufGcZ0Ui5OtbMZ7GJOhTEOw0xv7bGIJ7TvS3 4LzQ0Js8h+XlIHIJ4HYxEl9xupgaIMwsLCaOs2M1redvGT9Akz0v6NxixvXYZImu tjPx2rRD1+Vkcc0fdk9zQXy8hO8GANiwq9akCcNylg3avAZyVD8QVsakZV/ysLYe Nr0m7SNdaS5MwEf1yzCDBqKekWdaTVJYshq5hinDneavq6csv9/jPgWLmBQn4xPo 6mfcU/t8vHf6WQ4G7hW3bL4R/9ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQbc+kT R418Lll7zrBtEcliTM1W/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTY2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeijTANBgkqhkiG9w0BAQsFAAOCAQEACINH6hcY/raLXpo3Pj40 HvpdJPQtr23Z8WCkDrzX48kH7kmBEr5xl3N1/skv8F+jNhPs9Yw7RgSposymZswk Vyw93KC+LXZnSBCxHxLwrOfcij2xGeP8xuWeDE/MEoqDDlUl0M8KWrJP1ngnPBmf ybL1vPI6DJ+2dUaV9kahm05ziNddQEccCfsIv6T+sUF9yGDfHzv4jCkMUk8KWPlw XBX1MFPA6PTlBh7oVIv8G4I3F8DFKf9jp8WXW21/XZMKlCVOd44b2QS/0NqgxM13 iUAMcclcre/Jv8Tr4ZASxP7VZhE9Ft1/Y8n26CzwDDgkHxrErBb7buKT96Ymc4aR WA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:06 2025 by rpki-client