This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141896.roa File: AS141896.roa (raw, json) Hash identifier: viCsilYvgz4Qjbl5B2pY6NI5UacTKeZUOqkjEtFbuVM= Subject key identifier: 9E:3D:E9:16:87:DD:64:EC:EC:AA:5B:56:85:91:25:AE:44:90:A9:E8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7F726628D98160A529DE5A8F6F38870BBA9559A1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141896.roa Signing time: Tue 11 Nov 2025 03:00:00 +0000 ROA not before: Tue 11 Nov 2025 02:55:00 +0000 ROA not after: Tue 10 Nov 2026 03:00:00 +0000 asID: 141896 IP address blocks: 103.163.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:72:66:28:d9:81:60:a5:29:de:5a:8f:6f:38:87:0b:ba:95:59:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 02:55:00 2025 GMT Not After : Nov 10 03:00:00 2026 GMT Subject: CN=9E3DE91687DD64ECECAA5B56859125AE4490A9E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:21:20:11:c5:26:3f:89:01:35:6f:19:a0:52: 5b:f4:2b:3b:70:02:23:e1:e8:1d:d4:7b:bf:5e:99: 67:c0:f7:b3:e9:2a:59:be:a3:ee:94:2b:d7:fc:d1: 58:b1:ae:54:9d:f4:e4:cf:df:81:41:45:b2:23:b9: 5a:ec:3f:a4:07:45:f4:61:28:9d:cb:ae:b1:ec:26: 6a:1f:80:3a:da:f1:11:eb:18:88:e0:68:5a:45:45: b0:c7:5b:6f:84:fe:a5:d3:92:87:dc:66:f2:d6:0a: c4:99:c0:ac:3c:89:77:5c:7a:44:4e:bf:82:52:eb: 45:99:ee:5e:fb:22:f7:c9:f3:5e:09:1e:eb:33:fb: 9c:97:c6:46:8e:b5:da:1c:7e:82:00:b4:66:69:77: 4e:94:40:82:c6:45:04:cc:f8:09:3b:f6:23:2c:94: 2e:ad:b8:e2:1b:d5:07:34:79:c1:8c:9f:15:cb:fe: 53:ae:dc:f1:9d:2e:bc:9e:6c:d0:dc:3e:cd:b6:7d: de:73:0d:ff:05:0d:0f:8d:34:6b:a9:4f:52:02:61: d9:be:27:26:e9:64:b2:98:08:12:9b:1a:04:28:d8: 93:64:62:b9:a2:de:1d:b6:3d:2f:d9:54:2d:9e:24: 80:2d:77:55:d0:5b:48:f2:a9:1b:07:36:69:91:d6: e9:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3D:E9:16:87:DD:64:EC:EC:AA:5B:56:85:91:25:AE:44:90:A9:E8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141896.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.226.0/23 Signature Algorithm: sha256WithRSAEncryption 98:b3:2c:4b:1a:b0:dd:bb:d9:da:52:c3:e7:01:10:bd:70:df: d3:4d:b4:e5:ee:39:d7:f6:30:c8:da:69:64:9e:2b:f3:ce:10: 7e:06:59:ac:19:96:0d:3e:e6:33:81:1e:b1:d6:24:25:f3:41: 3f:17:05:e6:5e:2a:8d:3b:b5:86:81:52:e2:c6:6e:04:07:e2: 92:28:c4:79:b1:9b:07:21:52:ea:7e:9a:2c:e2:8a:85:a7:c0: fa:2a:7f:70:63:ac:e6:8d:df:0f:1d:3f:ae:c4:44:c5:cd:54: fa:26:a9:4c:07:f5:95:3b:84:42:4b:6a:7d:f4:f6:33:2f:97: ef:3a:c7:b4:4d:88:fd:27:53:52:97:a1:86:48:be:1c:2f:ec: d3:f0:72:83:e0:1e:bf:83:df:49:51:ab:ba:a4:2f:28:d4:71: 04:d0:ae:5c:15:df:ca:15:c0:97:7f:96:85:ba:b2:2d:52:5b: 93:51:4a:2e:38:74:ba:e4:01:eb:25:d8:22:74:2a:e9:06:c9: f8:37:68:68:56:92:36:21:7c:73:98:0c:22:20:ea:f4:92:b5: 05:44:a7:32:23:63:fe:23:11:2c:e3:f6:e5:6d:f1:39:ad:4d: ed:a0:c5:52:f9:1a:68:d1:e7:4c:44:28:ba:7f:2d:a1:b1:25: a0:3c:b6:5b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUf3JmKNmBYKUp3lqPbziHC7qVWaEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTAyNTUwMFoX DTI2MTExMDAzMDAwMFowMzExMC8GA1UEAxMoOUUzREU5MTY4N0RENjRFQ0VDQUE1 QjU2ODU5MTI1QUU0NDkwQTlFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALEhIBHFJj+JATVvGaBSW/QrO3ACI+HoHdR7v16ZZ8D3s+kqWb6j7pQr1/zR WLGuVJ305M/fgUFFsiO5Wuw/pAdF9GEoncuusewmah+AOtrxEesYiOBoWkVFsMdb b4T+pdOSh9xm8tYKxJnArDyJd1x6RE6/glLrRZnuXvsi98nzXgke6zP7nJfGRo61 2hx+ggC0Zml3TpRAgsZFBMz4CTv2IyyULq244hvVBzR5wYyfFcv+U67c8Z0uvJ5s 0Nw+zbZ93nMN/wUND400a6lPUgJh2b4nJulkspgIEpsaBCjYk2RiuaLeHbY9L9lU LZ4kgC13VdBbSPKpGwc2aZHW6T8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSePekW h91k7OyqW1aFkSWuRJCp6DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWej4jANBgkqhkiG9w0BAQsFAAOCAQEAmLMsSxqw3bvZ2lLD5wEQ vXDf00205e451/YwyNppZJ4r884QfgZZrBmWDT7mM4EesdYkJfNBPxcF5l4qjTu1 hoFS4sZuBAfikijEebGbByFS6n6aLOKKhafA+ip/cGOs5o3fDx0/rsRExc1U+iap TAf1lTuEQktqffT2My+X7zrHtE2I/SdTUpehhki+HC/s0/Byg+Aev4PfSVGruqQv KNRxBNCuXBXfyhXAl3+WhbqyLVJbk1FKLjh0uuQB6yXYInQq6QbJ+DdoaFaSNiF8 c5gMIiDq9JK1BUSnMiNj/iMRLOP25W3xOa1N7aDFUvkaaNHnTEQoun8tobEloDy2 Ww== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:28 2025 by rpki-client