This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141899.roa File: AS141899.roa (raw, json) Hash identifier: KMHvIdeJ3zvN+20w/9wYsJltNIJ3VLOOAokZVfDrank= Subject key identifier: 3F:E1:C7:C1:D7:0B:A4:12:A5:82:34:2A:26:0F:EF:F9:73:6E:2C:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4E9F2A50143DEB4F2C1DF45FE24677493EA30CE6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141899.roa Signing time: Mon 26 Jan 2026 04:00:00 +0000 ROA not before: Mon 26 Jan 2026 03:55:00 +0000 ROA not after: Mon 25 Jan 2027 04:00:00 +0000 asID: 141899 IP address blocks: 103.164.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:9f:2a:50:14:3d:eb:4f:2c:1d:f4:5f:e2:46:77:49:3e:a3:0c:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 26 03:55:00 2026 GMT Not After : Jan 25 04:00:00 2027 GMT Subject: CN=3FE1C7C1D70BA412A582342A260FEFF9736E2C6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:74:0b:0d:a3:3e:c5:f2:f8:15:6a:b3:55:db: 2a:f9:f4:d1:46:7f:ad:9b:43:2d:e7:73:3e:16:4f: 94:a5:58:08:e3:c4:3e:04:6e:19:bb:ab:5b:48:ac: 7d:ff:fe:81:5e:89:39:60:e3:bb:0c:9f:57:e6:6c: db:91:d2:2f:41:67:2f:e9:17:e1:65:8c:36:9b:4b: dd:c4:cf:b5:c5:4f:a7:2c:38:b6:1e:18:5d:cc:20: 8e:be:98:59:de:81:57:a3:87:25:70:1a:ff:32:4d: 41:e3:1b:28:b8:e1:f0:4c:2a:fe:3f:6f:86:f3:d4: d4:14:10:8f:e3:18:e8:80:fd:a1:40:7f:b6:27:d6: de:65:03:49:c4:e6:77:93:6a:24:36:f0:b4:72:b0: 92:7d:40:c0:34:2b:95:6e:14:cf:c1:d9:da:cf:dc: 17:e6:21:eb:42:61:9b:ad:20:5f:23:07:8b:06:e8: f8:ac:ae:f1:b2:a3:51:bb:e2:6e:b7:b2:9d:04:40: cd:a9:14:b2:ce:da:10:0b:6a:d7:24:b7:a1:15:92: 83:21:36:fa:d9:c0:5c:99:00:2a:10:91:46:20:88: 0e:e5:2e:91:94:7e:08:29:25:79:4d:c4:b4:e9:10: a8:a7:89:8c:4e:1b:a5:2e:d8:f4:f3:61:14:1d:20: fd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E1:C7:C1:D7:0B:A4:12:A5:82:34:2A:26:0F:EF:F9:73:6E:2C:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141899.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.20.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:41:d8:ba:d6:89:52:65:2c:4c:93:c0:d0:e8:d9:f4:b9:c1: 40:51:37:79:52:11:30:b1:c9:46:a2:f2:7d:13:59:c3:95:09: c2:83:91:cf:50:59:29:ff:be:d0:a5:5d:65:06:6b:25:2e:45: 75:3c:75:2f:b0:ee:1f:6f:cb:68:5b:15:86:05:86:71:d5:b0: 2d:ce:b6:f8:a9:00:8b:88:2c:2a:5b:9c:2c:6f:0c:f5:1c:c6: fb:5c:bc:f2:7e:c6:52:ff:a3:0b:1c:fa:fd:68:94:e0:0d:98: 34:1c:41:ab:ca:67:54:da:3a:d2:a7:d1:d2:a1:93:57:5f:14: 15:bd:53:00:60:84:7f:6e:5b:65:02:b5:00:16:ea:ac:41:fc: fc:9d:2f:e0:dd:90:bf:cb:ef:61:70:08:5f:ad:6c:71:98:72: 4c:7d:83:85:1a:d8:4d:53:58:32:15:bf:90:e2:9e:36:f0:bb: fc:ec:9c:d2:ae:50:0d:1c:69:e1:b7:de:1a:cc:bb:27:4e:eb: c0:e3:df:25:3a:73:b5:eb:63:fb:27:01:a8:ce:5d:48:07:2c: a4:e7:33:cc:fe:94:1a:76:4c:4f:ad:52:06:0c:7b:79:ab:f0: a5:07:23:6e:f5:c5:17:85:31:45:9d:7b:f1:93:0e:9c:0a:ff: c5:37:cf:f8 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTp8qUBQ9608sHfRf4kZ3ST6jDOYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyNjAzNTUwMFoX DTI3MDEyNTA0MDAwMFowMzExMC8GA1UEAxMoM0ZFMUM3QzFENzBCQTQxMkE1ODIz NDJBMjYwRkVGRjk3MzZFMkM2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKh0Cw2jPsXy+BVqs1XbKvn00UZ/rZtDLedzPhZPlKVYCOPEPgRuGburW0is ff/+gV6JOWDjuwyfV+Zs25HSL0FnL+kX4WWMNptL3cTPtcVPpyw4th4YXcwgjr6Y Wd6BV6OHJXAa/zJNQeMbKLjh8Ewq/j9vhvPU1BQQj+MY6ID9oUB/tifW3mUDScTm d5NqJDbwtHKwkn1AwDQrlW4Uz8HZ2s/cF+Yh60Jhm60gXyMHiwbo+Kyu8bKjUbvi breynQRAzakUss7aEAtq1yS3oRWSgyE2+tnAXJkAKhCRRiCIDuUukZR+CCkleU3E tOkQqKeJjE4bpS7Y9PNhFB0g/UsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ/4cfB 1wukEqWCNComD+/5c24sazAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTg5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWekFDANBgkqhkiG9w0BAQsFAAOCAQEAa0HYutaJUmUsTJPA0OjZ 9LnBQFE3eVIRMLHJRqLyfRNZw5UJwoORz1BZKf++0KVdZQZrJS5FdTx1L7DuH2/L aFsVhgWGcdWwLc62+KkAi4gsKlucLG8M9RzG+1y88n7GUv+jCxz6/WiU4A2YNBxB q8pnVNo60qfR0qGTV18UFb1TAGCEf25bZQK1ABbqrEH8/J0v4N2Qv8vvYXAIX61s cZhyTH2DhRrYTVNYMhW/kOKeNvC7/Oyc0q5QDRxp4bfeGsy7J07rwOPfJTpztetj +ycBqM5dSAcspOczzP6UGnZMT61SBgx7eavwpQcjbvXFF4UxRZ178ZMOnAr/xTfP +A== -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:33 2026 by rpki-client