This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141902.roa File: AS141902.roa (raw, json) Hash identifier: Ue2oNvtVmEopeQTtUvd1ospe+S6XUY6trZnVvgy+rmE= Subject key identifier: 17:D9:02:8C:3B:83:F7:A8:CE:9D:29:97:EB:CC:A8:39:55:CA:9A:A9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B47661E521F7905E939809796DF0352729CD7BC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141902.roa Signing time: Tue 11 Nov 2025 06:00:18 +0000 ROA not before: Tue 11 Nov 2025 05:55:18 +0000 ROA not after: Tue 10 Nov 2026 06:00:18 +0000 asID: 141902 IP address blocks: 103.163.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:47:66:1e:52:1f:79:05:e9:39:80:97:96:df:03:52:72:9c:d7:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:18 2025 GMT Not After : Nov 10 06:00:18 2026 GMT Subject: CN=17D9028C3B83F7A8CE9D2997EBCCA83955CA9AA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:98:54:91:cb:3a:83:fd:0a:5a:28:a0:c9:0a: 85:55:79:40:7d:b8:38:a6:03:dd:3d:fc:79:63:8b: 26:0e:ed:1f:31:32:71:04:5d:63:21:ca:86:5d:c6: 99:e1:57:b7:03:c7:32:08:4c:7b:9a:c4:dc:a4:97: d0:11:6b:ac:60:27:2f:e6:58:9b:77:14:ee:9d:18: 2a:aa:fa:52:83:50:7f:be:50:c6:87:3f:5b:37:a1: c8:0f:cb:2d:f9:ca:33:af:fe:4d:33:b0:29:de:31: bf:98:de:ec:43:24:84:56:38:b9:69:1b:8a:f3:70: 52:05:c0:7e:bf:bd:9e:a1:a6:4d:ca:d4:d9:28:bc: 87:7f:57:5d:11:24:58:db:91:35:7f:ce:84:d7:72: f2:b8:03:e1:c6:41:8f:97:e4:e8:be:34:77:ef:c8: c8:0e:f6:f5:7f:f7:8f:4b:97:b7:95:2d:65:30:25: 61:e6:2d:f6:47:f0:9e:7c:55:eb:34:ac:54:f4:df: 12:3a:c8:33:df:b2:63:18:8e:e5:18:ba:a7:62:eb: 00:60:fe:fd:cb:42:bb:25:0d:77:31:f9:e2:ae:18: 7d:48:4d:7c:24:00:cc:9a:aa:5e:ad:24:66:e6:7a: 43:25:29:71:a8:7b:3b:8a:f9:02:72:26:8e:bc:f8: 15:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D9:02:8C:3B:83:F7:A8:CE:9D:29:97:EB:CC:A8:39:55:CA:9A:A9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141902.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.134.0/23 Signature Algorithm: sha256WithRSAEncryption 08:4e:87:4c:df:e6:01:c7:ca:bd:6e:09:dc:50:e1:10:93:36: de:45:e1:97:2f:23:37:52:41:85:66:eb:25:8e:89:92:ce:16: d7:f7:01:bd:67:e2:3b:aa:a3:83:97:c9:5f:48:0f:8d:96:a9: e0:e5:b8:cd:ec:77:8f:36:e6:79:bd:1f:e6:25:ce:9f:84:b6: de:fa:91:8c:16:a1:8d:79:36:45:07:e7:bc:19:ec:70:c8:e7: 53:0f:71:b7:48:c2:11:d3:95:53:57:b3:43:8a:63:85:25:80: 83:e5:cb:45:8d:ee:f4:95:2e:ba:fb:8c:8f:54:4f:16:c6:dd: 15:e3:47:ec:16:9d:c4:47:db:77:82:98:b4:32:f9:d2:81:03: d1:b6:de:12:6d:ae:8b:1f:63:70:3a:2d:d1:ea:37:89:8f:58: 32:e4:5c:40:e5:c4:21:31:ce:8a:55:05:ff:7b:62:3b:b8:bf: 3b:9f:cd:09:44:e8:d9:db:ca:5f:b7:b6:86:ba:fd:64:58:9b: 04:bb:73:55:bf:09:54:15:87:68:4c:79:89:07:2d:0b:43:62: 35:46:b9:3d:8a:e8:3a:97:95:0b:f7:3e:82:2c:f7:60:85:bc: d7:36:b7:2d:d8:ea:eb:de:ac:58:12:01:88:a9:bf:50:c4:23: d3:f4:3b:30 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUS0dmHlIfeQXpOYCXlt8DUnKc17wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxOFoX DTI2MTExMDA2MDAxOFowMzExMC8GA1UEAxMoMTdEOTAyOEMzQjgzRjdBOENFOUQy OTk3RUJDQ0E4Mzk1NUNBOUFBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALiYVJHLOoP9CloooMkKhVV5QH24OKYD3T38eWOLJg7tHzEycQRdYyHKhl3G meFXtwPHMghMe5rE3KSX0BFrrGAnL+ZYm3cU7p0YKqr6UoNQf75Qxoc/WzehyA/L LfnKM6/+TTOwKd4xv5je7EMkhFY4uWkbivNwUgXAfr+9nqGmTcrU2Si8h39XXREk WNuRNX/OhNdy8rgD4cZBj5fk6L40d+/IyA729X/3j0uXt5UtZTAlYeYt9kfwnnxV 6zSsVPTfEjrIM9+yYxiO5Ri6p2LrAGD+/ctCuyUNdzH54q4YfUhNfCQAzJqqXq0k ZuZ6QyUpcah7O4r5AnImjrz4FS0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQX2QKM O4P3qM6dKZfrzKg5VcqaqTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWejhjANBgkqhkiG9w0BAQsFAAOCAQEACE6HTN/mAcfKvW4J3FDh EJM23kXhly8jN1JBhWbrJY6Jks4W1/cBvWfiO6qjg5fJX0gPjZap4OW4zex3jzbm eb0f5iXOn4S23vqRjBahjXk2RQfnvBnscMjnUw9xt0jCEdOVU1ezQ4pjhSWAg+XL RY3u9JUuuvuMj1RPFsbdFeNH7BadxEfbd4KYtDL50oED0bbeEm2uix9jcDot0eo3 iY9YMuRcQOXEITHOilUF/3tiO7i/O5/NCUTo2dvKX7e2hrr9ZFibBLtzVb8JVBWH aEx5iQctC0NiNUa5PYroOpeVC/c+giz3YIW81za3Ldjq696sWBIBiKm/UMQj0/Q7 MA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:41 2025 by rpki-client