This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141904.roa File: AS141904.roa (raw, json) Hash identifier: KvLvLBrDltU3AVnwvIgxWyS8wKjPs3I+zHQHQqBHM2A= Subject key identifier: B4:E8:E1:15:18:F8:C3:99:F9:FF:62:AA:76:17:63:1F:5A:D7:7B:DE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6867BDAECBAD086478D90C66E52E9D5C6C6BE403 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141904.roa Signing time: Tue 11 Nov 2025 06:00:11 +0000 ROA not before: Tue 11 Nov 2025 05:55:11 +0000 ROA not after: Tue 10 Nov 2026 06:00:11 +0000 asID: 141904 IP address blocks: 103.164.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:67:bd:ae:cb:ad:08:64:78:d9:0c:66:e5:2e:9d:5c:6c:6b:e4:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:11 2025 GMT Not After : Nov 10 06:00:11 2026 GMT Subject: CN=B4E8E11518F8C399F9FF62AA7617631F5AD77BDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:b7:48:d6:9c:37:11:10:c9:03:4b:aa:d1: fc:82:50:96:92:63:66:c1:fd:bb:1d:16:5f:4a:2a: 2d:65:7f:a4:4f:13:88:98:15:f2:59:19:42:c5:bd: fd:10:0b:eb:16:47:57:46:3c:9f:ef:90:40:9c:c2: f8:ac:58:dc:66:30:26:68:35:37:7a:d8:18:0d:54: bb:04:81:b3:23:f7:48:29:c1:2d:dd:20:52:85:1b: 6c:15:85:bb:d4:59:b0:6f:e7:c6:1c:16:4d:06:05: b8:d7:1d:7a:62:1b:87:d5:ef:3d:78:67:c3:8d:c3: fc:dc:dd:bb:54:0d:40:b8:63:b1:73:fd:60:37:c4: ec:0c:90:df:25:68:04:20:45:d6:2f:1d:5a:84:9e: 50:5e:29:21:b0:f5:31:ea:ed:ad:c9:31:e3:53:40: bb:9b:02:90:93:e2:1b:bb:ef:c9:3f:ab:90:94:a6: 91:ae:09:ad:df:55:1f:40:ce:45:d7:18:90:5f:e2: de:7a:65:d9:85:8f:da:39:57:9e:2f:b0:4b:c2:1b: 92:cf:ee:5d:af:9d:b0:71:64:92:e3:a7:27:77:ef: 2f:81:2f:4e:b7:d5:7c:24:0a:13:d9:68:40:e7:af: 32:24:f1:0b:80:f9:2c:cb:a5:fc:4d:b3:f1:c5:79: ad:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E8:E1:15:18:F8:C3:99:F9:FF:62:AA:76:17:63:1F:5A:D7:7B:DE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141904.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.68.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:db:ab:97:d8:d5:e9:02:ac:58:2f:e1:d1:ee:30:84:a3:91: 7d:ae:eb:ab:24:7e:33:8f:e2:cf:74:29:07:f6:52:2d:9a:ec: 5a:65:7d:2c:8e:95:61:e1:be:85:18:43:64:f1:52:bf:b3:fe: 1f:ef:d1:1d:2f:cb:48:2e:dd:d4:c9:41:96:95:33:0b:f8:6f: 0c:29:fb:8f:04:d9:de:ec:a0:c8:cb:01:1b:f5:57:e1:ad:02: 44:89:75:26:a4:e7:84:1d:7e:b4:6a:f8:0c:11:fe:8f:6a:2e: 14:99:82:3d:51:29:c1:5d:8b:96:7d:56:ed:51:0b:65:c1:d7: 47:f5:00:d9:8f:1c:1a:80:ed:f2:52:1f:98:83:62:31:69:9c: 0e:40:9c:ce:3b:91:08:b4:e5:9e:69:1c:d9:82:d7:92:80:73: d2:09:62:e5:15:24:ca:22:86:20:27:e4:d0:45:88:21:9f:45: 5f:04:a2:ff:c5:c8:b2:f0:95:88:43:a6:eb:cf:d1:ec:a6:c9: d5:22:19:a7:05:30:d7:2b:2c:62:ce:f0:e9:a1:e2:96:31:56: b6:33:43:86:ee:47:75:2b:97:c3:10:6e:01:cc:0f:2a:09:5e: b6:df:f8:61:21:47:6d:0b:50:03:8e:86:5c:d8:f8:9f:bd:d6: d2:60:28:b6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUaGe9rsutCGR42Qxm5S6dXGxr5AMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMVoX DTI2MTExMDA2MDAxMVowMzExMC8GA1UEAxMoQjRFOEUxMTUxOEY4QzM5OUY5RkY2 MkFBNzYxNzYzMUY1QUQ3N0JERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKeot0jWnDcREMkDS6rR/IJQlpJjZsH9ux0WX0oqLWV/pE8TiJgV8lkZQsW9 /RAL6xZHV0Y8n++QQJzC+KxY3GYwJmg1N3rYGA1UuwSBsyP3SCnBLd0gUoUbbBWF u9RZsG/nxhwWTQYFuNcdemIbh9XvPXhnw43D/Nzdu1QNQLhjsXP9YDfE7AyQ3yVo BCBF1i8dWoSeUF4pIbD1Mertrckx41NAu5sCkJPiG7vvyT+rkJSmka4Jrd9VH0DO RdcYkF/i3npl2YWP2jlXni+wS8Ibks/uXa+dsHFkkuOnJ3fvL4EvTrfVfCQKE9lo QOevMiTxC4D5LMul/E2z8cV5rc8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS06OEV GPjDmfn/Yqp2F2MfWtd73jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWekRDANBgkqhkiG9w0BAQsFAAOCAQEAP9url9jV6QKsWC/h0e4w hKORfa7rqyR+M4/iz3QpB/ZSLZrsWmV9LI6VYeG+hRhDZPFSv7P+H+/RHS/LSC7d 1MlBlpUzC/hvDCn7jwTZ3uygyMsBG/VX4a0CRIl1JqTnhB1+tGr4DBH+j2ouFJmC PVEpwV2Lln1W7VELZcHXR/UA2Y8cGoDt8lIfmINiMWmcDkCczjuRCLTlnmkc2YLX koBz0gli5RUkyiKGICfk0EWIIZ9FXwSi/8XIsvCViEOm68/R7KbJ1SIZpwUw1yss Ys7w6aHiljFWtjNDhu5HdSuXwxBuAcwPKglett/4YSFHbQtQA46GXNj4n73W0mAo tg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:52 2025 by rpki-client