This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa File: AS141917.roa (raw, json) Hash identifier: HvYSzHYCGUC+GbdESMhgFMFKKthHuFQ2QxmtlKQIn6U= Subject key identifier: 20:00:B7:2F:3C:BC:BD:7F:06:11:A3:00:EA:A3:D7:04:F1:D2:2F:37 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3AFEC566B9C785B0734E89C99BCD0953A1E42C95 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa Signing time: Tue 11 Nov 2025 06:00:00 +0000 ROA not before: Tue 11 Nov 2025 05:55:00 +0000 ROA not after: Tue 10 Nov 2026 06:00:00 +0000 asID: 141917 IP address blocks: 103.164.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fe:c5:66:b9:c7:85:b0:73:4e:89:c9:9b:cd:09:53:a1:e4:2c:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:00 2025 GMT Not After : Nov 10 06:00:00 2026 GMT Subject: CN=2000B72F3CBCBD7F0611A300EAA3D704F1D22F37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ab:f8:72:1c:07:af:4b:00:07:75:1e:4c:9e: 11:ab:0f:a2:bc:5e:4b:a4:7a:02:f9:74:f3:ca:bd: 69:69:bd:91:d2:0e:26:8e:c9:1c:18:3b:87:55:c3: 70:e4:23:97:b7:dc:bc:fe:8a:67:2e:5a:f7:15:0b: d2:63:b0:43:56:65:a7:30:7f:1d:a6:27:03:84:02: d5:ad:be:fb:6b:1d:2d:3c:7e:a7:7d:8f:d0:ad:dc: 1c:17:4f:e4:27:d8:d1:db:01:a2:e6:68:09:be:2c: f3:b5:41:ea:14:eb:ae:fe:af:0b:9a:eb:b5:0e:89: 37:f7:70:9b:41:38:f8:16:0e:ce:c4:7f:24:86:86: df:f9:8c:1b:99:9c:e7:30:8d:53:f5:73:2c:ce:d8: 6a:24:0b:6d:21:63:de:da:df:f6:45:cc:9c:ed:2d: d1:79:ac:ff:c9:65:38:83:df:8e:23:da:13:da:4b: fc:ef:a7:0b:57:02:c7:00:e1:a5:af:d1:c8:97:60: ad:6b:76:eb:c8:ab:a8:74:f1:75:90:b2:04:0b:8a: 3e:86:b5:e8:2a:a0:73:6f:c4:90:e7:3d:7c:8d:68: 7c:e7:8d:15:81:81:ad:87:71:5d:7b:aa:6e:18:e7: b2:c3:17:82:d6:2c:74:42:43:f2:3a:70:99:7b:c2: 13:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:00:B7:2F:3C:BC:BD:7F:06:11:A3:00:EA:A3:D7:04:F1:D2:2F:37 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141917.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.228.0/23 Signature Algorithm: sha256WithRSAEncryption 79:48:2b:fb:09:a8:f5:f0:11:51:20:96:97:a9:9a:0a:71:bc: ea:1d:83:0c:b0:13:d5:e6:4e:48:8a:07:b6:c9:80:f8:f7:f2: a4:68:78:9c:59:ae:2a:f3:2d:d8:34:24:cb:9b:08:f4:80:2e: 0c:32:91:d7:d9:fa:67:58:a5:19:0f:3a:d0:c4:0b:11:e1:e8: 35:c3:5c:ba:d5:ee:c9:23:9a:1a:02:a4:6a:35:6d:9a:46:11: ce:41:30:31:10:75:f9:66:f8:97:cf:4c:f4:61:7e:23:ef:66: 80:6c:a0:0e:ef:c6:8a:58:0c:ca:c3:a4:54:c8:e9:7a:b2:27: fe:da:50:55:3d:87:d4:31:74:1f:b9:b0:99:49:0c:99:ad:16: e2:a1:7e:45:c1:11:c2:2d:54:8a:d7:c1:7a:60:d7:ac:a5:b5: 05:13:7e:96:2f:27:6b:17:dc:25:89:8c:8f:bf:45:14:d6:14: 75:51:84:db:91:e9:7d:88:59:83:3f:ad:fd:fb:32:a6:d6:5f: 41:9f:c2:40:c4:9a:83:9d:9d:ef:74:11:04:63:75:05:d5:7d: be:4e:4b:cb:e8:af:34:b9:f9:90:eb:a3:85:9e:95:47:c8:a4: 6b:f3:ec:5e:23:a6:28:f6:9f:2d:7e:73:0e:53:a8:ec:c0:ca: ef:8d:e4:c2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOv7FZrnHhbBzTonJm80JU6HkLJUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwMFoX DTI2MTExMDA2MDAwMFowMzExMC8GA1UEAxMoMjAwMEI3MkYzQ0JDQkQ3RjA2MTFB MzAwRUFBM0Q3MDRGMUQyMkYzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANqr+HIcB69LAAd1HkyeEasPorxeS6R6Avl088q9aWm9kdIOJo7JHBg7h1XD cOQjl7fcvP6KZy5a9xUL0mOwQ1ZlpzB/HaYnA4QC1a2++2sdLTx+p32P0K3cHBdP 5CfY0dsBouZoCb4s87VB6hTrrv6vC5rrtQ6JN/dwm0E4+BYOzsR/JIaG3/mMG5mc 5zCNU/VzLM7YaiQLbSFj3trf9kXMnO0t0Xms/8llOIPfjiPaE9pL/O+nC1cCxwDh pa/RyJdgrWt268irqHTxdZCyBAuKPoa16Cqgc2/EkOc9fI1ofOeNFYGBrYdxXXuq bhjnssMXgtYsdEJD8jpwmXvCE/8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQgALcv PLy9fwYRowDqo9cE8dIvNzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWek5DANBgkqhkiG9w0BAQsFAAOCAQEAeUgr+wmo9fARUSCWl6ma CnG86h2DDLAT1eZOSIoHtsmA+PfypGh4nFmuKvMt2DQky5sI9IAuDDKR19n6Z1il GQ860MQLEeHoNcNcutXuySOaGgKkajVtmkYRzkEwMRB1+Wb4l89M9GF+I+9mgGyg Du/GilgMysOkVMjperIn/tpQVT2H1DF0H7mwmUkMma0W4qF+RcERwi1UitfBemDX rKW1BRN+li8naxfcJYmMj79FFNYUdVGE25HpfYhZgz+t/fsyptZfQZ/CQMSag52d 73QRBGN1BdV9vk5Ly+ivNLn5kOujhZ6VR8ika/PsXiOmKPafLX5zDlOo7MDK743k wg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:29 2025 by rpki-client