This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa File: AS141936.roa (raw, json) Hash identifier: HPcBJQC2EfzK5wCt7nP9p0k603eZjXywqxiDQ0IR5cw= Subject key identifier: A7:D1:CC:03:D8:CB:0D:ED:10:E2:91:A6:35:50:2C:16:1E:A0:24:95 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 029B7FC4D982CB87209666375D8B942966488A91 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa Signing time: Tue 11 Nov 2025 06:00:04 +0000 ROA not before: Tue 11 Nov 2025 05:55:04 +0000 ROA not after: Tue 10 Nov 2026 06:00:04 +0000 asID: 141936 IP address blocks: 103.166.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:9b:7f:c4:d9:82:cb:87:20:96:66:37:5d:8b:94:29:66:48:8a:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:04 2025 GMT Not After : Nov 10 06:00:04 2026 GMT Subject: CN=A7D1CC03D8CB0DED10E291A635502C161EA02495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cc:50:42:3a:5e:db:4e:a6:91:14:3b:18:e0: 91:7c:a2:88:32:0e:99:1b:4e:c9:c2:13:16:b3:dc: 89:9c:f2:6a:fa:ac:cd:77:f5:eb:7c:da:06:01:78: bf:af:8a:af:0c:a0:f4:14:79:02:8b:da:ad:94:f6: a6:8a:42:f9:45:32:1d:6f:3b:9d:43:1e:cd:95:d9: 5a:ab:b9:1b:01:32:cd:2e:9e:66:08:78:5c:22:10: a5:65:54:07:37:14:a3:21:59:ff:c9:93:30:84:9a: 98:fe:2e:fa:67:9e:c7:b4:22:6a:35:6a:21:42:45: ce:c7:88:65:06:81:57:6d:22:a2:11:c3:56:20:6e: ea:9e:f3:67:8b:fd:6f:b2:64:8a:df:ad:88:c5:ab: 88:36:d2:36:7d:f1:ec:2b:de:d1:c9:b8:20:0b:02: 3a:f8:d3:50:ee:bb:a2:51:b8:a4:54:3a:61:07:68: d3:0e:47:ed:64:1c:65:c8:22:85:04:cc:23:b7:0c: 21:11:c7:e1:a7:d9:9f:28:60:2a:cb:08:8f:41:bd: cd:0a:de:61:53:8e:80:2e:31:18:39:9c:6b:df:ab: e7:58:e0:0a:c6:70:78:c8:8a:08:39:15:bb:09:4e: 24:cc:c9:0e:63:da:c3:e8:6b:89:9a:71:35:d1:eb: b6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D1:CC:03:D8:CB:0D:ED:10:E2:91:A6:35:50:2C:16:1E:A0:24:95 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.46.0/24 Signature Algorithm: sha256WithRSAEncryption 84:e4:bb:98:9d:2f:fe:43:7d:cf:fb:1a:82:8f:e6:33:b7:4a: 9f:6c:e8:a7:b9:4f:fe:0f:a1:d9:08:76:78:70:79:64:10:bc: 26:54:73:8e:14:36:9b:d4:8f:69:e5:9d:32:f0:5e:4c:2a:c6: e1:cf:51:20:12:17:15:e0:0a:98:a4:d8:c6:17:f9:12:c8:14: 0f:6f:36:56:41:3f:f7:86:2b:97:66:d4:e6:13:1c:d9:b3:f3: 3b:f4:f6:c1:5d:95:9b:83:4b:26:b4:66:0e:05:d0:db:f4:10: a4:30:a8:91:7e:68:69:41:ca:ef:92:f5:cd:96:d6:a7:07:ee: 7f:1c:9b:97:e5:c1:1a:08:95:f7:85:b3:1e:6e:4f:85:73:6c: f2:1d:85:80:49:d2:99:47:a6:d6:d7:f8:57:e1:87:4d:13:9d: 04:9b:7e:04:3f:a0:c1:bb:12:00:0c:da:1c:9a:7f:82:d0:90: 6d:0c:7a:e2:90:aa:39:d5:2b:8b:c9:29:34:ff:f2:84:a7:f8: f9:fc:2e:a0:c6:9a:50:d5:48:c3:53:67:8e:eb:73:53:c5:af: d3:74:95:c2:ce:f6:4d:1b:13:73:9e:64:79:c6:7f:9f:2a:11: b7:b5:02:74:01:6c:94:32:95:1d:64:22:f1:91:60:ae:23:a8: d0:d7:94:b0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUApt/xNmCy4cglmY3XYuUKWZIipEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwNFoX DTI2MTExMDA2MDAwNFowMzExMC8GA1UEAxMoQTdEMUNDMDNEOENCMERFRDEwRTI5 MUE2MzU1MDJDMTYxRUEwMjQ5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOXMUEI6XttOppEUOxjgkXyiiDIOmRtOycITFrPciZzyavqszXf163zaBgF4 v6+Krwyg9BR5AovarZT2popC+UUyHW87nUMezZXZWqu5GwEyzS6eZgh4XCIQpWVU BzcUoyFZ/8mTMISamP4u+meex7QiajVqIUJFzseIZQaBV20iohHDViBu6p7zZ4v9 b7Jkit+tiMWriDbSNn3x7Cve0cm4IAsCOvjTUO67olG4pFQ6YQdo0w5H7WQcZcgi hQTMI7cMIRHH4afZnyhgKssIj0G9zQreYVOOgC4xGDmca9+r51jgCsZweMiKCDkV uwlOJMzJDmPaw+hriZpxNdHrtncCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSn0cwD 2MsN7RDikaY1UCwWHqAklTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGemLjANBgkqhkiG9w0BAQsFAAOCAQEAhOS7mJ0v/kN9z/sago/m M7dKn2zop7lP/g+h2Qh2eHB5ZBC8JlRzjhQ2m9SPaeWdMvBeTCrG4c9RIBIXFeAK mKTYxhf5EsgUD282VkE/94Yrl2bU5hMc2bPzO/T2wV2Vm4NLJrRmDgXQ2/QQpDCo kX5oaUHK75L1zZbWpwfufxybl+XBGgiV94WzHm5PhXNs8h2FgEnSmUem1tf4V+GH TROdBJt+BD+gwbsSAAzaHJp/gtCQbQx64pCqOdUri8kpNP/yhKf4+fwuoMaaUNVI w1NnjutzU8Wv03SVws72TRsTc55kecZ/nyoRt7UCdAFslDKVHWQi8ZFgriOo0NeU sA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:30 2025 by rpki-client