This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa File: AS141937.roa (raw, json) Hash identifier: ivMA8X85AJkS3QfBOyJ5dIsWyOjFjW9Em1cMXC0Z6U0= Subject key identifier: DC:57:9A:C8:D5:13:BA:86:D2:E7:04:CC:3F:16:55:AF:A1:52:9E:63 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4D6F8E1F8EF5A7E94C14C4E406F75BE31FCA8A30 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa Signing time: Tue 11 Nov 2025 06:00:09 +0000 ROA not before: Tue 11 Nov 2025 05:55:09 +0000 ROA not after: Tue 10 Nov 2026 06:00:09 +0000 asID: 141937 IP address blocks: 103.165.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:6f:8e:1f:8e:f5:a7:e9:4c:14:c4:e4:06:f7:5b:e3:1f:ca:8a:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:09 2025 GMT Not After : Nov 10 06:00:09 2026 GMT Subject: CN=DC579AC8D513BA86D2E704CC3F1655AFA1529E63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:23:d2:68:1e:9f:f5:a2:da:1e:a7:e1:d0:e3: d5:0d:65:ef:73:32:ab:b2:f1:3d:0e:7c:fe:2f:77: 65:9f:ba:db:50:8b:23:e4:54:cd:75:2b:a3:58:55: 4a:51:69:5a:6c:ec:c8:bc:90:d8:9b:b0:cc:91:84: ff:df:c7:03:58:4f:fe:65:e3:08:26:ec:4d:e8:3f: f7:a5:e0:0a:6c:8e:9f:10:72:32:f3:af:79:2b:51: 14:b3:4c:cd:68:28:20:34:f7:50:aa:c9:9d:df:d7: 6a:ac:59:50:d8:9a:e3:ac:21:08:39:09:81:3d:08: e2:0a:67:bb:4c:3b:08:e3:20:90:24:b3:70:fc:92: 6e:e6:a3:70:67:df:79:a2:3e:06:39:b5:76:7b:20: f1:9a:80:00:ec:f9:e3:63:2d:1d:06:22:35:a7:e6: fa:89:8e:6b:c3:34:ed:fe:10:d6:17:3d:8c:df:1e: 3f:81:17:c1:90:fe:bd:6c:d8:25:e6:95:1a:2e:f0: a1:14:e7:a6:76:8c:de:b9:d5:b0:82:c6:69:89:f3: 19:a3:0b:a1:82:d0:24:7b:f5:08:30:06:df:e0:f4: ec:a3:ac:9f:9b:a8:0c:dd:52:ef:9f:f2:07:20:09: 24:cf:38:45:93:1e:7e:b4:68:db:f7:c0:82:d2:19: e1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:57:9A:C8:D5:13:BA:86:D2:E7:04:CC:3F:16:55:AF:A1:52:9E:63 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.250.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:5a:a7:d9:29:a3:e2:78:ee:de:12:6b:09:52:45:f1:8f:73: 1e:3c:bd:34:8c:ad:80:83:17:ee:dc:86:d2:26:5c:48:ed:fb: 68:27:67:8d:6f:74:b9:87:2f:bd:f8:f6:f1:6b:a4:62:a8:d8: 24:13:6d:91:b7:ee:d5:61:87:9c:f4:0b:1e:63:c0:d9:1a:27: d1:7a:2f:07:5a:16:f1:49:ce:cd:4d:80:1f:bb:cf:23:b0:2b: ed:b6:e5:2e:c0:1c:51:38:21:7d:3b:e2:23:3a:c0:8e:1b:19: ee:95:ad:3f:e3:28:19:5f:2c:de:e8:ee:30:0b:1a:4e:0d:c7: 35:23:63:0e:dd:c9:ec:89:14:62:79:9f:6e:44:d7:58:c3:bd: 63:46:8d:0a:84:66:0b:d8:8c:3a:ed:a8:85:08:d8:0a:e0:2e: 53:07:a6:8c:ff:8e:ac:6e:ca:33:19:77:71:2d:69:5f:0c:7d: 0d:c3:3f:eb:7e:3c:c7:4f:4f:a6:6c:cc:d2:0b:e9:50:12:41: 68:90:bc:d1:62:37:a0:3f:e9:74:22:99:13:1c:be:7b:30:34: 07:da:40:a0:79:d4:8b:70:d9:24:36:df:0c:39:65:ab:76:32: 7b:28:63:8d:02:24:ce:9f:71:20:0e:39:af:14:8b:8a:24:a5: 29:51:71:ad -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTW+OH471p+lMFMTkBvdb4x/KijAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwOVoX DTI2MTExMDA2MDAwOVowMzExMC8GA1UEAxMoREM1NzlBQzhENTEzQkE4NkQyRTcw NENDM0YxNjU1QUZBMTUyOUU2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYj0mgen/Wi2h6n4dDj1Q1l73Myq7LxPQ58/i93ZZ+621CLI+RUzXUro1hV SlFpWmzsyLyQ2JuwzJGE/9/HA1hP/mXjCCbsTeg/96XgCmyOnxByMvOveStRFLNM zWgoIDT3UKrJnd/XaqxZUNia46whCDkJgT0I4gpnu0w7COMgkCSzcPySbuajcGff eaI+Bjm1dnsg8ZqAAOz542MtHQYiNafm+omOa8M07f4Q1hc9jN8eP4EXwZD+vWzY JeaVGi7woRTnpnaM3rnVsILGaYnzGaMLoYLQJHv1CDAG3+D07KOsn5uoDN1S75/y ByAJJM84RZMefrRo2/fAgtIZ4aUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTcV5rI 1RO6htLnBMw/FlWvoVKeYzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWel+jANBgkqhkiG9w0BAQsFAAOCAQEAjVqn2Smj4nju3hJrCVJF 8Y9zHjy9NIytgIMX7tyG0iZcSO37aCdnjW90uYcvvfj28WukYqjYJBNtkbfu1WGH nPQLHmPA2Ron0XovB1oW8UnOzU2AH7vPI7Ar7bblLsAcUTghfTviIzrAjhsZ7pWt P+MoGV8s3ujuMAsaTg3HNSNjDt3J7IkUYnmfbkTXWMO9Y0aNCoRmC9iMOu2ohQjY CuAuUwemjP+OrG7KMxl3cS1pXwx9DcM/6348x09PpmzM0gvpUBJBaJC80WI3oD/p dCKZExy+ezA0B9pAoHnUi3DZJDbfDDllq3YyeyhjjQIkzp9xIA45rxSLiiSlKVFx rQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:01 2025 by rpki-client