This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa File: AS141938.roa (raw, json) Hash identifier: a8TtULQ/6fHOKKRJJmC4km1Aw5N6G5+yH4hAAWZrrhw= Subject key identifier: BF:A2:A3:99:54:42:66:81:90:42:F7:03:68:B2:30:78:89:3B:1B:30 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A985C25F887687CD334FABC03A67D8BC9EB627F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa Signing time: Mon 07 Jul 2025 08:00:00 +0000 ROA not before: Mon 07 Jul 2025 07:55:00 +0000 ROA not after: Mon 06 Jul 2026 08:00:00 +0000 asID: 141938 IP address blocks: 103.164.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:98:5c:25:f8:87:68:7c:d3:34:fa:bc:03:a6:7d:8b:c9:eb:62:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 7 07:55:00 2025 GMT Not After : Jul 6 08:00:00 2026 GMT Subject: CN=BFA2A399544266819042F70368B23078893B1B30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:67:47:17:d4:04:eb:16:62:17:2d:ff:73:e8: 69:f6:c0:65:2b:35:a2:ce:e9:57:a2:f1:8d:0c:f4: b8:10:6f:92:c5:81:06:e6:ed:0c:db:29:45:ba:64: c7:b3:65:fe:47:85:7a:23:1f:52:8e:dd:6b:50:e9: 52:e0:c1:d6:d3:ef:8f:38:58:80:a4:4e:50:3c:59: d7:c9:30:ca:07:31:e6:47:e1:cd:af:4a:fc:b4:64: 90:70:8b:2b:e8:57:a1:5f:33:ee:41:f6:b3:94:f8: dd:9d:87:89:3c:42:01:93:1d:22:b3:95:2b:dc:ba: 82:fe:ec:40:78:02:eb:5d:96:c5:4d:bb:53:1f:39: 02:4d:c5:6d:a6:cb:47:8e:39:03:c9:7b:0a:ab:40: 4f:81:8e:bc:44:28:13:b8:0b:87:7c:12:18:80:18: c9:2a:46:e2:17:57:65:15:73:d1:b2:f0:c0:32:5d: e0:8e:e1:7d:bc:9c:db:de:67:5e:2f:11:47:b4:b6: 03:a9:03:bb:42:b6:cd:10:ce:4d:10:90:9f:20:4a: 15:59:b8:9d:64:cc:82:5c:e9:b3:29:ef:77:4f:4a: 9e:8d:09:7c:6f:3a:08:31:ca:5c:79:4d:89:00:d6: 6a:5d:7e:0f:ac:70:1e:bd:35:d9:25:83:d7:c8:f6: b9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A2:A3:99:54:42:66:81:90:42:F7:03:68:B2:30:78:89:3B:1B:30 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.186.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:bb:12:67:5a:45:20:40:87:f9:29:b8:31:ef:f5:ae:bb:cc: dc:47:82:2c:44:ec:03:4d:0e:66:72:c3:7d:e3:ff:f4:74:bb: a5:08:c5:fd:08:b1:54:90:bc:4d:18:25:52:1e:90:33:1d:be: ad:00:3a:02:87:30:6d:e1:cb:02:56:77:42:d0:bb:57:cb:f5: 6e:5d:6c:19:17:a9:7a:bb:8d:e7:45:7c:f2:dd:5c:1e:6f:d5: 90:b4:84:b5:e0:dc:07:59:56:98:b6:6a:3f:f4:9e:61:c3:14: bb:be:12:a8:d7:94:b4:f3:fe:56:5d:2e:8c:f3:a8:6e:b3:5c: 30:cd:6e:2a:fa:2c:20:a6:1a:aa:4c:e8:56:fc:99:1c:cb:03: d8:1d:e2:c1:35:92:58:e9:04:41:ba:50:f3:cd:f8:74:5c:30: 08:7b:20:3f:4c:97:a0:17:ce:77:67:c7:7b:d0:fc:63:74:9c: 19:f7:f4:ca:99:3a:88:d2:d2:aa:36:30:9b:28:b7:28:ca:39: 0c:74:e9:f3:1a:ec:2b:be:40:49:62:dd:83:44:14:17:e4:b6: 57:2c:62:e8:30:52:e0:2d:7c:a0:bf:21:5e:9d:c9:46:6e:db: c1:89:1a:8e:3f:84:18:74:81:b5:b8:d7:4a:f1:63:e4:9a:cf: b5:1e:90:84 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGphcJfiHaHzTNPq8A6Z9i8nrYn8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcwNzA3NTUwMFoX DTI2MDcwNjA4MDAwMFowMzExMC8GA1UEAxMoQkZBMkEzOTk1NDQyNjY4MTkwNDJG NzAzNjhCMjMwNzg4OTNCMUIzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtnRxfUBOsWYhct/3PoafbAZSs1os7pV6LxjQz0uBBvksWBBubtDNspRbpk x7Nl/keFeiMfUo7da1DpUuDB1tPvjzhYgKROUDxZ18kwygcx5kfhza9K/LRkkHCL K+hXoV8z7kH2s5T43Z2HiTxCAZMdIrOVK9y6gv7sQHgC612WxU27Ux85Ak3FbabL R445A8l7CqtAT4GOvEQoE7gLh3wSGIAYySpG4hdXZRVz0bLwwDJd4I7hfbyc295n Xi8RR7S2A6kDu0K2zRDOTRCQnyBKFVm4nWTMglzpsynvd09Kno0JfG86CDHKXHlN iQDWal1+D6xwHr012SWD18j2uVcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS/oqOZ VEJmgZBC9wNosjB4iTsbMDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWekujANBgkqhkiG9w0BAQsFAAOCAQEAO7sSZ1pFIECH+Sm4Me/1 rrvM3EeCLETsA00OZnLDfeP/9HS7pQjF/QixVJC8TRglUh6QMx2+rQA6AocwbeHL AlZ3QtC7V8v1bl1sGReperuN50V88t1cHm/VkLSEteDcB1lWmLZqP/SeYcMUu74S qNeUtPP+Vl0ujPOobrNcMM1uKvosIKYaqkzoVvyZHMsD2B3iwTWSWOkEQbpQ8834 dFwwCHsgP0yXoBfOd2fHe9D8Y3ScGff0ypk6iNLSqjYwmyi3KMo5DHTp8xrsK75A SWLdg0QUF+S2Vyxi6DBS4C18oL8hXp3JRm7bwYkajj+EGHSBtbjXSvFj5JrPtR6Q hA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:35 2025 by rpki-client