This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141963.roa File: AS141963.roa (raw, json) Hash identifier: 3ZEnaDCYPPmvHQq0OcOVqWXTeVjsGNb5mZTilIew0KA= Subject key identifier: 2A:18:34:88:44:71:58:C6:D6:21:19:30:06:E3:90:36:FD:31:A6:DB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5E3EFEDFB0D11E22257BC754390DDC70C44A5E32 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141963.roa Signing time: Tue 11 Nov 2025 06:00:16 +0000 ROA not before: Tue 11 Nov 2025 05:55:16 +0000 ROA not after: Tue 10 Nov 2026 06:00:16 +0000 asID: 141963 IP address blocks: 103.166.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:3e:fe:df:b0:d1:1e:22:25:7b:c7:54:39:0d:dc:70:c4:4a:5e:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:16 2025 GMT Not After : Nov 10 06:00:16 2026 GMT Subject: CN=2A183488447158C6D621193006E39036FD31A6DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:28:84:9d:00:a2:4f:ea:50:12:9a:4f:5a:04: 86:82:46:38:b9:6c:7a:cb:65:0a:e5:7e:05:46:2e: fa:13:d7:77:d1:20:24:2e:a6:ca:26:32:98:e2:f4: e0:ec:79:b1:01:5e:cb:f9:72:da:8d:c7:e2:af:d8: 1c:a4:83:fb:8e:f6:26:c8:ca:28:7b:66:89:31:76: 60:11:eb:5c:04:25:d1:f2:f0:81:25:98:0a:8f:51: a0:58:7e:ce:8e:70:30:d0:c1:43:03:48:05:13:74: 27:d0:24:b1:65:a5:27:34:ef:f9:b2:31:fe:63:60: d7:70:b2:7f:c5:a7:40:85:cc:c1:f9:d6:08:bc:b8: d4:6a:59:5f:ad:03:a0:c5:5f:18:dd:84:85:98:c6: 53:7d:ff:ca:42:2d:76:9f:a3:80:41:6f:a7:e7:27: 88:05:9f:55:98:a5:c4:4f:9b:2a:84:fa:65:53:5f: d4:24:e2:0d:9c:93:ea:0a:7a:b7:b2:ad:66:e7:28: 3d:75:60:0d:bc:5a:ee:72:7e:50:d1:fe:5c:b5:c6: 2c:91:11:d5:1b:83:53:35:fb:db:3b:e7:29:90:eb: bf:49:e7:88:ee:38:b2:2c:e3:ad:3f:7c:e3:a9:8e: 9a:32:92:34:3d:52:c3:f3:d9:4e:f0:d8:f4:df:0b: 62:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:18:34:88:44:71:58:C6:D6:21:19:30:06:E3:90:36:FD:31:A6:DB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141963.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.234.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:81:12:4c:cf:0a:30:72:5f:73:ce:d6:cd:11:1e:5b:aa:a3: e9:aa:cd:59:62:94:e1:25:ac:ac:3f:b4:1a:ef:70:42:b3:5b: eb:c3:08:cb:f8:71:36:24:18:07:25:9e:2c:05:65:8f:61:b1: ea:ae:e7:3e:99:ef:86:99:94:22:53:cc:03:ec:ba:3b:92:bb: a8:fd:8b:72:17:f5:98:55:e8:15:2d:f4:ec:8c:bd:cb:3c:85: c7:d3:c7:92:c8:09:fb:e5:31:e8:e9:8d:f8:0f:ea:82:ae:f3: 6e:35:dc:c0:d7:91:76:54:9b:57:4d:75:e9:25:3e:a0:31:cb: fb:0a:e3:f9:dc:5f:02:f0:85:48:50:7b:91:04:41:5e:ce:42: 55:b1:0d:b4:df:e4:42:38:8b:b2:a5:5e:d2:33:f4:75:6f:d1: 8d:00:b7:7f:c9:56:3a:54:b7:9b:aa:08:5e:d3:6e:fc:2d:d5: 4c:6b:3c:d1:ee:d3:b2:e0:39:d8:e0:be:fb:2b:65:27:54:f9: e0:d3:fc:b1:ad:d0:e3:fb:d3:d4:7f:35:2f:87:83:47:7e:c4: 98:c4:d8:c8:dc:cc:8c:d5:d0:22:95:57:f9:1f:eb:52:19:9c: 15:bf:57:a8:e6:43:35:03:eb:9c:0e:4e:87:d3:80:90:41:a5: c2:82:1c:6c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXj7+37DRHiIle8dUOQ3ccMRKXjIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxNloX DTI2MTExMDA2MDAxNlowMzExMC8GA1UEAxMoMkExODM0ODg0NDcxNThDNkQ2MjEx OTMwMDZFMzkwMzZGRDMxQTZEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMMohJ0Aok/qUBKaT1oEhoJGOLlsestlCuV+BUYu+hPXd9EgJC6myiYymOL0 4Ox5sQFey/ly2o3H4q/YHKSD+472JsjKKHtmiTF2YBHrXAQl0fLwgSWYCo9RoFh+ zo5wMNDBQwNIBRN0J9AksWWlJzTv+bIx/mNg13Cyf8WnQIXMwfnWCLy41GpZX60D oMVfGN2EhZjGU33/ykItdp+jgEFvp+cniAWfVZilxE+bKoT6ZVNf1CTiDZyT6gp6 t7KtZucoPXVgDbxa7nJ+UNH+XLXGLJER1RuDUzX72zvnKZDrv0nniO44sizjrT98 46mOmjKSND1Sw/PZTvDY9N8LYssCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQqGDSI RHFYxtYhGTAG45A2/TGm2zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGem6jANBgkqhkiG9w0BAQsFAAOCAQEAj4ESTM8KMHJfc87WzREe W6qj6arNWWKU4SWsrD+0Gu9wQrNb68MIy/hxNiQYByWeLAVlj2Gx6q7nPpnvhpmU IlPMA+y6O5K7qP2Lchf1mFXoFS307Iy9yzyFx9PHksgJ++Ux6OmN+A/qgq7zbjXc wNeRdlSbV0116SU+oDHL+wrj+dxfAvCFSFB7kQRBXs5CVbENtN/kQjiLsqVe0jP0 dW/RjQC3f8lWOlS3m6oIXtNu/C3VTGs80e7TsuA52OC++ytlJ1T54NP8sa3Q4/vT 1H81L4eDR37EmMTYyNzMjNXQIpVX+R/rUhmcFb9XqOZDNQPrnA5Oh9OAkEGlwoIc bA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:38 2025 by rpki-client