This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa File: AS141981.roa (raw, json) Hash identifier: 0bFvvRKuphbmVOAW/iRzOYcEFGE+X8BRA3VfD5jJ1A8= Subject key identifier: 03:00:03:F7:1B:1E:86:E8:57:B0:FF:C6:1A:DF:DD:EF:73:BD:0B:29 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 191BEAB7EBB49EACFBEAB245FE7CA02053AC3611 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa Signing time: Tue 11 Nov 2025 06:00:18 +0000 ROA not before: Tue 11 Nov 2025 05:55:18 +0000 ROA not after: Tue 10 Nov 2026 06:00:18 +0000 asID: 141981 IP address blocks: 103.167.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:1b:ea:b7:eb:b4:9e:ac:fb:ea:b2:45:fe:7c:a0:20:53:ac:36:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:18 2025 GMT Not After : Nov 10 06:00:18 2026 GMT Subject: CN=030003F71B1E86E857B0FFC61ADFDDEF73BD0B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:24:e7:00:fa:1c:f8:a9:ff:27:83:b2:6b:22: 04:66:ef:b6:46:15:bd:9f:80:b2:c9:54:3d:06:a8: 6b:42:d3:ec:83:71:77:36:74:83:62:f6:f3:46:96: f7:54:62:42:65:9f:d0:d1:79:eb:3e:04:99:a1:3b: 6a:c7:60:df:dc:b8:71:68:cd:d9:6b:83:9b:5f:d1: 90:ff:fa:cc:fc:10:ff:32:3c:28:ca:24:18:e8:20: 28:1a:81:4b:0d:62:31:7e:54:db:11:40:cd:3d:ac: 9f:81:05:af:29:3b:f1:a8:dc:93:fd:38:5b:16:37: 41:95:da:0a:5a:02:b5:de:53:cc:0d:1e:d8:77:68: b4:d3:d5:45:73:7b:e2:ab:20:74:95:e8:e5:5f:2e: 8e:bf:8a:6a:7b:e6:2f:c8:8d:7a:28:d1:1c:e8:0c: ea:24:aa:78:18:6f:8b:1a:4c:96:ee:99:a6:85:a2: 4e:7c:b8:a2:db:7c:97:99:df:d5:47:8e:80:0c:4c: 79:05:a7:88:cc:43:25:c5:10:58:69:3b:d0:74:69: 3f:c9:ba:4c:79:5c:52:38:9a:6e:b5:de:20:a2:f9: 62:b7:33:59:a6:34:2c:c1:ab:e2:82:1d:3f:2d:71: 69:78:62:82:13:d4:b2:58:c1:6c:b4:e3:2f:60:38: 75:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:00:03:F7:1B:1E:86:E8:57:B0:FF:C6:1A:DF:DD:EF:73:BD:0B:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.110.0/23 Signature Algorithm: sha256WithRSAEncryption 40:2f:f6:b2:13:07:0d:9f:c8:09:fe:9f:be:c1:ae:90:94:c7: 45:1a:e0:11:85:35:59:73:bf:39:36:85:8d:fb:86:2f:7c:1c: 3f:4c:14:79:7d:51:41:da:49:60:09:01:d8:75:fa:e4:3c:17: 9e:98:2b:aa:ed:3b:dd:3a:ef:13:63:03:ed:0d:21:51:31:91: f5:7b:39:5a:8e:52:07:94:ce:60:68:d6:2b:5c:37:4a:8b:1f: b8:26:21:4b:95:88:80:cd:d8:42:91:7d:09:73:28:fd:24:2d: 46:00:a4:60:99:1d:a9:50:33:34:d0:2a:73:5a:10:ec:87:a0: b4:d3:98:33:5a:e2:07:aa:bb:9e:b5:b5:08:71:de:f8:a8:b5: 55:f1:f3:a9:2c:8d:09:9e:77:d9:32:e5:ff:1d:07:29:5e:1f: 13:be:4c:94:2d:cd:18:62:e7:af:74:4f:e0:6e:a0:7c:5a:31: 97:5e:09:f5:d8:4a:36:e0:e1:32:91:73:b8:0b:ce:35:f7:e1: 33:28:46:6d:86:ed:6f:56:92:1c:6d:7e:c3:ce:17:73:e2:53: 0f:25:c7:05:2d:21:e0:34:d0:22:d9:e4:91:8b:a9:dc:a2:c0: c0:84:cb:9c:02:5f:94:cd:fd:74:43:2a:22:d6:40:aa:a4:70: ec:79:98:7c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGRvqt+u0nqz76rJF/nygIFOsNhEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxOFoX DTI2MTExMDA2MDAxOFowMzExMC8GA1UEAxMoMDMwMDAzRjcxQjFFODZFODU3QjBG RkM2MUFERkRERUY3M0JEMEIyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkk5wD6HPip/yeDsmsiBGbvtkYVvZ+AsslUPQaoa0LT7INxdzZ0g2L280aW 91RiQmWf0NF56z4EmaE7asdg39y4cWjN2WuDm1/RkP/6zPwQ/zI8KMokGOggKBqB Sw1iMX5U2xFAzT2sn4EFryk78ajck/04WxY3QZXaCloCtd5TzA0e2HdotNPVRXN7 4qsgdJXo5V8ujr+KanvmL8iNeijRHOgM6iSqeBhvixpMlu6ZpoWiTny4ott8l5nf 1UeOgAxMeQWniMxDJcUQWGk70HRpP8m6THlcUjiabrXeIKL5YrczWaY0LMGr4oId Py1xaXhighPUsljBbLTjL2A4dTECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQDAAP3 Gx6G6Few/8Ya393vc70LKTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTk4MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWenbjANBgkqhkiG9w0BAQsFAAOCAQEAQC/2shMHDZ/ICf6fvsGu kJTHRRrgEYU1WXO/OTaFjfuGL3wcP0wUeX1RQdpJYAkB2HX65DwXnpgrqu073Trv E2MD7Q0hUTGR9Xs5Wo5SB5TOYGjWK1w3SosfuCYhS5WIgM3YQpF9CXMo/SQtRgCk YJkdqVAzNNAqc1oQ7IegtNOYM1riB6q7nrW1CHHe+Ki1VfHzqSyNCZ532TLl/x0H KV4fE75MlC3NGGLnr3RP4G6gfFoxl14J9dhKNuDhMpFzuAvONffhMyhGbYbtb1aS HG1+w84Xc+JTDyXHBS0h4DTQItnkkYup3KLAwITLnAJflM39dEMqItZAqqRw7HmY fA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:55 2025 by rpki-client