This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142201.roa File: AS142201.roa (raw, json) Hash identifier: Gj1c4x1W4GD9eRy4OIROkaoHs4873ybVJT33QSSPacI= Subject key identifier: 8D:C1:9B:29:BA:08:B5:5F:50:26:17:80:CA:88:13:3F:B7:F7:4C:FD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 705CA0FC06FB0FAF6B24CAE534615A1D00D46E01 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142201.roa Signing time: Tue 20 Jan 2026 01:44:48 +0000 ROA not before: Tue 20 Jan 2026 01:39:48 +0000 ROA not after: Tue 19 Jan 2027 01:44:48 +0000 asID: 142201 IP address blocks: 2001:df6:8cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:5c:a0:fc:06:fb:0f:af:6b:24:ca:e5:34:61:5a:1d:00:d4:6e:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 20 01:39:48 2026 GMT Not After : Jan 19 01:44:48 2027 GMT Subject: CN=8DC19B29BA08B55F50261780CA88133FB7F74CFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d5:ec:25:03:29:94:38:55:f0:15:f2:b3:ac: 10:41:88:52:1b:4d:bf:3c:f6:98:e8:59:2a:b0:c1: d5:8e:01:c8:90:a4:e3:3a:fd:a3:da:ae:ac:d6:3c: 6b:30:36:b1:25:2d:b2:4d:94:f3:2d:d5:c0:83:e1: 69:0c:0c:f6:04:34:ac:ed:33:eb:d3:58:06:fc:aa: 14:e5:ad:a1:42:6c:da:69:39:25:51:cd:ae:79:ef: fc:3d:ba:c1:f9:9a:72:8a:cd:ac:93:7b:d7:ab:f0: d1:a3:cd:8e:be:95:99:15:10:bb:53:71:4a:7a:c6: 4d:2f:73:59:3d:32:86:03:0a:ed:44:d8:0e:89:e5: c5:9e:e3:05:c1:a2:04:12:99:50:b9:e4:3c:6d:69: 82:53:95:21:71:aa:94:35:2b:8a:87:aa:81:9c:4a: 81:2a:d6:72:8f:21:ec:98:4a:17:c1:2c:df:be:af: 90:74:6e:93:ac:72:0c:76:bd:7c:97:49:66:1f:1c: a8:0f:57:99:9c:b4:93:84:13:31:af:8d:77:4a:2f: 01:a2:45:11:12:cf:c5:80:e0:6d:3c:2a:bc:a9:0c: 83:77:93:f1:80:b3:69:31:d5:d9:59:68:3a:b9:ba: d4:3a:bf:d7:65:b8:9f:95:2d:b1:77:53:52:9f:d8: 94:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C1:9B:29:BA:08:B5:5F:50:26:17:80:CA:88:13:3F:B7:F7:4C:FD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:8cc0::/48 Signature Algorithm: sha256WithRSAEncryption 82:6e:7a:d6:48:52:60:c3:f1:19:38:d4:5b:a9:7e:45:95:9e: c6:80:a0:d0:74:b6:9f:06:95:93:d2:95:54:84:b3:27:05:e3: bf:75:2c:f1:8a:ee:ac:67:7b:57:3d:57:ee:8f:1b:d0:93:65: 08:f6:fe:3b:2f:13:15:ec:7a:d2:86:e7:59:e6:aa:77:eb:41: 63:2b:6a:81:85:ef:37:22:0d:fe:a7:9f:b1:f1:19:4c:02:ca: 81:63:22:ac:b0:5c:8f:0e:c7:f3:3e:8d:da:5f:46:2f:bc:c1: 1e:62:70:9a:fe:45:4c:b1:d3:d7:fe:46:6d:0d:fa:be:d5:7d: 17:6c:81:53:80:57:1f:c5:cf:20:40:f3:0f:d5:58:10:77:d8: 1d:e1:f4:fd:12:71:91:eb:0f:88:92:f0:f7:9d:2d:a3:4e:ce: 87:fc:36:80:c5:4a:7b:ea:1e:a2:d7:eb:e7:2e:cc:03:e4:74: 91:dc:fa:45:15:ea:50:bc:d1:e1:8a:a4:3d:34:7f:c1:4a:cc: 79:06:1b:03:7d:4b:7a:89:e5:a3:68:35:a5:15:05:25:f5:65: 69:67:82:b8:7c:d9:9d:6c:bf:38:23:99:3e:8f:3e:c5:3b:77: 2f:76:2b:a6:41:1e:85:a7:58:31:5d:ff:c8:73:2f:45:9a:fa: 55:85:8e:cb -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUcFyg/Ab7D69rJMrlNGFaHQDUbgEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyMDAxMzk0OFoX DTI3MDExOTAxNDQ0OFowMzExMC8GA1UEAxMoOERDMTlCMjlCQTA4QjU1RjUwMjYx NzgwQ0E4ODEzM0ZCN0Y3NENGRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDV7CUDKZQ4VfAV8rOsEEGIUhtNvzz2mOhZKrDB1Y4ByJCk4zr9o9qurNY8 azA2sSUtsk2U8y3VwIPhaQwM9gQ0rO0z69NYBvyqFOWtoUJs2mk5JVHNrnnv/D26 wfmacorNrJN716vw0aPNjr6VmRUQu1NxSnrGTS9zWT0yhgMK7UTYDonlxZ7jBcGi BBKZULnkPG1pglOVIXGqlDUrioeqgZxKgSrWco8h7JhKF8Es376vkHRuk6xyDHa9 fJdJZh8cqA9XmZy0k4QTMa+Nd0ovAaJFERLPxYDgbTwqvKkMg3eT8YCzaTHV2Vlo Orm61Dq/12W4n5UtsXdTUp/YlAcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSNwZsp ugi1X1AmF4DKiBM/t/dM/TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjIwMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfaMwDANBgkqhkiG9w0BAQsFAAOCAQEAgm561khSYMPxGTjU W6l+RZWexoCg0HS2nwaVk9KVVISzJwXjv3Us8YrurGd7Vz1X7o8b0JNlCPb+Oy8T Fex60obnWeaqd+tBYytqgYXvNyIN/qefsfEZTALKgWMirLBcjw7H8z6N2l9GL7zB HmJwmv5FTLHT1/5GbQ36vtV9F2yBU4BXH8XPIEDzD9VYEHfYHeH0/RJxkesPiJLw 950to07Oh/w2gMVKe+oeotfr5y7MA+R0kdz6RRXqULzR4YqkPTR/wUrMeQYbA31L eonlo2g1pRUFJfVlaWeCuHzZnWy/OCOZPo8+xTt3L3YrpkEehadYMV3/yHMvRZr6 VYWOyw== -----END CERTIFICATE-----Generated at Wed Jan 21 14:30:06 2026 by rpki-client