This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa File: AS142311.roa (raw, json) Hash identifier: 2sZB+lgqmtzKqzQedMKuEBb/XUtdf/MA6uP9qLuRyw4= Subject key identifier: 84:E5:2B:A5:1A:30:9D:84:AD:FE:EC:89:1D:CF:A7:C2:49:75:AB:AB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53C017AB1A67AFDC53E60AB757F1B2FB5EA4F3E9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa Signing time: Tue 11 Nov 2025 06:00:20 +0000 ROA not before: Tue 11 Nov 2025 05:55:20 +0000 ROA not after: Tue 10 Nov 2026 06:00:20 +0000 asID: 142311 IP address blocks: 103.168.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:c0:17:ab:1a:67:af:dc:53:e6:0a:b7:57:f1:b2:fb:5e:a4:f3:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:20 2025 GMT Not After : Nov 10 06:00:20 2026 GMT Subject: CN=84E52BA51A309D84ADFEEC891DCFA7C24975ABAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:20:f5:7d:71:78:85:e0:af:11:3a:58:e9:71: 61:73:53:a4:c5:ec:e3:0c:8f:6a:34:6d:0d:ee:29: ab:be:68:c7:63:8a:e9:f7:13:4a:3a:cb:75:6b:a1: 82:d5:05:59:e5:4c:ce:0a:6e:2e:9b:3a:fe:2b:4d: 87:bf:c6:b9:3d:9a:da:73:9e:67:fb:52:c9:90:64: 53:b0:0e:04:80:9a:8a:2c:b4:08:59:7b:c7:ef:5b: 0f:40:8c:02:15:a7:ad:45:a6:31:28:05:5c:d9:c7: fe:90:99:9e:21:b6:23:08:15:fa:66:46:a6:b7:28: e1:7b:05:01:c8:7d:9c:df:39:6b:f3:b7:e0:dd:67: ec:52:6f:3d:a8:00:a4:5a:80:42:b1:dc:91:a2:43: 51:9a:0a:f8:4d:83:33:b4:28:b6:dc:12:89:69:ba: 61:30:b7:46:8e:53:0e:68:ef:67:9e:8f:b7:85:45: ac:e3:7e:a3:4c:e1:53:95:0b:6c:66:c0:af:af:83: dc:64:9e:24:56:e2:ec:2f:c7:bb:7a:bd:10:a5:74: 80:c8:3b:80:31:90:42:aa:3e:21:c1:57:cf:c4:1b: db:73:1a:3d:02:53:8d:86:4d:a0:de:e7:0c:c7:9c: f8:e6:30:3f:32:ea:c6:13:52:c7:98:a3:eb:96:d2: fe:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E5:2B:A5:1A:30:9D:84:AD:FE:EC:89:1D:CF:A7:C2:49:75:AB:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142311.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.150.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:c8:51:81:78:0a:5c:70:cf:29:33:7d:ad:a6:eb:6f:c7:81: 1b:aa:bc:67:57:13:c0:ed:77:e2:b6:49:fd:d1:6a:98:d3:02: c2:10:76:39:51:58:66:9e:c4:2e:bb:9f:55:d8:28:6c:39:7b: e1:bb:cd:6a:33:1d:05:a8:b2:ce:ab:3c:fd:fe:5f:06:3d:e4: a2:e3:a3:c4:a7:74:8a:c2:3b:62:f5:1f:a0:45:5d:13:f1:34: fe:f2:95:13:0e:62:d1:05:0d:d1:1d:73:c5:ff:6a:81:f4:eb: b7:0f:11:68:5d:99:ac:ab:fc:da:4f:51:a6:a7:cb:f1:ab:b8: f4:c4:68:c1:22:c7:c1:8f:64:12:1c:e3:60:36:97:b1:13:a2: 28:16:a6:e4:dd:32:b2:d5:d7:b2:d7:cf:75:40:fc:8c:4c:22: 06:1f:b8:bd:da:24:25:5d:28:b3:7c:d4:fd:5a:35:c2:c4:12: c6:cf:a0:78:9a:57:31:e2:11:6b:2c:1a:27:61:86:07:99:1e: 4c:db:70:93:62:0e:a5:70:0c:a6:75:ce:59:0d:ee:a1:0e:8c: 39:d6:a7:a8:31:60:82:5b:41:3e:a8:88:35:d3:d2:de:59:cc: 7d:e4:29:17:82:37:77:3e:d5:bc:79:ac:82:f1:a4:93:7b:28: 1f:c7:db:32 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUU8AXqxpnr9xT5gq3V/Gy+16k8+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyMFoX DTI2MTExMDA2MDAyMFowMzExMC8GA1UEAxMoODRFNTJCQTUxQTMwOUQ4NEFERkVF Qzg5MURDRkE3QzI0OTc1QUJBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEg9X1xeIXgrxE6WOlxYXNTpMXs4wyPajRtDe4pq75ox2OK6fcTSjrLdWuh gtUFWeVMzgpuLps6/itNh7/GuT2a2nOeZ/tSyZBkU7AOBICaiiy0CFl7x+9bD0CM AhWnrUWmMSgFXNnH/pCZniG2IwgV+mZGprco4XsFAch9nN85a/O34N1n7FJvPagA pFqAQrHckaJDUZoK+E2DM7QottwSiWm6YTC3Ro5TDmjvZ56Pt4VFrON+o0zhU5UL bGbAr6+D3GSeJFbi7C/Hu3q9EKV0gMg7gDGQQqo+IcFXz8Qb23MaPQJTjYZNoN7n DMec+OYwPzLqxhNSx5ij65bS/nUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSE5Sul GjCdhK3+7Ikdz6fCSXWrqzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeoljANBgkqhkiG9w0BAQsFAAOCAQEAjMhRgXgKXHDPKTN9rabr b8eBG6q8Z1cTwO134rZJ/dFqmNMCwhB2OVFYZp7ELrufVdgobDl74bvNajMdBaiy zqs8/f5fBj3kouOjxKd0isI7YvUfoEVdE/E0/vKVEw5i0QUN0R1zxf9qgfTrtw8R aF2ZrKv82k9RpqfL8au49MRowSLHwY9kEhzjYDaXsROiKBam5N0ystXXstfPdUD8 jEwiBh+4vdokJV0os3zU/Vo1wsQSxs+geJpXMeIRaywaJ2GGB5keTNtwk2IOpXAM pnXOWQ3uoQ6MOdanqDFggltBPqiINdPS3lnMfeQpF4I3dz7VvHmsgvGkk3soH8fb Mg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:33 2025 by rpki-client