This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142313.roa File: AS142313.roa (raw, json) Hash identifier: xb6u4bzdmTtx3OKS/OwvW6ebPObS2SkGuJt8HQjLIfE= Subject key identifier: A9:38:9A:68:6D:D0:44:BA:8A:6C:AE:75:49:05:8C:80:3F:C7:FA:EC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 70684ECECA65DB1AF6139B6DEF99549C4ABA88B8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142313.roa Signing time: Tue 11 Nov 2025 06:00:18 +0000 ROA not before: Tue 11 Nov 2025 05:55:18 +0000 ROA not after: Tue 10 Nov 2026 06:00:18 +0000 asID: 142313 IP address blocks: 103.168.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:68:4e:ce:ca:65:db:1a:f6:13:9b:6d:ef:99:54:9c:4a:ba:88:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:18 2025 GMT Not After : Nov 10 06:00:18 2026 GMT Subject: CN=A9389A686DD044BA8A6CAE7549058C803FC7FAEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3b:7a:11:a9:a8:81:09:1b:24:d8:d8:77:e2: 84:b5:ac:3c:1a:47:31:a3:7b:08:54:a8:e8:a3:fd: 57:a6:18:6d:d3:ff:97:e2:ec:f8:6a:d0:20:e2:c6: 92:86:14:3f:0d:91:ab:f7:60:2a:1a:bb:52:7c:ae: 34:6e:bb:a9:12:1e:f6:47:9b:84:22:f4:77:29:e7: 16:28:02:f2:81:1c:d9:3b:2b:89:7d:df:e1:ed:eb: d8:0d:ab:e0:eb:ad:55:73:6e:cb:62:f2:0b:06:47: 0d:97:67:8f:45:de:99:ca:44:e1:5b:6a:57:f1:9e: 55:1b:3a:a5:a7:98:1d:4b:ae:00:0f:00:82:3d:1c: fc:90:a8:21:e1:f6:3e:8b:be:36:b9:dc:50:7b:a6: 03:16:62:b2:66:71:1f:a9:79:df:c1:fa:4d:0a:e0: b6:61:18:25:10:a6:3f:ee:6a:2b:67:b4:50:84:ab: 03:24:3b:e6:77:6e:0f:21:a9:40:79:7f:14:8d:6c: 64:66:fb:0a:40:bf:8b:67:fe:79:d4:96:c0:70:36: 47:02:54:58:c5:4a:91:04:96:a4:aa:66:08:07:99: 68:cb:35:bc:c8:63:8d:77:00:13:11:69:78:fd:84: 03:77:4b:28:f4:96:1f:cb:0a:70:a6:52:5a:e4:ef: ef:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:38:9A:68:6D:D0:44:BA:8A:6C:AE:75:49:05:8C:80:3F:C7:FA:EC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142313.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.153.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:9a:1d:e6:92:b1:e0:76:ac:96:42:fd:04:2a:8c:0b:c3:89: 01:67:34:d3:3f:d7:74:86:0b:a2:50:11:9a:a0:89:85:fc:24: 0a:18:93:3e:b5:b7:cf:fc:17:e4:8e:45:c4:c3:b8:41:a5:f7: c1:f1:11:45:93:75:7f:50:9a:25:03:2d:36:d0:ef:43:99:48: 28:0f:29:8c:7c:e9:d5:0b:25:fe:bc:9d:55:c1:7f:8f:86:ee: 1f:99:f5:3f:3f:74:ec:ba:a7:c7:58:b1:44:18:10:ad:9b:cd: 3f:b9:73:3e:81:20:0c:1a:10:08:e1:86:cc:f2:df:c3:54:d6: 2f:c9:b8:28:64:4c:36:e8:fb:9d:f0:92:75:1a:77:40:0c:43: 3f:7f:be:0c:17:ea:7b:48:8e:0d:7e:2c:8c:fa:66:76:4a:4d: 8d:db:41:ad:39:0f:4b:8d:1f:1c:29:fc:c2:23:c8:33:8f:e6: 9a:cc:82:16:e6:21:5d:a3:70:60:47:13:4b:b4:e6:fd:08:58: 81:a9:73:44:97:c0:6f:7a:45:1c:3d:df:2b:3e:1c:d4:21:a2: 68:52:63:92:b3:a2:22:f1:88:a0:46:40:f2:14:e2:c1:23:5a: 53:c5:94:61:c8:73:d9:d8:0a:fe:d2:47:ce:2d:0f:f6:49:88: 6a:f5:a3:44 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcGhOzspl2xr2E5tt75lUnEq6iLgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxOFoX DTI2MTExMDA2MDAxOFowMzExMC8GA1UEAxMoQTkzODlBNjg2REQwNDRCQThBNkNB RTc1NDkwNThDODAzRkM3RkFFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMY7ehGpqIEJGyTY2HfihLWsPBpHMaN7CFSo6KP9V6YYbdP/l+Ls+GrQIOLG koYUPw2Rq/dgKhq7UnyuNG67qRIe9kebhCL0dynnFigC8oEc2TsriX3f4e3r2A2r 4OutVXNuy2LyCwZHDZdnj0XemcpE4VtqV/GeVRs6paeYHUuuAA8Agj0c/JCoIeH2 Pou+NrncUHumAxZismZxH6l538H6TQrgtmEYJRCmP+5qK2e0UISrAyQ75nduDyGp QHl/FI1sZGb7CkC/i2f+edSWwHA2RwJUWMVKkQSWpKpmCAeZaMs1vMhjjXcAExFp eP2EA3dLKPSWH8sKcKZSWuTv74ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSpOJpo bdBEuopsrnVJBYyAP8f67DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeomTANBgkqhkiG9w0BAQsFAAOCAQEAbJod5pKx4HaslkL9BCqM C8OJAWc00z/XdIYLolARmqCJhfwkChiTPrW3z/wX5I5FxMO4QaX3wfERRZN1f1Ca JQMtNtDvQ5lIKA8pjHzp1Qsl/rydVcF/j4buH5n1Pz907Lqnx1ixRBgQrZvNP7lz PoEgDBoQCOGGzPLfw1TWL8m4KGRMNuj7nfCSdRp3QAxDP3++DBfqe0iODX4sjPpm dkpNjdtBrTkPS40fHCn8wiPIM4/mmsyCFuYhXaNwYEcTS7Tm/QhYgalzRJfAb3pF HD3fKz4c1CGiaFJjkrOiIvGIoEZA8hTiwSNaU8WUYchz2dgK/tJHzi0P9kmIavWj RA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:08 2025 by rpki-client