This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa File: AS142318.roa (raw, json) Hash identifier: JNkltY6vFzdGzeFR2CUusYjwJNb5mXU4p9fXW51BDv8= Subject key identifier: D8:5E:29:31:C4:5B:3D:6D:8E:19:6B:19:13:FA:BC:94:8E:7E:38:64 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2AE8EA643C6221DB2FFB07543663FE84ED1DA7BF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa Signing time: Tue 11 Nov 2025 05:00:00 +0000 ROA not before: Tue 11 Nov 2025 04:55:00 +0000 ROA not after: Tue 10 Nov 2026 05:00:00 +0000 asID: 142318 IP address blocks: 103.168.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e8:ea:64:3c:62:21:db:2f:fb:07:54:36:63:fe:84:ed:1d:a7:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 04:55:00 2025 GMT Not After : Nov 10 05:00:00 2026 GMT Subject: CN=D85E2931C45B3D6D8E196B1913FABC948E7E3864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:25:47:06:fd:09:bf:b4:0f:b4:2e:a1:a6:b2: 26:cc:70:e2:f5:26:25:2e:79:f6:8c:72:e7:fd:d3: 2e:5a:cb:99:62:2d:41:2f:29:33:23:e8:20:01:9a: 5b:75:cb:53:e6:26:34:18:56:3e:08:65:6b:a3:b5: 5d:2b:51:60:f5:59:3d:88:6b:78:a4:d9:bb:4b:ce: 88:c2:ac:cc:99:7a:6c:84:8c:64:42:c7:95:12:2e: 32:42:ce:94:e9:a6:ba:13:35:a7:5d:30:1b:86:26: a4:cd:1d:4c:e5:c8:09:bd:0f:c0:74:ba:42:0e:ff: 44:4d:7c:cf:cf:f8:16:be:ee:55:10:4f:f8:e9:3f: ea:39:df:23:31:f5:89:d7:e7:8f:6a:ab:c9:7f:59: 15:2d:90:bf:15:1b:7b:fc:0e:fd:c4:c6:a4:bf:a1: d6:ec:7b:bd:59:5c:58:24:dc:d0:7e:74:c6:3a:aa: a4:80:d3:41:41:b8:c7:51:5b:74:3d:a1:47:a8:1f: dd:bc:4d:7f:a0:df:ab:31:aa:f5:a8:59:b8:bc:41: d4:a6:c1:b4:7b:0d:fb:4b:ee:57:45:22:f9:1c:9d: 58:ad:5c:37:db:dc:ae:54:37:be:59:bc:9c:bf:43: 7b:f7:f7:78:42:90:b5:47:4d:c5:2a:e5:14:18:3f: 48:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5E:29:31:C4:5B:3D:6D:8E:19:6B:19:13:FA:BC:94:8E:7E:38:64 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142318.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.166.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:79:57:5a:10:0d:df:e0:96:55:5e:1f:49:2f:d7:4c:a0:03: 0c:60:53:f1:70:63:38:71:c1:b7:21:f3:0b:02:c6:8e:f4:01: 51:10:7a:e6:ee:ed:0d:9a:6c:50:ff:4f:af:34:de:29:de:16: dc:ab:7c:5a:37:d2:b6:ef:6e:19:6b:40:ef:96:f5:fc:7e:e9: cb:6a:ef:47:64:19:2a:4f:14:55:9d:a9:f5:a6:46:d6:07:5a: e5:5a:da:86:4c:26:64:96:12:f1:75:79:c8:87:57:89:cb:40: ef:d8:58:83:f9:f6:52:75:3b:62:7d:83:06:74:17:df:64:e4: ed:a7:be:5a:3f:88:d5:fc:08:28:d1:fc:d6:96:8c:fe:fb:6b: dd:4c:02:77:e2:a5:aa:0d:c5:28:f0:ef:7f:79:36:c8:4e:e9: 19:5d:60:c8:fc:44:97:29:0e:5e:1c:84:72:c7:60:09:f9:2d: cb:18:61:6b:ae:97:a5:e8:64:c0:e1:91:89:2f:3e:be:3b:13: bb:88:db:eb:57:79:1c:16:1e:35:c5:cc:30:f3:1c:03:06:e7: ee:5e:5f:68:78:63:26:88:92:92:0e:be:8b:00:4f:4a:5f:d1: e6:2a:85:08:3c:3c:7a:42:bb:18:fd:ca:b2:b0:53:ab:7e:f9: 1c:55:83:f0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKujqZDxiIdsv+wdUNmP+hO0dp78wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA0NTUwMFoX DTI2MTExMDA1MDAwMFowMzExMC8GA1UEAxMoRDg1RTI5MzFDNDVCM0Q2RDhFMTk2 QjE5MTNGQUJDOTQ4RTdFMzg2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO4lRwb9Cb+0D7QuoaayJsxw4vUmJS559oxy5/3TLlrLmWItQS8pMyPoIAGa W3XLU+YmNBhWPghla6O1XStRYPVZPYhreKTZu0vOiMKszJl6bISMZELHlRIuMkLO lOmmuhM1p10wG4YmpM0dTOXICb0PwHS6Qg7/RE18z8/4Fr7uVRBP+Ok/6jnfIzH1 idfnj2qryX9ZFS2QvxUbe/wO/cTGpL+h1ux7vVlcWCTc0H50xjqqpIDTQUG4x1Fb dD2hR6gf3bxNf6DfqzGq9ahZuLxB1KbBtHsN+0vuV0Ui+RydWK1cN9vcrlQ3vlm8 nL9De/f3eEKQtUdNxSrlFBg/SBUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTYXikx xFs9bY4ZaxkT+ryUjn44ZDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMxOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeopjANBgkqhkiG9w0BAQsFAAOCAQEAC3lXWhAN3+CWVV4fSS/X TKADDGBT8XBjOHHBtyHzCwLGjvQBURB65u7tDZpsUP9PrzTeKd4W3Kt8WjfStu9u GWtA75b1/H7py2rvR2QZKk8UVZ2p9aZG1gda5VrahkwmZJYS8XV5yIdXictA79hY g/n2UnU7Yn2DBnQX32Tk7ae+Wj+I1fwIKNH81paM/vtr3UwCd+Klqg3FKPDvf3k2 yE7pGV1gyPxElykOXhyEcsdgCfktyxhha66XpehkwOGRiS8+vjsTu4jb61d5HBYe NcXMMPMcAwbn7l5faHhjJoiSkg6+iwBPSl/R5iqFCDw8ekK7GP3KsrBTq375HFWD 8A== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:54 2025 by rpki-client