This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa File: AS142323.roa (raw, json) Hash identifier: djSYSVXsJxCvdDDRsx0z6N9hhngdeWAeL2g4I/zIHig= Subject key identifier: 60:AE:8B:9D:B9:FB:1A:D8:24:B6:FE:A7:DF:D0:DF:F0:E0:C0:C0:48 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 650F06D0B5332FE793B780C022A06D9353AC4B2B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa Signing time: Tue 11 Nov 2025 06:00:22 +0000 ROA not before: Tue 11 Nov 2025 05:55:22 +0000 ROA not after: Tue 10 Nov 2026 06:00:22 +0000 asID: 142323 IP address blocks: 103.167.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:0f:06:d0:b5:33:2f:e7:93:b7:80:c0:22:a0:6d:93:53:ac:4b:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:22 2025 GMT Not After : Nov 10 06:00:22 2026 GMT Subject: CN=60AE8B9DB9FB1AD824B6FEA7DFD0DFF0E0C0C048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:15:78:6e:bd:91:99:0a:8a:f3:af:24:a6:57: 72:81:ad:88:b4:89:6f:f9:26:41:6b:c4:91:92:50: 72:16:22:2f:c9:fe:48:1a:fb:15:5f:d1:b7:a7:c7: 49:e5:d7:a5:53:91:f8:57:89:46:3e:17:53:54:f2: 86:3b:29:61:98:f1:eb:f6:84:a9:53:97:e0:f9:4e: bc:f0:64:92:f8:d5:3b:d3:d5:ba:dc:0f:5c:63:92: 27:28:21:d3:27:9e:f3:6e:79:48:37:b7:4e:87:97: e8:12:07:f9:e5:5e:d6:ef:60:05:2d:e7:a1:12:17: a1:e0:99:fe:b2:67:99:1b:37:7b:0b:63:6e:4e:62: 73:b1:26:96:0f:c8:42:f8:ac:d3:25:37:c6:55:5e: 87:3b:e9:48:60:16:63:1c:e0:80:e6:14:b0:11:41: de:83:9a:5b:dd:d4:fa:cb:80:de:ad:df:af:3d:a9: b8:82:44:a4:1e:c0:b0:cd:67:44:34:c9:0c:b2:e1: 1e:c6:78:83:a1:e8:11:9c:30:aa:5b:cc:7b:54:4d: 20:ba:6d:40:93:f3:8d:55:73:53:d3:57:2e:1e:9d: c1:7b:c9:05:72:96:11:08:8c:da:42:71:b2:af:b7: 6e:8b:4f:b4:3e:33:cc:41:fc:1a:c6:93:49:e6:96: e3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:AE:8B:9D:B9:FB:1A:D8:24:B6:FE:A7:DF:D0:DF:F0:E0:C0:C0:48 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142323.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.222.0/24 Signature Algorithm: sha256WithRSAEncryption 70:45:ed:5b:f0:25:27:eb:d0:24:d7:e8:61:a5:fb:06:c5:db: 0c:92:82:e2:a4:65:5a:30:4e:b3:77:59:67:b2:eb:ad:e5:25: 12:35:d5:3b:eb:1a:36:de:b1:0d:8d:c7:c8:cc:d1:79:18:fc: 2b:e8:7b:22:f6:57:6f:aa:8d:11:ad:13:59:de:71:f6:5a:d9: 78:e8:58:96:21:13:fd:49:c4:c6:77:fc:03:0f:83:62:a9:22: ca:e4:b4:cd:67:39:f5:e4:62:8d:bf:6f:19:0a:aa:59:fd:a7: f8:7a:8f:31:76:de:7d:36:8b:9a:d5:10:9a:4d:17:10:85:b7: 7c:06:96:34:1c:07:12:7b:28:42:4a:19:8e:ce:94:2b:9d:99: 3e:ca:0e:3b:8e:3f:f5:21:a5:9c:10:ce:5a:eb:e7:1e:23:7b: 4e:67:b9:2b:33:af:5f:9e:ba:81:3d:fe:ab:2e:bd:5d:a8:e6: 3e:e4:2e:2c:c0:46:ef:e3:1b:35:d8:d3:58:92:68:9f:10:d1: 3f:39:41:91:de:4d:36:b1:4c:04:2e:85:ba:48:7b:72:a9:eb: 6d:cd:2e:55:ec:62:3c:75:ea:24:c4:f8:63:16:67:95:43:0a: 75:a9:de:4d:6c:6f:60:f8:01:bd:45:cb:2c:fa:ef:60:8f:87: 17:2f:92:22 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZQ8G0LUzL+eTt4DAIqBtk1OsSyswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyMloX DTI2MTExMDA2MDAyMlowMzExMC8GA1UEAxMoNjBBRThCOURCOUZCMUFEODI0QjZG RUE3REZEMERGRjBFMEMwQzA0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0VeG69kZkKivOvJKZXcoGtiLSJb/kmQWvEkZJQchYiL8n+SBr7FV/Rt6fH SeXXpVOR+FeJRj4XU1TyhjspYZjx6/aEqVOX4PlOvPBkkvjVO9PVutwPXGOSJygh 0yee8255SDe3ToeX6BIH+eVe1u9gBS3noRIXoeCZ/rJnmRs3ewtjbk5ic7Emlg/I Qvis0yU3xlVehzvpSGAWYxzggOYUsBFB3oOaW93U+suA3q3frz2puIJEpB7AsM1n RDTJDLLhHsZ4g6HoEZwwqlvMe1RNILptQJPzjVVzU9NXLh6dwXvJBXKWEQiM2kJx sq+3botPtD4zzEH8GsaTSeaW49ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRgroud ufsa2CS2/qff0N/w4MDASDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMyMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGen3jANBgkqhkiG9w0BAQsFAAOCAQEAcEXtW/AlJ+vQJNfoYaX7 BsXbDJKC4qRlWjBOs3dZZ7LrreUlEjXVO+saNt6xDY3HyMzReRj8K+h7IvZXb6qN Ea0TWd5x9lrZeOhYliET/UnExnf8Aw+DYqkiyuS0zWc59eRijb9vGQqqWf2n+HqP MXbefTaLmtUQmk0XEIW3fAaWNBwHEnsoQkoZjs6UK52ZPsoOO44/9SGlnBDOWuvn HiN7Tme5KzOvX566gT3+qy69XajmPuQuLMBG7+MbNdjTWJJonxDRPzlBkd5NNrFM BC6Fukh7cqnrbc0uVexiPHXqJMT4YxZnlUMKdaneTWxvYPgBvUXLLPrvYI+HFy+S Ig== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:37 2025 by rpki-client