This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142335.roa File: AS142335.roa (raw, json) Hash identifier: e7f1sK09UkKKAcdgpzZIAWUoVOegE31mlsOO2tUQChk= Subject key identifier: E2:11:D6:1E:73:10:7C:8B:D3:A7:D7:89:11:B0:F4:3D:38:A1:60:4C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4CCEADB02E51D3914895EBD3F754BA858AF882F0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142335.roa Signing time: Fri 28 Nov 2025 01:13:36 +0000 ROA not before: Fri 28 Nov 2025 01:08:36 +0000 ROA not after: Fri 27 Nov 2026 01:13:36 +0000 asID: 142335 IP address blocks: 2001:df3:c140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ce:ad:b0:2e:51:d3:91:48:95:eb:d3:f7:54:ba:85:8a:f8:82:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 28 01:08:36 2025 GMT Not After : Nov 27 01:13:36 2026 GMT Subject: CN=E211D61E73107C8BD3A7D78911B0F43D38A1604C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ed:df:72:54:f6:9b:f1:b0:b3:d2:19:89:18: d1:da:aa:74:90:53:40:5a:65:95:c5:bd:2e:a8:3f: 17:36:27:4d:fe:ce:ba:06:3f:31:2d:72:8b:93:86: f8:64:ad:bf:0f:97:37:0a:a9:4d:ed:45:9c:67:c8: 54:93:71:a7:bf:93:e0:a2:78:19:d5:66:9d:d4:97: 1f:36:c3:87:d6:85:1c:37:0a:40:97:e7:a6:37:8e: df:43:0b:48:12:a3:d6:07:2d:e4:9d:43:58:3f:34: 0a:42:0a:f8:36:be:28:3e:cf:ab:4b:78:47:fe:08: 77:86:c9:20:84:03:de:0b:75:f2:17:c9:97:86:7d: 28:6e:fc:2e:09:68:9a:2d:41:84:51:f6:f7:57:19: 13:c6:d9:31:12:fb:4e:74:c1:73:89:7d:52:f1:87: 3f:be:1d:4d:ab:dc:d3:52:e4:99:71:2e:48:07:87: 13:68:1f:a5:06:9b:3f:99:d7:56:e4:fa:a6:a3:d1: a5:e9:31:03:49:83:7e:b2:b5:96:50:b9:01:a9:d6: 6f:18:08:01:d8:3e:66:02:e5:ff:ff:99:db:73:c2: 4f:86:22:c5:c1:a9:a2:f2:9a:31:de:cc:c1:52:1c: 4a:d4:28:76:f4:7f:d1:20:cc:2b:b5:b1:29:76:85: dd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:11:D6:1E:73:10:7C:8B:D3:A7:D7:89:11:B0:F4:3D:38:A1:60:4C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c140::/48 Signature Algorithm: sha256WithRSAEncryption 0a:79:f2:0a:e4:62:db:8c:42:04:45:49:6d:4a:c0:f2:1e:7f: 79:49:93:71:8c:d7:c9:61:09:13:e9:a5:cd:b0:e0:9f:b9:c5: be:83:a1:80:7f:a8:ca:34:a0:9a:62:d0:2e:1b:9a:9d:9e:fa: f1:fb:c2:44:a3:f1:f3:d5:54:37:47:e3:1c:3b:fc:93:81:34: d1:23:ba:dd:c7:08:8f:1c:12:ba:91:10:97:b0:30:db:47:89: c8:71:91:ec:75:b4:c5:91:ca:ce:a5:77:c3:c1:18:0b:12:eb: 41:ab:b0:88:74:88:dc:aa:c5:b7:0b:d0:e7:4f:14:e9:20:b8: ba:84:3d:d1:42:8d:84:a9:4e:a5:87:21:00:6c:02:b5:d0:dd: 73:7f:c5:8d:ef:e2:f2:c8:65:60:08:e0:66:90:62:2f:8a:e3: 27:52:cd:e1:a7:08:b2:97:3d:b5:e3:39:db:38:a6:46:da:76: 88:a7:87:82:76:08:bc:1a:47:80:8b:57:e9:58:59:ba:18:3f: a3:81:df:22:06:06:c2:87:83:aa:76:cf:43:13:75:47:f8:64: 45:d0:df:c0:28:90:e9:43:c8:94:5e:99:90:7a:4e:82:c5:73: c1:93:af:f8:07:4b:e2:56:48:eb:ad:e2:23:7c:f2:d3:ca:4d: 40:b5:5e:bc -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUTM6tsC5R05FIlevT91S6hYr4gvAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyODAxMDgzNloX DTI2MTEyNzAxMTMzNlowMzExMC8GA1UEAxMoRTIxMUQ2MUU3MzEwN0M4QkQzQTdE Nzg5MTFCMEY0M0QzOEExNjA0QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANft33JU9pvxsLPSGYkY0dqqdJBTQFpllcW9Lqg/FzYnTf7OugY/MS1yi5OG +GStvw+XNwqpTe1FnGfIVJNxp7+T4KJ4GdVmndSXHzbDh9aFHDcKQJfnpjeO30ML SBKj1gct5J1DWD80CkIK+Da+KD7Pq0t4R/4Id4bJIIQD3gt18hfJl4Z9KG78Lglo mi1BhFH291cZE8bZMRL7TnTBc4l9UvGHP74dTavc01LkmXEuSAeHE2gfpQabP5nX VuT6pqPRpekxA0mDfrK1llC5AanWbxgIAdg+ZgLl//+Z23PCT4YixcGpovKaMd7M wVIcStQodvR/0SDMK7WxKXaF3cUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTiEdYe cxB8i9On14kRsPQ9OKFgTDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjMzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfPBQDANBgkqhkiG9w0BAQsFAAOCAQEACnnyCuRi24xCBEVJ bUrA8h5/eUmTcYzXyWEJE+mlzbDgn7nFvoOhgH+oyjSgmmLQLhuanZ768fvCRKPx 89VUN0fjHDv8k4E00SO63ccIjxwSupEQl7Aw20eJyHGR7HW0xZHKzqV3w8EYCxLr QauwiHSI3KrFtwvQ508U6SC4uoQ90UKNhKlOpYchAGwCtdDdc3/Fje/i8shlYAjg ZpBiL4rjJ1LN4acIspc9teM52zimRtp2iKeHgnYIvBpHgItX6VhZuhg/o4HfIgYG woeDqnbPQxN1R/hkRdDfwCiQ6UPIlF6ZkHpOgsVzwZOv+AdL4lZI663iI3zy08pN QLVevA== -----END CERTIFICATE-----Generated at Wed Dec 3 14:54:51 2025 by rpki-client