This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142342.roa File: AS142342.roa (raw, json) Hash identifier: x2CBpCHzTo8s8AF8vckn21UQdXGBYokHZS9D17trqyk= Subject key identifier: DD:46:BE:6A:6B:EA:92:B0:8B:33:C5:4E:79:9D:2C:76:F3:65:21:DF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 223525C4AC505527AA7CA7C2895FB3F578E919AC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142342.roa Signing time: Fri 07 Nov 2025 07:00:00 +0000 ROA not before: Fri 07 Nov 2025 06:55:00 +0000 ROA not after: Fri 06 Nov 2026 07:00:00 +0000 asID: 142342 IP address blocks: 2001:df2:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:35:25:c4:ac:50:55:27:aa:7c:a7:c2:89:5f:b3:f5:78:e9:19:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 06:55:00 2025 GMT Not After : Nov 6 07:00:00 2026 GMT Subject: CN=DD46BE6A6BEA92B08B33C54E799D2C76F36521DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:a5:bf:61:91:d2:a8:b7:60:b1:f8:73:b3: 9b:6f:56:9d:25:3c:f9:d0:a9:96:c6:dd:c4:42:39: 68:93:84:e2:74:ea:b5:36:f6:0b:3d:cf:fb:46:74: a9:80:b9:23:b0:53:c1:1f:29:e4:c0:f1:e4:78:c3: e1:d7:49:7d:3c:80:f2:b2:78:a0:2b:bf:5f:c7:90: 21:34:0e:e5:39:6b:d9:b0:d7:3f:f6:46:df:fe:41: 0d:93:2c:c1:db:d5:f3:b9:b8:e6:a0:07:14:29:48: 6a:aa:bd:34:13:79:a6:43:99:14:48:2b:88:1c:72: d1:d9:a4:2a:2a:9a:94:5c:bb:23:5d:ef:3e:f3:01: df:5c:49:ca:8a:f7:15:a2:06:64:1b:6b:bc:9f:1a: 1c:d1:8a:1d:40:81:13:ee:95:13:6d:e9:d1:89:9d: 8b:4e:72:bb:76:f4:d1:e2:3f:66:df:13:de:18:02: a6:58:5b:18:3c:67:5e:57:19:b8:a1:e8:69:68:99: 97:e6:b9:8e:89:3a:84:fb:96:26:07:4c:d6:c3:cb: 3e:f4:d7:34:da:32:a3:33:80:da:cb:2d:28:3f:94: ad:47:d0:48:d3:c7:fd:ed:ec:58:94:a1:8d:ec:ad: 86:46:ca:83:1b:74:3d:c1:67:fa:96:aa:a4:b3:1d: 4c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:46:BE:6A:6B:EA:92:B0:8B:33:C5:4E:79:9D:2C:76:F3:65:21:DF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142342.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 7d:81:21:ed:30:ed:f7:11:de:a5:22:1e:a6:ef:e8:91:b1:4d: a7:de:77:29:0a:00:9e:41:e4:46:b4:28:a0:28:38:f2:75:1f: 8c:c3:d8:e2:58:1d:a4:74:96:d0:85:19:f6:93:35:52:a4:79: 0a:1d:36:77:5a:4f:c3:90:88:e3:28:9a:16:bf:13:91:91:22: 81:60:d6:9b:3d:0e:65:04:78:ab:16:3e:53:1d:d7:4b:5e:6a: ac:df:f2:0a:29:22:da:e0:19:79:d1:ec:e0:07:53:dd:92:02: 80:60:87:72:1c:a9:fc:47:10:b4:66:c3:e0:e9:70:d9:24:db: c3:d8:3c:48:53:24:6c:2e:49:ed:ba:09:15:0e:4a:3e:95:4e: ac:f6:ff:01:e1:08:2a:6d:30:e3:84:f4:87:55:ec:2b:7f:45: 2c:ff:38:f3:e8:03:ab:22:c1:cd:bd:dd:90:96:d5:80:58:42: a4:bb:28:2a:56:f8:02:70:29:34:b1:2e:25:ac:95:c0:2f:f4: 30:de:8f:b3:48:72:9f:c9:c9:19:bd:8d:96:de:3a:e6:c4:c4: 4b:b4:32:f4:36:be:23:40:4a:e5:2c:1d:ab:b3:c7:11:76:e1: 92:19:b2:a8:ac:3b:ba:0f:8b:25:12:b9:b4:63:09:3c:2b:63: d1:55:63:b7 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUIjUlxKxQVSeqfKfCiV+z9XjpGawwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNzA2NTUwMFoX DTI2MTEwNjA3MDAwMFowMzExMC8GA1UEAxMoREQ0NkJFNkE2QkVBOTJCMDhCMzND NTRFNzk5RDJDNzZGMzY1MjFERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjFpb9hkdKot2Cx+HOzm29WnSU8+dCplsbdxEI5aJOE4nTqtTb2Cz3P+0Z0 qYC5I7BTwR8p5MDx5HjD4ddJfTyA8rJ4oCu/X8eQITQO5Tlr2bDXP/ZG3/5BDZMs wdvV87m45qAHFClIaqq9NBN5pkOZFEgriBxy0dmkKiqalFy7I13vPvMB31xJyor3 FaIGZBtrvJ8aHNGKHUCBE+6VE23p0Ymdi05yu3b00eI/Zt8T3hgCplhbGDxnXlcZ uKHoaWiZl+a5jok6hPuWJgdM1sPLPvTXNNoyozOA2sstKD+UrUfQSNPH/e3sWJSh jeythkbKgxt0PcFn+paqpLMdTNcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTdRr5q a+qSsIszxU55nSx282Uh3zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM0Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIsQDANBgkqhkiG9w0BAQsFAAOCAQEAfYEh7TDt9xHepSIe pu/okbFNp953KQoAnkHkRrQooCg48nUfjMPY4lgdpHSW0IUZ9pM1UqR5Ch02d1pP w5CI4yiaFr8TkZEigWDWmz0OZQR4qxY+Ux3XS15qrN/yCiki2uAZedHs4AdT3ZIC gGCHchyp/EcQtGbD4Olw2STbw9g8SFMkbC5J7boJFQ5KPpVOrPb/AeEIKm0w44T0 h1XsK39FLP848+gDqyLBzb3dkJbVgFhCpLsoKlb4AnApNLEuJayVwC/0MN6Ps0hy n8nJGb2Nlt465sTES7Qy9Da+I0BK5Swdq7PHEXbhkhmyqKw7ug+LJRK5tGMJPCtj 0VVjtw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:36 2025 by rpki-client