This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142383.roa File: AS142383.roa (raw, json) Hash identifier: 2en/z6rWPBMaa5lBsa+5tjDvhL0bgsfH93QccXPwH90= Subject key identifier: 0B:94:A8:AB:BC:09:5F:D1:EE:45:07:52:33:1B:82:7F:C9:7B:8A:CC Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 75FADEE1BF075FB202A0C0F17EFA15243AE76AE7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142383.roa Signing time: Fri 21 Nov 2025 08:00:00 +0000 ROA not before: Fri 21 Nov 2025 07:55:00 +0000 ROA not after: Fri 20 Nov 2026 08:00:00 +0000 asID: 142383 IP address blocks: 103.172.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:fa:de:e1:bf:07:5f:b2:02:a0:c0:f1:7e:fa:15:24:3a:e7:6a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 21 07:55:00 2025 GMT Not After : Nov 20 08:00:00 2026 GMT Subject: CN=0B94A8ABBC095FD1EE450752331B827FC97B8ACC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:da:e4:c8:31:b9:f3:0e:bd:9d:d0:1d:7e:7c: 70:59:a0:cd:9d:55:33:f7:dd:c0:d3:bc:6e:14:44: e0:a1:a4:bc:1b:5a:4e:b2:7c:e8:bc:84:42:a1:e1: 7f:cb:3d:b8:a9:27:6e:b4:ff:62:3b:ba:6b:31:4d: bf:4e:fa:96:75:10:29:d1:75:68:6c:dd:fe:16:82: 50:22:7c:2b:ce:08:2d:b8:95:1d:20:c3:d8:ad:22: bd:c1:8c:72:90:4a:83:be:e4:9f:b5:7f:61:19:e8: 52:b8:93:bd:50:52:d6:37:9c:75:9e:90:50:ad:4a: a6:ef:a6:1b:2e:5d:0d:ce:37:dc:8c:9e:9d:82:84: 88:c0:04:ec:54:00:16:df:69:e7:67:a8:b3:33:9a: 89:b1:2a:f8:47:66:39:26:99:d8:bd:60:89:09:d5: 35:31:42:68:cd:55:c7:f8:a0:f6:0d:2f:49:14:e3: a4:64:56:90:c0:f5:28:41:ca:ce:40:9a:d0:41:40: 1a:64:06:ee:9f:48:cf:58:f7:d4:ed:97:1f:34:75: df:c7:d5:b1:ac:f5:af:4b:ca:ff:83:15:0f:21:37: 41:18:de:4a:65:66:5b:fa:e1:7c:13:d2:59:4d:c1: 1a:7d:1c:c6:a7:ad:ab:24:35:26:97:8b:0a:a1:c6: 94:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:94:A8:AB:BC:09:5F:D1:EE:45:07:52:33:1B:82:7F:C9:7B:8A:CC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.20.0/23 Signature Algorithm: sha256WithRSAEncryption 96:28:a6:4b:1e:48:9d:44:cc:f7:45:da:dc:93:f7:93:27:e4: 99:e3:9a:60:ec:68:fe:0f:97:7c:2c:07:17:de:56:55:23:04: 82:ff:9d:74:ff:67:98:76:87:2c:fc:47:b5:8f:d7:0f:23:2c: 50:65:69:9a:e1:c6:e8:f0:fb:ce:cc:90:b4:21:97:20:31:f9: dd:c8:bd:e6:65:ec:dc:98:f7:90:33:bc:43:80:26:f9:89:19: 7c:7d:01:ed:23:64:cd:db:b7:d4:e6:f2:6f:e1:4c:27:86:5b: 9a:bd:fd:c2:26:9a:46:ff:d2:5d:38:10:8d:7a:12:39:06:c5: 94:03:1f:98:e0:5b:01:63:76:3e:46:9a:e8:8f:39:fe:26:72: 6b:6a:e2:4d:27:85:6e:c0:b6:a1:5a:84:70:af:f2:40:e3:44: 5d:eb:7f:42:45:bd:dc:2b:2a:71:ed:2d:cd:17:f7:42:07:db: 2d:5c:5e:a2:29:6c:0f:71:95:cb:cd:1a:99:36:ef:10:78:01: 37:39:46:3c:e4:5e:f0:f6:ac:c4:68:a8:13:a8:69:5d:90:b3: ce:3b:92:5f:8a:7d:6c:e7:1d:bf:0e:68:a3:ef:a1:ae:70:c0: 59:d9:03:73:f7:52:a4:f2:7e:66:51:b2:0b:33:a3:bd:a7:bd: 3a:0e:ca:a5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdfre4b8HX7ICoMDxfvoVJDrnaucwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMTA3NTUwMFoX DTI2MTEyMDA4MDAwMFowMzExMC8GA1UEAxMoMEI5NEE4QUJCQzA5NUZEMUVFNDUw NzUyMzMxQjgyN0ZDOTdCOEFDQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3a5MgxufMOvZ3QHX58cFmgzZ1VM/fdwNO8bhRE4KGkvBtaTrJ86LyEQqHh f8s9uKknbrT/Yju6azFNv076lnUQKdF1aGzd/haCUCJ8K84ILbiVHSDD2K0ivcGM cpBKg77kn7V/YRnoUriTvVBS1jecdZ6QUK1Kpu+mGy5dDc433IyenYKEiMAE7FQA Ft9p52eoszOaibEq+EdmOSaZ2L1giQnVNTFCaM1Vx/ig9g0vSRTjpGRWkMD1KEHK zkCa0EFAGmQG7p9Iz1j31O2XHzR138fVsaz1r0vK/4MVDyE3QRjeSmVmW/rhfBPS WU3BGn0cxqetqyQ1JpeLCqHGlJMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQLlKir vAlf0e5FB1IzG4J/yXuKzDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWesFDANBgkqhkiG9w0BAQsFAAOCAQEAliimSx5InUTM90Xa3JP3 kyfkmeOaYOxo/g+XfCwHF95WVSMEgv+ddP9nmHaHLPxHtY/XDyMsUGVpmuHG6PD7 zsyQtCGXIDH53ci95mXs3Jj3kDO8Q4Am+YkZfH0B7SNkzdu31Obyb+FMJ4Zbmr39 wiaaRv/SXTgQjXoSOQbFlAMfmOBbAWN2Pkaa6I85/iZya2riTSeFbsC2oVqEcK/y QONEXet/QkW93Csqce0tzRf3QgfbLVxeoilsD3GVy80amTbvEHgBNzlGPORe8Pas xGioE6hpXZCzzjuSX4p9bOcdvw5oo++hrnDAWdkDc/dSpPJ+ZlGyCzOjvae9Og7K pQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:07 2025 by rpki-client