This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142389.roa File: AS142389.roa (raw, json) Hash identifier: UTrqJANDKyrlOKvnHqCyFAV9bnDWypNJsf98vQxb+qA= Subject key identifier: 08:7A:D7:93:22:BA:8F:6A:03:D1:CC:1A:42:4E:60:7F:49:4E:6B:8A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B210D52C9E0F6C5ED7776A513D01116A3A1B2D5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142389.roa Signing time: Tue 02 Dec 2025 17:00:00 +0000 ROA not before: Tue 02 Dec 2025 16:55:00 +0000 ROA not after: Tue 01 Dec 2026 17:00:00 +0000 asID: 142389 IP address blocks: 103.172.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:21:0d:52:c9:e0:f6:c5:ed:77:76:a5:13:d0:11:16:a3:a1:b2:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 2 16:55:00 2025 GMT Not After : Dec 1 17:00:00 2026 GMT Subject: CN=087AD79322BA8F6A03D1CC1A424E607F494E6B8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:15:96:a7:b0:fe:93:fa:48:82:a3:1c:32:d5: d6:51:2b:98:e3:fd:9b:33:0f:5a:38:4d:c6:bc:90: 33:99:68:5e:2c:17:a2:7e:9b:46:90:69:42:b4:6b: 95:94:e7:f3:06:df:f0:f1:39:b9:86:9a:4f:9a:84: ce:67:67:2e:f8:ab:e3:92:25:50:be:0f:e3:02:07: 62:a0:7d:7e:bb:69:b1:56:4c:0d:35:4e:56:8d:24: d9:a9:10:c4:44:32:a0:93:fa:76:bc:5f:b9:df:67: 89:47:d6:b8:69:e9:97:ab:69:2a:85:f2:1c:b1:11: 24:d7:5f:5f:be:93:49:b4:1c:4b:65:64:11:9d:a8: 47:51:11:51:95:57:4d:87:d3:23:87:c4:4a:74:f1: 97:19:3c:57:c3:ef:a3:32:5d:6e:1e:8e:ba:95:c8: 33:5d:11:99:45:92:47:f2:28:33:57:a9:f0:fb:24: aa:4f:4b:36:1a:3e:97:5c:32:c9:e8:17:68:fb:3a: f9:fc:23:e0:e0:db:ca:01:8f:c1:9f:c6:e4:17:41: f5:d6:50:76:ba:13:76:e7:4b:9c:07:07:3c:1e:01: a3:39:03:27:c3:68:aa:1c:02:26:9d:57:9b:bd:c7: 7f:f3:0a:b5:25:91:67:c2:97:16:0f:c5:b5:84:27: c1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7A:D7:93:22:BA:8F:6A:03:D1:CC:1A:42:4E:60:7F:49:4E:6B:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142389.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.144.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:66:ad:3c:66:18:f6:9c:27:29:56:df:34:36:75:b2:0c:cd: c1:e8:96:8f:48:23:65:6a:0b:d1:7e:c4:86:de:0c:aa:c1:76: 16:67:dc:a6:36:69:5e:a3:b9:98:8c:99:9c:00:3d:f8:b0:51: 34:cc:d8:7f:4a:f4:fd:e6:27:e2:f3:c0:08:98:af:2d:89:9f: ee:d5:4e:7e:a6:f6:05:ec:80:c2:d1:3e:ad:b4:ca:ed:0a:68: e5:e2:0e:47:e3:bb:0f:1d:e1:ac:fc:77:82:f6:86:fd:3f:64: ed:d1:80:d0:77:7e:b8:7f:8b:07:48:0a:24:ee:b0:08:59:f8: 5b:b9:fe:5a:f6:85:e9:02:99:9b:e9:3a:02:8e:7e:86:89:1e: 2a:de:e3:c4:c1:fb:18:b0:bf:de:48:64:94:15:7b:d6:bc:c6: 6b:5b:45:c2:85:18:4e:47:a7:49:41:6c:b6:fe:73:60:7e:38: 27:18:86:c9:ac:35:9f:97:ba:bd:99:8f:75:78:75:4e:68:e6: 1c:c6:c8:9e:a1:3d:3e:16:20:af:aa:3d:8a:d7:9f:78:02:c3: cd:24:46:c8:34:b7:65:e0:11:f0:aa:55:a0:b7:30:94:33:bb: f7:80:19:4b:71:56:24:f5:eb:c5:60:a2:c8:ac:34:34:d6:01: 04:b4:be:6b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOyENUsng9sXtd3alE9ARFqOhstUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIwMjE2NTUwMFoX DTI2MTIwMTE3MDAwMFowMzExMC8GA1UEAxMoMDg3QUQ3OTMyMkJBOEY2QTAzRDFD QzFBNDI0RTYwN0Y0OTRFNkI4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgVlqew/pP6SIKjHDLV1lErmOP9mzMPWjhNxryQM5loXiwXon6bRpBpQrRr lZTn8wbf8PE5uYaaT5qEzmdnLvir45IlUL4P4wIHYqB9frtpsVZMDTVOVo0k2akQ xEQyoJP6drxfud9niUfWuGnpl6tpKoXyHLERJNdfX76TSbQcS2VkEZ2oR1ERUZVX TYfTI4fESnTxlxk8V8PvozJdbh6OupXIM10RmUWSR/IoM1ep8Pskqk9LNho+l1wy yegXaPs6+fwj4ODbygGPwZ/G5BdB9dZQdroTdudLnAcHPB4BozkDJ8NoqhwCJp1X m73Hf/MKtSWRZ8KXFg/FtYQnwTcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQIeteT IrqPagPRzBpCTmB/SU5rijAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM4OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeskDANBgkqhkiG9w0BAQsFAAOCAQEAH2atPGYY9pwnKVbfNDZ1 sgzNweiWj0gjZWoL0X7Eht4MqsF2FmfcpjZpXqO5mIyZnAA9+LBRNMzYf0r0/eYn 4vPACJivLYmf7tVOfqb2BeyAwtE+rbTK7Qpo5eIOR+O7Dx3hrPx3gvaG/T9k7dGA 0Hd+uH+LB0gKJO6wCFn4W7n+WvaF6QKZm+k6Ao5+hokeKt7jxMH7GLC/3khklBV7 1rzGa1tFwoUYTkenSUFstv5zYH44JxiGyaw1n5e6vZmPdXh1TmjmHMbInqE9PhYg r6o9itefeALDzSRGyDS3ZeAR8KpVoLcwlDO794AZS3FWJPXrxWCiyKw0NNYBBLS+ aw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:28 2025 by rpki-client