This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142390.roa File: AS142390.roa (raw, json) Hash identifier: ZOncHl0UcF7M1E3TNSwtDbe1GEoFjW4HI1ibZ9vF8js= Subject key identifier: A0:50:22:F0:99:11:35:4F:50:43:91:66:78:AD:31:4C:24:98:7F:20 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 20E99B8CE92ACAC6262871D3A2A01553BF0AFD11 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142390.roa Signing time: Tue 11 Nov 2025 04:00:00 +0000 ROA not before: Tue 11 Nov 2025 03:55:00 +0000 ROA not after: Tue 10 Nov 2026 04:00:00 +0000 asID: 142390 IP address blocks: 103.171.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e9:9b:8c:e9:2a:ca:c6:26:28:71:d3:a2:a0:15:53:bf:0a:fd:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 03:55:00 2025 GMT Not After : Nov 10 04:00:00 2026 GMT Subject: CN=A05022F09911354F5043916678AD314C24987F20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4a:1a:49:62:58:c2:1d:04:5f:c2:5a:e3:89: 46:36:73:da:b6:fe:e1:e3:ad:6c:9d:46:b7:96:21: 68:b0:9f:26:46:0f:b5:0f:e9:ee:79:df:3a:ed:4b: 54:54:28:83:7c:8e:54:23:8d:c1:29:36:6a:dc:13: a4:87:d8:84:01:e6:10:92:d9:fc:27:de:45:5d:e0: 8b:10:55:a8:ee:1d:3f:85:16:2a:35:17:76:e3:31: bc:be:31:51:4c:50:11:a9:eb:da:01:96:0b:5d:b5: 15:d4:5f:14:aa:44:31:03:69:8c:ca:6f:a8:e1:4b: 75:2b:a4:4a:7b:94:fe:9d:a6:55:5b:ee:19:9d:f1: 0d:ad:01:5d:a9:33:86:ba:a5:5a:b3:71:96:f3:2a: b8:3a:0c:f9:d7:58:f0:19:8b:25:cf:d6:a0:1b:93: 5d:71:db:6b:93:1d:b1:00:31:d0:cf:1d:f5:89:7f: 54:df:4a:17:a0:fa:7b:3f:31:ee:de:36:09:98:4c: 45:f1:31:22:33:1b:1d:c0:20:74:69:0f:ab:6f:d6: 04:41:d1:ef:8a:8a:8d:41:7d:90:44:c9:25:b9:62: 01:3b:13:50:41:94:fb:c9:dc:70:c1:2c:b1:5f:64: 0c:16:44:13:bf:39:bb:b2:af:6f:cf:e8:90:b2:cc: ac:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:50:22:F0:99:11:35:4F:50:43:91:66:78:AD:31:4C:24:98:7F:20 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142390.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.240.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:98:28:fc:53:fb:1e:bb:6a:81:49:63:3f:53:18:f5:bd:b7: fc:a1:dc:22:7e:76:52:ca:d6:17:f1:3f:bc:5f:80:46:0b:09: d2:0e:ef:a6:73:09:3b:fb:a7:d9:3d:40:ea:85:3c:1c:d2:af: 56:5c:9a:16:f9:ee:de:ea:66:50:c4:00:09:2a:d6:6b:eb:4f: b1:5a:d0:28:90:29:e3:bb:96:92:b4:ac:69:3d:19:96:e6:1a: ed:c9:3c:ca:79:c4:ea:b6:77:a0:45:d4:9d:46:0a:d8:32:cc: bb:63:03:22:1d:60:68:82:0c:9f:13:08:3a:0b:6e:1f:6f:1d: c6:17:c4:7c:25:d3:33:3f:3b:97:41:88:14:3c:20:c9:1e:02: ed:0d:ca:09:fe:d2:2d:a4:39:bf:14:65:9d:3f:84:04:22:08: e5:3d:10:da:eb:7c:ea:0c:61:52:e7:a4:ee:52:38:ae:3e:c9: bb:23:d7:0e:b5:9f:b9:cb:13:68:5a:b2:b7:c9:87:94:97:8d: 06:38:2b:18:ff:d8:99:94:ad:df:99:90:59:94:c1:1a:4a:d1: 2b:80:d0:e8:4f:43:0e:16:74:fa:73:f2:09:04:15:f9:8d:57: 1b:79:ba:c6:4e:4f:c3:34:21:b0:93:01:1a:5e:c4:87:a5:52: 7d:68:79:05 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIOmbjOkqysYmKHHToqAVU78K/REwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTAzNTUwMFoX DTI2MTExMDA0MDAwMFowMzExMC8GA1UEAxMoQTA1MDIyRjA5OTExMzU0RjUwNDM5 MTY2NzhBRDMxNEMyNDk4N0YyMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOxKGkliWMIdBF/CWuOJRjZz2rb+4eOtbJ1Gt5YhaLCfJkYPtQ/p7nnfOu1L VFQog3yOVCONwSk2atwTpIfYhAHmEJLZ/CfeRV3gixBVqO4dP4UWKjUXduMxvL4x UUxQEanr2gGWC121FdRfFKpEMQNpjMpvqOFLdSukSnuU/p2mVVvuGZ3xDa0BXakz hrqlWrNxlvMquDoM+ddY8BmLJc/WoBuTXXHba5MdsQAx0M8d9Yl/VN9KF6D6ez8x 7t42CZhMRfExIjMbHcAgdGkPq2/WBEHR74qKjUF9kETJJbliATsTUEGU+8nccMEs sV9kDBZEE785u7Kvb8/okLLMrOkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSgUCLw mRE1T1BDkWZ4rTFMJJh/IDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWer8DANBgkqhkiG9w0BAQsFAAOCAQEAmpgo/FP7HrtqgUljP1MY 9b23/KHcIn52UsrWF/E/vF+ARgsJ0g7vpnMJO/un2T1A6oU8HNKvVlyaFvnu3upm UMQACSrWa+tPsVrQKJAp47uWkrSsaT0ZluYa7ck8ynnE6rZ3oEXUnUYK2DLMu2MD Ih1gaIIMnxMIOgtuH28dxhfEfCXTMz87l0GIFDwgyR4C7Q3KCf7SLaQ5vxRlnT+E BCII5T0Q2ut86gxhUuek7lI4rj7JuyPXDrWfucsTaFqyt8mHlJeNBjgrGP/YmZSt 35mQWZTBGkrRK4DQ6E9DDhZ0+nPyCQQV+Y1XG3m6xk5PwzQhsJMBGl7Eh6VSfWh5 BQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:57 2025 by rpki-client