This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142220.roa File: AS142220.roa (raw, json) Hash identifier: vHmbCeNhPAUBcJLodvZTjQc9Ev0LAx6akumLLrwnZTo= Subject key identifier: 5E:13:EF:7E:60:D1:9A:BF:BB:7E:9B:71:51:6C:44:F3:48:A9:2E:3C Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 085418DF7C298FB067AE3DA4572AF088C468C192 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142220.roa Signing time: Thu 22 Jan 2026 02:29:11 +0000 ROA not before: Thu 22 Jan 2026 02:24:11 +0000 ROA not after: Thu 21 Jan 2027 02:29:11 +0000 asID: 142220 IP address blocks: 192.135.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 21:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:54:18:df:7c:29:8f:b0:67:ae:3d:a4:57:2a:f0:88:c4:68:c1:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 22 02:24:11 2026 GMT Not After : Jan 21 02:29:11 2027 GMT Subject: CN=5E13EF7E60D19ABFBB7E9B71516C44F348A92E3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6f:4d:40:22:d7:6b:18:d0:23:c5:83:e2:6d: 6a:85:f3:d7:41:c9:4f:1d:f2:d3:0e:53:f7:24:8a: ed:10:99:7b:71:c7:dd:52:8d:5c:6c:1b:8b:97:a5: 88:f3:e8:a1:6c:a8:31:db:67:9c:c3:1c:f0:9a:c3: 33:94:b2:b1:51:13:b8:12:55:42:12:d9:f8:ac:d8: 77:6a:3b:68:ed:af:5a:13:35:2f:21:93:c1:18:ff: 66:1b:48:0d:6b:dc:1a:58:19:91:b1:c4:03:3d:ae: e8:66:6c:e1:f9:cb:4a:69:37:a3:bc:2b:f9:71:5c: 92:22:cc:3e:fa:fb:ce:eb:00:54:ff:9f:ed:b9:98: 65:a6:48:6a:f1:97:6e:b7:4a:f0:d3:32:22:88:2d: 72:ed:69:13:cf:4c:fe:9e:d0:5e:67:be:62:6e:88: 7c:f3:4d:d5:bf:bb:4d:20:6f:d0:15:47:88:a4:5d: 1d:a8:cd:7e:18:db:cc:4b:d0:78:21:41:e2:7c:6e: 66:cd:83:0e:2d:4d:12:0a:f4:f8:16:3b:3a:6d:30: 99:63:8c:ca:2d:1d:6e:72:b7:36:3d:17:84:ac:82: cc:57:90:9f:d4:7d:07:46:4b:c0:2f:41:9e:f0:3b: 03:15:b2:54:b7:73:11:8b:c1:ac:1a:11:85:de:15: 23:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:13:EF:7E:60:D1:9A:BF:BB:7E:9B:71:51:6C:44:F3:48:A9:2E:3C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS142220.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.135.210.0/24 Signature Algorithm: sha256WithRSAEncryption 85:bd:2c:17:1f:8f:62:64:07:53:1e:a9:55:1a:f3:88:87:60: 51:d4:df:71:02:65:36:c6:e4:ba:e5:f2:70:2d:ea:f5:b6:81: 2f:53:61:63:80:86:5b:88:95:3a:70:4d:75:76:90:c6:50:bd: 04:bd:80:3e:fd:47:22:22:25:51:c7:17:1b:21:53:b6:b0:be: f5:3b:a1:e5:d5:0a:67:1f:b7:21:10:53:36:c0:d6:07:e4:e1: 84:b7:e7:e9:d8:e0:4b:51:2d:4c:40:d6:90:77:6b:a3:63:75: 3e:f5:47:a7:d5:40:90:c3:25:60:da:5c:8c:cf:43:99:69:a8: 69:ef:0f:33:3b:f4:65:01:03:8a:bc:46:58:e5:a2:6b:0d:01: 8e:a7:f2:35:ba:f8:de:65:24:95:5a:3f:6b:63:19:b6:6a:7b: 09:12:e5:e9:2b:bb:17:38:4d:a2:37:b7:ff:9b:b7:20:07:79: c9:0a:7a:4c:5b:54:0c:bf:d2:9a:29:60:d4:08:8a:66:2c:6e: 9f:c0:26:de:e6:a0:62:24:a2:39:2b:a0:51:56:45:d7:c6:51: 40:02:59:f0:54:b1:af:24:56:2d:75:69:38:1a:dc:a3:f5:50: 23:4e:ec:b7:95:cf:8c:52:0d:3a:ca:2e:ec:37:c9:26:40:f3: 26:9a:23:3c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCFQY33wpj7Bnrj2kVyrwiMRowZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEyMjAyMjQxMVoX DTI3MDEyMTAyMjkxMVowMzExMC8GA1UEAxMoNUUxM0VGN0U2MEQxOUFCRkJCN0U5 QjcxNTE2QzQ0RjM0OEE5MkUzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJvTUAi12sY0CPFg+JtaoXz10HJTx3y0w5T9ySK7RCZe3HH3VKNXGwbi5el iPPooWyoMdtnnMMc8JrDM5SysVETuBJVQhLZ+KzYd2o7aO2vWhM1LyGTwRj/ZhtI DWvcGlgZkbHEAz2u6GZs4fnLSmk3o7wr+XFckiLMPvr7zusAVP+f7bmYZaZIavGX brdK8NMyIogtcu1pE89M/p7QXme+Ym6IfPNN1b+7TSBv0BVHiKRdHajNfhjbzEvQ eCFB4nxuZs2DDi1NEgr0+BY7Om0wmWOMyi0dbnK3Nj0XhKyCzFeQn9R9B0ZLwC9B nvA7AxWyVLdzEYvBrBoRhd4VIzECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBReE+9+ YNGav7t+m3FRbETzSKkuPDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0MjIyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMCH0jANBgkqhkiG9w0BAQsFAAOCAQEAhb0sFx+PYmQHUx6pVRrz iIdgUdTfcQJlNsbkuuXycC3q9baBL1NhY4CGW4iVOnBNdXaQxlC9BL2APv1HIiIl UccXGyFTtrC+9Tuh5dUKZx+3IRBTNsDWB+ThhLfn6djgS1EtTEDWkHdro2N1PvVH p9VAkMMlYNpcjM9DmWmoae8PMzv0ZQEDirxGWOWiaw0BjqfyNbr43mUklVo/a2MZ tmp7CRLl6Su7FzhNoje3/5u3IAd5yQp6TFtUDL/Smilg1AiKZixun8Am3uagYiSi OSugUVZF18ZRQAJZ8FSxryRWLXVpOBrco/VQI07st5XPjFINOsou7DfJJkDzJpoj PA== -----END CERTIFICATE-----Generated at Mon Jan 26 03:02:29 2026 by rpki-client