This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140424.roa File: AS140424.roa (raw, json) Hash identifier: sxcOLtoE3XkzkuBv+Fgj0Wn9iG8ICoTNjM26k5Xw3BA= Subject key identifier: 0B:8D:19:CC:D1:C4:80:E0:16:69:DE:46:DD:6C:60:E1:AA:0A:A3:29 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D8267B8A28AEF11C1F8B523B3AFF961246667BE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140424.roa Signing time: Tue 20 Jan 2026 02:00:00 +0000 ROA not before: Tue 20 Jan 2026 01:55:00 +0000 ROA not after: Tue 19 Jan 2027 02:00:00 +0000 asID: 140424 IP address blocks: 103.151.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:82:67:b8:a2:8a:ef:11:c1:f8:b5:23:b3:af:f9:61:24:66:67:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 20 01:55:00 2026 GMT Not After : Jan 19 02:00:00 2027 GMT Subject: CN=0B8D19CCD1C480E01669DE46DD6C60E1AA0AA329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bd:a9:e3:f4:b0:75:ad:df:04:30:33:df:4e: 6b:88:2a:34:53:06:8f:9f:74:58:f1:f6:52:51:d0: c9:9c:36:ea:a6:35:fd:9a:34:eb:96:4a:49:ab:0d: 4f:28:6e:d8:43:14:ea:60:d6:2c:7d:ec:40:0b:c1: 7b:24:75:f1:01:38:33:af:17:3c:5d:66:90:ba:28: a7:79:1d:c0:17:2a:1c:58:61:7a:95:08:64:c9:bd: 15:f9:ec:c1:25:48:51:03:b2:a1:02:86:97:45:bf: d4:73:92:04:4e:31:9d:34:c5:53:07:4e:63:9a:dc: 2a:7f:4f:ba:1e:ec:50:c6:32:22:d0:45:7a:77:7b: 7a:38:15:50:79:46:59:7a:df:70:8b:69:e7:59:11: 41:54:19:7b:df:54:79:6c:3b:f5:5a:42:42:2d:e4: 88:e8:be:9b:9f:5a:e3:ab:36:62:22:25:72:1f:9a: 89:8a:81:54:15:8b:f7:78:d5:59:71:dc:fc:ac:13: 27:ca:28:95:34:e7:26:ec:9f:28:a1:f6:a2:36:b8: 46:a3:c1:d6:3a:59:0b:b4:1c:d2:f1:1e:b8:48:66: f4:2e:13:ac:28:ff:16:ed:57:a0:f2:43:2d:0b:01: 09:22:2f:2b:b5:89:56:d4:7b:87:e6:69:09:28:ec: 64:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:8D:19:CC:D1:C4:80:E0:16:69:DE:46:DD:6C:60:E1:AA:0A:A3:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140424.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.191.0/24 Signature Algorithm: sha256WithRSAEncryption 71:0b:9b:ba:93:01:6c:7b:09:f2:9e:19:85:0d:e5:73:cf:13: 03:62:47:e8:d0:43:8a:e0:7a:42:a8:b2:6a:72:24:3c:68:c8: d5:48:b5:db:53:9d:a0:4f:0f:31:8b:14:e9:9c:d6:4f:5a:e3: 82:2c:cd:cb:0c:dd:9e:82:31:72:0c:44:c8:f6:c4:c6:a1:19: 90:66:88:a0:be:59:93:6b:d8:1a:3f:d5:0b:8e:48:4e:80:40: 29:4b:56:9e:21:42:2d:45:d9:3b:18:e8:74:9a:c4:7f:a0:88: 59:c6:8e:1f:17:03:2f:00:3b:19:13:c4:97:da:9c:18:1c:3b: 0c:b6:85:28:40:50:09:b6:2c:f0:f1:2f:42:6c:eb:e5:24:3c: 88:f3:0e:3c:e6:a2:1c:5e:c4:c8:50:41:d6:9e:92:81:e4:76: 2b:70:ed:16:b0:e5:4e:8b:a9:6a:a6:29:d9:45:9a:4c:23:aa: 05:a3:67:2e:62:cc:c6:61:96:1f:fe:ca:5e:1d:20:af:04:2b: ce:73:ac:ff:42:38:26:d7:6c:5a:5b:69:a1:94:f7:a6:4a:d7: 2f:37:a3:02:2c:65:3e:8a:37:33:05:5b:1b:15:f2:21:40:01: 6f:79:1e:0f:5a:92:94:6c:1b:e0:43:2c:a6:cb:00:53:67:f1: 66:63:58:a9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPYJnuKKK7xHB+LUjs6/5YSRmZ74wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyMDAxNTUwMFoX DTI3MDExOTAyMDAwMFowMzExMC8GA1UEAxMoMEI4RDE5Q0NEMUM0ODBFMDE2NjlE RTQ2REQ2QzYwRTFBQTBBQTMyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALC9qeP0sHWt3wQwM99Oa4gqNFMGj590WPH2UlHQyZw26qY1/Zo065ZKSasN Tyhu2EMU6mDWLH3sQAvBeyR18QE4M68XPF1mkLoop3kdwBcqHFhhepUIZMm9Ffns wSVIUQOyoQKGl0W/1HOSBE4xnTTFUwdOY5rcKn9Puh7sUMYyItBFend7ejgVUHlG WXrfcItp51kRQVQZe99UeWw79VpCQi3kiOi+m59a46s2YiIlch+aiYqBVBWL93jV WXHc/KwTJ8oolTTnJuyfKKH2oja4RqPB1jpZC7Qc0vEeuEhm9C4TrCj/Fu1XoPJD LQsBCSIvK7WJVtR7h+ZpCSjsZIcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQLjRnM 0cSA4BZp3kbdbGDhqgqjKTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeXvzANBgkqhkiG9w0BAQsFAAOCAQEAcQubupMBbHsJ8p4ZhQ3l c88TA2JH6NBDiuB6QqiyanIkPGjI1Ui121OdoE8PMYsU6ZzWT1rjgizNywzdnoIx cgxEyPbExqEZkGaIoL5Zk2vYGj/VC45IToBAKUtWniFCLUXZOxjodJrEf6CIWcaO HxcDLwA7GRPEl9qcGBw7DLaFKEBQCbYs8PEvQmzr5SQ8iPMOPOaiHF7EyFBB1p6S geR2K3DtFrDlToupaqYp2UWaTCOqBaNnLmLMxmGWH/7KXh0grwQrznOs/0I4Jtds WltpoZT3pkrXLzejAixlPoo3MwVbGxXyIUABb3keD1qSlGwb4EMspssAU2fxZmNY qQ== -----END CERTIFICATE-----Generated at Sun Jan 25 18:24:42 2026 by rpki-client