This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140437.roa File: AS140437.roa (raw, json) Hash identifier: Zqir+0FNe54lMCYg5I3HsXCZEpeB9ueoaNatrkdPai0= Subject key identifier: 4C:06:BE:4A:C3:8A:98:95:4C:56:3F:F3:4A:D0:08:10:BC:FA:BA:70 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4C3AB8EAC088F2C95D5F2426443D49D7EA9DEB04 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140437.roa Signing time: Tue 11 Nov 2025 06:00:20 +0000 ROA not before: Tue 11 Nov 2025 05:55:20 +0000 ROA not after: Tue 10 Nov 2026 06:00:20 +0000 asID: 140437 IP address blocks: 103.151.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3a:b8:ea:c0:88:f2:c9:5d:5f:24:26:44:3d:49:d7:ea:9d:eb:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:20 2025 GMT Not After : Nov 10 06:00:20 2026 GMT Subject: CN=4C06BE4AC38A98954C563FF34AD00810BCFABA70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:00:da:48:c9:0c:0d:81:7c:d4:36:84:91:07: 1b:e9:97:cb:f6:39:a2:17:0f:f9:5b:49:fa:de:38: 46:3a:c7:28:1f:d9:0e:77:c9:6d:f9:6b:4f:1e:e1: af:c0:74:75:3e:81:c3:ae:78:f9:ed:aa:d4:37:66: b3:a2:89:1f:6e:6d:41:f1:fb:81:52:82:34:8f:da: be:db:5e:8f:3c:7b:ec:ed:63:3d:38:aa:7a:c6:71: 71:85:c7:70:26:35:f8:35:2a:2e:71:99:a5:25:d9: 6c:68:65:21:37:9a:8d:72:fc:49:e3:3e:ab:cb:62: 37:23:a9:72:22:cf:6b:a6:af:57:68:4a:ad:fc:4f: 97:ab:6f:07:ec:36:28:b7:b7:5d:cf:7d:7f:f9:c3: 06:fc:37:30:bb:59:62:ec:0b:dc:95:78:e7:c4:ba: 63:95:aa:1d:06:35:cb:1e:01:70:80:82:cd:d3:ed: ce:6d:f7:f4:ad:92:4e:09:b8:c9:c3:f7:d0:17:df: be:b2:44:d4:7e:5e:bd:bd:45:aa:1a:79:83:74:80: c6:67:b5:5d:18:81:91:be:33:b7:63:de:61:b8:6c: 76:5e:05:f3:03:2f:ab:e2:72:33:e8:a5:e1:3f:c5: 80:f3:03:dd:ba:f6:eb:a5:bb:cd:c0:49:87:af:78: 3f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:06:BE:4A:C3:8A:98:95:4C:56:3F:F3:4A:D0:08:10:BC:FA:BA:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.246.0/23 Signature Algorithm: sha256WithRSAEncryption 43:cc:91:a0:ed:d3:85:1c:86:cc:83:9b:32:a4:5c:d1:4f:e5: a1:b8:57:c8:4a:5a:bd:50:46:3d:75:0b:bc:17:11:33:17:38: ae:3e:58:2f:1e:5c:6b:9d:15:db:8c:36:e3:f3:4d:65:3f:1d: 08:b0:a8:be:01:aa:44:f7:fd:5a:21:c2:b3:bd:64:06:95:23: 5f:d7:5e:17:bc:7a:03:e2:f2:6e:e2:44:a1:4e:68:c6:f0:e5: 6a:75:bb:15:d4:a5:8a:4f:6b:16:01:a3:10:05:a3:0f:9f:65: 95:10:03:aa:06:be:31:a2:74:da:85:41:b2:3e:62:a3:b1:aa: 07:b3:2a:97:7b:9b:80:a7:cd:fe:ba:dc:51:a9:f3:db:f8:f5: e2:43:68:d0:3d:07:60:e7:bd:1c:a8:8f:5c:b6:7b:ca:00:70: 77:d3:b5:40:29:e7:17:51:9f:11:b8:7f:91:06:cf:ab:96:ed: b1:43:42:1d:b5:23:4b:65:fc:35:d5:75:0c:8f:34:3f:ba:09: c9:50:d6:b9:9f:c3:0d:e1:99:c2:1a:76:62:f9:13:3e:3d:c2: 3f:eb:d3:b1:d9:b1:d6:05:d3:de:5e:c6:b4:3f:0d:c0:90:d4: 6f:3c:95:89:69:83:7b:b7:22:18:d9:3a:77:df:38:ca:d1:34: da:67:04:63 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTDq46sCI8sldXyQmRD1J1+qd6wQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyMFoX DTI2MTExMDA2MDAyMFowMzExMC8GA1UEAxMoNEMwNkJFNEFDMzhBOTg5NTRDNTYz RkYzNEFEMDA4MTBCQ0ZBQkE3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALUA2kjJDA2BfNQ2hJEHG+mXy/Y5ohcP+VtJ+t44RjrHKB/ZDnfJbflrTx7h r8B0dT6Bw654+e2q1Ddms6KJH25tQfH7gVKCNI/avttejzx77O1jPTiqesZxcYXH cCY1+DUqLnGZpSXZbGhlITeajXL8SeM+q8tiNyOpciLPa6avV2hKrfxPl6tvB+w2 KLe3Xc99f/nDBvw3MLtZYuwL3JV458S6Y5WqHQY1yx4BcICCzdPtzm339K2STgm4 ycP30BffvrJE1H5evb1Fqhp5g3SAxme1XRiBkb4zt2PeYbhsdl4F8wMvq+JyM+il 4T/FgPMD3br266W7zcBJh694P0sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRMBr5K w4qYlUxWP/NK0AgQvPq6cDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeX9jANBgkqhkiG9w0BAQsFAAOCAQEAQ8yRoO3ThRyGzIObMqRc 0U/lobhXyEpavVBGPXULvBcRMxc4rj5YLx5ca50V24w24/NNZT8dCLCovgGqRPf9 WiHCs71kBpUjX9deF7x6A+LybuJEoU5oxvDlanW7FdSlik9rFgGjEAWjD59llRAD qga+MaJ02oVBsj5io7GqB7Mql3ubgKfN/rrcUanz2/j14kNo0D0HYOe9HKiPXLZ7 ygBwd9O1QCnnF1GfEbh/kQbPq5btsUNCHbUjS2X8NdV1DI80P7oJyVDWuZ/DDeGZ whp2YvkTPj3CP+vTsdmx1gXT3l7GtD8NwJDUbzyViWmDe7ciGNk6d984ytE02mcE Yw== -----END CERTIFICATE-----Generated at Sun Dec 7 01:36:12 2025 by rpki-client