This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140472.roa File: AS140472.roa (raw, json) Hash identifier: +YKFO4MdwLvIHpagtdJUK8RBSSSLaLXasOmUR6tTkX0= Subject key identifier: 90:00:AF:A1:2C:6F:3E:89:AE:39:C0:F8:7F:7B:21:5A:10:CE:B9:9D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6DBF769D43511DC12A97C4D37110B853C4A582D5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140472.roa Signing time: Tue 11 Nov 2025 06:00:04 +0000 ROA not before: Tue 11 Nov 2025 05:55:04 +0000 ROA not after: Tue 10 Nov 2026 06:00:04 +0000 asID: 140472 IP address blocks: 103.153.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:bf:76:9d:43:51:1d:c1:2a:97:c4:d3:71:10:b8:53:c4:a5:82:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:04 2025 GMT Not After : Nov 10 06:00:04 2026 GMT Subject: CN=9000AFA12C6F3E89AE39C0F87F7B215A10CEB99D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:15:f3:e6:7c:3e:b9:9c:65:b4:86:fc:16:68: f1:7e:36:8f:9e:e3:15:20:5d:5c:00:4e:0b:9b:c0: b8:83:d3:1b:49:40:b2:2f:8b:f7:1b:95:50:80:8f: 88:98:f5:09:41:02:48:14:94:a4:ad:95:d3:77:83: 12:a0:76:ab:40:16:e3:85:67:9f:f2:26:3e:b0:fb: 3a:d1:de:c9:5d:4b:5b:db:b2:e4:e6:34:ce:ab:d7: 91:83:cf:24:02:ec:89:48:73:bc:69:5c:98:8e:9a: d2:c1:81:65:f3:0f:54:48:9f:7a:b2:d8:88:75:8d: fe:e1:44:03:e2:e1:86:4e:79:47:ed:d1:29:50:72: 23:25:e1:e5:a2:ef:b8:6b:a0:a5:8c:1b:19:32:52: cd:3d:6e:95:00:4c:60:bb:39:0f:20:e2:8b:86:fe: 23:a6:b4:23:1f:0c:01:ff:30:54:3b:ed:b2:44:1a: 0f:2e:07:4d:54:95:2e:4f:b1:ca:87:1b:f3:c9:39: 59:83:40:8a:b8:62:38:af:a2:bf:97:ed:17:a5:00: c6:71:ea:09:fe:96:c4:3a:d5:1d:6a:91:c5:3e:95: 76:cb:6d:82:df:1a:08:59:6a:cc:2e:1c:c6:f7:b3: 55:78:02:35:5b:dc:cf:21:51:d6:ce:56:67:04:90: d7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:00:AF:A1:2C:6F:3E:89:AE:39:C0:F8:7F:7B:21:5A:10:CE:B9:9D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140472.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.192.0/23 Signature Algorithm: sha256WithRSAEncryption 95:5b:a5:81:96:c6:5e:5d:1d:88:5b:82:56:33:33:ef:8c:e6: be:03:99:df:0a:40:f0:18:42:d1:c7:a5:e9:6f:ac:71:3d:f6: d6:88:fe:11:38:91:44:ce:27:6b:85:2f:c8:7f:40:42:61:b0: f1:7c:df:6c:63:16:90:8e:e0:4c:ca:6f:b2:0a:e9:9e:df:12: 6e:1d:bd:d1:a6:96:83:bc:a2:48:e4:54:83:08:1a:9d:5e:0a: e1:04:49:10:a5:b2:a0:d0:19:7a:cf:7e:b9:56:63:93:da:79: 77:7e:d1:14:72:11:61:ce:3c:0b:0b:1f:83:a5:7c:c1:cd:30: f9:40:14:c3:10:9a:0e:1f:34:e9:51:ec:be:1e:56:e3:13:aa: 3e:ad:d1:bb:1d:9b:86:be:c6:b1:c8:cd:77:04:76:84:cb:8f: 9f:64:25:f8:04:e3:a7:1e:f7:3a:bc:eb:fe:d9:ec:fc:ac:58: c8:8a:fc:1f:13:95:a2:92:f5:2b:69:f9:8e:a1:c6:07:dd:c5: 23:38:2a:5a:bc:78:a9:c2:64:f4:3a:23:c0:5f:6f:c3:29:8a: 48:65:b9:2c:cf:6c:ef:a4:ae:95:61:4d:2f:31:bc:58:3c:35: 51:b7:18:b0:3d:d7:5d:29:b5:d2:5a:7a:c1:24:1f:11:40:c5: b1:ba:b0:e6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUbb92nUNRHcEql8TTcRC4U8SlgtUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwNFoX DTI2MTExMDA2MDAwNFowMzExMC8GA1UEAxMoOTAwMEFGQTEyQzZGM0U4OUFFMzlD MEY4N0Y3QjIxNUExMENFQjk5RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUV8+Z8PrmcZbSG/BZo8X42j57jFSBdXABOC5vAuIPTG0lAsi+L9xuVUICP iJj1CUECSBSUpK2V03eDEqB2q0AW44Vnn/ImPrD7OtHeyV1LW9uy5OY0zqvXkYPP JALsiUhzvGlcmI6a0sGBZfMPVEiferLYiHWN/uFEA+Lhhk55R+3RKVByIyXh5aLv uGugpYwbGTJSzT1ulQBMYLs5DyDii4b+I6a0Ix8MAf8wVDvtskQaDy4HTVSVLk+x yocb88k5WYNAirhiOK+iv5ftF6UAxnHqCf6WxDrVHWqRxT6Vdsttgt8aCFlqzC4c xvezVXgCNVvczyFR1s5WZwSQ15UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSQAK+h LG8+ia45wPh/eyFaEM65nTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQ3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeZwDANBgkqhkiG9w0BAQsFAAOCAQEAlVulgZbGXl0diFuCVjMz 74zmvgOZ3wpA8BhC0cel6W+scT321oj+ETiRRM4na4UvyH9AQmGw8XzfbGMWkI7g TMpvsgrpnt8Sbh290aaWg7yiSORUgwganV4K4QRJEKWyoNAZes9+uVZjk9p5d37R FHIRYc48Cwsfg6V8wc0w+UAUwxCaDh806VHsvh5W4xOqPq3Rux2bhr7GscjNdwR2 hMuPn2Ql+ATjpx73Orzr/tns/KxYyIr8HxOVopL1K2n5jqHGB93FIzgqWrx4qcJk 9DojwF9vwymKSGW5LM9s76SulWFNLzG8WDw1UbcYsD3XXSm10lp6wSQfEUDFsbqw 5g== -----END CERTIFICATE-----Generated at Sat Dec 6 21:53:18 2025 by rpki-client