This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140966.roa File: AS140966.roa (raw, json) Hash identifier: /C1vRikY2zjabOvghCm+QVbtUkZVWry9gnAGZkOYP9g= Subject key identifier: C7:20:FF:65:13:B7:60:94:0F:45:9C:52:0B:3B:B2:2A:4B:55:E7:7E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5CD01D794AE55B347FB524B972FFF47D28788A8D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140966.roa Signing time: Mon 05 Jan 2026 03:33:18 +0000 ROA not before: Mon 05 Jan 2026 03:28:18 +0000 ROA not after: Mon 04 Jan 2027 03:33:18 +0000 asID: 140966 IP address blocks: 2001:df6:7f40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:d0:1d:79:4a:e5:5b:34:7f:b5:24:b9:72:ff:f4:7d:28:78:8a:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 5 03:28:18 2026 GMT Not After : Jan 4 03:33:18 2027 GMT Subject: CN=C720FF6513B760940F459C520B3BB22A4B55E77E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:a6:03:67:32:3d:29:ce:bb:d2:37:c4:96:24: f1:58:92:06:f9:5d:09:45:3b:f6:f9:72:43:9a:7a: e8:72:56:be:aa:e8:ad:bc:ad:09:09:ce:13:20:2f: 40:cd:21:69:15:a2:77:3a:22:41:ab:21:2b:6d:00: 47:7e:54:2a:2c:da:f9:1b:77:a8:2c:73:8c:9e:f4: 81:1e:3e:4f:21:e3:43:30:44:f6:16:a6:42:2c:0b: ab:b2:1d:fa:24:a3:9e:c5:31:89:42:f6:f3:6d:fc: d7:3c:52:68:a9:a2:de:76:01:e1:3e:ee:f9:5e:a0: 59:36:30:4a:27:c6:32:dd:0c:fb:24:76:9f:66:10: dc:17:01:20:5f:c5:48:14:c1:ac:43:10:f1:09:e2: 2a:94:a5:e0:54:99:ca:78:69:7c:6e:d4:79:cb:a0: 8a:6a:58:33:d2:15:b8:14:6f:a7:cc:38:57:46:5f: 96:23:f3:e8:ec:99:50:af:8a:62:80:98:49:64:e2: 14:f1:85:0c:54:3a:25:df:84:44:1d:73:70:5f:97: e2:5e:38:8e:f6:09:42:93:e3:61:e3:38:1b:12:91: 73:6b:d0:54:bc:27:6c:a1:9b:d6:15:58:b2:ef:ce: 26:6d:f8:2d:15:11:c9:5f:fc:f6:93:b9:53:48:6e: 1f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:20:FF:65:13:B7:60:94:0F:45:9C:52:0B:3B:B2:2A:4B:55:E7:7E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140966.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:7f40::/48 Signature Algorithm: sha256WithRSAEncryption 8e:24:06:43:dd:ce:79:ed:ba:30:79:83:0c:7b:55:a1:3e:a0: 3d:d9:bf:77:72:43:cd:2a:5e:34:de:cb:d5:5d:85:15:34:3f: e4:07:43:fc:28:d4:06:77:21:d7:db:16:c2:b0:24:43:6f:1a: aa:4b:44:57:a1:7c:52:87:1d:54:94:95:75:d4:9f:d1:93:c7: 01:02:17:16:d3:0b:67:b0:0f:cf:d3:01:01:bf:80:06:4a:a3: 4c:e2:a0:aa:18:e9:62:26:38:64:26:bf:34:a0:00:63:6d:47: 5f:ce:13:90:0c:40:9f:6a:26:8c:c5:19:18:06:f8:ae:92:a0: 47:06:ea:48:88:85:73:30:dc:5d:21:00:26:0c:62:ca:56:4d: dd:9a:65:9f:61:e8:eb:89:0c:81:17:0a:29:09:29:98:cb:b7: f4:89:6e:e0:c5:8a:fc:8d:64:d4:1f:c0:3d:fb:e1:0d:9b:98: d3:10:80:b8:95:eb:07:78:ff:8c:28:54:79:01:62:77:51:67: 1b:3f:1d:8f:5f:64:c2:a0:fb:8e:1e:5c:7d:a5:81:d5:c5:6b: 13:a9:03:a1:32:07:bb:b4:c0:14:06:8d:ef:a1:79:66:d4:a2: b9:2a:48:db:ce:ca:ba:78:b7:21:cb:c1:0f:b4:cc:f2:11:82: 0d:5c:8c:51 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUXNAdeUrlWzR/tSS5cv/0fSh4io0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwNTAzMjgxOFoX DTI3MDEwNDAzMzMxOFowMzExMC8GA1UEAxMoQzcyMEZGNjUxM0I3NjA5NDBGNDU5 QzUyMEIzQkIyMkE0QjU1RTc3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPemA2cyPSnOu9I3xJYk8ViSBvldCUU79vlyQ5p66HJWvqrorbytCQnOEyAv QM0haRWidzoiQashK20AR35UKiza+Rt3qCxzjJ70gR4+TyHjQzBE9hamQiwLq7Id +iSjnsUxiUL282381zxSaKmi3nYB4T7u+V6gWTYwSifGMt0M+yR2n2YQ3BcBIF/F SBTBrEMQ8QniKpSl4FSZynhpfG7UecugimpYM9IVuBRvp8w4V0ZfliPz6OyZUK+K YoCYSWTiFPGFDFQ6Jd+ERB1zcF+X4l44jvYJQpPjYeM4GxKRc2vQVLwnbKGb1hVY su/OJm34LRURyV/89pO5U0huH1UCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTHIP9l E7dglA9FnFILO7IqS1XnfjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDk2Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfZ/QDANBgkqhkiG9w0BAQsFAAOCAQEAjiQGQ93Oee26MHmD DHtVoT6gPdm/d3JDzSpeNN7L1V2FFTQ/5AdD/CjUBnch19sWwrAkQ28aqktEV6F8 UocdVJSVddSf0ZPHAQIXFtMLZ7APz9MBAb+ABkqjTOKgqhjpYiY4ZCa/NKAAY21H X84TkAxAn2omjMUZGAb4rpKgRwbqSIiFczDcXSEAJgxiylZN3Zpln2Ho64kMgRcK KQkpmMu39Ilu4MWK/I1k1B/APfvhDZuY0xCAuJXrB3j/jChUeQFid1FnGz8dj19k wqD7jh5cfaWB1cVrE6kDoTIHu7TAFAaN76F5ZtSiuSpI287Kuni3IcvBD7TM8hGC DVyMUQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:49:54 2026 by rpki-client