This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa File: AS142359.roa (raw, json) Hash identifier: 9RZMp9cPwIpRNsRSUrhxsCOG9CEbzJcSY4FIX3jlhXs= Subject key identifier: 97:01:9F:29:74:B0:C5:38:2E:91:4E:59:95:3D:80:CE:B1:BD:12:54 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7CC4AA96C53A2C163E42B57BC1B8A3AFFAE57141 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa Signing time: Tue 11 Nov 2025 06:00:02 +0000 ROA not before: Tue 11 Nov 2025 05:55:02 +0000 ROA not after: Tue 10 Nov 2026 06:00:02 +0000 asID: 142359 IP address blocks: 103.170.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:c4:aa:96:c5:3a:2c:16:3e:42:b5:7b:c1:b8:a3:af:fa:e5:71:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:02 2025 GMT Not After : Nov 10 06:00:02 2026 GMT Subject: CN=97019F2974B0C5382E914E59953D80CEB1BD1254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:81:3b:9f:91:50:ce:60:70:71:34:f6:8d:c9: bb:07:a3:6b:ba:0f:fa:e7:c1:0b:37:9e:7c:69:72: 06:5d:41:01:51:d0:9b:e0:ab:87:a7:5a:44:13:3e: aa:f9:31:e9:ef:a9:51:13:8e:e0:4c:20:2f:21:c0: d0:aa:dd:c3:32:50:ea:b4:94:9d:27:8f:eb:82:61: fe:6f:c9:81:e6:9c:b5:8e:f7:cb:7a:a4:e3:69:8a: 54:f0:b5:1f:dc:b9:4a:8b:4e:65:26:1d:b5:25:de: 7d:fb:c2:68:c9:56:b0:17:7b:9f:56:4c:f8:cb:92: 6a:93:20:07:95:6c:13:94:b3:1c:7a:2d:04:a4:43: 7e:df:0a:99:b0:b6:5e:99:55:29:fa:cf:9e:7a:6e: a5:6f:75:1e:49:83:34:98:19:90:e4:41:a6:5a:06: 90:61:d6:e7:a0:51:48:06:9e:eb:ca:45:5c:e9:91: 45:17:4b:f6:3d:30:a9:24:79:cf:aa:e3:ea:26:eb: c6:68:ce:e7:61:f1:5e:53:87:2e:69:3c:48:49:10: 91:05:8a:4e:f4:9e:38:43:a8:f6:99:e3:f2:15:a5: ae:5c:55:f2:45:ea:9d:8a:ef:65:e1:38:d3:0d:e3: da:fe:66:8f:25:cb:1a:38:92:5a:6b:bd:12:00:21: b0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:01:9F:29:74:B0:C5:38:2E:91:4E:59:95:3D:80:CE:B1:BD:12:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142359.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.23.0/24 Signature Algorithm: sha256WithRSAEncryption 25:c7:3d:e4:bb:8e:d0:0d:33:f4:28:e9:ff:09:6f:71:e1:ec: 13:d2:6c:49:88:ac:f9:34:1a:f1:9b:c6:dd:21:eb:9b:2a:37: 9e:27:17:e1:e9:91:3d:69:80:e5:f4:31:c3:95:53:6a:87:31: 50:04:56:7f:4f:73:b4:b3:f9:a8:32:84:1b:0c:61:1b:7b:f8: 7d:40:4c:ee:fc:fd:6b:60:4b:51:1d:27:ce:94:99:e5:d4:88: db:87:7c:60:d6:a4:d3:cc:e4:fb:50:04:f9:4a:ed:ea:bd:44: 6c:e3:81:70:50:a6:27:d2:10:27:ca:15:59:8f:9f:cc:72:ea: 27:77:17:5f:1b:fe:1e:0c:1c:90:7c:8d:85:07:3f:c6:eb:ae: 99:36:33:43:60:71:62:b8:f1:d8:69:6b:bb:44:10:c9:26:8d: 0d:e5:75:8c:19:79:0c:4c:3c:23:80:2b:89:59:89:e1:1d:b5: 9a:ca:33:7c:7f:9d:42:e4:28:c8:5d:9c:2f:60:4e:40:13:4c: 86:d9:84:79:a0:95:ff:de:38:74:c5:9f:08:c6:da:ed:49:6a: 34:79:4c:ae:ba:71:40:ec:a5:bf:fb:4b:bf:96:37:a9:fc:f8: c2:8e:0d:c4:6b:dc:ce:82:0f:d5:b7:1d:21:2f:13:e0:2d:51: d7:94:3c:61 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfMSqlsU6LBY+QrV7wbijr/rlcUEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwMloX DTI2MTExMDA2MDAwMlowMzExMC8GA1UEAxMoOTcwMTlGMjk3NEIwQzUzODJFOTE0 RTU5OTUzRDgwQ0VCMUJEMTI1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWBO5+RUM5gcHE09o3Juweja7oP+ufBCzeefGlyBl1BAVHQm+Crh6daRBM+ qvkx6e+pUROO4EwgLyHA0KrdwzJQ6rSUnSeP64Jh/m/JgeactY73y3qk42mKVPC1 H9y5SotOZSYdtSXeffvCaMlWsBd7n1ZM+MuSapMgB5VsE5SzHHotBKRDft8KmbC2 XplVKfrPnnpupW91HkmDNJgZkORBploGkGHW56BRSAae68pFXOmRRRdL9j0wqSR5 z6rj6ibrxmjO52HxXlOHLmk8SEkQkQWKTvSeOEOo9pnj8hWlrlxV8kXqnYrvZeE4 0w3j2v5mjyXLGjiSWmu9EgAhsJ0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSXAZ8p dLDFOC6RTlmVPYDOsb0SVDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM1OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeqFzANBgkqhkiG9w0BAQsFAAOCAQEAJcc95LuO0A0z9Cjp/wlv ceHsE9JsSYis+TQa8ZvG3SHrmyo3nicX4emRPWmA5fQxw5VTaocxUARWf09ztLP5 qDKEGwxhG3v4fUBM7vz9a2BLUR0nzpSZ5dSI24d8YNak08zk+1AE+Urt6r1EbOOB cFCmJ9IQJ8oVWY+fzHLqJ3cXXxv+HgwckHyNhQc/xuuumTYzQ2BxYrjx2Glru0QQ ySaNDeV1jBl5DEw8I4AriVmJ4R21msozfH+dQuQoyF2cL2BOQBNMhtmEeaCV/944 dMWfCMba7UlqNHlMrrpxQOylv/tLv5Y3qfz4wo4NxGvczoIP1bcdIS8T4C1R15Q8 YQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:51:17 2025 by rpki-client