This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa File: AS142364.roa (raw, json) Hash identifier: VVh9TL/S+jrV3zKEI7veZjwEqkWT/JbsE3HQ5UazT2o= Subject key identifier: BF:FF:E6:38:6D:AF:6E:4C:A9:15:22:22:28:E4:0D:64:8A:52:6B:50 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0BD2877D3C6322BAA53734402F97A45EF8A0FF72 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa Signing time: Tue 23 Dec 2025 03:00:00 +0000 ROA not before: Tue 23 Dec 2025 02:55:00 +0000 ROA not after: Tue 22 Dec 2026 03:00:00 +0000 asID: 142364 IP address blocks: 2407:c6c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d2:87:7d:3c:63:22:ba:a5:37:34:40:2f:97:a4:5e:f8:a0:ff:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 23 02:55:00 2025 GMT Not After : Dec 22 03:00:00 2026 GMT Subject: CN=BFFFE6386DAF6E4CA915222228E40D648A526B50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e8:1c:1a:e7:e9:70:21:14:6c:a2:a9:d4:d3: 47:08:e3:cf:bf:b4:d9:31:45:df:21:72:eb:3a:69: c0:d5:2b:82:7b:5c:65:81:fa:ae:e2:62:d9:01:38: 18:6a:07:4b:c9:99:f1:94:17:57:cb:3e:e4:0f:40: 9a:ab:ee:e7:e5:aa:dd:37:60:f3:66:23:3a:99:e2: 8c:d3:a1:61:06:3d:31:87:77:3f:75:c9:1e:94:1d: a6:df:41:8f:26:95:ef:e0:35:ef:6a:22:7e:d5:6d: d6:f0:ce:41:86:70:92:25:5f:a8:93:91:94:49:21: 80:ab:a7:f1:3a:4b:d3:34:59:b3:8e:e1:d5:06:24: d4:d3:6c:0c:bf:7a:a8:df:eb:64:f7:cf:e9:ad:41: 42:42:85:e5:80:b5:d3:6e:0d:db:e6:ae:ab:d4:1a: 3b:0a:8d:a0:c5:c8:d6:7d:c1:46:e6:1f:6a:37:b1: 90:2a:c9:f4:c2:6d:51:da:11:52:25:e3:64:c5:02: 36:fa:83:7a:0b:88:14:eb:fc:e8:98:52:04:4d:05: 4b:91:48:79:0f:96:9e:bc:c8:f6:8b:e5:3b:57:6b: ad:c5:43:a5:a6:0e:f1:7c:83:c7:e5:34:9a:a5:19: e4:68:30:d0:7b:7a:5e:c6:3e:36:b9:91:16:cc:81: f4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:FF:E6:38:6D:AF:6E:4C:A9:15:22:22:28:E4:0D:64:8A:52:6B:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142364.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:c6c0::/32 Signature Algorithm: sha256WithRSAEncryption 75:fc:05:ac:95:26:b0:3b:46:06:f9:59:87:ef:87:04:e5:b9: 2f:82:70:18:fa:4c:9d:ad:3d:41:f7:a0:4f:83:2b:4e:52:7c: e1:b5:d0:11:c9:e9:98:01:86:7b:41:d8:eb:49:35:81:da:d0: f2:9c:8e:0b:7e:55:4d:ff:e1:35:22:54:74:4b:b8:e3:22:83: ca:07:a5:24:57:22:5e:16:eb:e0:c1:0c:83:16:6d:03:08:2f: 52:8c:e7:ff:5a:75:a1:12:ae:83:ca:47:ab:e0:8f:f5:77:f2: 7f:92:8f:d7:b3:b4:7a:3b:86:1c:f7:11:d0:e7:3c:c2:6e:29: d3:fa:c1:4b:57:76:ae:7c:dd:50:02:3a:e8:81:e9:03:d6:99: 49:14:0e:ad:3e:f7:38:af:c2:b7:c4:66:09:99:df:d8:f0:88: b4:db:1e:49:a5:58:b7:55:00:03:23:56:54:0d:e1:22:79:29: 0b:7f:75:f2:14:ec:41:c5:ea:74:cb:43:00:e5:d1:dc:eb:ec: 39:4e:44:a6:de:73:2c:49:85:a4:b3:1a:ed:d7:9b:e1:ae:a1: 77:d3:da:5b:9a:d5:a3:65:12:90:40:63:6b:14:b5:a1:48:c7: 10:dd:92:4a:13:6a:b9:e7:2e:87:de:41:0f:79:ec:f5:78:74: a8:6e:a9:6b -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUC9KHfTxjIrqlNzRAL5ekXvig/3IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIyMzAyNTUwMFoX DTI2MTIyMjAzMDAwMFowMzExMC8GA1UEAxMoQkZGRkU2Mzg2REFGNkU0Q0E5MTUy MjIyMjhFNDBENjQ4QTUyNkI1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnoHBrn6XAhFGyiqdTTRwjjz7+02TFF3yFy6zppwNUrgntcZYH6ruJi2QE4 GGoHS8mZ8ZQXV8s+5A9Amqvu5+Wq3Tdg82YjOpnijNOhYQY9MYd3P3XJHpQdpt9B jyaV7+A172oiftVt1vDOQYZwkiVfqJORlEkhgKun8TpL0zRZs47h1QYk1NNsDL96 qN/rZPfP6a1BQkKF5YC1024N2+auq9QaOwqNoMXI1n3BRuYfajexkCrJ9MJtUdoR UiXjZMUCNvqDeguIFOv86JhSBE0FS5FIeQ+WnrzI9ovlO1drrcVDpaYO8XyDx+U0 mqUZ5Ggw0Ht6XsY+NrmRFsyB9IsCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBS//+Y4 ba9uTKkVIiIo5A1kilJrUDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQHxsAwDQYJKoZIhvcNAQELBQADggEBAHX8BayVJrA7Rgb5WYfv hwTluS+CcBj6TJ2tPUH3oE+DK05SfOG10BHJ6ZgBhntB2OtJNYHa0PKcjgt+VU3/ 4TUiVHRLuOMig8oHpSRXIl4W6+DBDIMWbQMIL1KM5/9adaESroPKR6vgj/V38n+S j9eztHo7hhz3EdDnPMJuKdP6wUtXdq583VACOuiB6QPWmUkUDq0+9zivwrfEZgmZ 39jwiLTbHkmlWLdVAAMjVlQN4SJ5KQt/dfIU7EHF6nTLQwDl0dzr7DlORKbecyxJ haSzGu3Xm+GuoXfT2lua1aNlEpBAY2sUtaFIxxDdkkoTarnnLofeQQ957PV4dKhu qWs= -----END CERTIFICATE-----Generated at Wed Dec 24 20:21:02 2025 by rpki-client