This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS137939.roa File: AS137939.roa (raw, json) Hash identifier: MEoVRxjVVkqah87yAYuLen4FvzUt+pKsGlBpk8pamLc= Subject key identifier: DD:02:E0:64:FA:77:F6:AA:E6:66:77:0D:A0:AB:AE:C2:C8:0D:9B:70 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 460C26746362F1352A7DCD3DC77A2417F409E1C6 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS137939.roa Signing time: Thu 06 Nov 2025 04:36:51 +0000 ROA not before: Thu 06 Nov 2025 04:31:51 +0000 ROA not after: Thu 05 Nov 2026 04:36:51 +0000 asID: 137939 IP address blocks: 138.252.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:0c:26:74:63:62:f1:35:2a:7d:cd:3d:c7:7a:24:17:f4:09:e1:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 6 04:31:51 2025 GMT Not After : Nov 5 04:36:51 2026 GMT Subject: CN=DD02E064FA77F6AAE666770DA0ABAEC2C80D9B70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d9:8e:74:6a:54:10:7f:de:32:e7:83:e2:e6: d2:b4:48:56:3a:7d:84:56:ea:fb:fb:fe:1c:a2:84: 22:fc:43:a7:bc:fa:f0:82:3c:e8:be:2d:e2:73:9b: ae:86:e4:13:61:0f:85:06:86:c7:d0:24:05:af:35: d6:68:a6:da:2d:2b:c0:e7:a4:f5:8f:42:6a:df:75: 4f:fb:b1:cd:e6:17:19:e0:1e:2d:73:ac:d7:f0:d4: c7:f3:8b:59:47:a1:e7:b5:44:96:65:47:ed:a6:aa: d3:0f:90:d2:9d:30:0c:e4:5b:1f:06:43:78:28:c0: b0:3e:56:60:59:43:8e:03:4f:df:a5:27:d2:fa:e3: 3f:49:cb:e0:ba:51:fe:bc:66:84:33:ac:ec:93:f0: 33:72:9b:c5:ab:9a:72:06:d2:36:fd:98:b9:9e:10: 40:bd:37:82:7a:00:54:b3:c8:35:47:c8:cd:bf:b5: b8:d1:c1:af:1a:be:d5:d6:e6:1d:43:53:de:41:50: b6:82:2d:6f:89:de:e9:8d:59:72:0f:9f:09:89:18: c5:b9:a6:63:f1:d7:ab:5c:0b:db:49:fb:21:a9:a7: 51:0b:07:3e:42:85:2f:51:07:a1:2b:0f:83:11:75: 33:2b:06:bb:98:b3:47:82:99:4d:65:ca:0b:30:f2: 67:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:02:E0:64:FA:77:F6:AA:E6:66:77:0D:A0:AB:AE:C2:C8:0D:9B:70 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS137939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.17.0/24 Signature Algorithm: sha256WithRSAEncryption 24:7a:18:81:ec:92:9d:8c:a7:cb:44:9c:f6:f6:e7:c6:0a:dd: 4a:9e:f7:fd:a1:95:08:96:bf:08:5e:dd:1c:e2:85:69:fd:84: 46:50:30:4a:f1:5b:9f:86:ee:28:72:20:49:f2:26:20:e2:49: c1:02:52:ce:e0:c3:c3:30:d0:77:a1:ec:5e:8e:bd:3c:ef:1b: bf:d4:65:81:ee:44:7a:85:16:ab:87:52:1e:45:35:4b:6c:a9: 23:fb:77:25:77:b6:06:a8:58:2d:ad:17:ef:03:34:21:a8:86: f0:e4:51:6c:b3:b7:8f:37:28:9a:e1:89:69:f8:6f:6b:77:46: 38:43:a8:69:42:13:ce:e4:db:e2:b8:27:71:e7:44:cc:2e:37: 34:5a:ce:3d:ba:7a:c2:ef:68:de:a4:83:9e:2a:b4:e0:4c:d9: 4d:aa:fc:00:ca:ef:2f:0a:02:e0:b3:26:63:c4:00:20:d7:46: af:f7:73:c7:74:49:91:6c:f8:87:24:32:1e:70:b7:cc:5a:66: f9:e7:41:bb:b1:60:91:90:a2:f4:05:db:a0:26:58:02:37:a1: 14:02:bc:0d:9e:41:98:90:3b:ac:25:4b:92:ad:de:ec:09:1e: b5:ec:a8:06:81:56:50:ef:69:d6:d9:39:b1:e9:71:22:cb:84: 30:36:a2:ff -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURgwmdGNi8TUqfc09x3okF/QJ4cYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTEwNjA0MzE1MVoX DTI2MTEwNTA0MzY1MVowMzExMC8GA1UEAxMoREQwMkUwNjRGQTc3RjZBQUU2NjY3 NzBEQTBBQkFFQzJDODBEOUI3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMDZjnRqVBB/3jLng+Lm0rRIVjp9hFbq+/v+HKKEIvxDp7z68II86L4t4nOb robkE2EPhQaGx9AkBa811mim2i0rwOek9Y9Cat91T/uxzeYXGeAeLXOs1/DUx/OL WUeh57VElmVH7aaq0w+Q0p0wDORbHwZDeCjAsD5WYFlDjgNP36Un0vrjP0nL4LpR /rxmhDOs7JPwM3KbxauacgbSNv2YuZ4QQL03gnoAVLPINUfIzb+1uNHBrxq+1dbm HUNT3kFQtoItb4ne6Y1Zcg+fCYkYxbmmY/HXq1wL20n7IamnUQsHPkKFL1EHoSsP gxF1MysGu5izR4KZTWXKCzDyZ38CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTdAuBk +nf2quZmdw2gq67CyA2bcDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzNzkzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIr8ETANBgkqhkiG9w0BAQsFAAOCAQEAJHoYgeySnYyny0Sc9vbn xgrdSp73/aGVCJa/CF7dHOKFaf2ERlAwSvFbn4buKHIgSfImIOJJwQJSzuDDwzDQ d6HsXo69PO8bv9Rlge5EeoUWq4dSHkU1S2ypI/t3JXe2BqhYLa0X7wM0IaiG8ORR bLO3jzcomuGJafhva3dGOEOoaUITzuTb4rgncedEzC43NFrOPbp6wu9o3qSDniq0 4EzZTar8AMrvLwoC4LMmY8QAINdGr/dzx3RJkWz4hyQyHnC3zFpm+edBu7FgkZCi 9AXboCZYAjehFAK8DZ5BmJA7rCVLkq3e7AketeyoBoFWUO9p1tk5selxIsuEMDai /w== -----END CERTIFICATE-----Generated at Wed Dec 3 16:19:37 2025 by rpki-client