This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138011.roa File: AS138011.roa (raw, json) Hash identifier: RWloOt/gGzQLIU56AlEPzgT7+WEhsvk9a5ItE0PvBAM= Subject key identifier: 04:26:0F:13:5D:B4:A2:D8:72:98:2C:76:7D:EB:00:B5:3F:50:72:4B Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 10689D269FDB9349F2162C7F8DE2A9AF38A22DD7 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138011.roa Signing time: Fri 09 Jan 2026 06:44:37 +0000 ROA not before: Fri 09 Jan 2026 06:39:37 +0000 ROA not after: Fri 08 Jan 2027 06:44:37 +0000 asID: 138011 IP address blocks: 144.79.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:68:9d:26:9f:db:93:49:f2:16:2c:7f:8d:e2:a9:af:38:a2:2d:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 9 06:39:37 2026 GMT Not After : Jan 8 06:44:37 2027 GMT Subject: CN=04260F135DB4A2D872982C767DEB00B53F50724B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:33:04:b2:03:9d:36:f7:8d:3d:13:bb:0b:18: 12:17:bd:9b:27:80:6e:e3:f1:b3:63:4e:6b:24:f9: 3e:00:4f:93:a5:47:bb:d4:1a:24:94:5f:66:6a:7a: af:bd:df:ea:69:c3:a6:67:2a:7b:aa:aa:cb:7d:26: 76:f6:f4:24:db:72:c7:c4:dc:63:b8:2b:24:80:03: a1:07:75:58:62:d5:5d:49:31:d6:e4:2e:08:b7:f5: 8e:b5:9f:57:85:4e:2e:01:da:ea:ea:d8:a1:a9:3f: 87:65:bd:58:e2:4a:45:c1:2a:f9:e8:a4:37:c7:be: 4f:ec:f9:4c:11:9e:f9:0a:a0:34:de:82:e3:d6:8c: 76:5b:1f:0c:c0:9e:b0:1a:0d:00:67:b2:ef:95:26: 2c:e3:17:bf:99:df:b2:a1:4d:c3:37:69:05:42:6d: 96:37:24:ef:98:a8:c7:55:e8:a8:92:b4:01:e7:1b: 60:e5:3d:c7:71:df:63:c6:7c:0a:b9:80:14:a7:33: 22:5d:e0:c4:97:63:d9:d8:1f:a0:60:e7:c4:6a:49: 81:54:e4:e4:c7:76:7a:b6:a1:49:e2:15:4c:67:ad: 5d:3d:63:ea:e7:64:dc:20:b5:b3:5c:c9:e6:e9:ee: e8:2b:77:6f:fc:60:25:7e:56:b6:c6:32:ee:25:15: 5b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:26:0F:13:5D:B4:A2:D8:72:98:2C:76:7D:EB:00:B5:3F:50:72:4B X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138011.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.176.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:8f:c3:3a:67:55:5b:9f:c7:4e:1c:d6:34:49:2d:bb:34:86: 30:ff:15:0a:84:24:2f:4f:d3:0c:4d:c4:8e:e7:3d:42:b5:01: c0:3d:e9:41:2a:cf:61:e0:58:91:22:10:43:b1:82:9b:bd:58: 43:2b:ef:a2:45:42:11:71:fa:13:eb:71:77:b0:b5:53:55:3a: 07:93:eb:67:57:0d:96:7d:dc:49:fe:33:98:22:9b:66:1a:d3: ab:af:8c:65:cc:e6:fe:52:bd:e3:2e:7e:07:77:ad:e4:d6:85: f1:39:6b:df:e3:88:0f:20:a2:48:f5:91:ce:e4:ee:97:f5:9c: 74:78:b4:9e:bc:42:c1:bc:5e:40:7f:9f:c7:3f:ab:2f:f4:7e: 6b:9b:b5:54:d7:7e:52:85:b8:29:d2:e8:e4:e8:64:51:67:c9: 61:ab:80:32:71:69:38:67:57:50:88:b7:8b:4e:88:79:cd:23: 65:6a:2c:96:0a:be:c0:07:9d:75:28:2f:b7:35:ec:11:b7:1d: 13:ee:bb:89:c6:85:f0:bd:33:5a:bc:1d:f0:90:6a:92:d5:46: 1e:48:e7:67:7c:22:85:96:3f:b6:80:fa:71:8b:cc:52:1a:4b: 36:7c:1f:48:b7:99:b6:45:a0:93:ad:72:85:88:c5:5c:e8:fc: 31:13:c8:f0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEGidJp/bk0nyFix/jeKprziiLdcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwOTA2MzkzN1oX DTI3MDEwODA2NDQzN1owMzExMC8GA1UEAxMoMDQyNjBGMTM1REI0QTJEODcyOTgy Qzc2N0RFQjAwQjUzRjUwNzI0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMMzBLIDnTb3jT0TuwsYEhe9myeAbuPxs2NOayT5PgBPk6VHu9QaJJRfZmp6 r73f6mnDpmcqe6qqy30mdvb0JNtyx8TcY7grJIADoQd1WGLVXUkx1uQuCLf1jrWf V4VOLgHa6urYoak/h2W9WOJKRcEq+eikN8e+T+z5TBGe+QqgNN6C49aMdlsfDMCe sBoNAGey75UmLOMXv5nfsqFNwzdpBUJtljck75iox1XoqJK0AecbYOU9x3HfY8Z8 CrmAFKczIl3gxJdj2dgfoGDnxGpJgVTk5Md2erahSeIVTGetXT1j6udk3CC1s1zJ 5unu6Ct3b/xgJX5WtsYy7iUVW2cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQEJg8T XbSi2HKYLHZ96wC1P1BySzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzODAxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJBPsDANBgkqhkiG9w0BAQsFAAOCAQEAi4/DOmdVW5/HThzWNEkt uzSGMP8VCoQkL0/TDE3Ejuc9QrUBwD3pQSrPYeBYkSIQQ7GCm71YQyvvokVCEXH6 E+txd7C1U1U6B5PrZ1cNln3cSf4zmCKbZhrTq6+MZczm/lK94y5+B3et5NaF8Tlr 3+OIDyCiSPWRzuTul/WcdHi0nrxCwbxeQH+fxz+rL/R+a5u1VNd+UoW4KdLo5Ohk UWfJYauAMnFpOGdXUIi3i06Iec0jZWoslgq+wAeddSgvtzXsEbcdE+67icaF8L0z Wrwd8JBqktVGHkjnZ3wihZY/toD6cYvMUhpLNnwfSLeZtkWgk61yhYjFXOj8MRPI 8A== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:50 2026 by rpki-client