This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138077.roa File: AS138077.roa (raw, json) Hash identifier: T2VZbzMQVVn+8xg+ybiQuHVfoU6I1S4ic4T6zlHdtjs= Subject key identifier: D2:7E:ED:BF:D9:B8:85:CA:E6:B9:76:EF:23:3F:E2:CB:66:56:1C:D3 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 568F8A11A2AF8E67876960578FC94800D1293CCB Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138077.roa Signing time: Thu 08 Jan 2026 11:00:04 +0000 ROA not before: Thu 08 Jan 2026 10:55:04 +0000 ROA not after: Thu 07 Jan 2027 11:00:04 +0000 asID: 138077 IP address blocks: 157.66.188.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 11:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:8f:8a:11:a2:af:8e:67:87:69:60:57:8f:c9:48:00:d1:29:3c:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:04 2026 GMT Not After : Jan 7 11:00:04 2027 GMT Subject: CN=D27EEDBFD9B885CAE6B976EF233FE2CB66561CD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0b:e9:98:23:b3:76:e1:40:3d:c7:c4:de:75: 21:d4:98:36:18:6b:a5:64:29:96:bf:80:95:bb:6b: c2:6b:a9:81:3f:07:10:e7:23:11:78:a1:f3:33:ec: 4e:46:8a:bd:05:e9:95:37:df:a3:ae:ee:86:2e:14: 1a:d8:c9:7e:33:e3:88:36:bb:29:5a:f4:9c:a9:ae: 60:17:9e:4f:d8:35:c0:b5:5b:ea:a8:d9:66:23:bc: 36:d2:48:bd:6d:59:6b:df:17:a2:02:dd:74:c9:eb: ab:55:5e:73:92:3d:43:94:21:0d:df:73:11:f8:da: 9d:90:1e:b8:68:b9:88:e3:60:fe:3d:ed:d9:7f:01: fa:ec:65:a8:64:5d:79:28:1f:ff:67:3c:8f:8e:cb: ff:ae:96:0a:ae:6f:15:cb:e9:32:c7:5b:80:4f:af: 3e:5f:6e:38:fa:df:d3:5d:df:1c:47:24:2f:c4:38: f6:de:f7:00:74:b8:75:7b:fc:ce:e3:82:47:5e:ab: 99:8c:31:6b:4c:55:f7:1f:ea:03:4e:bb:87:97:77: 59:da:d8:ea:dd:f9:77:ce:e5:42:64:dd:74:06:db: 0e:92:cc:20:8b:4b:fb:ac:8f:1a:0a:b6:47:50:46: 98:cc:c3:9a:d6:0c:70:53:04:f3:ef:88:8c:95:af: 69:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:7E:ED:BF:D9:B8:85:CA:E6:B9:76:EF:23:3F:E2:CB:66:56:1C:D3 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138077.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.188.0/23 Signature Algorithm: sha256WithRSAEncryption 86:e8:a0:12:d2:d4:ae:9c:fe:d4:1c:15:5f:85:5d:57:7d:41: 00:b2:69:09:f1:a4:66:ac:c7:d1:21:d6:81:be:34:e5:cd:3b: d2:12:f9:5f:2f:f1:3a:7d:1f:53:37:3c:20:23:38:27:7c:91: 86:55:31:3e:a4:30:e3:98:bd:97:ba:37:7d:81:3a:ad:88:cf: dd:21:9e:1c:43:37:44:06:8e:85:12:b9:e3:3d:69:aa:1e:c8: 42:4e:cc:23:47:49:db:4f:86:01:89:ef:d6:3a:07:a0:a6:d2: 40:5a:de:0e:26:3b:f7:d5:54:60:bd:35:a4:c1:af:d8:e8:f5: fb:31:08:94:52:cd:e6:39:b0:51:26:49:ed:5d:bc:2e:84:37: 60:21:e7:18:11:e7:d0:35:7b:24:f0:43:fd:72:8d:2c:89:b1: 93:66:5f:d4:05:0c:95:69:78:64:b5:85:ce:ac:a1:3e:74:8f: 0d:17:14:71:95:f1:d3:eb:65:8c:26:eb:66:bd:cd:ad:8d:f0: c9:a0:70:d4:2c:3f:b4:ce:ba:93:cf:26:52:ac:f2:0f:29:b0: 9e:85:8e:0b:8a:a1:68:83:03:61:d8:8c:7b:3e:08:5c:8f:b3: 1b:01:84:fd:7d:f0:1e:6e:a9:39:b0:13:e7:34:14:8a:13:f9: fb:37:e3:2d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVo+KEaKvjmeHaWBXj8lIANEpPMswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNFoX DTI3MDEwNzExMDAwNFowMzExMC8GA1UEAxMoRDI3RUVEQkZEOUI4ODVDQUU2Qjk3 NkVGMjMzRkUyQ0I2NjU2MUNEMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK8L6Zgjs3bhQD3HxN51IdSYNhhrpWQplr+AlbtrwmupgT8HEOcjEXih8zPs TkaKvQXplTffo67uhi4UGtjJfjPjiDa7KVr0nKmuYBeeT9g1wLVb6qjZZiO8NtJI vW1Za98XogLddMnrq1Vec5I9Q5QhDd9zEfjanZAeuGi5iONg/j3t2X8B+uxlqGRd eSgf/2c8j47L/66WCq5vFcvpMsdbgE+vPl9uOPrf013fHEckL8Q49t73AHS4dXv8 zuOCR16rmYwxa0xV9x/qA067h5d3WdrY6t35d87lQmTddAbbDpLMIItL+6yPGgq2 R1BGmMzDmtYMcFME8++IjJWvaSkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTSfu2/ 2biFyua5du8jP+LLZlYc0zAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzODA3Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ1CvDANBgkqhkiG9w0BAQsFAAOCAQEAhuigEtLUrpz+1BwVX4Vd V31BALJpCfGkZqzH0SHWgb405c070hL5Xy/xOn0fUzc8ICM4J3yRhlUxPqQw45i9 l7o3fYE6rYjP3SGeHEM3RAaOhRK54z1pqh7IQk7MI0dJ20+GAYnv1joHoKbSQFre DiY799VUYL01pMGv2Oj1+zEIlFLN5jmwUSZJ7V28LoQ3YCHnGBHn0DV7JPBD/XKN LImxk2Zf1AUMlWl4ZLWFzqyhPnSPDRcUcZXx0+tljCbrZr3NrY3wyaBw1Cw/tM66 k88mUqzyDymwnoWOC4qhaIMDYdiMez4IXI+zGwGE/X3wHm6pObAT5zQUihP5+zfj LQ== -----END CERTIFICATE-----Generated at Wed Jan 14 09:33:50 2026 by rpki-client