This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138115.roa File: AS138115.roa (raw, json) Hash identifier: NcB4N4rRQWahqGOBwX9DHHF6CSPUl4Wl1gPElvbaGj8= Subject key identifier: 70:66:9F:E3:C4:5D:E5:36:D7:63:5E:08:52:4C:10:A6:A0:8E:A4:CA Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3DFC31412EEF8C0E8853077C7A91AA1CC0EA06B9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138115.roa Signing time: Thu 08 Jan 2026 11:00:05 +0000 ROA not before: Thu 08 Jan 2026 10:55:05 +0000 ROA not after: Thu 07 Jan 2027 11:00:05 +0000 asID: 138115 IP address blocks: 157.15.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 11:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fc:31:41:2e:ef:8c:0e:88:53:07:7c:7a:91:aa:1c:c0:ea:06:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:05 2026 GMT Not After : Jan 7 11:00:05 2027 GMT Subject: CN=70669FE3C45DE536D7635E08524C10A6A08EA4CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9b:2b:de:77:9b:c3:17:1a:9a:a7:89:ed:c7: 45:1d:53:1c:62:13:db:3e:8b:ff:eb:72:e1:87:52: bc:64:9a:f4:29:25:3a:8c:df:eb:82:e1:b8:88:28: 43:1d:a1:f8:aa:c8:1b:f7:f2:8c:92:c5:f9:af:fc: 7b:c5:16:13:aa:16:d8:34:97:bf:e5:53:eb:39:95: f8:20:52:e1:92:f7:dd:65:67:c1:cf:28:75:fc:53: 87:c1:69:91:36:ed:65:46:29:17:9b:a5:41:77:e8: ab:5a:9a:d5:ab:21:71:c0:50:ae:fd:91:34:da:49: b1:5a:1a:f7:5c:64:ff:71:86:e5:9f:a0:ac:c3:34: cf:60:cc:0c:1a:ba:b1:34:d4:7f:36:d7:01:75:d0: ab:0e:5c:d2:06:04:90:b8:af:08:3c:c2:d1:8d:24: e1:48:21:17:e0:b4:22:71:e0:a9:0a:a1:73:d6:7c: 42:b1:00:72:50:e1:49:c9:5c:de:aa:87:53:a7:36: 22:97:2d:ea:4a:a2:95:52:da:c4:08:33:a5:ef:03: 02:fa:51:d4:7a:a9:cc:b9:8e:ee:bc:9e:6a:b7:c2: 96:79:65:e3:9a:a1:34:ce:69:1d:16:54:16:47:5f: 5d:64:f7:44:14:77:fa:35:5c:9a:b0:00:21:ce:3f: cd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:66:9F:E3:C4:5D:E5:36:D7:63:5E:08:52:4C:10:A6:A0:8E:A4:CA X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138115.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.124.0/23 Signature Algorithm: sha256WithRSAEncryption 22:7e:a9:49:b9:f4:c0:85:e0:a8:d2:f4:f8:95:11:bf:a3:a2: 23:d7:26:74:d4:42:0c:ee:a2:7f:31:4f:c8:76:d1:44:19:d6: 1b:86:81:e0:58:97:15:5b:c0:3a:7c:cc:8c:56:18:39:d2:f8: 7c:f4:fe:72:f0:ae:a2:9e:0b:ea:b2:60:77:d1:44:37:24:b7: 96:4a:ed:98:93:c6:05:b8:fa:84:1c:e4:b7:63:27:24:24:c8: 79:d0:21:12:da:a9:3b:55:85:7e:e7:3b:64:d5:3c:39:45:30: 09:6d:ad:61:6b:f4:63:68:6e:2c:f9:fa:81:60:1c:84:2a:0e: 91:cd:fb:28:19:25:d0:81:97:81:b8:54:eb:5d:fe:7f:61:8d: 51:68:6d:32:5c:a4:16:7d:98:04:6a:8d:e9:44:2b:46:24:9e: 52:04:be:d9:c9:ae:75:36:f1:2c:05:90:e7:b2:d1:c0:b1:42: 1b:42:af:97:24:16:b7:30:de:7b:0a:3b:f8:e8:8f:ba:7f:3d: 9f:8e:4e:31:4c:83:33:92:e3:b4:0c:51:26:3e:7b:60:f3:ea: b8:cf:20:dd:18:dc:b6:21:dd:8b:d1:ef:39:7f:0e:04:ef:14: d2:3e:15:3a:7d:fc:cf:2a:3a:bf:6c:62:1c:0a:19:3e:e5:d9: 7f:21:8f:44 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPfwxQS7vjA6IUwd8epGqHMDqBrkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNVoX DTI3MDEwNzExMDAwNVowMzExMC8GA1UEAxMoNzA2NjlGRTNDNDVERTUzNkQ3NjM1 RTA4NTI0QzEwQTZBMDhFQTRDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWbK953m8MXGpqnie3HRR1THGIT2z6L/+ty4YdSvGSa9CklOozf64LhuIgo Qx2h+KrIG/fyjJLF+a/8e8UWE6oW2DSXv+VT6zmV+CBS4ZL33WVnwc8odfxTh8Fp kTbtZUYpF5ulQXfoq1qa1ashccBQrv2RNNpJsVoa91xk/3GG5Z+grMM0z2DMDBq6 sTTUfzbXAXXQqw5c0gYEkLivCDzC0Y0k4UghF+C0InHgqQqhc9Z8QrEAclDhSclc 3qqHU6c2Ipct6kqilVLaxAgzpe8DAvpR1HqpzLmO7ryearfClnll45qhNM5pHRZU FkdfXWT3RBR3+jVcmrAAIc4/zSkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRwZp/j xF3lNtdjXghSTBCmoI6kyjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzODExNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0PfDANBgkqhkiG9w0BAQsFAAOCAQEAIn6pSbn0wIXgqNL0+JUR v6OiI9cmdNRCDO6ifzFPyHbRRBnWG4aB4FiXFVvAOnzMjFYYOdL4fPT+cvCuop4L 6rJgd9FENyS3lkrtmJPGBbj6hBzkt2MnJCTIedAhEtqpO1WFfuc7ZNU8OUUwCW2t YWv0Y2huLPn6gWAchCoOkc37KBkl0IGXgbhU613+f2GNUWhtMlykFn2YBGqN6UQr RiSeUgS+2cmudTbxLAWQ57LRwLFCG0KvlyQWtzDeewo7+OiPun89n45OMUyDM5Lj tAxRJj57YPPquM8g3RjctiHdi9HvOX8OBO8U0j4VOn38zyo6v2xiHAoZPuXZfyGP RA== -----END CERTIFICATE-----Generated at Sun Jan 25 09:09:50 2026 by rpki-client