This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139328.roa File: AS139328.roa (raw, json) Hash identifier: zp8QGqNBnFzHY9DqVEQMb6+HV2O+emPV+aLEHy2/Tic= Subject key identifier: FB:76:7E:B2:F0:D6:A3:D8:A0:6F:8A:34:F2:FA:E5:45:BB:66:CB:C4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 18CA9DD77C6EBCE680F6EB8905C596F957E3897B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139328.roa Signing time: Mon 08 Dec 2025 02:50:30 +0000 ROA not before: Mon 08 Dec 2025 02:45:30 +0000 ROA not after: Mon 07 Dec 2026 02:50:30 +0000 asID: 139328 IP address blocks: 165.101.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 08:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ca:9d:d7:7c:6e:bc:e6:80:f6:eb:89:05:c5:96:f9:57:e3:89:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 8 02:45:30 2025 GMT Not After : Dec 7 02:50:30 2026 GMT Subject: CN=FB767EB2F0D6A3D8A06F8A34F2FAE545BB66CBC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fe:2f:4b:13:3f:2f:7f:5a:5c:43:4a:de:49: 2d:70:a0:40:2f:e8:67:42:46:77:a2:ea:09:c6:56: 36:93:77:52:ea:ae:22:2e:6c:4e:ac:0e:5d:01:77: 42:62:d5:9b:20:76:df:5b:b3:0f:00:2b:f3:e3:21: 99:59:d4:aa:43:1f:6c:92:cf:aa:1c:a5:f7:ad:73: 97:5e:2a:b4:0d:71:9e:35:21:d6:4d:18:f9:65:d5: f2:a9:96:a0:94:30:46:7e:24:2b:a4:7b:2a:d7:d6: 55:9f:19:fb:8c:fa:bc:a6:7a:55:39:03:ba:23:8e: 67:90:16:0c:2e:ed:51:cd:ee:55:22:49:08:f0:5d: 59:f1:8f:26:37:2b:fd:e8:cb:60:3d:da:46:e5:a7: 53:87:68:de:32:7a:9a:56:e9:df:32:0b:b5:7d:4e: 8c:f4:d6:f8:5a:92:f9:cd:d7:38:53:e0:b7:2d:dd: 96:9e:7f:b6:61:4a:a1:c3:07:17:1d:13:bd:8b:b2: 7d:7a:55:d0:9e:f7:f8:94:46:93:0f:ee:81:9f:b2: 74:99:77:00:68:70:a3:31:de:52:97:e4:98:6c:ca: 6b:0f:6e:cb:e0:1f:be:0d:af:bc:89:ba:99:18:1a: d5:16:eb:09:51:9f:ce:0b:2d:3f:8f:6b:1c:25:f7: f1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:76:7E:B2:F0:D6:A3:D8:A0:6F:8A:34:F2:FA:E5:45:BB:66:CB:C4 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139328.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.56.0/24 Signature Algorithm: sha256WithRSAEncryption 51:66:bf:69:07:6b:c3:e7:14:b1:e0:8b:bf:c2:dd:3a:78:0d: a1:63:cc:e7:39:b8:e0:ed:dc:da:86:00:94:f3:e6:55:9f:1b: b9:d4:a8:e8:26:e4:77:85:ea:6a:a8:7a:a2:c6:8b:04:17:c5: 6f:32:fe:d4:2b:fe:f8:7b:c0:f9:da:2b:0a:b9:07:21:45:b9: e8:0b:94:a5:b5:19:74:96:1f:99:2a:f6:7e:d9:78:01:9b:a3: 30:97:69:60:99:85:89:de:8b:cb:67:42:9c:1e:3b:c3:5e:1c: 49:1e:97:d9:e2:b9:4f:b3:16:75:59:56:ea:a2:ae:4c:d7:a5: 8c:7c:35:87:5b:f2:03:7c:4c:6d:38:7d:dc:c5:46:5a:40:be: 58:78:d4:1a:18:d4:c7:8d:0f:06:85:b0:1a:34:3c:20:58:5e: f7:b3:56:55:d5:d3:61:c8:8f:60:94:df:04:19:e7:84:33:0b: 2e:03:bc:f9:30:5f:53:9f:7a:b4:dc:45:ba:01:c0:45:43:49: bb:7b:d9:fa:6e:7c:ec:d2:eb:78:39:97:71:40:87:42:24:3a: 40:a9:14:46:a9:d1:8c:08:5a:19:55:b6:62:a1:ac:77:b1:21: b6:c9:ca:44:b6:cd:48:4c:73:82:80:85:1e:8d:57:cb:38:cb: a9:e0:8c:ec -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGMqd13xuvOaA9uuJBcWW+VfjiXswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIwODAyNDUzMFoX DTI2MTIwNzAyNTAzMFowMzExMC8GA1UEAxMoRkI3NjdFQjJGMEQ2QTNEOEEwNkY4 QTM0RjJGQUU1NDVCQjY2Q0JDNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMP+L0sTPy9/WlxDSt5JLXCgQC/oZ0JGd6LqCcZWNpN3UuquIi5sTqwOXQF3 QmLVmyB231uzDwAr8+MhmVnUqkMfbJLPqhyl961zl14qtA1xnjUh1k0Y+WXV8qmW oJQwRn4kK6R7KtfWVZ8Z+4z6vKZ6VTkDuiOOZ5AWDC7tUc3uVSJJCPBdWfGPJjcr /ejLYD3aRuWnU4do3jJ6mlbp3zILtX1OjPTW+FqS+c3XOFPgty3dlp5/tmFKocMH Fx0TvYuyfXpV0J73+JRGkw/ugZ+ydJl3AGhwozHeUpfkmGzKaw9uy+Afvg2vvIm6 mRga1RbrCVGfzgstP49rHCX38VcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT7dn6y 8Naj2KBvijTy+uVFu2bLxDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzOTMyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVlODANBgkqhkiG9w0BAQsFAAOCAQEAUWa/aQdrw+cUseCLv8Ld OngNoWPM5zm44O3c2oYAlPPmVZ8budSo6Cbkd4Xqaqh6osaLBBfFbzL+1Cv++HvA +dorCrkHIUW56AuUpbUZdJYfmSr2ftl4AZujMJdpYJmFid6Ly2dCnB47w14cSR6X 2eK5T7MWdVlW6qKuTNeljHw1h1vyA3xMbTh93MVGWkC+WHjUGhjUx40PBoWwGjQ8 IFhe97NWVdXTYciPYJTfBBnnhDMLLgO8+TBfU596tNxFugHARUNJu3vZ+m587NLr eDmXcUCHQiQ6QKkURqnRjAhaGVW2YqGsd7EhtsnKRLbNSExzgoCFHo1XyzjLqeCM 7A== -----END CERTIFICATE-----Generated at Sun Dec 14 18:52:16 2025 by rpki-client