This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139983.roa File: AS139983.roa (raw, json) Hash identifier: cjmYKdLFfpYjC0G96JKqxMIblZup3ZIUoB7JYyI9IyI= Subject key identifier: 70:15:20:72:C3:4E:36:5B:80:B8:27:F5:AC:D4:F3:22:58:3B:3E:39 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 435CF3FF4495464CC72EFAC06F566FED6C32FB55 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139983.roa Signing time: Fri 16 Jan 2026 10:00:00 +0000 ROA not before: Fri 16 Jan 2026 09:55:00 +0000 ROA not after: Fri 15 Jan 2027 10:00:00 +0000 asID: 139983 IP address blocks: 157.20.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5c:f3:ff:44:95:46:4c:c7:2e:fa:c0:6f:56:6f:ed:6c:32:fb:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 16 09:55:00 2026 GMT Not After : Jan 15 10:00:00 2027 GMT Subject: CN=70152072C34E365B80B827F5ACD4F322583B3E39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fa:17:37:7c:93:b9:a9:90:35:a5:3a:91:52: 39:09:7f:2c:88:7c:ea:2b:8f:44:96:71:52:de:b4: f4:4c:3d:24:b3:37:03:7b:bf:bb:04:28:01:43:5c: 62:79:28:11:60:5e:43:5b:cb:bc:09:9d:68:06:ae: 3d:d1:a9:2d:47:9f:a3:b4:fc:48:4d:e3:44:31:f3: e3:98:09:21:69:90:0d:14:9e:a1:c1:09:f1:e2:87: d7:dc:7d:d1:1c:86:56:8d:8f:f0:58:68:ba:be:b0: 6b:a8:f6:df:2c:97:0d:27:fb:4e:b4:86:13:5c:7e: 37:2f:28:0c:79:01:0e:a6:6a:3e:67:11:b6:b2:6b: a8:74:bb:35:19:8c:1c:8f:de:e4:fa:64:94:41:9f: 51:6f:9d:1d:e5:ac:27:05:2a:15:0c:1b:44:74:84: 43:30:c8:b0:23:22:43:04:5e:c0:fd:79:82:51:36: 4b:6d:ac:c3:a3:dc:cd:b7:21:cf:f4:c6:12:0a:51: 6b:40:d9:ae:42:58:7d:12:b0:f5:45:45:cd:e0:45: e7:58:89:35:ae:70:08:f0:d5:51:d9:39:92:fb:be: 15:6d:96:55:4e:60:27:73:a4:db:98:9d:30:ee:c2: 8d:58:48:c8:c9:49:a2:79:07:95:16:49:cf:08:fe: c4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:15:20:72:C3:4E:36:5B:80:B8:27:F5:AC:D4:F3:22:58:3B:3E:39 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139983.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.122.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:f0:b0:45:91:1b:6b:14:11:71:6f:c3:17:da:37:44:e0:41: 8e:bc:7f:a4:c3:27:c9:ff:49:9c:4b:29:a7:4a:6f:a1:e3:6e: 1a:43:bc:3d:85:46:cf:5a:e2:2c:ea:ec:fa:47:18:20:0f:d5: 3b:9d:a6:3d:95:76:9e:42:53:04:65:b8:0b:65:7e:9b:1a:89: 9d:a1:31:52:34:5d:42:bd:3a:bd:72:ad:6e:09:da:39:14:27: 13:c3:e5:a8:14:6c:d0:1b:a9:49:6e:e8:46:9b:86:95:c2:ab: a3:a4:32:06:45:38:61:8d:9b:d3:dd:84:f8:c5:1c:10:53:b5: bc:6c:7f:92:ab:7c:d0:a3:56:96:96:65:32:6c:65:18:6e:28: 75:ed:a6:77:73:33:b5:de:e7:97:81:78:06:68:ca:dc:e5:a8: 85:92:28:f0:6a:c4:20:f0:52:f5:a2:2a:2b:18:39:53:3f:7b: 7d:00:fc:cd:42:1d:78:48:7f:74:65:ec:d6:ea:c9:c2:cb:dd: 78:ef:91:c3:a0:2b:83:db:f4:b2:bb:30:a7:a0:dc:a9:ae:fd: 33:a8:1c:ce:78:e6:f6:c2:76:ec:09:ec:46:b1:cf:78:bd:b8: 1a:63:81:dd:19:31:b8:21:20:65:33:45:87:95:ae:db:d9:16: bd:c4:43:b1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQ1zz/0SVRkzHLvrAb1Zv7Wwy+1UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDExNjA5NTUwMFoX DTI3MDExNTEwMDAwMFowMzExMC8GA1UEAxMoNzAxNTIwNzJDMzRFMzY1QjgwQjgy N0Y1QUNENEYzMjI1ODNCM0UzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMH6Fzd8k7mpkDWlOpFSOQl/LIh86iuPRJZxUt609Ew9JLM3A3u/uwQoAUNc YnkoEWBeQ1vLvAmdaAauPdGpLUefo7T8SE3jRDHz45gJIWmQDRSeocEJ8eKH19x9 0RyGVo2P8Fhour6wa6j23yyXDSf7TrSGE1x+Ny8oDHkBDqZqPmcRtrJrqHS7NRmM HI/e5PpklEGfUW+dHeWsJwUqFQwbRHSEQzDIsCMiQwRewP15glE2S22sw6Pczbch z/TGEgpRa0DZrkJYfRKw9UVFzeBF51iJNa5wCPDVUdk5kvu+FW2WVU5gJ3Ok25id MO7CjVhIyMlJonkHlRZJzwj+xH0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRwFSBy w042W4C4J/Ws1PMiWDs+OTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzOTk4My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0UejANBgkqhkiG9w0BAQsFAAOCAQEATPCwRZEbaxQRcW/DF9o3 ROBBjrx/pMMnyf9JnEspp0pvoeNuGkO8PYVGz1riLOrs+kcYIA/VO52mPZV2nkJT BGW4C2V+mxqJnaExUjRdQr06vXKtbgnaORQnE8PlqBRs0BupSW7oRpuGlcKro6Qy BkU4YY2b092E+MUcEFO1vGx/kqt80KNWlpZlMmxlGG4ode2md3Mztd7nl4F4BmjK 3OWohZIo8GrEIPBS9aIqKxg5Uz97fQD8zUIdeEh/dGXs1urJwsvdeO+Rw6Arg9v0 srswp6Dcqa79M6gcznjm9sJ27AnsRrHPeL24GmOB3RkxuCEgZTNFh5Wu29kWvcRD sQ== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:12 2026 by rpki-client