This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137939.roa File: AS137939.roa (raw, json) Hash identifier: UbeRgYuWl+e+DuRqpAMQNV4qfpQvg0+jJZIVi4uFnVA= Subject key identifier: F2:8F:DA:1D:F4:E8:D5:E9:41:8D:75:41:53:F2:3D:74:52:87:16:45 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 52689AA3F5405567EB09450B1EC8EF073A2ECC55 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137939.roa Signing time: Mon 17 Nov 2025 04:33:16 +0000 ROA not before: Mon 17 Nov 2025 04:28:16 +0000 ROA not after: Mon 16 Nov 2026 04:33:16 +0000 asID: 137939 IP address blocks: 2001:df6:3140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:68:9a:a3:f5:40:55:67:eb:09:45:0b:1e:c8:ef:07:3a:2e:cc:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 17 04:28:16 2025 GMT Not After : Nov 16 04:33:16 2026 GMT Subject: CN=F28FDA1DF4E8D5E9418D754153F23D7452871645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:de:81:e1:b0:4a:c2:5f:ae:6d:25:43:75:a5: 91:98:4f:8e:dd:ac:2e:a8:09:cd:f1:f7:86:94:5f: 94:8e:c7:e0:5b:b7:f6:aa:91:cb:91:f1:4c:3f:c5: c6:b0:4a:46:63:06:76:34:92:e1:7e:a3:78:28:ba: ee:51:ea:0d:6a:f3:0f:4b:ee:9f:1c:b9:89:80:ab: a7:ce:19:d4:59:be:b6:4c:5c:73:d8:0c:c4:7c:01: af:97:65:90:d0:89:84:b4:83:a9:5c:92:66:34:45: 2e:d4:01:40:79:19:d0:71:9c:07:7f:f3:66:4e:bc: cf:a9:4b:ec:86:aa:8e:cf:8d:45:f3:6d:60:07:be: c1:c7:41:ed:38:b2:9f:d2:59:47:22:a2:06:da:bc: 5d:35:16:4c:d9:30:c0:43:d1:23:49:cd:f4:ae:bb: 39:0f:af:81:e5:e0:9c:5d:90:cf:d2:9c:bf:5b:43: 87:44:b9:dc:7c:dd:20:a7:35:ad:4c:5b:17:a5:d3: 4d:34:df:de:85:31:ce:18:3a:87:14:41:56:ce:4a: fc:31:bf:32:5b:c1:1b:87:18:37:19:5f:87:d6:f6: 40:c6:de:2c:9f:fd:a9:c3:3b:32:01:bb:1c:ed:1c: 4f:df:7a:58:a9:bc:19:65:4f:d1:d8:4a:50:4e:79: a7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:8F:DA:1D:F4:E8:D5:E9:41:8D:75:41:53:F2:3D:74:52:87:16:45 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS137939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:3140::/48 Signature Algorithm: sha256WithRSAEncryption 16:ed:a1:f1:54:c5:96:ea:9c:10:41:05:a3:25:6a:46:0d:34: b2:94:df:4a:6f:2b:91:71:7a:24:e6:76:5c:84:c6:9a:a3:4a: 82:15:3a:58:2c:90:33:c0:be:09:ab:a1:13:16:51:d6:f7:8b: c9:f3:2e:24:81:99:36:93:b2:22:69:61:bc:33:44:31:c5:98: f9:c1:b9:15:13:c1:4b:cd:d5:69:3e:2f:93:da:a9:25:8c:9a: 3c:87:1a:2a:3a:72:4b:de:6b:3d:b0:a5:88:01:8a:87:49:9f: d3:c4:ac:2d:5b:d8:69:fa:ad:ec:ba:41:91:f8:75:3a:0e:78: 37:be:9b:8e:fa:f2:90:6e:af:3d:15:72:9f:4a:6c:8a:44:d0: 69:91:89:d8:7e:e0:7b:80:47:19:af:e7:3c:4f:2d:48:ab:13: 89:ad:a1:34:7e:e8:98:6c:82:13:b6:aa:d4:ce:09:fd:98:29: 3d:f3:09:9b:81:06:64:d7:1a:e2:8d:c1:69:b8:b6:be:a7:92: 87:89:a2:9f:54:c1:7b:cd:c8:7b:ad:43:ef:9d:97:1c:8b:f4: c6:af:0a:7f:dd:0b:a5:eb:b0:e2:ca:e8:0a:4c:7e:8e:15:9d: 39:3c:45:80:cf:27:58:80:07:22:05:13:12:43:96:c7:c0:86: 30:25:19:17 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUUmiao/VAVWfrCUULHsjvBzouzFUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExNzA0MjgxNloX DTI2MTExNjA0MzMxNlowMzExMC8GA1UEAxMoRjI4RkRBMURGNEU4RDVFOTQxOEQ3 NTQxNTNGMjNENzQ1Mjg3MTY0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbegeGwSsJfrm0lQ3WlkZhPjt2sLqgJzfH3hpRflI7H4Fu39qqRy5HxTD/F xrBKRmMGdjSS4X6jeCi67lHqDWrzD0vunxy5iYCrp84Z1Fm+tkxcc9gMxHwBr5dl kNCJhLSDqVySZjRFLtQBQHkZ0HGcB3/zZk68z6lL7Iaqjs+NRfNtYAe+wcdB7Tiy n9JZRyKiBtq8XTUWTNkwwEPRI0nN9K67OQ+vgeXgnF2Qz9Kcv1tDh0S53HzdIKc1 rUxbF6XTTTTf3oUxzhg6hxRBVs5K/DG/MlvBG4cYNxlfh9b2QMbeLJ/9qcM7MgG7 HO0cT996WKm8GWVP0dhKUE55p28CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTyj9od 9OjV6UGNdUFT8j10UocWRTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzNzkzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfYxQDANBgkqhkiG9w0BAQsFAAOCAQEAFu2h8VTFluqcEEEF oyVqRg00spTfSm8rkXF6JOZ2XITGmqNKghU6WCyQM8C+CauhExZR1veLyfMuJIGZ NpOyImlhvDNEMcWY+cG5FRPBS83VaT4vk9qpJYyaPIcaKjpyS95rPbCliAGKh0mf 08SsLVvYafqt7LpBkfh1Og54N76bjvrykG6vPRVyn0psikTQaZGJ2H7ge4BHGa/n PE8tSKsTia2hNH7omGyCE7aq1M4J/ZgpPfMJm4EGZNca4o3Babi2vqeSh4min1TB e83Ie61D752XHIv0xq8Kf90Lpeuw4sroCkx+jhWdOTxFgM8nWIAHIgUTEkOWx8CG MCUZFw== -----END CERTIFICATE-----Generated at Wed Dec 3 14:50:03 2025 by rpki-client