This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138011.roa File: AS138011.roa (raw, json) Hash identifier: u4Jv4OCWEwaPYDpaonDR+U8fFE0kdWuVklaBQrkAbJE= Subject key identifier: F4:1B:38:E4:D6:F4:88:38:E4:40:89:61:0F:12:31:83:7A:C5:F1:1C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 609BE8C72CCF007909185A4A41DA81E64A345D88 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138011.roa Signing time: Fri 09 Jan 2026 06:45:39 +0000 ROA not before: Fri 09 Jan 2026 06:40:39 +0000 ROA not after: Fri 08 Jan 2027 06:45:39 +0000 asID: 138011 IP address blocks: 2001:df6:7940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:9b:e8:c7:2c:cf:00:79:09:18:5a:4a:41:da:81:e6:4a:34:5d:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 06:40:39 2026 GMT Not After : Jan 8 06:45:39 2027 GMT Subject: CN=F41B38E4D6F48838E44089610F1231837AC5F11C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:53:b4:48:b8:a9:11:1a:23:ec:b6:f3:75:6b: e3:15:bf:8b:7e:79:7e:a9:40:a2:19:e3:b7:9b:43: 5f:ee:fa:0a:69:a9:a2:a6:4d:4a:a0:c5:f9:fc:96: d5:d2:78:25:91:cf:b6:a5:5d:d7:69:f3:cb:25:43: 6d:7d:27:4a:2d:a6:35:5b:92:ac:5f:e1:ee:15:76: ef:8a:2e:2b:91:d5:c7:f4:49:82:fd:59:73:14:28: 1f:46:65:5b:de:7e:b9:81:ea:49:72:80:42:19:9c: 62:cf:56:72:d1:c8:b4:2b:0d:40:10:e4:c8:e4:ea: 17:18:5e:13:d9:90:7b:74:8e:2e:43:f1:67:6d:e6: 3a:bd:49:90:6a:25:73:f3:be:32:f7:9b:2d:c6:ee: 8f:45:12:38:07:75:8e:9a:a3:b4:a1:71:48:37:83: e6:59:73:9f:e0:03:38:54:65:b9:3f:62:45:da:32: a8:b3:09:65:b5:92:da:5f:69:52:78:87:ae:aa:1b: 4a:02:bd:2e:45:ae:fb:e3:f3:0f:dd:d9:3c:57:6f: 46:1c:25:5f:75:23:e4:f6:23:c9:d4:58:3f:ff:0a: 67:48:85:21:b1:6b:af:5d:0e:cb:e5:8e:63:96:b4: 39:1c:97:88:4e:0b:a0:a9:52:03:03:6a:4b:58:93: b9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1B:38:E4:D6:F4:88:38:E4:40:89:61:0F:12:31:83:7A:C5:F1:1C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138011.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:7940::/48 Signature Algorithm: sha256WithRSAEncryption 09:cb:26:35:cf:63:5c:73:86:0b:d5:91:43:1c:76:c9:e0:47: 5e:e8:6c:94:e2:0b:6a:c0:7f:6d:cd:14:3c:a5:37:13:63:ac: 38:8f:c3:72:4e:ee:0f:cd:b5:b8:26:20:67:3c:4b:67:84:82: 4c:5f:4d:6e:b0:96:60:dc:54:a7:47:57:7a:aa:0e:b8:03:f7: 4e:85:68:cd:cd:4a:05:0d:74:5a:98:18:0f:2f:7a:0e:81:9f: 43:f1:3d:04:85:87:14:3a:f1:86:56:94:83:f6:df:71:18:85: 95:19:d2:18:fb:4a:13:40:d5:df:25:98:c6:71:47:33:20:53: 24:14:20:77:ea:74:1f:8c:ec:44:19:06:1e:7f:35:4f:79:29: c3:fa:0d:5e:8a:fc:3c:23:18:27:82:5b:12:cf:c3:89:73:19: e4:0e:a6:05:ca:65:71:fd:e8:bf:dc:d2:23:c5:05:73:62:40: 90:23:7a:bf:dd:99:3b:f0:30:97:3a:14:6b:68:b1:9d:0f:04: 00:48:85:fa:b3:25:07:d5:e3:66:05:e5:56:2f:b2:12:34:bb: f6:1a:93:0e:98:62:48:29:1f:15:4d:5d:ff:31:09:0c:6c:2d: 76:60:a5:86:3e:62:0c:85:33:ba:dc:57:e9:9e:dc:54:5f:4d: 62:36:d8:62 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUYJvoxyzPAHkJGFpKQdqB5ko0XYgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwOTA2NDAzOVoX DTI3MDEwODA2NDUzOVowMzExMC8GA1UEAxMoRjQxQjM4RTRENkY0ODgzOEU0NDA4 OTYxMEYxMjMxODM3QUM1RjExQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhTtEi4qREaI+y283Vr4xW/i355fqlAohnjt5tDX+76CmmpoqZNSqDF+fyW 1dJ4JZHPtqVd12nzyyVDbX0nSi2mNVuSrF/h7hV274ouK5HVx/RJgv1ZcxQoH0Zl W95+uYHqSXKAQhmcYs9WctHItCsNQBDkyOTqFxheE9mQe3SOLkPxZ23mOr1JkGol c/O+MvebLcbuj0USOAd1jpqjtKFxSDeD5llzn+ADOFRluT9iRdoyqLMJZbWS2l9p UniHrqobSgK9LkWu++PzD93ZPFdvRhwlX3Uj5PYjydRYP/8KZ0iFIbFrr10Oy+WO Y5a0ORyXiE4LoKlSAwNqS1iTuSkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBT0Gzjk 1vSIOORAiWEPEjGDesXxHDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODAxMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfZ5QDANBgkqhkiG9w0BAQsFAAOCAQEACcsmNc9jXHOGC9WR Qxx2yeBHXuhslOILasB/bc0UPKU3E2OsOI/Dck7uD821uCYgZzxLZ4SCTF9NbrCW YNxUp0dXeqoOuAP3ToVozc1KBQ10WpgYDy96DoGfQ/E9BIWHFDrxhlaUg/bfcRiF lRnSGPtKE0DV3yWYxnFHMyBTJBQgd+p0H4zsRBkGHn81T3kpw/oNXor8PCMYJ4Jb Es/DiXMZ5A6mBcplcf3ov9zSI8UFc2JAkCN6v92ZO/AwlzoUa2ixnQ8EAEiF+rMl B9XjZgXlVi+yEjS79hqTDphiSCkfFU1d/zEJDGwtdmClhj5iDIUzutxX6Z7cVF9N YjbYYg== -----END CERTIFICATE-----Generated at Wed Jan 21 14:30:06 2026 by rpki-client