This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa File: AS138091.roa (raw, json) Hash identifier: j3E2e9CRacAZ8RuGECCXI6RDv4lgWH/sLnBEbseBXEI= Subject key identifier: F6:7E:2B:A0:AB:C9:9A:43:44:E8:11:01:A1:6A:FE:C4:C2:84:4F:C2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0ACEEA46F7914FFFA5B4757E5E3EA5FA0A4CCBE9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa Signing time: Tue 11 Nov 2025 06:00:04 +0000 ROA not before: Tue 11 Nov 2025 05:55:04 +0000 ROA not after: Tue 10 Nov 2026 06:00:04 +0000 asID: 138091 IP address blocks: 103.218.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ce:ea:46:f7:91:4f:ff:a5:b4:75:7e:5e:3e:a5:fa:0a:4c:cb:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:04 2025 GMT Not After : Nov 10 06:00:04 2026 GMT Subject: CN=F67E2BA0ABC99A4344E81101A16AFEC4C2844FC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:37:4f:91:24:6a:6c:7e:9a:de:7e:d2:b2:1b: c3:1f:0d:be:ae:58:07:92:55:02:ea:40:a0:e0:b8: 7c:90:1c:e5:61:ec:77:c9:72:01:c8:ce:cd:27:84: 35:4c:c1:b1:c0:d0:de:d2:dc:9d:01:37:41:f5:71: 72:e3:a6:60:e7:50:7d:0e:cd:a3:84:df:62:17:33: fe:de:1c:4b:b1:4f:17:64:db:3a:48:fc:d0:09:f0: 96:2d:69:a4:27:72:15:53:c7:f8:29:4e:b6:76:4a: 7a:05:da:22:9c:36:1f:28:8e:95:16:5e:c4:df:c1: ae:f0:b3:7f:ba:1b:5c:ee:87:96:37:df:e5:97:04: 8a:94:3c:70:47:40:db:a4:61:10:3c:3f:f5:1d:9e: d6:f4:7a:bd:f5:36:83:87:65:f9:39:1a:cd:3e:33: b1:a0:ba:7d:9c:75:b3:61:dc:d9:66:f5:db:d3:a5: f3:42:b7:6d:43:90:f8:0c:06:7d:73:1b:6d:5d:cb: b0:dc:e2:e9:5f:0a:ca:b7:2a:82:10:11:f9:c5:44: 9e:61:3c:91:d2:0c:24:75:11:8f:36:dd:49:9c:16: 07:94:87:63:96:3d:ab:01:51:c2:46:e2:8c:23:d9: f8:49:fe:f7:5d:91:8c:f2:07:f5:c4:88:8e:41:cb: f0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:7E:2B:A0:AB:C9:9A:43:44:E8:11:01:A1:6A:FE:C4:C2:84:4F:C2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138091.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.218.165.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:45:84:d7:e0:cb:65:af:df:a9:7b:d4:ba:d3:d9:73:d5:6e: 01:fc:31:82:7b:8e:bf:da:0d:b0:e5:33:36:e0:a7:a2:a7:9d: f4:cd:fa:3a:a4:67:04:da:50:ca:e1:98:7a:27:95:65:8f:4a: 74:ff:b9:69:8f:79:a9:81:25:0d:67:22:e2:b4:73:1e:88:c8: 69:09:09:22:1b:51:ec:8e:1a:ff:60:c9:5c:05:3e:a9:30:f0: 33:56:2f:bc:f5:6c:5b:07:ef:d0:c1:d6:33:ae:6e:ad:30:a3: d2:9d:c6:20:b4:41:d4:8e:43:b5:f6:31:01:a4:2b:7b:78:1d: 4e:ce:fd:6b:11:be:56:d0:ca:a1:00:db:87:6f:3e:7b:90:43: 77:f9:40:99:b3:7c:f8:07:d8:3f:e2:97:a2:fa:a3:26:f2:fb: 72:ee:b8:53:3e:73:04:c7:3a:60:e6:8f:7e:7a:26:5d:56:4f: 97:ce:92:a9:0d:16:1c:24:f6:7b:0f:6b:4e:aa:b2:1c:23:eb: ed:af:ab:bb:89:e5:da:27:3a:4c:de:53:d3:79:0f:19:52:48: 1a:a9:5b:af:20:7f:77:f6:ff:9b:32:d9:ce:66:18:08:9e:53: f4:14:6b:d1:d2:d6:db:44:df:ac:bf:82:50:1a:f9:0e:d1:72: 07:da:36:21 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCs7qRveRT/+ltHV+Xj6l+gpMy+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwNFoX DTI2MTExMDA2MDAwNFowMzExMC8GA1UEAxMoRjY3RTJCQTBBQkM5OUE0MzQ0RTgx MTAxQTE2QUZFQzRDMjg0NEZDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALU3T5Ekamx+mt5+0rIbwx8Nvq5YB5JVAupAoOC4fJAc5WHsd8lyAcjOzSeE NUzBscDQ3tLcnQE3QfVxcuOmYOdQfQ7No4TfYhcz/t4cS7FPF2TbOkj80Anwli1p pCdyFVPH+ClOtnZKegXaIpw2HyiOlRZexN/BrvCzf7obXO6Hljff5ZcEipQ8cEdA 26RhEDw/9R2e1vR6vfU2g4dl+TkazT4zsaC6fZx1s2Hc2Wb129Ol80K3bUOQ+AwG fXMbbV3LsNzi6V8KyrcqghAR+cVEnmE8kdIMJHURjzbdSZwWB5SHY5Y9qwFRwkbi jCPZ+En+912RjPIH9cSIjkHL8NECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT2fiug q8maQ0ToEQGhav7EwoRPwjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA5MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfapTANBgkqhkiG9w0BAQsFAAOCAQEAmkWE1+DLZa/fqXvUutPZ c9VuAfwxgnuOv9oNsOUzNuCnoqed9M36OqRnBNpQyuGYeieVZY9KdP+5aY95qYEl DWci4rRzHojIaQkJIhtR7I4a/2DJXAU+qTDwM1YvvPVsWwfv0MHWM65urTCj0p3G ILRB1I5DtfYxAaQre3gdTs79axG+VtDKoQDbh28+e5BDd/lAmbN8+AfYP+KXovqj JvL7cu64Uz5zBMc6YOaPfnomXVZPl86SqQ0WHCT2ew9rTqqyHCPr7a+ru4nl2ic6 TN5T03kPGVJIGqlbryB/d/b/mzLZzmYYCJ5T9BRr0dLW20TfrL+CUBr5DtFyB9o2 IQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:56 2025 by rpki-client