This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa File: AS138095.roa (raw, json) Hash identifier: GfPnbvQtiQ1O76+4UrTYqqT+F6cIRl5OrYtvxviRU7M= Subject key identifier: F6:F7:0A:7F:EF:7E:59:C6:61:22:F9:D6:3A:40:C3:63:A0:14:43:E4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 263042975D3FF3646EF37DDAF8B8156D1C3C950D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa Signing time: Tue 11 Nov 2025 09:00:00 +0000 ROA not before: Tue 11 Nov 2025 08:55:00 +0000 ROA not after: Tue 10 Nov 2026 09:00:00 +0000 asID: 138095 IP address blocks: 103.124.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:30:42:97:5d:3f:f3:64:6e:f3:7d:da:f8:b8:15:6d:1c:3c:95:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 08:55:00 2025 GMT Not After : Nov 10 09:00:00 2026 GMT Subject: CN=F6F70A7FEF7E59C66122F9D63A40C363A01443E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:df:7b:7c:49:83:37:2d:e5:88:3d:ef:fa:b0: 84:70:f1:c0:d7:25:6b:b5:b4:ce:b7:56:b8:eb:1d: 38:87:f6:ba:a7:6a:ca:ba:ca:27:e5:15:5a:2b:17: 05:cd:25:cf:e5:6f:64:15:b2:a7:f8:06:71:77:11: a4:ca:1d:e8:fe:e3:38:e1:b5:62:58:fd:0f:ae:1c: da:1b:8d:34:f7:46:c5:92:16:ff:3b:af:ee:9b:f6: 2d:72:66:0a:89:4c:d8:3e:14:80:2b:46:19:ae:0f: d5:10:8a:cd:13:f9:6f:c3:5a:41:fb:45:f0:ca:f1: 27:31:f8:b0:27:2c:60:7e:91:ba:de:f4:84:30:dc: 65:ea:5f:6f:36:1f:ce:80:37:e1:87:bb:64:57:b2: 58:01:f4:9d:18:0e:3d:c9:9b:f3:98:34:89:1a:4d: 7e:cd:cb:75:fe:8d:9b:98:6a:7f:84:07:e7:84:c8: c2:ea:08:8c:fb:4f:13:04:8e:f2:41:a4:28:6e:e4: 26:48:68:0c:cc:5b:93:ec:f4:70:9c:84:9a:aa:79: 02:8f:be:e5:64:f5:82:6d:b3:7b:93:9f:3f:ac:76: c9:ea:f7:27:4e:aa:90:d6:aa:2b:a7:ef:29:0d:67: 08:3c:e0:4f:09:3f:1f:b3:c5:f0:2f:09:0f:18:14: 16:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F7:0A:7F:EF:7E:59:C6:61:22:F9:D6:3A:40:C3:63:A0:14:43:E4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138095.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.8.0/24 Signature Algorithm: sha256WithRSAEncryption 76:2c:50:c8:bd:7d:41:6b:7f:62:62:98:03:f6:ad:00:d1:0e: 40:4c:cf:b2:f5:c4:9a:0f:c7:ab:3a:d6:5a:65:7c:ac:9e:e8: 55:b0:6e:a4:71:4a:6a:71:2b:47:4b:cf:8b:23:4f:47:62:89: a0:c6:d6:26:e6:55:6c:1f:25:04:f8:7a:be:9c:65:a6:16:ae: 1b:0c:b9:e3:fb:f4:52:6a:84:bd:2d:d6:af:82:9e:48:88:ba: 82:c6:2e:ba:14:8e:f4:fe:3d:51:cb:4d:c6:86:c6:f6:5b:62: 51:6a:08:33:38:b8:f3:38:70:a1:be:0b:82:d4:2d:7c:b3:a7: 38:dc:d9:b0:0e:7e:cf:bc:83:32:79:ce:9a:37:12:d8:91:c3: 57:37:54:31:06:89:bb:a2:bc:03:76:3c:de:60:c8:20:93:8d: 3e:53:63:f5:d5:df:fc:f0:18:8a:3b:b1:a3:33:7d:de:77:41: a6:fc:f1:96:9b:ba:78:03:bc:c4:eb:cf:13:81:28:19:49:5e: c5:60:48:0f:a9:5e:99:1a:a7:2a:ef:ed:96:fa:2b:3d:87:c3: a4:f2:76:91:61:91:eb:cf:79:4e:80:ec:13:cc:32:ae:61:8b: 6f:eb:02:99:ca:63:4c:09:c6:4e:69:9f:45:93:c0:fa:35:0b: 5c:26:99:11 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJjBCl10/82Ru833a+LgVbRw8lQ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA4NTUwMFoX DTI2MTExMDA5MDAwMFowMzExMC8GA1UEAxMoRjZGNzBBN0ZFRjdFNTlDNjYxMjJG OUQ2M0E0MEMzNjNBMDE0NDNFNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ/fe3xJgzct5Yg97/qwhHDxwNcla7W0zrdWuOsdOIf2uqdqyrrKJ+UVWisX Bc0lz+VvZBWyp/gGcXcRpMod6P7jOOG1Ylj9D64c2huNNPdGxZIW/zuv7pv2LXJm ColM2D4UgCtGGa4P1RCKzRP5b8NaQftF8MrxJzH4sCcsYH6Rut70hDDcZepfbzYf zoA34Ye7ZFeyWAH0nRgOPcmb85g0iRpNfs3Ldf6Nm5hqf4QH54TIwuoIjPtPEwSO 8kGkKG7kJkhoDMxbk+z0cJyEmqp5Ao++5WT1gm2ze5OfP6x2yer3J06qkNaqK6fv KQ1nCDzgTwk/H7PF8C8JDxgUFhcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT29wp/ 735ZxmEi+dY6QMNjoBRD5DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA5NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd8CDANBgkqhkiG9w0BAQsFAAOCAQEAdixQyL19QWt/YmKYA/at ANEOQEzPsvXEmg/HqzrWWmV8rJ7oVbBupHFKanErR0vPiyNPR2KJoMbWJuZVbB8l BPh6vpxlphauGwy54/v0UmqEvS3Wr4KeSIi6gsYuuhSO9P49UctNxobG9ltiUWoI Mzi48zhwob4LgtQtfLOnONzZsA5+z7yDMnnOmjcS2JHDVzdUMQaJu6K8A3Y83mDI IJONPlNj9dXf/PAYijuxozN93ndBpvzxlpu6eAO8xOvPE4EoGUlexWBID6lemRqn Ku/tlvorPYfDpPJ2kWGR6895ToDsE8wyrmGLb+sCmcpjTAnGTmmfRZPA+jULXCaZ EQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:52 2025 by rpki-client