This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138122.roa File: AS138122.roa (raw, json) Hash identifier: /dRwUzc6jMyeVoH+e+TEjTQDIcFmSjCrSBOV3M//3+c= Subject key identifier: F4:72:5F:39:79:23:1D:BA:6C:F2:95:D5:57:82:6B:BC:BB:16:9B:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4FEC4DB8820228ED63E8B5B54A725173D7DC4308 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138122.roa Signing time: Thu 06 Nov 2025 05:02:24 +0000 ROA not before: Thu 06 Nov 2025 04:57:24 +0000 ROA not after: Thu 05 Nov 2026 05:02:24 +0000 asID: 138122 IP address blocks: 103.127.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ec:4d:b8:82:02:28:ed:63:e8:b5:b5:4a:72:51:73:d7:dc:43:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 04:57:24 2025 GMT Not After : Nov 5 05:02:24 2026 GMT Subject: CN=F4725F3979231DBA6CF295D557826BBCBB169B46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b8:0e:9b:70:ba:4f:8c:ce:96:ca:d2:f1:a4: f6:94:cd:3b:0a:0a:2f:34:94:91:b2:f1:ed:78:95: 50:9d:36:f9:27:83:56:2d:84:cf:7b:13:6f:54:3a: 05:ec:23:25:0e:f4:4e:a2:d2:5f:8d:c4:ad:9f:ad: 8b:1d:cc:77:81:ce:f4:65:b3:20:05:d3:17:60:b7: 5b:2a:51:f9:5a:aa:1a:07:d2:83:f8:83:ec:c5:a5: 59:15:c7:18:8b:71:59:6b:57:81:b6:b9:9c:6e:34: eb:d7:11:8e:3a:de:7e:da:01:6d:77:b5:91:1c:73: aa:01:cd:ac:53:32:b9:db:ca:c3:50:18:5f:2a:8e: ab:82:e7:d9:f6:a5:22:f1:97:7c:af:d8:cd:98:98: 81:a6:98:0b:f4:a2:a1:d1:b8:9a:43:27:e2:34:78: 93:7d:fb:75:34:3f:08:9f:d2:fa:b0:5e:7b:8e:8f: c6:6e:44:6a:11:e5:0e:84:8f:e9:9e:a9:87:8d:0b: 9a:02:31:49:1b:11:fb:f4:04:c9:dc:0b:c4:48:df: 7e:cf:28:a6:70:39:d7:61:7e:47:a1:ef:12:32:66: a4:66:36:14:e3:97:7e:fb:21:ff:c3:4b:43:71:d1: c9:ff:12:33:1e:17:11:59:b6:ab:7e:4e:94:74:42: 25:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:72:5F:39:79:23:1D:BA:6C:F2:95:D5:57:82:6B:BC:BB:16:9B:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138122.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.171.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:4c:6d:26:09:53:ae:14:8d:4c:94:db:a4:62:49:ee:78:28: 1a:8d:ba:9e:c5:79:0d:6d:3d:14:e0:72:53:ce:9b:ee:d1:03: b3:5f:d3:99:d5:34:66:21:5f:8e:26:70:a4:ae:93:55:ab:06: 07:b5:dd:e7:74:b8:bc:0c:c5:ee:9b:5d:14:42:2e:06:05:2c: 91:e8:2d:83:ab:9b:a4:81:00:47:ee:9c:e6:75:59:77:7b:6d: a6:55:51:ec:c6:87:a7:8b:d1:86:9b:b0:28:d2:d7:90:27:cd: 50:ce:e1:99:ba:a6:e5:cf:35:ee:43:6f:0c:ec:a6:a4:02:35: 67:09:37:7b:7e:2a:a7:c2:6f:ef:62:bc:1f:0f:4e:f2:0c:db: 51:02:85:0d:ba:c7:32:cd:e0:7c:19:74:c3:24:c3:dc:13:22: b5:db:dc:36:99:51:35:13:79:ab:a1:e7:0a:d4:54:0c:fc:2e: f2:cf:d0:2f:21:d7:12:77:9d:fd:ec:8f:98:be:6b:3e:29:2f: 5c:6a:20:d0:f3:d5:6e:07:94:ac:89:28:a4:23:bc:9e:64:17: 4c:88:c0:52:0d:70:bd:08:92:ec:9e:35:f4:bf:ac:6d:82:97: 89:b9:99:3d:4a:38:31:d4:57:f8:49:e7:40:f3:70:93:d7:51: 30:17:d0:b6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUT+xNuIICKO1j6LW1SnJRc9fcQwgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNjA0NTcyNFoX DTI2MTEwNTA1MDIyNFowMzExMC8GA1UEAxMoRjQ3MjVGMzk3OTIzMURCQTZDRjI5 NUQ1NTc4MjZCQkNCQjE2OUI0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMq4Dptwuk+MzpbK0vGk9pTNOwoKLzSUkbLx7XiVUJ02+SeDVi2Ez3sTb1Q6 BewjJQ70TqLSX43ErZ+tix3Md4HO9GWzIAXTF2C3WypR+VqqGgfSg/iD7MWlWRXH GItxWWtXgba5nG4069cRjjreftoBbXe1kRxzqgHNrFMyudvKw1AYXyqOq4Ln2fal IvGXfK/YzZiYgaaYC/SiodG4mkMn4jR4k337dTQ/CJ/S+rBee46Pxm5EahHlDoSP 6Z6ph40LmgIxSRsR+/QEydwLxEjffs8opnA512F+R6HvEjJmpGY2FOOXfvsh/8NL Q3HRyf8SMx4XEVm2q35OlHRCJWkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT0cl85 eSMdumzyldVXgmu8uxabRjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEyMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd/qzANBgkqhkiG9w0BAQsFAAOCAQEAjUxtJglTrhSNTJTbpGJJ 7ngoGo26nsV5DW09FOByU86b7tEDs1/TmdU0ZiFfjiZwpK6TVasGB7Xd53S4vAzF 7ptdFEIuBgUskegtg6ubpIEAR+6c5nVZd3ttplVR7MaHp4vRhpuwKNLXkCfNUM7h mbqm5c817kNvDOympAI1Zwk3e34qp8Jv72K8Hw9O8gzbUQKFDbrHMs3gfBl0wyTD 3BMitdvcNplRNRN5q6HnCtRUDPwu8s/QLyHXEned/eyPmL5rPikvXGog0PPVbgeU rIkopCO8nmQXTIjAUg1wvQiS7J419L+sbYKXibmZPUo4MdRX+EnnQPNwk9dRMBfQ tg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:52 2025 by rpki-client