This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138124.roa File: AS138124.roa (raw, json) Hash identifier: AvNj0GAW/sntSPIhaArF660HnxjEzXZdHqyGlo6AzjY= Subject key identifier: 06:5C:A2:40:58:2A:B9:CC:F7:D0:87:15:05:51:31:38:4F:F3:EB:AB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 563432D219EA1CFA40EC68736C943BF0ADF041B7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138124.roa Signing time: Fri 21 Nov 2025 08:46:20 +0000 ROA not before: Fri 21 Nov 2025 08:41:20 +0000 ROA not after: Fri 20 Nov 2026 08:46:20 +0000 asID: 138124 IP address blocks: 103.132.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:34:32:d2:19:ea:1c:fa:40:ec:68:73:6c:94:3b:f0:ad:f0:41:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 21 08:41:20 2025 GMT Not After : Nov 20 08:46:20 2026 GMT Subject: CN=065CA240582AB9CCF7D08715055131384FF3EBAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:83:f8:c5:f9:a9:8b:b3:cd:c1:5c:90:d1:7a: 5b:e4:8a:e0:43:dd:bd:d8:af:96:d1:41:ec:27:28: 37:78:fc:d2:d0:3a:7a:b6:76:06:b3:7a:ae:d1:ae: bd:79:0f:48:26:ba:bf:36:63:db:1c:45:c5:cd:2a: 37:4c:d2:05:09:17:12:c9:fe:ba:68:c3:5f:f1:ae: 4a:bc:16:fc:97:1a:34:77:e5:c2:23:6f:3d:6c:c1: 3e:cd:02:c5:ec:a2:32:cd:b0:65:73:20:8e:ae:40: e8:43:49:bd:54:8f:0e:08:89:ac:06:04:62:ff:13: 78:f0:b9:37:af:0a:ae:ec:1f:31:e5:62:fe:e1:e9: a6:99:e2:93:35:1d:0f:ed:b6:b4:14:7a:e8:2e:2a: a2:74:a1:fe:10:02:5a:24:d3:b6:a5:54:eb:78:12: aa:4f:e2:ba:59:a6:98:40:a5:7e:d7:c6:62:e2:1f: 06:89:56:8f:ff:1b:fc:07:26:02:0c:ab:56:84:56: a5:a4:22:a7:a8:70:a6:bf:be:31:16:c2:2f:88:f9: 10:ec:69:ac:19:e0:08:31:94:f9:af:94:a3:87:fd: db:ab:10:11:d0:36:93:7a:01:5b:34:97:0f:5a:51: 0b:cd:d7:65:78:58:eb:c4:33:2d:cb:d5:20:25:ab: 2c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5C:A2:40:58:2A:B9:CC:F7:D0:87:15:05:51:31:38:4F:F3:EB:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138124.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.124.0/24 Signature Algorithm: sha256WithRSAEncryption 73:5d:3c:3b:d3:d6:f3:8f:a9:f4:dd:40:0e:34:c0:c2:0f:ec: 7c:b9:df:5e:ac:8b:9c:d8:72:16:61:42:f5:00:d8:0f:f1:40: b5:39:5d:c9:63:27:f2:89:73:ed:d8:1c:ea:67:c2:6f:10:ba: b4:40:67:f5:01:1d:e8:58:dd:37:5d:28:54:4d:4e:52:46:f7: 10:10:c4:7c:99:b8:d9:e7:bc:0b:db:59:8f:b0:10:bd:28:b4: b5:f7:f3:ec:38:e0:75:e1:1d:1d:4f:67:53:0d:31:10:a3:56: b0:59:41:9d:6a:b3:4c:d5:7c:25:ca:37:e6:83:bc:01:07:83: d5:a1:37:9f:60:9c:6c:2b:09:9f:90:e7:60:6f:33:2e:45:24: f0:fa:d1:80:29:0d:51:af:b5:1e:98:91:e6:8b:44:54:2e:cf: 4f:f7:5b:b4:d9:1c:28:3e:16:fc:a1:26:f3:f2:d0:76:72:47: ae:5c:98:3f:68:0d:eb:06:87:87:db:0d:ab:7b:59:13:12:bb: 25:0d:c0:d0:5c:1b:32:9d:a1:09:25:a2:b1:92:ac:eb:ee:cb: 39:dd:a6:8e:e0:c2:33:d5:96:4c:29:0e:02:d1:d3:65:74:7b: 27:d6:1e:cb:a1:ab:69:76:5d:5a:15:a4:b1:05:4b:8d:13:75: dc:07:9b:73 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVjQy0hnqHPpA7GhzbJQ78K3wQbcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMTA4NDEyMFoX DTI2MTEyMDA4NDYyMFowMzExMC8GA1UEAxMoMDY1Q0EyNDA1ODJBQjlDQ0Y3RDA4 NzE1MDU1MTMxMzg0RkYzRUJBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2D+MX5qYuzzcFckNF6W+SK4EPdvdivltFB7CcoN3j80tA6erZ2BrN6rtGu vXkPSCa6vzZj2xxFxc0qN0zSBQkXEsn+umjDX/GuSrwW/JcaNHflwiNvPWzBPs0C xeyiMs2wZXMgjq5A6ENJvVSPDgiJrAYEYv8TePC5N68KruwfMeVi/uHpppnikzUd D+22tBR66C4qonSh/hACWiTTtqVU63gSqk/iulmmmEClftfGYuIfBolWj/8b/Acm AgyrVoRWpaQip6hwpr++MRbCL4j5EOxprBngCDGU+a+Uo4f926sQEdA2k3oBWzSX D1pRC83XZXhY68QzLcvVICWrLJECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQGXKJA WCq5zPfQhxUFUTE4T/PrqzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEyNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGeEfDANBgkqhkiG9w0BAQsFAAOCAQEAc108O9PW84+p9N1ADjTA wg/sfLnfXqyLnNhyFmFC9QDYD/FAtTldyWMn8olz7dgc6mfCbxC6tEBn9QEd6Fjd N10oVE1OUkb3EBDEfJm42ee8C9tZj7AQvSi0tffz7DjgdeEdHU9nUw0xEKNWsFlB nWqzTNV8Jco35oO8AQeD1aE3n2CcbCsJn5DnYG8zLkUk8PrRgCkNUa+1HpiR5otE VC7PT/dbtNkcKD4W/KEm8/LQdnJHrlyYP2gN6waHh9sNq3tZExK7JQ3A0FwbMp2h CSWisZKs6+7LOd2mjuDCM9WWTCkOAtHTZXR7J9Yey6GraXZdWhWksQVLjRN13Aeb cw== -----END CERTIFICATE-----Generated at Wed Dec 3 14:50:03 2025 by rpki-client