This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa File: AS138125.roa (raw, json) Hash identifier: 6lIlQB2Os2OMevAxiwtiTNX4jIKUmkPcKZ0e+Lwsx+8= Subject key identifier: 49:72:55:E5:DE:82:E6:A3:35:26:42:BC:B7:CE:35:1D:0B:A8:F5:83 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 185CDFA08AD0679C73210686CBF61A2FAC63312E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa Signing time: Tue 23 Dec 2025 10:00:00 +0000 ROA not before: Tue 23 Dec 2025 09:55:00 +0000 ROA not after: Tue 22 Dec 2026 10:00:00 +0000 asID: 138125 IP address blocks: 103.132.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5c:df:a0:8a:d0:67:9c:73:21:06:86:cb:f6:1a:2f:ac:63:31:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 23 09:55:00 2025 GMT Not After : Dec 22 10:00:00 2026 GMT Subject: CN=497255E5DE82E6A3352642BCB7CE351D0BA8F583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e3:f6:ce:82:10:0e:a7:aa:99:7f:54:2d:00: 94:c7:8b:51:59:d4:01:d2:bb:66:3b:78:68:0c:ca: 42:b3:ad:f1:d7:7d:ad:02:f2:ae:ab:34:7d:72:77: 57:48:70:68:c7:3e:c0:18:71:00:36:76:35:15:61: 84:de:15:b4:c0:15:d7:41:0d:4e:0e:ae:d1:11:5e: 6e:7f:58:1c:a4:c4:6b:fe:08:26:dc:1d:a1:23:1f: a9:11:05:4a:7c:ab:05:b7:5f:5f:3d:30:f0:27:09: 5d:98:d0:da:29:b6:62:79:7e:b8:81:0a:e4:c4:34: 30:45:28:37:49:bc:9d:bb:50:86:93:18:5c:e9:35: d5:58:3e:2b:94:74:0f:49:5d:1e:00:f2:14:68:6b: ab:3a:eb:87:35:f6:c2:be:e4:a6:1a:0d:c7:e8:b3: 93:5c:cf:91:79:67:7a:23:2c:94:4a:d5:c8:d4:da: 02:a0:f7:53:e5:5a:b1:41:ae:7e:3a:92:12:36:c8: ca:52:62:fd:51:71:2f:cd:c9:fa:13:b6:12:e7:7c: 14:42:b5:37:8e:21:0f:6a:84:1e:88:d9:cc:e3:a1: 1c:72:f0:42:04:6c:24:19:10:2a:19:54:f1:19:56: 64:a5:4e:13:54:57:85:1e:ed:51:52:dd:6b:5c:47: a6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:72:55:E5:DE:82:E6:A3:35:26:42:BC:B7:CE:35:1D:0B:A8:F5:83 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138125.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.18.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:d0:51:78:bb:40:fc:da:6e:f0:b7:b6:b5:fe:e8:a0:62:61: 53:80:92:f3:29:6f:88:a5:5c:61:52:30:37:81:8d:d4:57:cf: b9:f2:6b:09:25:4c:22:aa:7f:2b:6c:a7:c8:cd:37:ae:8d:13: 95:ca:96:17:e6:75:03:8c:25:20:2e:a0:bf:76:d1:cf:b6:8d: 17:ad:fa:e5:c9:ca:78:7c:51:9d:2c:5f:63:d9:f4:b9:4d:f8: 41:69:57:a5:ab:dc:76:92:77:1e:9a:94:f1:5e:64:07:ab:fa: 8b:a5:e5:96:2b:ca:ad:4e:ef:17:22:69:6b:ab:16:45:61:9f: 2d:62:ae:34:cb:1d:20:5b:ed:f3:e6:0a:16:ad:5e:b9:da:57: 36:85:94:52:25:8d:67:99:df:ef:96:4e:a7:85:98:2d:29:6c: f8:a4:6e:99:99:48:b4:b6:20:49:df:80:b8:89:b6:6e:67:70: af:a7:86:7b:c2:46:c6:1c:f2:49:dc:0c:95:04:de:a2:b2:56: bc:eb:e8:53:21:9d:d9:a9:f8:d6:8b:48:91:2c:94:f2:24:9f: 83:25:dd:e2:78:56:ce:c7:9c:24:cf:47:5e:83:46:32:f2:28: 6d:59:b3:f7:ba:8d:3b:2b:dc:97:47:d5:58:e7:eb:a4:43:e9: 4a:09:f6:2e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGFzfoIrQZ5xzIQaGy/YaL6xjMS4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIyMzA5NTUwMFoX DTI2MTIyMjEwMDAwMFowMzExMC8GA1UEAxMoNDk3MjU1RTVERTgyRTZBMzM1MjY0 MkJDQjdDRTM1MUQwQkE4RjU4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrj9s6CEA6nqpl/VC0AlMeLUVnUAdK7Zjt4aAzKQrOt8dd9rQLyrqs0fXJ3 V0hwaMc+wBhxADZ2NRVhhN4VtMAV10ENTg6u0RFebn9YHKTEa/4IJtwdoSMfqREF SnyrBbdfXz0w8CcJXZjQ2im2Ynl+uIEK5MQ0MEUoN0m8nbtQhpMYXOk11Vg+K5R0 D0ldHgDyFGhrqzrrhzX2wr7kphoNx+izk1zPkXlneiMslErVyNTaAqD3U+VasUGu fjqSEjbIylJi/VFxL83J+hO2Eud8FEK1N44hD2qEHojZzOOhHHLwQgRsJBkQKhlU 8RlWZKVOE1RXhR7tUVLda1xHpk0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRJclXl 3oLmozUmQry3zjUdC6j1gzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEyNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeEEjANBgkqhkiG9w0BAQsFAAOCAQEAe9BReLtA/Npu8Le2tf7o oGJhU4CS8ylviKVcYVIwN4GN1FfPufJrCSVMIqp/K2ynyM03ro0TlcqWF+Z1A4wl IC6gv3bRz7aNF6365cnKeHxRnSxfY9n0uU34QWlXpavcdpJ3HpqU8V5kB6v6i6Xl livKrU7vFyJpa6sWRWGfLWKuNMsdIFvt8+YKFq1eudpXNoWUUiWNZ5nf75ZOp4WY LSls+KRumZlItLYgSd+AuIm2bmdwr6eGe8JGxhzySdwMlQTeorJWvOvoUyGd2an4 1otIkSyU8iSfgyXd4nhWzsecJM9HXoNGMvIobVmz97qNOyvcl0fVWOfrpEPpSgn2 Lg== -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:47 2026 by rpki-client