This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa File: AS138131.roa (raw, json) Hash identifier: 5r27bhNPd9sENAYCrktDj5ZtgQDYnSJx1aJhS0kbSjY= Subject key identifier: 65:A0:33:81:DA:C2:5A:6B:82:8A:7F:C9:2C:90:3F:43:23:02:2B:79 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4AB5F5E0A314C04F2AF8C5CAA6CDF5F6824EF530 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa Signing time: Tue 11 Nov 2025 05:00:00 +0000 ROA not before: Tue 11 Nov 2025 04:55:00 +0000 ROA not after: Tue 10 Nov 2026 05:00:00 +0000 asID: 138131 IP address blocks: 103.164.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b5:f5:e0:a3:14:c0:4f:2a:f8:c5:ca:a6:cd:f5:f6:82:4e:f5:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 04:55:00 2025 GMT Not After : Nov 10 05:00:00 2026 GMT Subject: CN=65A03381DAC25A6B828A7FC92C903F4323022B79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7c:fc:d0:2e:20:4d:eb:13:73:8e:f9:39:1b: 04:68:fa:22:b2:4d:89:fb:ca:47:53:c1:91:d7:33: 87:96:87:c2:f7:cb:ce:7f:e0:d2:c9:48:06:f2:49: 69:fb:4e:f2:d0:4c:43:d0:93:aa:06:89:d8:0c:08: c1:b7:27:2d:42:21:ee:56:8c:1e:12:d9:87:af:4e: f3:5a:83:df:8f:de:55:cb:14:d4:4d:a1:c3:85:75: 21:ea:ac:8b:cc:56:4e:25:5b:86:ff:0f:f4:fa:c8: 1c:f6:18:16:d1:e1:71:9e:22:db:f1:fe:e5:56:fb: 2d:51:35:00:be:a3:27:28:2c:7b:80:89:da:de:a8: 66:dd:a8:8c:f1:09:7e:6d:2b:88:92:97:fe:07:2b: 02:d7:18:d0:c6:60:63:41:ac:a8:e0:d2:00:b3:e8: a3:9e:d8:ac:4b:e3:56:71:44:b1:bf:c3:5b:02:ca: 19:95:da:8b:8b:41:8b:90:7a:b3:92:9c:76:56:a0: 98:f0:21:86:7d:2c:88:04:b3:3e:16:24:fd:31:d0: 04:01:64:67:26:87:82:2f:55:2e:b9:5d:87:d9:2b: 3e:54:01:6e:3d:77:24:b0:ab:f9:29:3c:d5:a2:86: e6:7d:dc:75:ae:47:ba:83:75:73:4e:50:5f:40:23: c0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A0:33:81:DA:C2:5A:6B:82:8A:7F:C9:2C:90:3F:43:23:02:2B:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.172.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:56:c5:bd:06:aa:23:ab:bf:07:25:1a:32:fc:bd:01:f4:28: 48:bb:7d:28:3e:66:40:e6:91:f0:64:18:be:3b:e9:b8:be:03: 7b:4b:4b:02:e7:a9:ba:4e:ef:e3:6c:98:20:6e:4c:f3:b2:80: 05:bb:37:ed:34:49:89:ac:45:d8:1a:96:31:ed:a8:6d:41:b7: 09:f6:cf:44:8c:07:0a:5c:61:96:22:63:5b:8b:ed:77:89:6c: 85:c3:5f:11:c5:fa:78:f2:01:49:6f:e0:24:1d:6c:bc:5f:3c: 11:3b:90:60:36:a0:01:36:da:6f:98:b7:6f:53:c3:c5:34:44: 6e:89:79:81:f7:b6:be:d2:2c:8e:5b:2e:7e:dc:06:f9:33:be: 81:e3:c3:bb:ba:46:72:ff:c3:ee:5a:95:46:6f:15:4f:5f:7f: 7b:09:c0:2f:3e:70:c5:f1:6b:f9:ce:14:bb:1b:a6:8c:73:05: 4a:3a:13:16:db:a6:1f:32:74:3a:46:49:89:6f:50:89:cb:8f: 0e:4b:f1:28:95:6a:a5:6b:f0:86:0c:34:00:c5:71:28:7b:98: 1a:a3:f1:e7:6e:ad:7b:60:8f:7e:ae:c9:32:e3:a9:7c:be:f0: 25:f8:38:e7:32:65:ae:82:91:a3:f1:5d:3d:d7:b9:a3:e1:0e: 41:aa:07:e5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSrX14KMUwE8q+MXKps319oJO9TAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA0NTUwMFoX DTI2MTExMDA1MDAwMFowMzExMC8GA1UEAxMoNjVBMDMzODFEQUMyNUE2QjgyOEE3 RkM5MkM5MDNGNDMyMzAyMkI3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMV8/NAuIE3rE3OO+TkbBGj6IrJNifvKR1PBkdczh5aHwvfLzn/g0slIBvJJ aftO8tBMQ9CTqgaJ2AwIwbcnLUIh7laMHhLZh69O81qD34/eVcsU1E2hw4V1Ieqs i8xWTiVbhv8P9PrIHPYYFtHhcZ4i2/H+5Vb7LVE1AL6jJygse4CJ2t6oZt2ojPEJ fm0riJKX/gcrAtcY0MZgY0GsqODSALPoo57YrEvjVnFEsb/DWwLKGZXai4tBi5B6 s5KcdlagmPAhhn0siASzPhYk/THQBAFkZyaHgi9VLrldh9krPlQBbj13JLCr+Sk8 1aKG5n3cda5HuoN1c05QX0AjwD0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRloDOB 2sJaa4KKf8kskD9DIwIreTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGekrDANBgkqhkiG9w0BAQsFAAOCAQEALVbFvQaqI6u/ByUaMvy9 AfQoSLt9KD5mQOaR8GQYvjvpuL4De0tLAuepuk7v42yYIG5M87KABbs37TRJiaxF 2BqWMe2obUG3CfbPRIwHClxhliJjW4vtd4lshcNfEcX6ePIBSW/gJB1svF88ETuQ YDagATbab5i3b1PDxTREbol5gfe2vtIsjlsuftwG+TO+gePDu7pGcv/D7lqVRm8V T19/ewnALz5wxfFr+c4UuxumjHMFSjoTFtumHzJ0OkZJiW9QicuPDkvxKJVqpWvw hgw0AMVxKHuYGqPx526te2CPfq7JMuOpfL7wJfg45zJlroKRo/FdPde5o+EOQaoH 5Q== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:35 2025 by rpki-client