This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138804.roa File: AS138804.roa (raw, json) Hash identifier: IzFStKldisaVwj+L/rOfTjVTtsYuAB+16Fm/tst9IO4= Subject key identifier: 5D:9C:9F:B0:EE:E8:8E:AF:9A:BA:71:58:91:F7:9D:2C:92:94:34:94 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 60984E24505DE6882FE508774F9DB05C8495E579 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138804.roa Signing time: Sun 11 Jan 2026 09:00:00 +0000 ROA not before: Sun 11 Jan 2026 08:55:00 +0000 ROA not after: Sun 10 Jan 2027 09:00:00 +0000 asID: 138804 IP address blocks: 163.61.87.0/24 maxlen: 24 2001:df4:5fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:98:4e:24:50:5d:e6:88:2f:e5:08:77:4f:9d:b0:5c:84:95:e5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 11 08:55:00 2026 GMT Not After : Jan 10 09:00:00 2027 GMT Subject: CN=5D9C9FB0EEE88EAF9ABA715891F79D2C92943494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7f:d1:7d:2d:54:20:53:80:cd:21:70:8d:f5: 41:8c:48:09:4d:95:8d:a0:2b:ec:c4:92:33:9a:32: 1c:70:58:02:46:d6:48:6a:80:d0:97:8f:e6:0d:10: e0:a7:07:7e:80:39:05:a2:68:39:5e:86:ce:57:70: ac:b6:10:db:90:a1:91:56:8f:5a:f4:0b:1c:be:59: 77:5d:65:87:88:74:11:5c:21:e6:54:a6:bd:39:ad: 7f:a2:31:07:fb:31:8b:22:4d:88:d8:31:e5:71:65: 5f:9a:67:33:d8:4a:96:f9:59:46:48:4c:dd:e7:91: 20:3e:f0:fa:c4:aa:d6:f2:e3:f3:0e:6a:ea:3c:b9: 94:41:ab:e4:d1:c8:26:94:b8:d5:88:cf:75:ff:aa: c9:24:1c:26:0c:a8:ba:9c:1c:3c:f8:46:f3:b1:44: 45:32:fe:c1:ae:0b:99:be:69:37:5a:a0:20:87:3c: fd:b6:6c:4a:06:b7:f7:33:e1:3d:c9:7d:03:d5:75: 3d:3e:c6:71:e5:e5:ce:6c:66:10:5f:c6:eb:e8:03: 18:0d:d4:39:5e:7a:0e:ba:67:6e:df:0f:a1:a3:33: b7:8a:1d:0b:12:aa:18:d8:c6:aa:b4:37:9e:2b:55: 30:81:18:ab:18:42:e5:6d:78:01:77:d4:e6:26:fe: c7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:9C:9F:B0:EE:E8:8E:AF:9A:BA:71:58:91:F7:9D:2C:92:94:34:94 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138804.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.61.87.0/24 IPv6: 2001:df4:5fc0::/48 Signature Algorithm: sha256WithRSAEncryption 62:75:fd:45:a6:f7:3e:cc:4d:45:80:db:bf:71:b3:b5:58:cc: 51:b9:de:82:d3:46:51:6e:af:59:22:4b:9a:1e:e5:4a:ef:3c: 48:10:5a:0d:3c:0a:99:21:a6:d1:93:ae:ec:75:40:bc:5e:28: e8:02:5f:a5:ac:43:b7:2d:31:e1:eb:b1:de:59:6b:7f:6c:21: 97:c9:34:0d:8d:a6:ac:f1:6a:b9:ca:0d:0f:ca:63:cf:c3:41: 7c:06:16:04:17:16:a6:c1:8f:99:2f:93:25:cd:b0:c3:2e:c9: 83:c6:83:86:80:5b:71:aa:44:78:43:9a:f9:57:11:46:5a:b4: 48:b0:97:b0:06:ae:ed:7d:d7:98:df:5f:07:34:8f:75:cd:c1: 92:e6:de:2f:30:16:45:d9:b8:af:20:c9:23:0c:06:fa:d0:fe: 3e:6a:7e:fc:e3:fb:b7:b3:50:0a:bc:10:42:2d:64:e9:9c:2c: 9b:5e:c9:ee:d7:3e:5b:b7:e4:d7:d3:1e:f2:4f:d2:5c:b0:6a: e6:87:d8:fa:68:ca:51:64:00:a8:a7:30:86:48:ee:cd:af:fa: 49:a8:24:49:a1:a8:aa:32:fb:1a:05:cd:47:ab:e6:b6:41:b5: c4:1f:b6:f4:66:b7:80:0b:ac:0a:e4:fa:31:f9:a8:31:f2:ba: 2e:bd:b2:dc -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUYJhOJFBd5ogv5Qh3T52wXISV5XkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExMTA4NTUwMFoX DTI3MDExMDA5MDAwMFowMzExMC8GA1UEAxMoNUQ5QzlGQjBFRUU4OEVBRjlBQkE3 MTU4OTFGNzlEMkM5Mjk0MzQ5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALl/0X0tVCBTgM0hcI31QYxICU2VjaAr7MSSM5oyHHBYAkbWSGqA0JeP5g0Q 4KcHfoA5BaJoOV6GzldwrLYQ25ChkVaPWvQLHL5Zd11lh4h0EVwh5lSmvTmtf6Ix B/sxiyJNiNgx5XFlX5pnM9hKlvlZRkhM3eeRID7w+sSq1vLj8w5q6jy5lEGr5NHI JpS41YjPdf+qySQcJgyoupwcPPhG87FERTL+wa4Lmb5pN1qgIIc8/bZsSga39zPh Pcl9A9V1PT7GceXlzmxmEF/G6+gDGA3UOV56Drpnbt8PoaMzt4odCxKqGNjGqrQ3 nitVMIEYqxhC5W14AXfU5ib+x6MCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRdnJ+w 7uiOr5q6cViR950skpQ0lDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKM9VzAPBAIAAjAJAwcAIAEN9F/AMA0GCSqGSIb3DQEBCwUAA4IB AQBidf1Fpvc+zE1FgNu/cbO1WMxRud6C00ZRbq9ZIkuaHuVK7zxIEFoNPAqZIabR k67sdUC8XijoAl+lrEO3LTHh67HeWWt/bCGXyTQNjaas8Wq5yg0PymPPw0F8BhYE FxamwY+ZL5MlzbDDLsmDxoOGgFtxqkR4Q5r5VxFGWrRIsJewBq7tfdeY318HNI91 zcGS5t4vMBZF2bivIMkjDAb60P4+an784/u3s1AKvBBCLWTpnCybXsnu1z5bt+TX 0x7yT9JcsGrmh9j6aMpRZACopzCGSO7Nr/pJqCRJoaiqMvsaBc1Hq+a2QbXEH7b0 ZreAC6wK5Pox+agx8rouvbLc -----END CERTIFICATE-----Generated at Thu Jan 22 01:44:23 2026 by rpki-client