This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa File: AS138829.roa (raw, json) Hash identifier: 4rke/OXaZ364N2YhC+mXmFh8aZsUQQUGZtUI6OcfiG0= Subject key identifier: F3:08:18:E6:22:60:88:63:82:0F:2E:DE:76:CC:92:B6:28:B7:48:76 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7217E38BBAA3BDD156A31DF13570F808B53C6C56 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa Signing time: Fri 09 Jan 2026 06:36:18 +0000 ROA not before: Fri 09 Jan 2026 06:31:18 +0000 ROA not after: Fri 08 Jan 2027 06:36:18 +0000 asID: 138829 IP address blocks: 36.50.253.0/24 maxlen: 24 103.11.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:17:e3:8b:ba:a3:bd:d1:56:a3:1d:f1:35:70:f8:08:b5:3c:6c:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 06:31:18 2026 GMT Not After : Jan 8 06:36:18 2027 GMT Subject: CN=F30818E622608863820F2EDE76CC92B628B74876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c3:97:df:72:fd:bb:0a:0a:ac:83:87:6b:a7: f5:4d:90:e9:69:12:b9:3a:88:60:bd:8f:92:2c:fe: a4:c7:56:64:8a:24:90:eb:b9:2a:fb:8c:18:bd:7b: 8a:59:06:b0:fa:fe:11:7b:f8:a3:62:43:c4:30:a8: 90:ef:18:fd:3f:0f:e0:4a:95:d8:74:40:22:bc:85: 73:fa:36:f4:37:23:40:75:fd:bb:e0:9b:5e:c4:0f: 4f:7b:9a:c1:c7:84:86:63:7a:94:ea:f2:75:cf:0d: 34:1f:d8:32:00:25:bb:c2:39:7f:08:19:eb:81:75: 7b:07:a3:19:bc:93:f5:f2:fb:cb:f7:ad:5e:6e:d1: 79:f0:3a:a3:41:dd:65:3c:2c:06:1c:05:8b:f7:0a: 32:7c:82:16:ea:fd:a9:9a:0a:92:49:f8:0d:7b:e7: 4e:09:07:cf:9c:57:10:8b:2b:0e:38:9d:5a:4e:08: e7:d5:e0:d0:49:12:e1:04:a8:bd:ca:55:9b:7f:1b: 2e:8e:23:7f:6e:09:1f:4e:11:af:68:8d:50:b5:40: e9:1a:72:9a:e1:f0:64:ae:fd:5f:00:34:5d:bb:04: d1:92:8d:d4:d4:a3:b2:43:68:c0:7e:90:95:83:d0: 9f:34:f3:1a:0f:d2:88:7f:48:87:a9:11:4a:a6:d5: 20:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:08:18:E6:22:60:88:63:82:0F:2E:DE:76:CC:92:B6:28:B7:48:76 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138829.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.253.0/24 103.11.132.0/23 Signature Algorithm: sha256WithRSAEncryption 96:20:2b:43:94:83:1a:c8:0b:77:01:57:31:67:b4:1c:45:f3: a6:a2:64:b1:ce:dd:2a:03:f4:4d:15:b1:d0:43:5d:3d:f4:6b: 7a:35:7e:06:a0:c4:8c:a4:c4:dd:9a:63:63:b5:3d:6b:2c:25: 68:ea:d0:f3:ef:46:d9:41:ba:a6:37:b1:64:30:bd:a4:09:dd: 51:f3:f5:6a:2f:af:6b:5d:93:35:3d:b5:a7:49:a2:92:05:71: 4b:8c:04:b0:43:ec:27:6d:a8:1b:cb:b1:8c:61:e4:ee:27:ef: 29:a5:58:d1:e1:ee:a7:e6:87:c1:24:c4:88:7d:37:a9:de:06: d8:15:0f:66:6e:33:63:3f:ac:8f:4e:10:f6:c5:23:7c:85:39: 85:39:39:1e:fd:09:99:39:0d:a3:4f:c6:ad:3f:fa:94:4a:73: b0:70:40:09:e4:4e:2f:2a:8e:c5:1b:9e:3e:b5:21:4e:05:e0: bb:9a:14:2c:16:64:5f:2c:53:c8:cb:87:22:0c:6f:20:54:41: 8e:36:47:63:24:9a:ea:36:f2:08:90:5b:12:59:12:ec:a1:b3: 3e:90:aa:60:0d:65:51:56:9a:d6:36:d8:8d:0a:19:d6:5e:c0: da:80:ab:76:38:d4:51:d9:da:f5:c0:c7:ee:9a:e0:45:9a:df: 1a:1f:3e:a9 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUchfji7qjvdFWox3xNXD4CLU8bFYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwOTA2MzExOFoX DTI3MDEwODA2MzYxOFowMzExMC8GA1UEAxMoRjMwODE4RTYyMjYwODg2MzgyMEYy RURFNzZDQzkyQjYyOEI3NDg3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLDl99y/bsKCqyDh2un9U2Q6WkSuTqIYL2Pkiz+pMdWZIokkOu5KvuMGL17 ilkGsPr+EXv4o2JDxDCokO8Y/T8P4EqV2HRAIryFc/o29DcjQHX9u+CbXsQPT3ua wceEhmN6lOrydc8NNB/YMgAlu8I5fwgZ64F1ewejGbyT9fL7y/etXm7RefA6o0Hd ZTwsBhwFi/cKMnyCFur9qZoKkkn4DXvnTgkHz5xXEIsrDjidWk4I59Xg0EkS4QSo vcpVm38bLo4jf24JH04Rr2iNULVA6RpymuHwZK79XwA0XbsE0ZKN1NSjskNowH6Q lYPQnzTzGg/SiH9Ih6kRSqbVIKUCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBTzCBjm ImCIY4IPLt52zJK2KLdIdjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgyOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEACQy/QMEAWcLhDANBgkqhkiG9w0BAQsFAAOCAQEAliArQ5SDGsgL dwFXMWe0HEXzpqJksc7dKgP0TRWx0ENdPfRrejV+BqDEjKTE3ZpjY7U9aywlaOrQ 8+9G2UG6pjexZDC9pAndUfP1ai+va12TNT21p0mikgVxS4wEsEPsJ22oG8uxjGHk 7ifvKaVY0eHup+aHwSTEiH03qd4G2BUPZm4zYz+sj04Q9sUjfIU5hTk5Hv0JmTkN o0/GrT/6lEpzsHBACeROLyqOxRuePrUhTgXgu5oULBZkXyxTyMuHIgxvIFRBjjZH YySa6jbyCJBbElkS7KGzPpCqYA1lUVaa1jbYjQoZ1l7A2oCrdjjUUdna9cDH7prg RZrfGh8+qQ== -----END CERTIFICATE-----Generated at Wed Jan 21 16:16:55 2026 by rpki-client