This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138837.roa File: AS138837.roa (raw, json) Hash identifier: RxYVirPh1aAdPunC8o1thvs8Yku3wnmNyHoEug356CU= Subject key identifier: 2C:CC:5C:F9:25:6D:2D:E3:48:D2:2A:CC:1C:03:28:E3:58:8D:6F:AA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 667CA041E0871CE317730718B4F29FD386262E96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138837.roa Signing time: Tue 11 Nov 2025 06:00:06 +0000 ROA not before: Tue 11 Nov 2025 05:55:06 +0000 ROA not after: Tue 10 Nov 2026 06:00:06 +0000 asID: 138837 IP address blocks: 103.137.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:7c:a0:41:e0:87:1c:e3:17:73:07:18:b4:f2:9f:d3:86:26:2e:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:06 2025 GMT Not After : Nov 10 06:00:06 2026 GMT Subject: CN=2CCC5CF9256D2DE348D22ACC1C0328E3588D6FAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:45:0b:bd:cd:bd:24:e9:9c:6d:34:b0:6d:99: a7:50:ba:78:19:a0:2c:ea:2d:c2:4a:f6:de:61:d8: c9:92:2f:f8:24:da:f2:a4:6e:59:22:79:ba:b9:a0: 3d:80:b3:6a:cd:0f:88:11:36:60:45:8b:e1:1f:72: 61:70:bf:6f:e9:52:86:9e:db:cc:c5:f6:57:e4:b8: 1d:29:37:5b:0f:da:d6:51:91:47:38:ac:0c:38:db: 18:52:44:59:69:56:ea:fb:a9:90:1d:7a:1c:e0:cd: 6a:38:b4:af:34:34:22:7d:0f:74:bf:c0:10:29:ba: 2e:a3:a7:bc:90:b9:30:1d:e4:e9:dc:5b:0d:81:a7: 50:e4:f6:7c:18:d4:e8:3c:73:8e:6a:35:cf:be:e9: dd:71:0f:6e:8c:71:8e:8a:fe:1b:26:3f:a9:57:2c: e3:4c:8e:b4:1a:f0:08:50:73:a8:72:3b:69:7a:8c: cf:f4:a2:97:05:79:36:95:51:ee:e1:ed:dc:bd:8a: 55:7d:db:99:16:5f:f4:14:d1:4b:19:9d:7b:47:53: 35:6a:1e:92:72:3c:9b:9e:e7:38:6e:f1:ba:32:90: a5:88:47:31:d8:c4:4e:a0:03:94:d4:1c:e6:a7:84: fa:4b:64:d8:b9:f9:0a:89:8f:0e:9a:4c:bd:20:92: ef:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:CC:5C:F9:25:6D:2D:E3:48:D2:2A:CC:1C:03:28:E3:58:8D:6F:AA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.140.0/23 Signature Algorithm: sha256WithRSAEncryption 23:aa:12:07:ce:48:95:f8:72:4d:38:df:b5:a7:0a:2b:5d:a8: ad:f8:f0:12:3a:07:8c:4b:cc:9f:07:50:54:c1:34:7a:e2:40: 1f:9d:17:d6:9d:90:50:54:c4:ae:dd:81:d4:04:f4:a9:e3:5e: da:a2:87:78:b0:64:1e:13:a7:26:18:c2:1a:b9:6c:8d:b6:2f: 44:df:6f:77:1f:d0:e5:e0:f2:9b:31:80:88:a5:dd:c9:dc:fd: ff:b8:f6:10:92:eb:32:95:02:80:dc:7c:77:1f:91:82:63:43: 2b:84:39:8e:b4:a3:d9:d2:d0:2c:39:3c:f2:e4:29:6c:6d:dc: 0a:b1:01:89:d3:7b:27:e1:86:1e:8f:42:56:01:e5:b3:3a:31: 6a:04:09:4a:23:1b:d7:46:c8:46:37:39:72:e3:47:f2:24:1d: e6:03:4e:8b:b5:af:f2:e1:ba:c5:15:c2:f3:1f:b3:9f:71:23: 38:f0:8f:4b:a3:11:bd:1e:47:03:b8:07:f6:be:8c:dd:f7:9e: c1:6c:ec:28:fb:67:43:c4:cd:0a:54:46:e5:79:c0:1b:a5:e3: 14:89:70:84:4d:ff:b1:fc:79:ed:e9:61:69:e0:e6:b3:73:03: 61:7f:9f:f3:bd:fb:58:61:f0:d2:34:44:06:76:05:f1:99:21: 0f:72:e7:83 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUZnygQeCHHOMXcwcYtPKf04YmLpYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwNloX DTI2MTExMDA2MDAwNlowMzExMC8GA1UEAxMoMkNDQzVDRjkyNTZEMkRFMzQ4RDIy QUNDMUMwMzI4RTM1ODhENkZBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdFC73NvSTpnG00sG2Zp1C6eBmgLOotwkr23mHYyZIv+CTa8qRuWSJ5urmg PYCzas0PiBE2YEWL4R9yYXC/b+lShp7bzMX2V+S4HSk3Ww/a1lGRRzisDDjbGFJE WWlW6vupkB16HODNaji0rzQ0In0PdL/AECm6LqOnvJC5MB3k6dxbDYGnUOT2fBjU 6Dxzjmo1z77p3XEPboxxjor+GyY/qVcs40yOtBrwCFBzqHI7aXqMz/SilwV5NpVR 7uHt3L2KVX3bmRZf9BTRSxmde0dTNWoeknI8m57nOG7xujKQpYhHMdjETqADlNQc 5qeE+ktk2Ln5ComPDppMvSCS77sCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQszFz5 JW0t40jSKswcAyjjWI1vqjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODgzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeJjDANBgkqhkiG9w0BAQsFAAOCAQEAI6oSB85IlfhyTTjftacK K12orfjwEjoHjEvMnwdQVME0euJAH50X1p2QUFTErt2B1AT0qeNe2qKHeLBkHhOn JhjCGrlsjbYvRN9vdx/Q5eDymzGAiKXdydz9/7j2EJLrMpUCgNx8dx+RgmNDK4Q5 jrSj2dLQLDk88uQpbG3cCrEBidN7J+GGHo9CVgHlszoxagQJSiMb10bIRjc5cuNH 8iQd5gNOi7Wv8uG6xRXC8x+zn3EjOPCPS6MRvR5HA7gH9r6M3feewWzsKPtnQ8TN ClRG5XnAG6XjFIlwhE3/sfx57elhaeDms3MDYX+f8737WGHw0jREBnYF8ZkhD3Ln gw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:20 2025 by rpki-client