This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138865.roa File: AS138865.roa (raw, json) Hash identifier: YGOzJD7whLX02rmDPJ0PoPi68ivZAWF639ZkXBB3oTA= Subject key identifier: F5:71:F3:73:0A:66:D5:52:0B:32:C4:E4:7E:B4:60:5F:5F:2F:37:36 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 228F100CB113A0A44D3FD37B522077A4E3C40673 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138865.roa Signing time: Tue 11 Nov 2025 06:00:05 +0000 ROA not before: Tue 11 Nov 2025 05:55:05 +0000 ROA not after: Tue 10 Nov 2026 06:00:05 +0000 asID: 138865 IP address blocks: 103.139.244.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:8f:10:0c:b1:13:a0:a4:4d:3f:d3:7b:52:20:77:a4:e3:c4:06:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:05 2025 GMT Not After : Nov 10 06:00:05 2026 GMT Subject: CN=F571F3730A66D5520B32C4E47EB4605F5F2F3736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:35:cf:88:45:56:88:b1:ed:8b:d0:b1:cd:f5: 1d:3f:eb:20:a4:3f:4a:89:0c:ff:0a:4d:d1:9b:82: 66:c4:91:1b:ae:51:a1:aa:96:c5:80:ab:ab:48:7d: b4:5f:21:31:45:23:66:bf:8c:1f:97:c7:ee:fa:b4: f6:cc:a1:c4:a1:48:e7:0d:c0:df:50:c2:6e:51:dd: 60:3a:1b:ec:20:c5:cf:b0:a9:04:65:0d:c5:63:24: 98:c1:1b:47:63:77:99:38:9b:b5:2b:27:e5:33:8b: bf:59:b4:a6:9e:dd:3c:ae:83:ae:15:b7:3f:e1:28: 39:57:4d:3d:be:aa:5a:a1:19:ec:6e:85:15:d7:5f: 89:ef:b4:b6:a8:cf:05:cf:c4:86:90:98:e4:48:d9: 8f:21:9a:f3:a5:fa:77:fd:10:d1:a8:54:fb:a0:86: 30:4e:9d:2b:d1:a0:58:bb:a3:2f:75:16:6c:a3:06: 74:27:82:95:c8:41:2b:ff:05:c2:a3:5c:01:83:82: 2c:f1:82:0b:47:83:26:03:a4:eb:31:40:6e:2a:93: 0a:68:ad:92:80:a0:37:96:40:64:b6:ab:d0:ab:18: 0e:31:d3:14:d5:33:8f:14:d1:02:03:e1:06:c4:66: d5:58:f6:4e:ba:47:42:3b:80:35:c0:a8:59:ea:a5: 7a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:71:F3:73:0A:66:D5:52:0B:32:C4:E4:7E:B4:60:5F:5F:2F:37:36 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138865.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.244.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:23:b2:f5:a0:db:15:80:6a:7c:3d:44:86:f0:01:36:45:34: de:61:d7:24:97:ca:ef:6a:24:25:0b:95:62:2a:d8:65:ea:07: 64:3a:f3:f6:7a:c8:ee:d2:b4:64:6d:11:29:10:a7:6a:f0:93: 02:11:3a:2b:b2:51:49:77:a3:9e:af:c9:2d:35:ac:7e:54:56: 96:03:67:fd:d3:c7:88:70:2e:9b:94:c6:c0:5c:3b:27:28:98: 25:64:64:b8:b6:b7:21:38:30:bc:4f:86:11:7b:a8:61:02:5f: e4:e3:09:77:98:b0:e2:0d:45:00:d6:e0:ba:fa:47:c6:7c:61: 55:4e:aa:36:b5:00:e0:8b:63:9d:02:12:a2:45:79:09:28:5a: 37:5a:b0:97:11:bb:eb:ca:39:d5:71:1b:7b:36:21:4f:e0:69: 37:55:56:7b:32:fc:10:95:7d:1b:67:88:32:d2:5e:25:be:db: 38:67:60:03:ce:2c:11:42:91:ff:60:84:82:de:f2:6d:03:91: a0:88:a7:0c:1e:7d:92:e9:73:38:7d:72:76:4b:37:09:d4:b9: 98:3b:73:33:ff:bb:8e:6d:e7:62:5c:d0:22:4b:c1:13:a7:cf: 50:54:2f:33:30:9d:1a:a4:f1:52:49:3e:a9:77:23:91:fc:14: cc:fb:42:1f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUIo8QDLEToKRNP9N7UiB3pOPEBnMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwNVoX DTI2MTExMDA2MDAwNVowMzExMC8GA1UEAxMoRjU3MUYzNzMwQTY2RDU1MjBCMzJD NEU0N0VCNDYwNUY1RjJGMzczNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQ1z4hFVoix7YvQsc31HT/rIKQ/SokM/wpN0ZuCZsSRG65RoaqWxYCrq0h9 tF8hMUUjZr+MH5fH7vq09syhxKFI5w3A31DCblHdYDob7CDFz7CpBGUNxWMkmMEb R2N3mTibtSsn5TOLv1m0pp7dPK6DrhW3P+EoOVdNPb6qWqEZ7G6FFddfie+0tqjP Bc/EhpCY5EjZjyGa86X6d/0Q0ahU+6CGME6dK9GgWLujL3UWbKMGdCeClchBK/8F wqNcAYOCLPGCC0eDJgOk6zFAbiqTCmitkoCgN5ZAZLar0KsYDjHTFNUzjxTRAgPh BsRm1Vj2TrpHQjuANcCoWeqleqkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT1cfNz CmbVUgsyxOR+tGBfXy83NjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg2NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeL9DANBgkqhkiG9w0BAQsFAAOCAQEAfyOy9aDbFYBqfD1EhvAB NkU03mHXJJfK72okJQuVYirYZeoHZDrz9nrI7tK0ZG0RKRCnavCTAhE6K7JRSXej nq/JLTWsflRWlgNn/dPHiHAum5TGwFw7JyiYJWRkuLa3ITgwvE+GEXuoYQJf5OMJ d5iw4g1FANbguvpHxnxhVU6qNrUA4ItjnQISokV5CShaN1qwlxG768o51XEbezYh T+BpN1VWezL8EJV9G2eIMtJeJb7bOGdgA84sEUKR/2CEgt7ybQORoIinDB59kulz OH1ydks3CdS5mDtzM/+7jm3nYlzQIkvBE6fPUFQvMzCdGqTxUkk+qXcjkfwUzPtC Hw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:23 2025 by rpki-client