This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138871.roa File: AS138871.roa (raw, json) Hash identifier: mjeEsL4vGnLbQvRdncrt3xcCrFhVUVgclQURYAWCd1s= Subject key identifier: 6B:17:F3:59:60:0C:A7:95:7A:32:16:9E:91:8B:72:FF:E5:8D:3E:54 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 29EBEA9FF17FE544D2F9F527F229C6135729071F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138871.roa Signing time: Tue 11 Nov 2025 06:00:16 +0000 ROA not before: Tue 11 Nov 2025 05:55:16 +0000 ROA not after: Tue 10 Nov 2026 06:00:16 +0000 asID: 138871 IP address blocks: 103.135.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:eb:ea:9f:f1:7f:e5:44:d2:f9:f5:27:f2:29:c6:13:57:29:07:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:16 2025 GMT Not After : Nov 10 06:00:16 2026 GMT Subject: CN=6B17F359600CA7957A32169E918B72FFE58D3E54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1b:e4:1e:e7:4c:46:50:7c:55:2f:0b:2f:02: cb:5f:31:4c:b3:b9:6f:8f:d3:d6:99:60:c1:34:69: fd:e6:66:c1:d5:2d:48:b0:82:70:35:ab:00:9b:28: c0:31:a2:ec:c3:b8:75:f6:6f:59:4d:3d:c8:3c:8e: 2f:1e:95:ac:d4:80:f9:12:8b:6b:5c:5a:7b:c4:5f: 2c:07:35:54:c9:83:e0:85:78:a1:b9:da:38:93:a3: 0a:02:7a:6c:0b:a6:55:0b:8f:f7:c4:95:67:e3:d0: 80:a6:74:19:54:94:c1:a8:a8:06:0d:9b:e6:20:12: bc:10:bb:ed:91:3e:48:50:46:10:1f:a0:a5:c4:ed: f4:9d:6d:61:98:16:c4:71:f8:be:69:28:d2:f5:85: 3e:fe:96:00:3d:27:e5:6f:14:60:da:0a:03:3d:17: 6a:70:d3:1c:e7:33:a3:06:8e:a8:ee:93:6a:05:d7: 77:5b:25:28:94:6d:49:65:83:9d:f8:ad:53:27:79: 74:cb:b6:5f:3d:e6:98:6e:79:7b:12:54:72:de:86: 84:6d:40:cb:57:d8:4e:ff:d0:dd:cd:21:f2:21:d6: af:f3:25:dc:9c:24:95:07:33:fc:be:e3:87:15:46: aa:13:7a:8a:69:be:13:b1:b7:1d:00:ad:24:50:79: fa:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:17:F3:59:60:0C:A7:95:7A:32:16:9E:91:8B:72:FF:E5:8D:3E:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138871.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.135.224.0/22 Signature Algorithm: sha256WithRSAEncryption 98:99:b6:52:56:ef:b3:3c:dc:31:98:8e:90:8d:c9:22:0b:68: 1d:eb:6a:9e:d6:cd:41:3a:92:4a:11:25:31:da:85:c5:6d:fc: cd:ee:cd:30:a2:a4:fb:29:22:bc:00:b3:cf:a4:ad:63:37:89: ba:92:0f:dd:29:8b:ef:dc:40:e4:0c:32:86:52:4d:81:67:09: ac:f9:d4:81:ee:0d:db:dd:7c:24:98:a8:39:ff:b3:79:9b:74: f5:f3:07:3c:f4:47:7d:05:49:ae:e0:59:fc:02:01:9b:a6:b0: 19:18:7d:37:a9:1a:66:71:82:1e:24:a8:8b:5e:28:da:b8:a3: 8e:e7:b4:36:ea:a6:d0:97:bc:6c:66:5a:ff:c2:e6:22:ab:06: 59:cc:30:7e:4e:67:f9:9e:12:4e:7c:32:95:fc:e6:eb:6e:c0: 60:01:6e:7f:e2:5b:df:10:83:a9:e5:f9:fe:0e:eb:15:f4:10: ff:76:5f:d9:96:e2:fb:9b:8c:a4:a0:be:9e:79:78:93:d4:18: 80:82:1e:4f:ec:29:aa:8f:27:38:ab:20:93:ac:bb:46:cb:e7: 19:17:7b:ec:b3:00:b1:1d:14:e0:0b:26:09:9a:87:b4:9f:f3: 4f:01:14:3d:46:f7:bd:ad:82:63:3d:8f:0f:55:4d:7d:c6:b1: 18:0d:f4:28 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKevqn/F/5UTS+fUn8inGE1cpBx8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxNloX DTI2MTExMDA2MDAxNlowMzExMC8GA1UEAxMoNkIxN0YzNTk2MDBDQTc5NTdBMzIx NjlFOTE4QjcyRkZFNThEM0U1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN8b5B7nTEZQfFUvCy8Cy18xTLO5b4/T1plgwTRp/eZmwdUtSLCCcDWrAJso wDGi7MO4dfZvWU09yDyOLx6VrNSA+RKLa1xae8RfLAc1VMmD4IV4obnaOJOjCgJ6 bAumVQuP98SVZ+PQgKZ0GVSUwaioBg2b5iASvBC77ZE+SFBGEB+gpcTt9J1tYZgW xHH4vmko0vWFPv6WAD0n5W8UYNoKAz0XanDTHOczowaOqO6TagXXd1slKJRtSWWD nfitUyd5dMu2Xz3mmG55exJUct6GhG1Ay1fYTv/Q3c0h8iHWr/Ml3JwklQcz/L7j hxVGqhN6imm+E7G3HQCtJFB5+uECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRrF/NZ YAynlXoyFp6Ri3L/5Y0+VDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg3MS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmeH4DANBgkqhkiG9w0BAQsFAAOCAQEAmJm2UlbvszzcMZiOkI3J IgtoHetqntbNQTqSShElMdqFxW38ze7NMKKk+ykivACzz6StYzeJupIP3SmL79xA 5AwyhlJNgWcJrPnUge4N2918JJioOf+zeZt09fMHPPRHfQVJruBZ/AIBm6awGRh9 N6kaZnGCHiSoi14o2rijjue0Nuqm0Je8bGZa/8LmIqsGWcwwfk5n+Z4STnwylfzm 627AYAFuf+Jb3xCDqeX5/g7rFfQQ/3Zf2Zbi+5uMpKC+nnl4k9QYgIIeT+wpqo8n OKsgk6y7RsvnGRd77LMAsR0U4AsmCZqHtJ/zTwEUPUb3va2CYz2PD1VNfcaxGA30 KA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:28 2025 by rpki-client