This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138890.roa File: AS138890.roa (raw, json) Hash identifier: uTl5HX5ib1cbmlDTN7NLtLa9/TCFgrh+Lu3U5TJGnK8= Subject key identifier: BF:A2:A5:9A:66:33:C7:A0:A8:E3:46:50:33:37:3A:7F:67:42:B1:54 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 37538F0B49234908E74B4EFDB456B6AF95D064BE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138890.roa Signing time: Tue 11 Nov 2025 06:00:01 +0000 ROA not before: Tue 11 Nov 2025 05:55:01 +0000 ROA not after: Tue 10 Nov 2026 06:00:01 +0000 asID: 138890 IP address blocks: 103.141.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:53:8f:0b:49:23:49:08:e7:4b:4e:fd:b4:56:b6:af:95:d0:64:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:01 2025 GMT Not After : Nov 10 06:00:01 2026 GMT Subject: CN=BFA2A59A6633C7A0A8E3465033373A7F6742B154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:2d:09:78:00:20:d2:16:38:a0:21:88:03: c3:94:fd:b1:5e:5a:6e:ff:a7:d5:b5:7b:9d:04:0f: d2:5c:04:83:d4:c2:20:18:94:02:82:89:03:2f:d6: 01:24:80:2f:0b:ce:de:d0:bd:23:a5:2c:17:46:15: 11:95:63:45:27:e5:f6:7c:32:5f:cd:7e:4c:f0:11: d8:16:16:4a:8f:9b:44:6d:3b:d0:53:20:e1:f3:37: de:db:4a:fc:2e:64:93:db:d7:ad:a3:c9:ac:99:71: ec:7c:51:34:1e:52:06:91:ab:fa:95:10:31:f0:ca: b3:96:2d:3f:07:fe:e7:f3:af:80:ec:9f:b1:4d:49: 74:ae:17:0d:7c:ac:2a:8a:97:0a:8e:4d:b3:a7:44: 6f:29:cc:f0:dc:38:6d:b1:38:3b:d5:17:6b:02:db: dd:ad:d3:56:88:c4:f6:3c:1b:c7:97:ed:e7:be:78: be:bd:10:6f:65:13:aa:37:8a:55:82:cd:0f:e8:d8: df:d0:80:cd:74:cc:62:c1:82:6c:e4:71:84:7f:68: 0b:e4:2f:19:0f:b9:85:e9:a1:de:38:ec:01:44:c9: e4:21:91:cb:0b:4a:c0:27:19:3f:95:93:37:35:cf: 3b:dd:8f:95:66:99:14:92:5d:ff:c6:4a:fe:e0:ff: 0a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A2:A5:9A:66:33:C7:A0:A8:E3:46:50:33:37:3A:7F:67:42:B1:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.148.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:f9:2d:94:b6:94:67:73:88:60:3c:81:85:1c:56:da:cb:49: 3f:c6:cb:ee:65:20:7c:1c:50:76:50:78:76:82:e8:d0:56:02: ee:19:eb:66:21:05:a9:8b:c8:66:ae:20:4d:11:e2:bc:6a:18: d1:bb:33:9b:8a:f3:5c:00:72:e2:f1:f2:7f:08:3c:fe:9d:7d: d8:6b:7d:e3:45:db:1c:5f:b2:0a:0c:93:ce:34:39:b3:86:0f: f7:46:d7:cc:15:0b:ee:26:2e:2c:77:64:a6:a6:b2:5d:9a:84: f7:46:d7:21:0e:6a:73:13:39:10:61:b7:ee:33:4b:53:c4:6f: e2:c0:86:7b:45:05:00:9f:e9:da:af:67:c0:d9:d1:c0:24:35: db:bd:f9:c5:9c:c8:df:9d:2a:7a:ad:83:49:4d:9c:d6:ef:19: 45:08:ef:47:ac:f2:09:f9:ab:60:fb:eb:83:da:7c:4a:91:84: 5a:09:62:f2:7d:26:01:0b:f7:1d:2f:8e:f1:f1:9c:50:c0:f2: b3:a6:f9:e9:50:21:0c:e9:69:ff:aa:97:23:29:68:32:b1:52: 07:97:da:6b:81:c3:d2:7c:e5:95:6b:42:10:f6:33:9f:55:f3: 40:2e:4b:52:b1:1e:d3:ca:6d:03:7d:16:e5:45:c4:94:18:af: cf:61:15:3e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUN1OPC0kjSQjnS079tFa2r5XQZL4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwMVoX DTI2MTExMDA2MDAwMVowMzExMC8GA1UEAxMoQkZBMkE1OUE2NjMzQzdBMEE4RTM0 NjUwMzMzNzNBN0Y2NzQyQjE1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAtLQl4ACDSFjigIYgDw5T9sV5abv+n1bV7nQQP0lwEg9TCIBiUAoKJAy/W ASSALwvO3tC9I6UsF0YVEZVjRSfl9nwyX81+TPAR2BYWSo+bRG070FMg4fM33ttK /C5kk9vXraPJrJlx7HxRNB5SBpGr+pUQMfDKs5YtPwf+5/OvgOyfsU1JdK4XDXys KoqXCo5Ns6dEbynM8Nw4bbE4O9UXawLb3a3TVojE9jwbx5ft5754vr0Qb2UTqjeK VYLND+jY39CAzXTMYsGCbORxhH9oC+QvGQ+5hemh3jjsAUTJ5CGRywtKwCcZP5WT NzXPO92PlWaZFJJd/8ZK/uD/CnMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS/oqWa ZjPHoKjjRlAzNzp/Z0KxVDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODg5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeNlDANBgkqhkiG9w0BAQsFAAOCAQEAXvktlLaUZ3OIYDyBhRxW 2stJP8bL7mUgfBxQdlB4doLo0FYC7hnrZiEFqYvIZq4gTRHivGoY0bszm4rzXABy 4vHyfwg8/p192Gt940XbHF+yCgyTzjQ5s4YP90bXzBUL7iYuLHdkpqayXZqE90bX IQ5qcxM5EGG37jNLU8Rv4sCGe0UFAJ/p2q9nwNnRwCQ12735xZzI350qeq2DSU2c 1u8ZRQjvR6zyCfmrYPvrg9p8SpGEWgli8n0mAQv3HS+O8fGcUMDys6b56VAhDOlp /6qXIyloMrFSB5faa4HD0nzllWtCEPYzn1XzQC5LUrEe08ptA30W5UXElBivz2EV Pg== -----END CERTIFICATE-----Generated at Wed Dec 3 14:41:39 2025 by rpki-client