This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139397.roa File: AS139397.roa (raw, json) Hash identifier: bWyTl3CcVkSRzwl7WF+hFzRoTbSpZglMIZirTgu8zp0= Subject key identifier: 44:FC:35:1B:3C:FE:0D:C6:75:52:FB:83:B2:C7:DB:1C:5E:C9:AF:00 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 408B15EFAB53F3398024B1D141C4AFF68355AC8B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139397.roa Signing time: Tue 11 Nov 2025 06:00:25 +0000 ROA not before: Tue 11 Nov 2025 05:55:25 +0000 ROA not after: Tue 10 Nov 2026 06:00:25 +0000 asID: 139397 IP address blocks: 123.253.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:8b:15:ef:ab:53:f3:39:80:24:b1:d1:41:c4:af:f6:83:55:ac:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:25 2025 GMT Not After : Nov 10 06:00:25 2026 GMT Subject: CN=44FC351B3CFE0DC67552FB83B2C7DB1C5EC9AF00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e4:29:ad:cf:9c:31:ef:4e:7f:8f:78:db:38: 9f:70:5e:0d:e3:5e:37:4b:06:5b:60:ae:f9:22:ea: 24:92:eb:d5:a1:90:83:3a:85:cd:13:03:b4:97:2b: e3:f7:91:d2:b6:c8:4a:74:f6:9c:55:5c:65:6c:80: 8b:bd:7b:64:9f:f5:f2:e1:8c:06:93:2d:2d:02:16: d0:26:10:29:80:0c:a4:7c:80:57:d8:83:df:f9:06: 6a:09:3f:bb:ff:49:7c:7e:e3:c1:f4:9f:0d:2a:f6: 5c:65:6a:98:91:de:14:e8:30:87:5e:b9:07:6d:eb: 77:96:fb:2e:0e:c3:7c:a9:27:de:04:2c:44:74:df: 71:0f:6a:52:42:0b:19:7d:e3:92:35:e0:2f:11:20: 91:1b:6c:ee:65:81:5f:93:de:46:91:35:ce:70:86: 41:08:a8:c4:45:a9:76:85:76:64:0b:51:d3:ee:d7: 61:aa:2a:e9:37:cc:10:0a:04:d0:2c:e9:7e:51:31: f6:57:01:14:60:d3:10:a7:fb:6a:c8:c2:8b:fd:5a: d0:0b:f1:3b:72:7f:c9:bf:e2:23:f7:90:ad:fd:28: f5:1f:17:8f:fe:47:f9:20:2d:52:26:77:cd:1e:04: 85:51:a3:fb:45:60:da:01:ca:f7:61:43:1e:f9:cb: fe:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FC:35:1B:3C:FE:0D:C6:75:52:FB:83:B2:C7:DB:1C:5E:C9:AF:00 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139397.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.253.252.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:7d:82:e1:64:f9:e4:26:0a:11:0e:a5:70:78:4e:c7:68:7c: 4c:f5:50:a3:8c:3e:02:d5:b4:3d:67:c7:33:15:4e:0a:ba:c2: 97:ca:ea:36:0b:75:10:6f:3e:d7:3d:95:f1:92:0d:41:75:83: 6a:aa:76:c0:96:ab:37:0a:da:8e:27:e5:34:9f:f1:eb:25:e7: e6:dd:32:0a:dc:94:2f:9d:4d:fe:f8:f1:f1:d9:8d:bc:1a:27: a4:3b:13:45:ea:60:75:0b:0b:54:e8:cf:39:f8:41:9d:09:6e: aa:e2:e4:02:d8:86:1f:13:50:07:45:da:1a:e9:b1:36:84:1a: 02:df:b7:f0:70:d7:0c:c3:0c:1c:fd:04:e6:7a:9d:97:3a:a4: d1:04:34:23:f5:d2:25:08:00:34:41:d5:81:42:60:6a:5d:45: 92:42:eb:00:ea:a7:20:64:6c:e7:93:28:46:72:cf:35:00:e8: 04:43:f2:68:36:c6:62:68:35:9e:5e:1d:2a:83:76:24:a1:44: 89:e9:b9:5e:80:d5:94:c0:a8:46:43:cf:4a:f6:1c:5d:fc:6a: 0a:d3:75:41:76:eb:8f:7f:ca:a8:53:8d:bf:f6:23:80:79:5d: 31:91:0f:1b:d0:ba:56:c6:ea:45:a3:25:45:83:43:e3:1e:37: 11:be:8b:27 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUQIsV76tT8zmAJLHRQcSv9oNVrIswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyNVoX DTI2MTExMDA2MDAyNVowMzExMC8GA1UEAxMoNDRGQzM1MUIzQ0ZFMERDNjc1NTJG QjgzQjJDN0RCMUM1RUM5QUYwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOzkKa3PnDHvTn+PeNs4n3BeDeNeN0sGW2Cu+SLqJJLr1aGQgzqFzRMDtJcr 4/eR0rbISnT2nFVcZWyAi717ZJ/18uGMBpMtLQIW0CYQKYAMpHyAV9iD3/kGagk/ u/9JfH7jwfSfDSr2XGVqmJHeFOgwh165B23rd5b7Lg7DfKkn3gQsRHTfcQ9qUkIL GX3jkjXgLxEgkRts7mWBX5PeRpE1znCGQQioxEWpdoV2ZAtR0+7XYaoq6TfMEAoE 0CzpflEx9lcBFGDTEKf7asjCi/1a0AvxO3J/yb/iI/eQrf0o9R8Xj/5H+SAtUiZ3 zR4EhVGj+0Vg2gHK92FDHvnL/qsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRE/DUb PP4NxnVS+4Oyx9scXsmvADAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTM5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAnv9/DANBgkqhkiG9w0BAQsFAAOCAQEAXH2C4WT55CYKEQ6lcHhO x2h8TPVQo4w+AtW0PWfHMxVOCrrCl8rqNgt1EG8+1z2V8ZINQXWDaqp2wJarNwra jiflNJ/x6yXn5t0yCtyUL51N/vjx8dmNvBonpDsTRepgdQsLVOjPOfhBnQluquLk AtiGHxNQB0XaGumxNoQaAt+38HDXDMMMHP0E5nqdlzqk0QQ0I/XSJQgANEHVgUJg al1FkkLrAOqnIGRs55MoRnLPNQDoBEPyaDbGYmg1nl4dKoN2JKFEiem5XoDVlMCo RkPPSvYcXfxqCtN1QXbrj3/KqFONv/YjgHldMZEPG9C6VsbqRaMlRYND4x43Eb6L Jw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:24 2025 by rpki-client