This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138854.roa File: AS138854.roa (raw, json) Hash identifier: dhonRyoZp8QCIJrjTRRnxQYruR8s4ZgpZX4F5gTBpXY= Subject key identifier: F4:7E:B0:FF:72:38:7F:C3:A8:83:01:AD:FC:35:5D:DD:F6:6A:F4:B7 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 44C010CAE6ABBE262BC4F23691246278E6DB994F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138854.roa Signing time: Fri 12 Dec 2025 09:03:09 +0000 ROA not before: Fri 12 Dec 2025 08:58:09 +0000 ROA not after: Fri 11 Dec 2026 09:03:09 +0000 asID: 138854 IP address blocks: 144.79.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 09:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:c0:10:ca:e6:ab:be:26:2b:c4:f2:36:91:24:62:78:e6:db:99:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 12 08:58:09 2025 GMT Not After : Dec 11 09:03:09 2026 GMT Subject: CN=F47EB0FF72387FC3A88301ADFC355DDDF66AF4B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7b:c6:ea:1f:7f:02:9e:50:2f:63:b8:2b:26: c8:66:d1:93:cd:b9:4b:5c:8c:c8:11:78:29:af:b8: 3b:83:78:b2:9b:e5:d4:b2:4a:61:e6:25:4e:07:d9: a5:22:01:ff:b1:4b:cb:95:90:2c:71:62:c0:71:5f: d3:8d:c9:b6:95:87:d4:4e:60:e7:3b:31:2a:9b:ab: 2d:3c:ce:ed:02:d0:35:d6:13:1d:b9:14:21:62:a3: 3f:e0:25:7b:aa:7f:3d:b7:a0:f0:6d:0e:64:07:3f: 7d:4e:5c:41:28:b2:e0:78:af:d7:0b:73:48:65:43: 2e:35:d6:92:e3:28:d2:61:22:42:4f:6d:9f:7a:e8: 31:60:ac:ff:aa:10:db:cc:3e:38:97:fc:37:ba:79: 63:66:cf:96:13:30:40:27:cb:85:a3:81:2b:82:48: 81:42:8c:85:04:0d:33:67:47:64:de:a4:f4:ab:5d: a6:57:bf:d9:be:f6:d7:67:71:51:8e:c9:45:5e:56: 1e:7b:cd:a6:5d:cc:37:31:92:d6:5e:df:a3:39:48: a9:67:33:6f:66:0f:40:ba:46:01:0c:fa:69:77:0b: a7:81:3d:62:30:b4:69:ec:5b:64:b4:aa:03:50:81: fa:b6:58:99:cb:12:04:37:46:4b:99:ab:30:bd:01: 54:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7E:B0:FF:72:38:7F:C3:A8:83:01:AD:FC:35:5D:DD:F6:6A:F4:B7 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS138854.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.61.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:73:cb:25:8c:0a:00:8c:0e:40:6e:5c:2d:bf:cb:61:a7:cf: a2:3c:85:9a:e6:d9:32:71:36:3f:97:32:9a:19:aa:cb:6e:07: bf:92:86:79:87:4c:fd:c7:5f:cc:a7:08:c5:45:93:ba:93:41: 2e:53:c8:1f:c8:77:87:69:b0:75:d6:8b:ca:ca:65:af:1b:b1: 19:86:5c:8e:d2:b1:9b:e3:98:5c:c4:73:fe:11:db:23:65:35: 77:a2:5a:26:00:47:a2:37:de:54:c7:92:32:5c:5f:07:8c:a2: 7c:a7:8b:4a:f3:85:0b:16:ce:91:9d:56:53:2b:19:c4:dd:25: 29:15:12:4f:1f:b9:31:e7:9e:f0:25:cd:07:02:96:c5:2e:da: b3:53:93:69:c7:8e:24:80:58:4c:ab:4b:a9:76:19:9b:c7:e2: e7:f2:47:da:3c:6f:b8:71:bb:9e:51:e9:9a:b7:0d:2b:b6:f7: cf:cf:37:d6:13:3b:47:70:d1:ff:9e:58:7e:c5:d4:0e:71:fb: fa:eb:8d:a0:a9:4f:a1:65:00:46:e7:18:fc:f3:c8:66:45:62: f0:6f:78:56:48:58:36:d2:89:46:27:c9:83:56:93:cf:db:31: bb:d9:ed:62:93:8f:77:45:d8:0e:af:77:f8:75:30:70:da:74: d7:8b:4c:75 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURMAQyuarviYrxPI2kSRieObbmU8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIxMjA4NTgwOVoX DTI2MTIxMTA5MDMwOVowMzExMC8GA1UEAxMoRjQ3RUIwRkY3MjM4N0ZDM0E4ODMw MUFERkMzNTVERERGNjZBRjRCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPB7xuoffwKeUC9juCsmyGbRk825S1yMyBF4Ka+4O4N4spvl1LJKYeYlTgfZ pSIB/7FLy5WQLHFiwHFf043JtpWH1E5g5zsxKpurLTzO7QLQNdYTHbkUIWKjP+Al e6p/Pbeg8G0OZAc/fU5cQSiy4Hiv1wtzSGVDLjXWkuMo0mEiQk9tn3roMWCs/6oQ 28w+OJf8N7p5Y2bPlhMwQCfLhaOBK4JIgUKMhQQNM2dHZN6k9Ktdple/2b7212dx UY7JRV5WHnvNpl3MNzGS1l7fozlIqWczb2YPQLpGAQz6aXcLp4E9YjC0aexbZLSq A1CB+rZYmcsSBDdGS5mrML0BVCcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT0frD/ cjh/w6iDAa38NV3d9mr0tzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzODg1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJBPPTANBgkqhkiG9w0BAQsFAAOCAQEALHPLJYwKAIwOQG5cLb/L YafPojyFmubZMnE2P5cymhmqy24Hv5KGeYdM/cdfzKcIxUWTupNBLlPIH8h3h2mw ddaLysplrxuxGYZcjtKxm+OYXMRz/hHbI2U1d6JaJgBHojfeVMeSMlxfB4yifKeL SvOFCxbOkZ1WUysZxN0lKRUSTx+5Meee8CXNBwKWxS7as1OTaceOJIBYTKtLqXYZ m8fi5/JH2jxvuHG7nlHpmrcNK7b3z8831hM7R3DR/55YfsXUDnH7+uuNoKlPoWUA RucY/PPIZkVi8G94VkhYNtKJRifJg1aTz9sxu9ntYpOPd0XYDq93+HUwcNp014tM dQ== -----END CERTIFICATE-----Generated at Wed Dec 17 20:07:27 2025 by rpki-client