This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139257.roa File: AS139257.roa (raw, json) Hash identifier: icUJM5umWpolyfYUpNcYGjaQ0Fag5He9OEV0BwgjOOk= Subject key identifier: 18:0A:29:94:EB:82:27:34:D8:A1:12:2E:9D:E7:0A:4B:2D:3A:FC:D0 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1F1ECB8B6E5F90EA7F4E24019607D96605E3A493 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139257.roa Signing time: Fri 12 Dec 2025 04:32:48 +0000 ROA not before: Fri 12 Dec 2025 04:27:48 +0000 ROA not after: Fri 11 Dec 2026 04:32:48 +0000 asID: 139257 IP address blocks: 138.252.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 09:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:1e:cb:8b:6e:5f:90:ea:7f:4e:24:01:96:07:d9:66:05:e3:a4:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 12 04:27:48 2025 GMT Not After : Dec 11 04:32:48 2026 GMT Subject: CN=180A2994EB822734D8A1122E9DE70A4B2D3AFCD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9d:47:da:8c:a2:fe:f4:59:7d:93:34:60:cf: bb:ae:26:67:96:6f:8c:12:80:5a:79:c1:4f:c2:4a: ce:1c:d0:57:05:33:1b:e4:68:d2:57:83:68:3e:8f: ad:ed:e2:a6:91:95:20:0b:45:13:c9:94:cd:49:7c: 30:ae:b1:50:e6:90:ed:ee:d3:e0:3d:75:02:af:37: 7b:24:22:95:95:14:3f:98:3a:7f:a0:f2:2c:10:79: 5d:e0:f2:7b:80:49:18:ed:fe:d8:2c:7a:b0:a4:a6: 83:0b:12:b9:6d:39:48:4f:a8:a1:da:5d:78:b3:33: 5f:0d:bc:71:bb:d7:63:ea:ab:06:cd:45:2e:10:3c: 55:60:86:5e:9e:4a:87:75:16:7c:87:04:6c:15:b8: c7:12:b9:da:62:94:ad:6d:79:7a:2d:f9:69:53:ca: c8:62:20:79:e8:5d:4c:8b:49:20:18:b9:d0:af:21: 2a:4b:26:6e:2c:31:ea:86:78:9a:9e:a4:0b:d8:f3: 04:9c:04:2e:2d:44:86:7d:f8:07:17:26:ec:52:6c: b0:a4:d9:8f:28:22:ba:63:91:ba:40:95:0d:0a:a2: 84:e1:a4:2a:44:4e:e2:d4:69:4b:8f:c2:7f:88:04: 14:25:a8:bf:2c:5c:9d:21:e0:0a:4d:7a:35:65:e5: 58:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:0A:29:94:EB:82:27:34:D8:A1:12:2E:9D:E7:0A:4B:2D:3A:FC:D0 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS139257.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.253.0/24 Signature Algorithm: sha256WithRSAEncryption 85:b6:dd:0a:b2:14:e8:14:d6:30:7f:ad:d6:d4:32:e7:5f:49: 21:22:7b:9c:ea:8b:54:06:8b:91:14:26:59:d7:09:c3:63:ab: 9f:9e:ae:f3:59:b9:bb:4a:57:0e:97:ec:cd:79:05:65:90:5a: 3f:ba:73:e5:34:47:9c:28:84:79:24:0f:15:4e:82:29:19:14: f0:a7:2d:b6:ad:76:e7:cd:e5:0a:44:3b:4b:cc:b5:41:bb:c0: 8d:d7:7a:2e:b9:a0:10:72:d7:92:f6:c8:7e:fa:21:47:2c:9a: 85:6c:d6:8c:c7:4e:d7:03:ab:fb:7a:5f:6d:4c:70:c2:ca:54: af:fd:88:26:67:fd:7c:f0:73:b6:21:2b:09:48:cf:77:ca:95: 55:61:af:71:1e:8d:65:e8:ff:8d:af:b8:dd:e9:ef:21:17:ac: 9b:29:db:ec:0b:09:6d:9a:62:15:8f:05:2f:22:00:d8:38:67: 2e:76:0e:3e:f1:c7:29:75:43:7a:9c:df:64:2c:32:24:ea:d2: 77:12:49:90:72:78:d4:b5:20:43:b0:75:f9:27:c1:7e:25:5b: c7:39:69:32:b4:37:52:45:5b:f8:ee:84:a1:e9:e1:ce:7d:cd: e5:42:91:8c:2c:0e:f3:6d:1c:c3:ba:19:10:25:13:5c:53:78: b6:5b:a7:20 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUHx7Li25fkOp/TiQBlgfZZgXjpJMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIxMjA0Mjc0OFoX DTI2MTIxMTA0MzI0OFowMzExMC8GA1UEAxMoMTgwQTI5OTRFQjgyMjczNEQ4QTEx MjJFOURFNzBBNEIyRDNBRkNEMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANCdR9qMov70WX2TNGDPu64mZ5ZvjBKAWnnBT8JKzhzQVwUzG+Ro0leDaD6P re3ippGVIAtFE8mUzUl8MK6xUOaQ7e7T4D11Aq83eyQilZUUP5g6f6DyLBB5XeDy e4BJGO3+2Cx6sKSmgwsSuW05SE+oodpdeLMzXw28cbvXY+qrBs1FLhA8VWCGXp5K h3UWfIcEbBW4xxK52mKUrW15ei35aVPKyGIgeehdTItJIBi50K8hKksmbiwx6oZ4 mp6kC9jzBJwELi1Ehn34Bxcm7FJssKTZjygiumORukCVDQqihOGkKkRO4tRpS4/C f4gEFCWovyxcnSHgCk16NWXlWHECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQYCimU 64InNNihEi6d5wpLLTr80DAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzOTI1Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIr8/TANBgkqhkiG9w0BAQsFAAOCAQEAhbbdCrIU6BTWMH+t1tQy 519JISJ7nOqLVAaLkRQmWdcJw2Orn56u81m5u0pXDpfszXkFZZBaP7pz5TRHnCiE eSQPFU6CKRkU8Kcttq12583lCkQ7S8y1QbvAjdd6LrmgEHLXkvbIfvohRyyahWzW jMdO1wOr+3pfbUxwwspUr/2IJmf9fPBztiErCUjPd8qVVWGvcR6NZej/ja+43env IResmynb7AsJbZpiFY8FLyIA2DhnLnYOPvHHKXVDepzfZCwyJOrSdxJJkHJ41LUg Q7B1+SfBfiVbxzlpMrQ3UkVb+O6Eoenhzn3N5UKRjCwO820cw7oZECUTXFN4tlun IA== -----END CERTIFICATE-----Generated at Wed Dec 17 20:07:26 2025 by rpki-client