This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138093.roa File: AS138093.roa (raw, json) Hash identifier: 3SN7oBbSvCF6mURRaJ9nyuctmaEFoR8uMp+/5tlXg8U= Subject key identifier: 41:76:F8:14:4C:ED:F0:FD:5A:36:3D:03:94:DF:DD:1F:0A:11:A5:1C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3863FF4F1118B131C4AE6F80E6E90AE5D4AD1A52 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138093.roa Signing time: Tue 11 Nov 2025 06:00:25 +0000 ROA not before: Tue 11 Nov 2025 05:55:25 +0000 ROA not after: Tue 10 Nov 2026 06:00:25 +0000 asID: 138093 IP address blocks: 103.160.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:63:ff:4f:11:18:b1:31:c4:ae:6f:80:e6:e9:0a:e5:d4:ad:1a:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:25 2025 GMT Not After : Nov 10 06:00:25 2026 GMT Subject: CN=4176F8144CEDF0FD5A363D0394DFDD1F0A11A51C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:cd:83:4e:cd:13:b6:0c:33:8e:47:fa:01: e6:ab:4f:db:de:2e:7c:d3:0e:a3:ab:39:64:a9:7d: b0:56:b5:1c:a8:0e:79:24:f5:d7:19:ba:8c:4f:95: 79:6c:36:39:ed:82:fc:6e:3e:d6:9a:80:f5:db:56: 4b:a4:84:d1:dd:29:10:66:97:45:55:fc:d0:a5:68: d5:2f:bc:5f:08:b8:9c:65:3e:eb:31:a7:69:cb:da: 70:dc:e6:59:49:fc:3d:8f:46:c3:58:de:09:c6:63: 73:82:3f:bd:9b:e2:10:17:69:31:7e:2e:ef:b2:59: a5:91:0e:49:33:d9:d9:b5:94:f3:c3:fa:78:8d:e6: 03:a6:9c:3d:9d:02:79:34:b8:5f:72:79:44:cf:0b: ba:69:ee:92:fc:05:0f:8e:ec:08:31:32:66:67:66: d4:53:84:a8:ad:dc:c5:f9:b1:b7:2d:a9:38:27:26: 98:04:a7:39:27:36:b2:32:96:42:17:6d:f3:7d:69: 4c:04:f3:b4:70:35:76:05:0b:9e:db:94:82:1a:53: 91:e3:80:a9:be:30:1d:09:4e:26:47:79:97:54:a9: 05:07:6e:75:8d:9d:8b:86:36:e8:25:ac:6b:3b:4c: a0:37:24:96:61:b6:78:e1:63:63:78:9d:20:21:d0: cd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:76:F8:14:4C:ED:F0:FD:5A:36:3D:03:94:DF:DD:1F:0A:11:A5:1C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS138093.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.150.0/23 Signature Algorithm: sha256WithRSAEncryption 79:26:71:78:d5:95:e6:24:44:e9:58:42:68:b6:1d:46:fb:37: a0:28:fb:d4:92:ab:37:18:3e:78:d8:28:45:f2:29:8d:93:39: 2b:96:75:61:4a:7c:8a:06:d7:27:56:1d:0b:b0:e5:9d:ff:e3: d8:df:82:93:6f:b9:42:22:9c:c4:ce:da:92:fd:d9:de:be:0e: 0f:e9:81:51:1a:32:36:ab:35:d5:55:8a:c3:16:60:ad:fa:b1: 92:ea:e7:0c:3a:66:5d:29:7f:0f:96:94:ee:45:e1:4a:fa:49: 04:2a:a3:1b:20:3b:42:1f:18:b8:ed:16:dc:25:51:6e:3c:da: 5e:9d:e1:23:8f:06:c3:a8:ba:57:8f:9f:cc:26:ab:c5:24:1b: ca:67:fc:c3:46:d4:e2:d1:88:a1:35:6e:fb:f7:6f:bf:e6:0b: a3:37:21:be:4f:03:ce:e4:37:1e:34:ab:74:e6:b3:b2:17:08: b8:19:9d:4b:26:18:43:a6:2a:10:7a:07:0f:5e:ce:e0:74:29: f8:db:00:71:63:43:e0:39:13:e6:d8:5d:5f:dc:8b:c4:1b:fd: 62:fd:68:59:4a:14:a0:b7:8c:d9:91:2e:b5:aa:26:2e:b3:a9: a8:7c:70:3f:1d:be:0c:ea:69:fb:2a:5a:db:6f:3f:bc:e1:7a: 7c:9d:89:57 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOGP/TxEYsTHErm+A5ukK5dStGlIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyNVoX DTI2MTExMDA2MDAyNVowMzExMC8GA1UEAxMoNDE3NkY4MTQ0Q0VERjBGRDVBMzYz RDAzOTRERkREMUYwQTExQTUxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMalzYNOzRO2DDOOR/oB5qtP294ufNMOo6s5ZKl9sFa1HKgOeST11xm6jE+V eWw2Oe2C/G4+1pqA9dtWS6SE0d0pEGaXRVX80KVo1S+8Xwi4nGU+6zGnacvacNzm WUn8PY9Gw1jeCcZjc4I/vZviEBdpMX4u77JZpZEOSTPZ2bWU88P6eI3mA6acPZ0C eTS4X3J5RM8LumnukvwFD47sCDEyZmdm1FOEqK3cxfmxty2pOCcmmASnOSc2sjKW Qhdt831pTATztHA1dgULntuUghpTkeOAqb4wHQlOJkd5l1SpBQdudY2di4Y26CWs aztMoDcklmG2eOFjY3idICHQze8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRBdvgU TO3w/Vo2PQOU390fChGlHDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzODA5My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWegljANBgkqhkiG9w0BAQsFAAOCAQEAeSZxeNWV5iRE6VhCaLYd Rvs3oCj71JKrNxg+eNgoRfIpjZM5K5Z1YUp8igbXJ1YdC7Dlnf/j2N+Ck2+5QiKc xM7akv3Z3r4OD+mBURoyNqs11VWKwxZgrfqxkurnDDpmXSl/D5aU7kXhSvpJBCqj GyA7Qh8YuO0W3CVRbjzaXp3hI48Gw6i6V4+fzCarxSQbymf8w0bU4tGIoTVu+/dv v+YLozchvk8DzuQ3HjSrdOazshcIuBmdSyYYQ6YqEHoHD17O4HQp+NsAcWND4DkT 5thdX9yLxBv9Yv1oWUoUoLeM2ZEutaomLrOpqHxwPx2+DOpp+ypa228/vOF6fJ2J Vw== -----END CERTIFICATE-----Generated at Sat Dec 6 22:52:24 2025 by rpki-client