This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139938.roa File: AS139938.roa (raw, json) Hash identifier: PKdsXrBtbESsWOFhJMeFCNHBVVV/M+5uArMFG8qIXho= Subject key identifier: 61:A8:8A:27:C5:B5:25:BC:E3:04:35:1E:15:C6:F4:32:5F:CF:1E:A2 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 241E2B92292A9CF0D27FCAC708B1847FB4B4F318 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139938.roa Signing time: Tue 06 Jan 2026 06:23:03 +0000 ROA not before: Tue 06 Jan 2026 06:18:03 +0000 ROA not after: Tue 05 Jan 2027 06:23:03 +0000 asID: 139938 IP address blocks: 2001:df2:2c80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:1e:2b:92:29:2a:9c:f0:d2:7f:ca:c7:08:b1:84:7f:b4:b4:f3:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 6 06:18:03 2026 GMT Not After : Jan 5 06:23:03 2027 GMT Subject: CN=61A88A27C5B525BCE304351E15C6F4325FCF1EA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:12:ba:fd:81:81:c2:a4:2d:d5:e3:63:62:0c: 43:16:53:91:e3:4f:a2:21:e6:78:f1:82:ab:66:4e: 0d:7a:c3:a4:ac:a0:bd:b5:bd:8c:98:7e:6a:b2:82: 10:cc:89:e3:c7:1d:8a:88:71:26:d6:1a:62:7a:c0: f8:bf:e9:d2:a7:be:e8:1c:73:f6:0c:ff:e3:f9:6a: 62:05:d7:64:83:5e:77:cb:a3:dc:d2:bc:29:ce:36: 38:85:4e:dd:6f:d2:2d:db:76:c4:10:65:a9:7b:c3: c7:ca:24:c5:4c:65:44:84:ff:03:ca:ab:05:26:63: 34:d7:e0:2f:f4:12:7b:2b:42:d0:e8:e6:1e:34:12: ff:73:dd:a4:44:7a:ee:1a:81:ca:dd:22:7a:e2:eb: b8:76:1c:28:53:1a:00:ea:8b:c9:cf:cc:32:19:2b: c1:2b:74:41:4b:08:15:07:6e:83:c4:91:4b:f9:25: 03:1f:dd:c8:9d:fd:e4:86:cd:6b:e4:88:f4:4b:c4: cf:0c:7c:b9:39:3c:66:9a:ae:1b:e3:b1:b8:1d:cd: 31:ac:ed:44:46:7e:35:0f:e4:f1:fa:a2:47:ab:8a: 95:49:26:61:2b:ee:17:51:a0:41:3c:f6:41:1c:b7: b4:7f:7b:dd:8b:ca:73:2c:0d:1f:7e:2e:a7:6d:f9: ea:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:A8:8A:27:C5:B5:25:BC:E3:04:35:1E:15:C6:F4:32:5F:CF:1E:A2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS139938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:2c80::/48 Signature Algorithm: sha256WithRSAEncryption 60:48:7f:17:97:df:0b:65:96:5d:69:b3:71:cb:22:37:9b:94: 4f:1d:11:47:f6:dc:1a:8f:c0:f5:00:c7:55:8d:6a:ce:1f:a8: 29:fb:1e:12:29:c0:4c:ca:85:4e:48:47:3f:2e:54:3c:c1:64: 52:ad:f2:61:f1:6f:bc:4c:ec:e0:73:88:cf:7e:e8:8b:99:52: 23:9c:f6:78:cf:8d:2b:4d:49:91:7d:9b:53:96:6d:87:0a:9b: 67:b1:29:39:5e:8f:d2:d4:70:19:79:07:b1:e7:02:fc:f6:f7: 80:a8:54:58:07:95:71:4c:18:1e:5d:ae:f0:d2:91:13:94:09: dc:e0:33:b8:0a:43:94:53:cb:74:d5:46:6f:7e:45:14:79:f2: ed:cf:78:44:c2:d8:53:c8:06:66:36:31:7d:ca:f8:04:16:e8: 45:b0:1a:ff:54:55:46:0b:cd:ab:4d:03:43:fa:7f:e5:41:81: 93:c3:da:48:ba:e2:9b:f7:d8:a2:82:d4:95:55:dd:9f:51:8e: 19:aa:c2:6e:44:56:38:ef:73:a7:67:38:c7:bd:a8:45:b0:78: 5d:0f:2e:31:58:40:24:99:82:de:2d:5c:0f:99:51:5f:4d:40: 93:14:b4:03:39:7c:14:e6:9d:4b:09:44:6f:81:99:57:48:7c: fb:84:da:c4 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUJB4rkikqnPDSf8rHCLGEf7S08xgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwNjA2MTgwM1oX DTI3MDEwNTA2MjMwM1owMzExMC8GA1UEAxMoNjFBODhBMjdDNUI1MjVCQ0UzMDQz NTFFMTVDNkY0MzI1RkNGMUVBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMASuv2BgcKkLdXjY2IMQxZTkeNPoiHmePGCq2ZODXrDpKygvbW9jJh+arKC EMyJ48cdiohxJtYaYnrA+L/p0qe+6Bxz9gz/4/lqYgXXZINed8uj3NK8Kc42OIVO 3W/SLdt2xBBlqXvDx8okxUxlRIT/A8qrBSZjNNfgL/QSeytC0OjmHjQS/3PdpER6 7hqByt0ieuLruHYcKFMaAOqLyc/MMhkrwSt0QUsIFQdug8SRS/klAx/dyJ395IbN a+SI9EvEzwx8uTk8ZpquG+OxuB3NMaztREZ+NQ/k8fqiR6uKlUkmYSvuF1GgQTz2 QRy3tH973YvKcywNH34up2356skCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRhqIon xbUlvOMENR4VxvQyX88eojAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzEzOTkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIsgDANBgkqhkiG9w0BAQsFAAOCAQEAYEh/F5ffC2WWXWmz ccsiN5uUTx0RR/bcGo/A9QDHVY1qzh+oKfseEinATMqFTkhHPy5UPMFkUq3yYfFv vEzs4HOIz37oi5lSI5z2eM+NK01JkX2bU5ZthwqbZ7EpOV6P0tRwGXkHsecC/Pb3 gKhUWAeVcUwYHl2u8NKRE5QJ3OAzuApDlFPLdNVGb35FFHny7c94RMLYU8gGZjYx fcr4BBboRbAa/1RVRgvNq00DQ/p/5UGBk8PaSLrim/fYooLUlVXdn1GOGarCbkRW OO9zp2c4x72oRbB4XQ8uMVhAJJmC3i1cD5lRX01AkxS0Azl8FOadSwlEb4GZV0h8 +4TaxA== -----END CERTIFICATE-----Generated at Sun Jan 25 18:24:26 2026 by rpki-client