This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38771.roa File: AS38771.roa (raw, json) Hash identifier: rQycZOlkoQy1aSMzKLOBLOgxlyxnppy9dCsSTDKR4Ek= Subject key identifier: 73:AC:41:92:69:BC:A2:30:67:49:0C:E2:5E:28:9B:20:A6:64:C1:DE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5D984D36AB00771B190ACBCC2AACAC31F5AC4C5A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38771.roa Signing time: Tue 11 Nov 2025 06:00:12 +0000 ROA not before: Tue 11 Nov 2025 05:55:12 +0000 ROA not after: Tue 10 Nov 2026 06:00:12 +0000 asID: 38771 IP address blocks: 103.171.234.0/23 maxlen: 24 114.141.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:98:4d:36:ab:00:77:1b:19:0a:cb:cc:2a:ac:ac:31:f5:ac:4c:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:12 2025 GMT Not After : Nov 10 06:00:12 2026 GMT Subject: CN=73AC419269BCA23067490CE25E289B20A664C1DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d0:0e:1b:0e:27:6b:09:f8:d9:32:90:fc:df: ef:8a:5f:4a:5c:c8:96:cd:70:87:22:19:43:eb:9a: e2:a3:f0:0e:6a:0b:01:6b:c2:15:23:07:bd:75:ae: 38:c3:7a:66:87:36:1b:9c:9d:ad:cf:6c:75:67:3b: 43:68:ab:67:1f:1c:bb:6d:52:fd:ab:8d:a3:2a:bd: c2:da:01:32:f8:13:07:29:2d:e7:92:49:9f:a8:d7: 10:e4:af:d9:81:18:f9:56:e0:fd:93:8f:6f:a3:dc: b7:e6:66:43:10:61:27:92:28:f7:8c:ad:90:78:92: be:d6:50:f2:13:e5:96:8e:a5:9f:1a:2a:90:e4:f8: 23:73:8e:eb:47:f0:f7:17:73:56:3f:dc:20:ed:57: 1e:9c:9f:d4:07:62:aa:35:14:81:65:05:c7:30:8d: 64:00:8c:ea:8e:a9:a6:0a:f3:4f:d8:04:b6:4a:2a: 79:99:ec:cf:36:c4:59:79:12:e2:c3:15:b7:42:1c: 4c:c5:81:0a:a4:1d:d5:23:41:76:80:05:75:d6:5c: 9d:c7:67:af:40:d9:8b:5e:59:4c:ac:f9:a3:a6:5c: d6:c9:70:43:b3:69:88:2c:4b:1f:e3:9f:f9:1d:93: 28:ba:9f:47:a7:79:01:b3:9a:2b:41:ed:2b:3c:bd: aa:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:AC:41:92:69:BC:A2:30:67:49:0C:E2:5E:28:9B:20:A6:64:C1:DE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS38771.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.234.0/23 114.141.48.0/21 Signature Algorithm: sha256WithRSAEncryption 16:5f:66:40:f3:c1:dd:0a:55:da:1f:d2:9e:12:ca:e7:80:21: 2d:91:8a:bd:0d:f7:36:99:e8:c9:da:f7:12:89:bb:77:4e:35: b8:02:ef:72:e6:ef:be:ff:8b:27:33:aa:95:0d:52:01:4f:57: ba:bc:c5:a5:41:57:30:43:43:89:5f:ed:01:55:a8:b8:3d:2f: d9:3e:40:d7:73:4b:c5:3c:4c:58:c3:55:2c:a0:2c:af:2d:33: 3a:02:72:07:96:2d:95:4d:8b:5d:26:0e:6e:4b:ae:b1:df:b9: 16:5f:27:ae:69:48:c5:8d:33:14:8c:80:29:db:26:ca:5f:73: c4:d0:ff:ed:b7:97:97:72:91:81:af:db:13:e3:2b:12:c9:68: 04:66:57:09:e8:9c:53:22:37:95:67:d1:f6:d6:c9:60:1a:4a: 78:58:bf:fa:38:a3:d0:ae:09:6c:e6:78:99:34:a6:a6:e2:a9: c8:cd:14:ea:b9:17:98:18:d2:24:41:56:17:19:20:a0:c3:51: 83:00:d0:04:a6:3b:a0:41:2c:49:e8:e7:41:23:05:2d:b4:44: 24:3a:e5:c9:21:1f:d6:c7:c1:cf:cc:1b:da:29:77:8b:6f:3d: 3a:a7:8c:63:94:87:b7:a9:47:d3:3f:5a:41:27:e4:43:ec:29: c3:fd:b3:f3 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUXZhNNqsAdxsZCsvMKqysMfWsTFowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMloX DTI2MTExMDA2MDAxMlowMzExMC8GA1UEAxMoNzNBQzQxOTI2OUJDQTIzMDY3NDkw Q0UyNUUyODlCMjBBNjY0QzFERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvQDhsOJ2sJ+NkykPzf74pfSlzIls1whyIZQ+ua4qPwDmoLAWvCFSMHvXWu OMN6Zoc2G5ydrc9sdWc7Q2irZx8cu21S/auNoyq9wtoBMvgTBykt55JJn6jXEOSv 2YEY+Vbg/ZOPb6Pct+ZmQxBhJ5Io94ytkHiSvtZQ8hPllo6lnxoqkOT4I3OO60fw 9xdzVj/cIO1XHpyf1AdiqjUUgWUFxzCNZACM6o6ppgrzT9gEtkoqeZnszzbEWXkS 4sMVt0IcTMWBCqQd1SNBdoAFddZcncdnr0DZi15ZTKz5o6Zc1slwQ7NpiCxLH+Of +R2TKLqfR6d5AbOaK0HtKzy9ql8CAwEAAaOCAdUwggHRMB0GA1UdDgQWBBRzrEGS abyiMGdJDOJeKJsgpmTB3jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzM4NzcxLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ6vqAwQDco0wMA0GCSqGSIb3DQEBCwUAA4IBAQAWX2ZA88HdClXa H9KeEsrngCEtkYq9Dfc2mejJ2vcSibt3TjW4Au9y5u++/4snM6qVDVIBT1e6vMWl QVcwQ0OJX+0BVai4PS/ZPkDXc0vFPExYw1UsoCyvLTM6AnIHli2VTYtdJg5uS66x 37kWXyeuaUjFjTMUjIAp2ybKX3PE0P/tt5eXcpGBr9sT4ysSyWgEZlcJ6JxTIjeV Z9H21slgGkp4WL/6OKPQrgls5niZNKam4qnIzRTquReYGNIkQVYXGSCgw1GDANAE pjugQSxJ6OdBIwUttEQkOuXJIR/Wx8HPzBvaKXeLbz06p4xjlIe3qUfTP1pBJ+RD 7CnD/bPz -----END CERTIFICATE-----Generated at Sat Dec 6 21:52:50 2025 by rpki-client