This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS151000.roa File: AS151000.roa (raw, json) Hash identifier: MGw06SlosCf+8OdiFk9BbasG/pKHcBY2MZ/Y2Scp2y4= Subject key identifier: F2:A6:E2:31:9F:E8:FD:E4:12:B2:5B:E1:81:95:1A:2C:0D:3E:53:25 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 48CAA85C6B3DD5195F38F1CA7EEFBC97285C5DC8 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS151000.roa Signing time: Thu 08 Jan 2026 11:00:07 +0000 ROA not before: Thu 08 Jan 2026 10:55:07 +0000 ROA not after: Thu 07 Jan 2027 11:00:07 +0000 asID: 151000 IP address blocks: 157.20.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ca:a8:5c:6b:3d:d5:19:5f:38:f1:ca:7e:ef:bc:97:28:5c:5d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:07 2026 GMT Not After : Jan 7 11:00:07 2027 GMT Subject: CN=F2A6E2319FE8FDE412B25BE181951A2C0D3E5325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fa:00:42:f5:d6:1d:91:48:0e:7f:a4:ad:ea: a3:c2:28:8b:4c:af:ea:82:62:d8:7a:2c:e9:24:fb: d5:0a:0f:b0:c0:ec:83:56:ba:ba:d9:62:c5:7c:6a: 21:e9:68:64:bb:e6:b1:b2:f2:75:aa:98:64:94:68: aa:22:8f:b3:7c:96:6d:61:e8:73:72:44:90:56:33: df:8c:b5:8a:30:e9:bf:92:9b:d2:c1:c2:7b:f3:8e: 7b:60:08:36:92:08:99:72:a9:58:fe:3e:6a:b5:c8: 6b:ab:bc:4e:cd:74:0b:47:76:34:c2:4d:bb:fa:14: b1:e1:f5:fe:fb:0e:60:34:42:63:c0:e8:bb:17:95: ba:1e:fe:59:9d:95:2e:63:42:e4:84:9e:4b:5a:da: 71:65:bb:eb:33:44:29:dc:0c:fa:5a:e7:61:84:63: 24:b7:93:5a:ca:d8:2b:27:0b:65:34:f4:d5:c4:00: 17:9e:6a:93:c9:f9:f9:a4:a6:de:c5:f1:8a:64:38: 33:0f:90:b7:e3:e2:83:17:4e:c0:98:48:94:1e:74: d4:f5:26:50:c3:00:62:72:96:07:44:4a:94:e6:0c: 6e:bd:91:d9:8b:3e:a9:e4:75:7b:2f:6f:42:b6:ea: d9:b4:c5:dd:9f:e3:ea:0a:86:77:d1:20:82:af:b0: 9e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A6:E2:31:9F:E8:FD:E4:12:B2:5B:E1:81:95:1A:2C:0D:3E:53:25 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS151000.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.254.0/23 Signature Algorithm: sha256WithRSAEncryption 25:de:8e:d0:4f:7b:07:0e:ad:23:6b:b5:64:b2:c9:0f:7d:d2: 7c:cb:a7:83:b2:09:f7:74:45:b4:38:5b:83:e2:6e:92:c8:b3: 56:32:09:e4:07:09:5d:25:26:2b:a5:33:6e:bb:ac:57:ea:11: f3:91:a8:7f:be:a4:48:51:1a:42:80:ab:fb:30:f2:39:b9:94: f3:b5:4e:dd:af:a6:f1:d5:c0:04:40:2e:b5:44:8d:d1:b5:d1: c3:ed:95:62:84:fc:11:d7:ed:c4:b9:3e:f5:4b:8d:35:78:74: be:5d:d8:14:fa:21:94:07:44:07:50:d3:50:87:47:18:0d:95: 4c:72:03:0a:92:99:cd:72:f3:9d:78:87:66:26:5a:56:dc:19: 9c:85:26:9b:37:51:99:6b:b9:45:17:1f:89:f6:c7:e0:f1:ca: 90:2a:d1:d8:ed:42:0d:06:5a:c3:07:14:f1:1a:d8:1a:c7:4a: 7a:d2:b8:2f:53:37:8a:ee:dc:ec:04:8b:9b:e7:87:44:8f:6c: dc:be:20:23:4d:fd:72:69:86:af:a2:db:dd:c2:c6:a0:e0:35: 15:d7:da:73:20:83:54:c8:77:0f:70:27:75:4e:b6:2e:ed:4f: 40:1c:59:a8:0b:e7:b6:2d:cf:53:61:0c:5d:98:51:19:ec:90: 0f:c2:ad:23 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUSMqoXGs91RlfOPHKfu+8lyhcXcgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwN1oX DTI3MDEwNzExMDAwN1owMzExMC8GA1UEAxMoRjJBNkUyMzE5RkU4RkRFNDEyQjI1 QkUxODE5NTFBMkMwRDNFNTMyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAML6AEL11h2RSA5/pK3qo8Ioi0yv6oJi2Hos6ST71QoPsMDsg1a6utlixXxq IeloZLvmsbLydaqYZJRoqiKPs3yWbWHoc3JEkFYz34y1ijDpv5Kb0sHCe/OOe2AI NpIImXKpWP4+arXIa6u8Ts10C0d2NMJNu/oUseH1/vsOYDRCY8DouxeVuh7+WZ2V LmNC5ISeS1racWW76zNEKdwM+lrnYYRjJLeTWsrYKycLZTT01cQAF55qk8n5+aSm 3sXximQ4Mw+Qt+PigxdOwJhIlB501PUmUMMAYnKWB0RKlOYMbr2R2Ys+qeR1ey9v Qrbq2bTF3Z/j6gqGd9Eggq+wnmkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTypuIx n+j95BKyW+GBlRosDT5TJTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MTAwMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0U/jANBgkqhkiG9w0BAQsFAAOCAQEAJd6O0E97Bw6tI2u1ZLLJ D33SfMung7IJ93RFtDhbg+JuksizVjIJ5AcJXSUmK6UzbrusV+oR85Gof76kSFEa QoCr+zDyObmU87VO3a+m8dXABEAutUSN0bXRw+2VYoT8EdftxLk+9UuNNXh0vl3Y FPohlAdEB1DTUIdHGA2VTHIDCpKZzXLznXiHZiZaVtwZnIUmmzdRmWu5RRcfifbH 4PHKkCrR2O1CDQZawwcU8RrYGsdKetK4L1M3iu7c7ASLm+eHRI9s3L4gI039cmmG r6Lb3cLGoOA1FdfacyCDVMh3D3AndU62Lu1PQBxZqAvnti3PU2EMXZhRGeyQD8Kt Iw== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:12 2026 by rpki-client