This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153119.roa File: AS153119.roa (raw, json) Hash identifier: VKqHOCAopLKO1Ug1a5T4bPlcPM+zw9fyOVYMZ6TX4IA= Subject key identifier: 0F:2B:D3:32:D3:F8:1C:0E:80:36:BB:C7:22:BE:10:75:F3:E8:07:02 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 04620C199A3FD1BD3F6DF1B628C6638A3B7261A2 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153119.roa Signing time: Thu 08 Jan 2026 11:00:02 +0000 ROA not before: Thu 08 Jan 2026 10:55:02 +0000 ROA not after: Thu 07 Jan 2027 11:00:02 +0000 asID: 153119 IP address blocks: 160.187.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:62:0c:19:9a:3f:d1:bd:3f:6d:f1:b6:28:c6:63:8a:3b:72:61:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:02 2026 GMT Not After : Jan 7 11:00:02 2027 GMT Subject: CN=0F2BD332D3F81C0E8036BBC722BE1075F3E80702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:77:68:4a:78:81:d0:61:77:0b:37:92:16:31: 5c:d5:5e:a7:14:1d:0c:c3:51:77:9b:11:f6:3f:fd: b2:cb:35:a8:ce:33:35:99:62:9b:29:94:03:80:30: 29:f9:81:f0:d0:7d:41:b4:dc:ce:cc:ae:32:93:7a: 29:d4:e4:48:70:14:76:99:97:92:21:e7:5e:3b:bd: 66:64:69:a9:fa:aa:a6:16:bb:b8:76:4f:15:b2:69: 13:a3:e3:1d:b2:93:a3:85:26:46:77:1f:a5:3f:63: 3b:8c:3b:63:88:1d:92:49:a0:a1:10:96:99:85:09: 84:a1:a6:87:84:c2:3a:f0:98:f9:86:b2:e4:6f:60: 18:c0:64:4b:5e:77:39:13:8e:a1:4a:79:53:f8:d4: bc:b7:52:81:f9:8d:13:ed:7b:76:a9:ba:a4:ea:d6: 2a:cf:62:c0:44:8e:1f:6b:d9:36:8d:d0:2a:c3:f6: 3a:58:dc:5d:c9:a6:e5:5e:a8:7d:14:a2:4d:ad:66: 4a:15:24:7c:9d:0a:89:17:2d:26:aa:65:7d:88:fa: 2f:d4:b2:28:fe:79:09:1c:f8:e1:19:e3:eb:e4:11: dc:a5:fa:c9:f3:b1:1a:cc:d6:1b:e5:bf:3a:d2:46: 79:b0:64:bb:3d:aa:ec:53:60:cd:d7:68:63:54:d2: 49:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:2B:D3:32:D3:F8:1C:0E:80:36:BB:C7:22:BE:10:75:F3:E8:07:02 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153119.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.107.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:46:ef:07:30:2e:bf:49:6f:98:c8:5a:7c:ca:dd:6f:5e:73: 4d:92:61:97:68:88:ec:74:3b:45:3a:04:65:d7:1a:cf:96:f0: af:03:6f:d2:88:30:a1:13:8e:6b:49:d1:af:3c:75:2a:a8:f8: 25:21:84:a0:f2:b0:e6:9e:c5:99:96:d3:a7:41:6a:63:7f:cd: ce:1d:46:f8:c0:ad:53:57:39:9e:a3:e2:64:6c:9b:e9:5f:73: 8c:83:71:33:6c:1c:c2:94:66:c3:77:70:c2:7c:a0:e5:1d:cd: 7f:42:e3:8a:59:d0:40:6e:f5:5c:c1:b8:fc:6c:0b:fa:ef:1c: 7d:8d:a4:87:3c:81:f2:91:29:52:30:5f:f0:59:62:cb:52:b5: c4:f6:c1:64:82:d6:87:a9:9e:c6:33:bc:c3:b0:ad:e2:ae:c1: 73:e7:0f:87:a0:19:82:2b:f0:32:b6:79:61:21:c2:cb:f4:db: 25:99:66:8b:3f:d0:08:6d:70:c4:74:0c:9e:87:d7:a2:8f:17: df:d5:cb:d2:00:2d:05:ea:ac:d5:e0:ac:a9:5f:e8:30:a5:fb: 21:45:0c:b0:5c:6c:fb:bc:33:c0:ac:c2:72:9d:c6:e6:f1:dc: 50:25:28:6f:06:c7:73:b2:a0:58:40:cb:70:1e:2e:dc:d6:8f: 31:69:8f:ec -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUBGIMGZo/0b0/bfG2KMZjijtyYaIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwMloX DTI3MDEwNzExMDAwMlowMzExMC8GA1UEAxMoMEYyQkQzMzJEM0Y4MUMwRTgwMzZC QkM3MjJCRTEwNzVGM0U4MDcwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALp3aEp4gdBhdws3khYxXNVepxQdDMNRd5sR9j/9sss1qM4zNZlimymUA4Aw KfmB8NB9QbTczsyuMpN6KdTkSHAUdpmXkiHnXju9ZmRpqfqqpha7uHZPFbJpE6Pj HbKTo4UmRncfpT9jO4w7Y4gdkkmgoRCWmYUJhKGmh4TCOvCY+Yay5G9gGMBkS153 OROOoUp5U/jUvLdSgfmNE+17dqm6pOrWKs9iwESOH2vZNo3QKsP2OljcXcmm5V6o fRSiTa1mShUkfJ0KiRctJqplfYj6L9SyKP55CRz44Rnj6+QR3KX6yfOxGszWG+W/ OtJGebBkuz2q7FNgzddoY1TSSQ0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQPK9My 0/gcDoA2u8civhB18+gHAjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzExOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKC7azANBgkqhkiG9w0BAQsFAAOCAQEAHEbvBzAuv0lvmMhafMrd b15zTZJhl2iI7HQ7RToEZdcaz5bwrwNv0ogwoROOa0nRrzx1Kqj4JSGEoPKw5p7F mZbTp0FqY3/Nzh1G+MCtU1c5nqPiZGyb6V9zjINxM2wcwpRmw3dwwnyg5R3Nf0Lj ilnQQG71XMG4/GwL+u8cfY2khzyB8pEpUjBf8Fliy1K1xPbBZILWh6mexjO8w7Ct 4q7Bc+cPh6AZgivwMrZ5YSHCy/TbJZlmiz/QCG1wxHQMnofXoo8X39XL0gAtBeqs 1eCsqV/oMKX7IUUMsFxs+7wzwKzCcp3G5vHcUCUobwbHc7KgWEDLcB4u3NaPMWmP 7A== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:11 2026 by rpki-client