This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153140.roa File: AS153140.roa (raw, json) Hash identifier: jiTFRwcsydnITbuGoPeLeyOksbWPLW7XEcjZnBRpSU8= Subject key identifier: 4E:DC:3E:66:0B:84:AE:9F:CE:6C:2E:B2:D2:40:C3:05:32:A1:70:5F Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 57D72AA3FC6803591D98396CB62C1F77092C7CAC Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153140.roa Signing time: Thu 08 Jan 2026 11:00:04 +0000 ROA not before: Thu 08 Jan 2026 10:55:04 +0000 ROA not after: Thu 07 Jan 2027 11:00:04 +0000 asID: 153140 IP address blocks: 160.187.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d7:2a:a3:fc:68:03:59:1d:98:39:6c:b6:2c:1f:77:09:2c:7c:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:04 2026 GMT Not After : Jan 7 11:00:04 2027 GMT Subject: CN=4EDC3E660B84AE9FCE6C2EB2D240C30532A1705F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:57:35:95:8e:80:53:41:30:96:15:c6:03:52: 73:07:18:90:dd:9f:e0:8e:fd:c7:15:2a:c4:2c:8e: 1c:a7:51:9b:53:d7:16:38:27:83:6a:66:27:b6:05: 05:c2:15:c6:4c:92:9d:30:66:ce:6f:12:04:a0:1c: 34:a4:27:62:31:98:0e:1e:ae:fe:c0:54:f8:e2:4b: 12:78:ae:06:80:4f:e0:69:fb:73:bd:06:2b:7d:f0: 4d:64:a4:9e:fa:75:ef:83:de:91:8a:9a:16:b8:f5: 4b:59:83:45:e1:e9:f1:59:17:e5:94:1b:7e:6d:77: f3:ec:b5:06:28:4b:62:e3:f3:76:1b:d4:75:cb:9b: f5:e0:e7:88:30:be:e8:44:d4:a2:c1:6b:da:4c:8f: 24:04:07:c1:46:0e:4b:49:ec:b9:b2:e3:1a:35:68: 31:40:b6:b9:97:38:fc:c2:22:48:81:b6:ec:d6:15: 14:df:6c:62:fc:15:d7:38:78:cf:a5:3a:46:3c:97: 63:5a:a4:06:a4:9c:24:80:23:74:0a:f6:ec:a4:bf: de:d5:19:c7:29:db:cf:3b:e0:45:c6:fe:06:88:80: 8d:89:47:77:17:5c:72:58:5d:24:03:fb:1a:c7:56: cd:2b:77:e0:33:c9:ce:de:38:e7:7e:0f:bf:9f:6e: 3f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:DC:3E:66:0B:84:AE:9F:CE:6C:2E:B2:D2:40:C3:05:32:A1:70:5F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153140.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.231.0/24 Signature Algorithm: sha256WithRSAEncryption 87:c1:5e:17:af:a3:56:37:85:b7:22:c2:5f:bb:4c:6b:b6:45: 61:a4:11:61:69:d8:e0:c5:0b:b0:f0:e7:2f:0b:a1:af:98:57: 21:df:e1:9b:5c:b5:5e:66:cd:0c:10:f9:4a:b3:7d:5e:27:7b: 1c:3e:23:34:df:17:77:88:6b:9e:a2:75:85:21:e3:d4:1c:ea: 86:2e:a5:e3:ce:c7:83:ac:1e:ec:41:36:e4:e0:a5:a3:9a:65: 82:24:65:f2:44:67:9f:3d:8d:ad:c4:ca:ae:8e:2c:1d:ce:74: 70:c2:96:1a:6b:bd:01:e1:79:99:22:7e:63:7d:08:7c:44:1c: 34:40:c3:45:da:6a:8d:97:45:dc:a2:0d:bb:dd:50:5c:f2:52: f8:ed:40:d1:40:ca:c5:55:5a:df:39:5a:62:e2:c4:2d:37:2e: 8d:af:ed:18:2e:f9:b0:6a:65:d6:d9:92:f7:6f:da:68:0b:0a: f0:29:5d:49:43:2c:c1:2e:8e:d4:ef:e1:ed:84:a3:c9:10:20: f2:3d:0e:65:01:53:e1:40:fb:b9:dc:b1:53:1c:76:65:80:fb: 0e:7b:6a:a6:8b:70:b8:67:30:5d:4a:ee:6c:33:2f:a4:a0:bf: 73:a8:fc:f9:cd:1a:1c:83:21:59:3d:a2:e3:15:08:39:69:4a: de:fb:a4:a6 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUV9cqo/xoA1kdmDlstiwfdwksfKwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNFoX DTI3MDEwNzExMDAwNFowMzExMC8GA1UEAxMoNEVEQzNFNjYwQjg0QUU5RkNFNkMy RUIyRDI0MEMzMDUzMkExNzA1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpXNZWOgFNBMJYVxgNScwcYkN2f4I79xxUqxCyOHKdRm1PXFjgng2pmJ7YF BcIVxkySnTBmzm8SBKAcNKQnYjGYDh6u/sBU+OJLEniuBoBP4Gn7c70GK33wTWSk nvp174PekYqaFrj1S1mDReHp8VkX5ZQbfm138+y1BihLYuPzdhvUdcub9eDniDC+ 6ETUosFr2kyPJAQHwUYOS0nsubLjGjVoMUC2uZc4/MIiSIG27NYVFN9sYvwV1zh4 z6U6RjyXY1qkBqScJIAjdAr27KS/3tUZxynbzzvgRcb+BoiAjYlHdxdcclhdJAP7 GsdWzSt34DPJzt44534Pv59uP10CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRO3D5m C4Sun85sLrLSQMMFMqFwXzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzE0MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKC75zANBgkqhkiG9w0BAQsFAAOCAQEAh8FeF6+jVjeFtyLCX7tM a7ZFYaQRYWnY4MULsPDnLwuhr5hXId/hm1y1XmbNDBD5SrN9Xid7HD4jNN8Xd4hr nqJ1hSHj1Bzqhi6l487Hg6we7EE25OClo5plgiRl8kRnnz2NrcTKro4sHc50cMKW Gmu9AeF5mSJ+Y30IfEQcNEDDRdpqjZdF3KINu91QXPJS+O1A0UDKxVVa3zlaYuLE LTcuja/tGC75sGpl1tmS92/aaAsK8CldSUMswS6O1O/h7YSjyRAg8j0OZQFT4UD7 udyxUxx2ZYD7DntqpotwuGcwXUrubDMvpKC/c6j8+c0aHIMhWT2i4xUIOWlK3vuk pg== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:33 2026 by rpki-client