This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153149.roa File: AS153149.roa (raw, json) Hash identifier: ojhjTg7v85T2F3rRdJfSHSirGGkXNafqA3j5KLUcSOw= Subject key identifier: 78:2C:A8:66:FB:8F:B4:64:74:29:00:30:7D:1C:96:AA:EC:21:7A:D8 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0AF134802171DE3FADC6329AF81F7D088EE01DC4 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153149.roa Signing time: Thu 08 Jan 2026 11:00:05 +0000 ROA not before: Thu 08 Jan 2026 10:55:05 +0000 ROA not after: Thu 07 Jan 2027 11:00:05 +0000 asID: 153149 IP address blocks: 160.191.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f1:34:80:21:71:de:3f:ad:c6:32:9a:f8:1f:7d:08:8e:e0:1d:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:05 2026 GMT Not After : Jan 7 11:00:05 2027 GMT Subject: CN=782CA866FB8FB464742900307D1C96AAEC217AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7c:fb:9a:10:6b:d5:cb:1e:8e:0b:d9:94:4d: 3e:0b:61:96:a7:7b:05:3c:d9:8a:1c:dc:23:97:8d: ba:54:f1:ee:28:61:2a:8c:85:a7:cd:8e:7f:0f:75: f1:e8:13:5d:a7:48:cb:c0:83:ac:0f:3a:17:c0:10: d4:78:42:7e:df:69:7c:f3:01:03:1d:bb:5b:fe:5c: 42:aa:56:f6:7b:58:1d:69:24:77:38:dc:49:01:54: e7:1b:bd:38:49:e3:23:2f:40:8d:50:98:4a:4f:c3: cb:3c:50:80:1f:7c:ae:37:d5:36:e5:ca:8c:2e:37: 1e:2e:3b:d9:c2:e0:c4:22:4e:65:56:2f:f3:c5:a8: 0e:0b:42:c1:bf:fb:0a:50:ba:77:36:e0:10:1f:36: 4b:f9:05:d9:ee:f4:b8:be:d2:91:f7:91:67:cb:69: 20:d2:46:2b:c3:28:ef:64:ce:92:95:0f:b8:f3:e8: 73:69:f0:05:ba:4d:67:a6:df:12:36:df:72:52:ef: a6:c8:2a:cb:cd:68:73:5d:18:ea:a1:69:d7:51:46: 95:e7:de:c5:0c:8f:b5:0c:ed:9f:be:48:b0:1f:d4: 44:76:13:a3:79:00:e2:7c:87:a2:33:3b:88:09:e6: 16:dd:d6:fd:92:ae:02:70:4b:c6:d2:d4:63:1a:0a: d2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:2C:A8:66:FB:8F:B4:64:74:29:00:30:7D:1C:96:AA:EC:21:7A:D8 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153149.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.235.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:78:69:17:6b:3f:cb:37:c5:dd:5f:11:4b:27:54:22:b0:ac: a9:21:17:3e:fd:2c:10:8f:1e:3f:1a:d0:5f:6e:f2:62:96:70: ae:1a:7e:9c:bd:06:93:6b:f0:0c:ac:18:3c:d7:b0:0f:f8:1f: 6c:86:25:80:ea:41:21:cb:de:48:f8:84:38:60:9a:58:b7:08: e1:5a:71:a4:cf:b4:97:d7:e1:7d:9d:49:ba:ed:72:b7:2c:be: 89:5b:65:33:13:86:18:84:5e:ee:cb:f4:b2:00:34:49:27:e9: fc:ee:21:57:eb:f8:d3:7c:1b:c5:18:f9:51:c2:af:5c:db:4e: 17:97:d5:74:cc:83:3e:38:03:c6:fb:4f:e3:92:01:75:51:59: 48:3e:ae:47:c0:49:8b:56:cf:50:98:58:fb:b0:6b:5b:79:3b: aa:eb:93:53:02:2e:ec:fc:3f:d0:1d:13:04:d0:da:04:45:a8: 3d:fd:ec:9a:24:b1:b5:b7:33:5a:0b:0f:7b:39:85:33:0f:2d: 61:23:04:04:12:7e:35:c7:c0:f3:af:6c:86:af:fd:8f:9d:14: 04:1c:aa:93:61:d3:08:0f:b1:e2:29:81:85:8c:21:fe:df:a0: 5a:50:02:c5:71:7d:bf:a4:7c:25:83:db:f9:ca:8a:f6:8a:ea: ae:0a:e8:32 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCvE0gCFx3j+txjKa+B99CI7gHcQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNVoX DTI3MDEwNzExMDAwNVowMzExMC8GA1UEAxMoNzgyQ0E4NjZGQjhGQjQ2NDc0Mjkw MDMwN0QxQzk2QUFFQzIxN0FEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMN8+5oQa9XLHo4L2ZRNPgthlqd7BTzZihzcI5eNulTx7ihhKoyFp82Ofw91 8egTXadIy8CDrA86F8AQ1HhCft9pfPMBAx27W/5cQqpW9ntYHWkkdzjcSQFU5xu9 OEnjIy9AjVCYSk/DyzxQgB98rjfVNuXKjC43Hi472cLgxCJOZVYv88WoDgtCwb/7 ClC6dzbgEB82S/kF2e70uL7SkfeRZ8tpINJGK8Mo72TOkpUPuPPoc2nwBbpNZ6bf EjbfclLvpsgqy81oc10Y6qFp11FGlefexQyPtQztn75IsB/URHYTo3kA4nyHojM7 iAnmFt3W/ZKuAnBLxtLUYxoK0sUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR4LKhm +4+0ZHQpADB9HJaq7CF62DAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzE0OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKC/6zANBgkqhkiG9w0BAQsFAAOCAQEAHnhpF2s/yzfF3V8RSydU IrCsqSEXPv0sEI8ePxrQX27yYpZwrhp+nL0Gk2vwDKwYPNewD/gfbIYlgOpBIcve SPiEOGCaWLcI4VpxpM+0l9fhfZ1Juu1ytyy+iVtlMxOGGIRe7sv0sgA0SSfp/O4h V+v403wbxRj5UcKvXNtOF5fVdMyDPjgDxvtP45IBdVFZSD6uR8BJi1bPUJhY+7Br W3k7quuTUwIu7Pw/0B0TBNDaBEWoPf3smiSxtbczWgsPezmFMw8tYSMEBBJ+NcfA 869shq/9j50UBByqk2HTCA+x4imBhYwh/t+gWlACxXF9v6R8JYPb+cqK9orqrgro Mg== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:13 2026 by rpki-client