This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153480.roa File: AS153480.roa (raw, json) Hash identifier: fgxYU3JvQKlQmJgWRlr6f6fdaSfpVPODs5toffvNUEg= Subject key identifier: E7:A5:11:D0:13:8E:03:E8:5A:A8:69:8C:04:73:3D:EF:D7:B6:CD:86 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5D3F89D59032DA168232B9718E523B9154D2329C Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153480.roa Signing time: Thu 15 Jan 2026 03:00:00 +0000 ROA not before: Thu 15 Jan 2026 02:55:00 +0000 ROA not after: Thu 14 Jan 2027 03:00:00 +0000 asID: 153480 IP address blocks: 160.191.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:3f:89:d5:90:32:da:16:82:32:b9:71:8e:52:3b:91:54:d2:32:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 15 02:55:00 2026 GMT Not After : Jan 14 03:00:00 2027 GMT Subject: CN=E7A511D0138E03E85AA8698C04733DEFD7B6CD86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d2:94:9f:8f:df:34:d6:65:4f:51:95:d5:e4: 6e:19:5f:00:8c:a5:ef:68:cf:96:c7:7c:a7:14:4f: e0:8c:7a:84:fc:f7:17:65:50:53:3c:34:65:ed:b6: 62:ca:a0:1d:2d:04:08:a1:c9:fc:c6:f2:15:8a:2c: 5d:5c:6b:b4:55:40:f4:63:3a:30:8a:bf:09:ad:c8: dc:3c:e8:9f:bc:cd:44:20:11:ad:cf:ea:78:76:90: 6c:09:e2:e1:67:14:6c:1c:c3:01:25:32:16:1f:28: 0d:79:99:dd:16:5f:88:68:bf:c3:a3:a3:63:2c:98: ad:b1:fd:ba:a9:9b:5a:a1:7a:47:d9:77:f1:57:1d: a9:ed:3b:65:a8:f6:04:5f:c9:8c:c9:e6:aa:f4:67: 19:d8:cf:ba:b3:f6:d5:44:d4:73:08:d5:3d:7d:97: 73:54:63:6d:d4:54:6f:0e:1d:fc:ae:a6:fe:27:10: 46:19:71:b4:c2:6c:c4:de:a9:01:0e:95:49:ce:e1: bc:9b:ff:11:76:c7:4c:ff:e8:03:a6:a8:6b:f0:31: fc:e6:f5:47:ae:d8:df:fe:d8:fd:51:42:b8:c6:c1: c9:e6:66:13:97:88:f3:72:e4:46:7a:2b:f3:4b:e2: 0d:07:23:c7:da:10:2d:1e:58:9f:ca:05:4f:00:62: e9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A5:11:D0:13:8E:03:E8:5A:A8:69:8C:04:73:3D:EF:D7:B6:CD:86 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153480.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.232.0/23 Signature Algorithm: sha256WithRSAEncryption 69:d8:49:be:60:14:30:6e:96:76:12:97:b1:80:7d:8e:74:4e: c7:b6:b1:c7:ee:8f:a2:bf:c4:21:29:6d:d3:a6:ff:df:58:e8: 7a:60:a1:f0:0b:ec:5d:28:04:52:96:e9:e7:c0:0e:a0:f3:28: 0c:7d:44:b8:ca:6b:b0:e1:92:ff:15:fd:f1:65:94:a9:96:87: d6:c2:be:51:80:9a:1b:81:42:9d:3b:14:fd:a2:5c:6f:aa:fd: 25:99:56:cd:6e:bc:d5:c8:2b:30:b6:5a:dc:e1:6c:e3:77:93: 5c:08:7c:e8:87:e9:99:66:cc:38:00:6d:95:63:6c:e1:20:b4: b2:96:54:bd:42:e0:be:b3:3f:9b:20:85:51:95:61:b8:a8:42: ae:ba:73:40:bd:15:a4:d9:13:69:93:34:d0:0c:ac:84:9a:7b: cd:56:02:7a:23:32:71:71:30:da:a7:7a:03:22:80:29:06:dc: 80:7f:fd:92:09:a0:e4:5e:62:b1:ba:78:37:97:26:c6:7e:6d: 61:d7:b7:2f:c3:45:93:f4:3c:6e:b5:e6:db:b2:df:19:99:e5: ed:f3:23:30:3c:8b:83:a0:f1:c7:f4:d3:48:6b:bf:bf:a6:2c: 16:46:7e:fb:63:0d:f8:48:cc:a7:54:e8:00:9c:52:97:a4:9e: 23:4c:ab:ac -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXT+J1ZAy2haCMrlxjlI7kVTSMpwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDExNTAyNTUwMFoX DTI3MDExNDAzMDAwMFowMzExMC8GA1UEAxMoRTdBNTExRDAxMzhFMDNFODVBQTg2 OThDMDQ3MzNERUZEN0I2Q0Q4NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALfSlJ+P3zTWZU9RldXkbhlfAIyl72jPlsd8pxRP4Ix6hPz3F2VQUzw0Ze22 YsqgHS0ECKHJ/MbyFYosXVxrtFVA9GM6MIq/Ca3I3Dzon7zNRCARrc/qeHaQbAni 4WcUbBzDASUyFh8oDXmZ3RZfiGi/w6OjYyyYrbH9uqmbWqF6R9l38Vcdqe07Zaj2 BF/JjMnmqvRnGdjPurP21UTUcwjVPX2Xc1RjbdRUbw4d/K6m/icQRhlxtMJsxN6p AQ6VSc7hvJv/EXbHTP/oA6aoa/Ax/Ob1R67Y3/7Y/VFCuMbByeZmE5eI83LkRnor 80viDQcjx9oQLR5Yn8oFTwBi6Y8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTnpRHQ E44D6FqoaYwEcz3v17bNhjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzQ4MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaC/6DANBgkqhkiG9w0BAQsFAAOCAQEAadhJvmAUMG6WdhKXsYB9 jnROx7axx+6Por/EISlt06b/31joemCh8AvsXSgEUpbp58AOoPMoDH1EuMprsOGS /xX98WWUqZaH1sK+UYCaG4FCnTsU/aJcb6r9JZlWzW681cgrMLZa3OFs43eTXAh8 6IfpmWbMOABtlWNs4SC0spZUvULgvrM/myCFUZVhuKhCrrpzQL0VpNkTaZM00Ays hJp7zVYCeiMycXEw2qd6AyKAKQbcgH/9kgmg5F5isbp4N5cmxn5tYde3L8NFk/Q8 brXm27LfGZnl7fMjMDyLg6Dxx/TTSGu/v6YsFkZ++2MN+EjMp1ToAJxSl6SeI0yr rA== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:13 2026 by rpki-client