This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153945.roa File: AS153945.roa (raw, json) Hash identifier: zmB4vJ2+Q/F55QIz+raj84izGzWeskXK0QAEGlOMevI= Subject key identifier: 2A:28:B1:09:03:25:B9:D3:48:FD:90:4D:2E:8A:1B:30:FE:73:4B:32 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4CE3DB5DB8FFE41D945036ECE5EE7CEECC52A7D9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153945.roa Signing time: Tue 20 Jan 2026 06:26:52 +0000 ROA not before: Tue 20 Jan 2026 06:21:52 +0000 ROA not after: Tue 19 Jan 2027 06:26:52 +0000 asID: 153945 IP address blocks: 165.99.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e3:db:5d:b8:ff:e4:1d:94:50:36:ec:e5:ee:7c:ee:cc:52:a7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 20 06:21:52 2026 GMT Not After : Jan 19 06:26:52 2027 GMT Subject: CN=2A28B1090325B9D348FD904D2E8A1B30FE734B32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b6:49:0e:da:7d:0a:0c:5b:c1:01:2f:c9:27: 24:47:c3:f8:d1:30:ab:66:23:77:59:e4:fd:42:ff: f6:45:03:45:f3:0d:d6:d4:f1:a1:37:7c:bc:9b:9f: ab:33:f1:61:fb:35:0b:a6:3a:88:10:cc:d8:ca:12: c7:eb:35:94:bb:7c:63:e1:4c:fe:63:ad:53:2e:64: ac:3a:82:c0:66:07:bd:6d:ed:64:ef:6a:79:5f:67: 40:3f:d1:a9:63:38:d3:07:8e:87:55:c9:87:45:3f: ea:5f:0e:01:0c:41:2e:e3:71:15:22:8f:76:59:85: 35:b1:1e:3b:e6:18:71:67:bd:9f:8a:36:51:8a:34: 21:56:0c:eb:0a:09:0a:ce:01:25:05:66:18:7e:4d: 3b:30:30:70:2c:c1:28:63:8e:2f:f0:e6:a8:88:b0: 4f:5c:3d:da:a7:84:b5:91:d3:e6:7f:67:44:e8:ea: fa:cc:ba:57:08:4e:2b:0f:9b:6c:f7:1e:81:68:f5: 0e:12:82:76:56:57:9d:ee:15:5c:4a:29:9a:77:04: 63:2a:c6:09:c6:48:da:68:9a:d3:8e:95:2f:16:0a: 66:32:b3:83:d2:57:e5:f1:74:db:d2:d9:39:8e:9a: 49:8e:44:14:e6:94:fb:ea:7b:d4:fe:4c:86:9d:b8: 9a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:28:B1:09:03:25:B9:D3:48:FD:90:4D:2E:8A:1B:30:FE:73:4B:32 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153945.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.99.107.0/24 Signature Algorithm: sha256WithRSAEncryption 88:96:a2:7e:38:9c:2d:ab:61:05:75:86:ad:75:43:d6:1f:e6: 1a:a3:9c:5e:d9:b2:7a:1b:d2:ad:80:cd:e9:86:45:05:16:6c: 2b:0b:c4:fd:60:9e:69:af:94:39:4a:51:60:ac:23:ce:e0:3f: 34:28:37:a6:21:04:1b:c1:29:91:f4:22:69:23:33:4e:40:b1: 6c:69:f1:bb:27:02:ac:cc:97:fa:52:1c:9e:96:aa:94:42:5e: 9b:8b:3b:f9:13:06:7d:7b:a6:7e:d1:ec:6e:8c:d6:0a:2b:1f: 36:be:bb:b5:e1:c6:b2:50:a6:b9:2e:7b:2f:15:af:b8:71:6b: 78:27:4c:9b:c6:52:41:23:05:30:55:3a:d1:34:ef:ed:3e:30: 0d:8c:a4:7c:7f:78:b1:27:5c:96:cd:82:0c:53:72:f6:ca:21: f8:05:d5:2f:c2:08:12:57:37:72:5a:34:95:c0:06:4c:6e:c0: e0:c7:a0:01:01:8e:a8:e8:2f:7c:1b:d1:3a:2d:be:d4:27:2a: f7:bf:c0:24:a4:e0:20:da:e1:c8:40:90:92:3f:87:39:8b:98: b7:04:01:b6:71:b3:a4:55:4d:68:6f:66:ad:99:11:a7:23:54: 24:44:c7:6f:fc:0e:48:10:ba:9c:69:9c:40:42:ef:25:9c:86: 91:ab:cc:d5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTOPbXbj/5B2UUDbs5e587sxSp9kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEyMDA2MjE1MloX DTI3MDExOTA2MjY1MlowMzExMC8GA1UEAxMoMkEyOEIxMDkwMzI1QjlEMzQ4RkQ5 MDREMkU4QTFCMzBGRTczNEIzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOC2SQ7afQoMW8EBL8knJEfD+NEwq2Yjd1nk/UL/9kUDRfMN1tTxoTd8vJuf qzPxYfs1C6Y6iBDM2MoSx+s1lLt8Y+FM/mOtUy5krDqCwGYHvW3tZO9qeV9nQD/R qWM40weOh1XJh0U/6l8OAQxBLuNxFSKPdlmFNbEeO+YYcWe9n4o2UYo0IVYM6woJ Cs4BJQVmGH5NOzAwcCzBKGOOL/DmqIiwT1w92qeEtZHT5n9nROjq+sy6VwhOKw+b bPcegWj1DhKCdlZXne4VXEopmncEYyrGCcZI2mia046VLxYKZjKzg9JX5fF029LZ OY6aSY5EFOaU++p71P5Mhp24mpcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQqKLEJ AyW500j9kE0uihsw/nNLMjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1Mzk0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVjazANBgkqhkiG9w0BAQsFAAOCAQEAiJaifjicLathBXWGrXVD 1h/mGqOcXtmyehvSrYDN6YZFBRZsKwvE/WCeaa+UOUpRYKwjzuA/NCg3piEEG8Ep kfQiaSMzTkCxbGnxuycCrMyX+lIcnpaqlEJem4s7+RMGfXumftHsbozWCisfNr67 teHGslCmuS57LxWvuHFreCdMm8ZSQSMFMFU60TTv7T4wDYykfH94sSdcls2CDFNy 9soh+AXVL8IIElc3clo0lcAGTG7A4MegAQGOqOgvfBvROi2+1Ccq97/AJKTgINrh yECQkj+HOYuYtwQBtnGzpFVNaG9mrZkRpyNUJETHb/wOSBC6nGmcQELvJZyGkavM 1Q== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:58 2026 by rpki-client