This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154075.roa File: AS154075.roa (raw, json) Hash identifier: CAN2PjNdpgmbdNV0bRtbgV42MMEfbxmesr2YxMxC150= Subject key identifier: 62:CF:4A:E3:19:51:02:18:8A:89:6D:1E:79:8B:2A:A8:B8:9A:B4:BB Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1971A78B39D19AE2553E6756A452D232E15BC25E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154075.roa Signing time: Fri 28 Nov 2025 01:08:52 +0000 ROA not before: Fri 28 Nov 2025 01:03:52 +0000 ROA not after: Fri 27 Nov 2026 01:08:52 +0000 asID: 154075 IP address blocks: 165.101.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:71:a7:8b:39:d1:9a:e2:55:3e:67:56:a4:52:d2:32:e1:5b:c2:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 28 01:03:52 2025 GMT Not After : Nov 27 01:08:52 2026 GMT Subject: CN=62CF4AE3195102188A896D1E798B2AA8B89AB4BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e7:17:2e:b2:ca:fb:98:14:31:1b:32:b5:1e: ea:c6:e2:0a:38:a4:a4:ef:0c:18:11:aa:5f:88:3a: 5d:9d:87:b8:29:4a:59:f8:0b:cc:67:30:52:0f:7b: 88:5e:bf:98:2c:01:56:5a:01:89:36:66:e6:08:58: 46:f8:2b:f2:6c:96:1f:8f:d8:c5:85:ef:8f:60:47: 7a:d3:5e:0f:46:1e:a6:48:e8:5e:68:79:55:da:e0: f9:62:4c:a2:b3:cf:5e:bf:2f:0b:f2:d3:c3:a5:e0: 0a:17:ee:2f:2b:d9:c2:13:0f:36:f8:e1:6a:18:16: c7:2d:1c:71:b5:cf:c2:fd:10:59:d2:cd:3b:e3:b1: 5a:5d:da:4b:4b:f5:5e:10:b0:4e:44:0b:b2:72:1b: 02:2c:e7:16:66:b8:0c:09:53:33:e6:3a:d9:76:4f: ff:fd:9b:42:f9:11:05:d0:92:1f:9c:22:e2:77:0f: f1:91:e5:b6:95:57:87:30:0e:41:30:97:65:46:aa: bd:ba:7a:9f:64:a5:ba:88:e9:d2:78:bb:21:a0:0a: 51:dc:75:0d:34:15:c1:ad:52:72:f0:e7:cc:5d:1f: c2:f1:b6:e4:2c:23:82:ea:cb:61:83:83:c8:a2:36: 3b:83:08:61:21:f0:ab:19:2e:3a:dc:bf:35:c4:2f: ed:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CF:4A:E3:19:51:02:18:8A:89:6D:1E:79:8B:2A:A8:B8:9A:B4:BB X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154075.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.236.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:cd:35:b0:b4:ce:da:24:af:b6:cd:3c:36:ef:4b:dd:66:d0: f8:48:60:12:40:10:dc:12:5a:5f:1c:06:7c:b6:bb:02:ea:76: 6b:2e:4d:d5:cd:7d:6b:1f:79:61:65:bc:ef:b1:8d:fc:df:de: 83:00:13:0e:af:3e:c4:8a:2f:97:25:66:a4:9f:ef:e6:58:e1: eb:38:c9:d6:be:95:98:8f:eb:1a:23:0d:53:fb:ff:37:60:2f: d1:3a:02:1f:b3:3e:fe:cf:40:4d:68:11:79:f5:74:a1:9f:70: 40:03:8d:75:a5:9b:bc:33:4f:7c:0e:c3:4c:2f:f9:de:c6:e9: 93:59:11:13:13:ff:c8:a8:db:14:1f:83:44:bf:83:b2:e7:d7: 7d:74:94:cc:65:62:f1:57:b1:d9:e1:61:7d:72:5f:6f:39:0a: a1:15:21:90:18:8b:e6:32:0b:65:5f:52:41:d0:41:5f:b5:19: 69:88:c4:c9:d9:4e:d3:ad:7e:cb:8b:54:18:e3:1d:38:e3:e5: ff:25:4a:a4:0c:7f:04:d6:94:27:cb:0d:f0:ea:5e:e7:6e:ac: c4:e3:45:68:46:2d:fd:04:e8:a2:1b:14:6e:00:ac:df:39:5a: 23:32:f9:7b:80:79:06:d6:20:57:fd:69:83:ea:ea:21:05:42: db:fb:7c:5a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUGXGniznRmuJVPmdWpFLSMuFbwl4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTEyODAxMDM1MloX DTI2MTEyNzAxMDg1MlowMzExMC8GA1UEAxMoNjJDRjRBRTMxOTUxMDIxODhBODk2 RDFFNzk4QjJBQThCODlBQjRCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDnFy6yyvuYFDEbMrUe6sbiCjikpO8MGBGqX4g6XZ2HuClKWfgLzGcwUg97 iF6/mCwBVloBiTZm5ghYRvgr8myWH4/YxYXvj2BHetNeD0YepkjoXmh5Vdrg+WJM orPPXr8vC/LTw6XgChfuLyvZwhMPNvjhahgWxy0ccbXPwv0QWdLNO+OxWl3aS0v1 XhCwTkQLsnIbAiznFma4DAlTM+Y62XZP//2bQvkRBdCSH5wi4ncP8ZHltpVXhzAO QTCXZUaqvbp6n2Sluojp0ni7IaAKUdx1DTQVwa1ScvDnzF0fwvG25CwjgurLYYOD yKI2O4MIYSHwqxkuOty/NcQv7ekCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRiz0rj GVECGIqJbR55iyqouJq0uzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDA3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVl7DANBgkqhkiG9w0BAQsFAAOCAQEALs01sLTO2iSvts08Nu9L 3WbQ+EhgEkAQ3BJaXxwGfLa7Aup2ay5N1c19ax95YWW877GN/N/egwATDq8+xIov lyVmpJ/v5ljh6zjJ1r6VmI/rGiMNU/v/N2Av0ToCH7M+/s9ATWgRefV0oZ9wQAON daWbvDNPfA7DTC/53sbpk1kRExP/yKjbFB+DRL+DsufXfXSUzGVi8Vex2eFhfXJf bzkKoRUhkBiL5jILZV9SQdBBX7UZaYjEydlO061+y4tUGOMdOOPl/yVKpAx/BNaU J8sN8Ope526sxONFaEYt/QToohsUbgCs3zlaIzL5e4B5BtYgV/1pg+rqIQVC2/t8 Wg== -----END CERTIFICATE-----Generated at Wed Dec 3 16:05:10 2025 by rpki-client