This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154153.roa File: AS154153.roa (raw, json) Hash identifier: bSfg+Yf3eOUmqa2xJiQQ+pJ7ihRm2HJQg3HHesXBFR4= Subject key identifier: 20:3E:DD:39:81:63:2D:58:E3:04:B3:D5:33:1E:2F:BF:6A:BF:7A:26 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7ABC659B3AF56132961177D169A66759AB262727 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154153.roa Signing time: Wed 14 Jan 2026 02:10:21 +0000 ROA not before: Wed 14 Jan 2026 02:05:21 +0000 ROA not after: Wed 13 Jan 2027 02:10:21 +0000 asID: 154153 IP address blocks: 192.88.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:bc:65:9b:3a:f5:61:32:96:11:77:d1:69:a6:67:59:ab:26:27:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 14 02:05:21 2026 GMT Not After : Jan 13 02:10:21 2027 GMT Subject: CN=203EDD3981632D58E304B3D5331E2FBF6ABF7A26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:26:88:93:55:c6:ce:5e:34:97:cc:8a:7b:df: ac:99:b2:32:59:58:2e:db:fe:78:0c:91:92:ea:e1: cd:61:15:7c:84:f6:66:a2:6e:d1:e8:f5:5c:7d:1c: 4c:d4:dc:bd:cc:72:97:ba:c9:f0:24:49:35:61:95: 4b:01:9e:30:25:0a:a3:a5:1e:e9:13:c4:4d:4b:ee: 9f:93:a5:e8:c8:3b:2c:9b:95:91:eb:12:d9:0a:78: bb:b5:fb:e8:e8:a4:fa:1b:fd:d8:2b:4e:b5:8f:c7: a4:f5:b5:51:1d:2a:41:1a:82:0c:a5:fd:6a:78:88: c3:c2:7d:9f:60:63:c6:0f:1f:45:f8:83:15:f1:f9: 4e:a2:04:17:6a:9a:87:b2:31:c3:b0:67:be:33:1d: 29:30:10:b7:41:11:ff:6e:37:ee:79:34:4d:35:78: 2a:35:a9:29:3e:cf:93:c7:85:fe:ea:5f:0d:a4:78: 61:84:d6:2a:25:4a:5d:78:00:85:6c:9c:01:35:8c: 28:88:14:06:dd:00:18:07:16:7c:e9:3f:c5:68:25: 0c:fb:eb:4f:55:65:78:76:28:ad:a1:cb:bb:1c:34: 62:29:0a:97:8d:ec:ac:d0:6b:ec:b2:a4:c7:ef:6e: c2:03:f9:2d:95:05:92:6b:a2:67:10:15:1b:ee:9a: 95:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:3E:DD:39:81:63:2D:58:E3:04:B3:D5:33:1E:2F:BF:6A:BF:7A:26 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154153.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.88.101.0/24 Signature Algorithm: sha256WithRSAEncryption 64:83:be:bb:14:74:c2:0d:06:00:05:c3:25:09:d8:32:ab:12: 42:2f:df:8e:d2:55:92:7a:62:20:c2:df:25:3e:0b:09:a8:e7: 16:9c:75:e7:44:fb:fc:53:0d:7a:aa:79:14:72:9d:0a:72:00: 70:d5:e1:81:7c:92:3a:55:78:5d:3f:b8:ed:6b:20:14:f9:18: c4:2c:65:0c:9d:b6:4e:4b:27:56:6b:a8:f3:37:8a:dc:7f:eb: c3:12:04:f6:c4:c4:27:f6:86:43:f5:38:81:8d:a3:44:98:18: 58:b2:94:f5:39:0c:69:92:49:b3:82:cf:2d:93:00:70:0c:51: b7:72:1f:c8:66:47:3f:7f:63:0a:72:16:6b:94:1c:65:a1:8c: ba:33:00:6e:6a:8a:e8:08:66:f3:81:2f:f7:b4:33:99:00:8f: 94:e1:9f:9f:8e:99:a2:f7:c4:59:a6:cb:49:70:e5:2a:04:bf: 13:44:be:5e:a2:9a:e7:30:f7:1e:df:e7:da:92:6b:7a:9e:0e: 0f:82:34:55:32:ac:dc:6d:3c:83:d5:a0:7f:35:3e:e2:71:d1: 6d:c4:7c:c7:82:38:67:89:30:5f:37:11:7c:b5:6b:c7:09:bb: ad:7d:6e:82:ee:ee:67:f4:dd:82:d2:bb:0b:cf:f1:c2:0e:60: b5:1c:ee:b4 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUerxlmzr1YTKWEXfRaaZnWasmJycwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDExNDAyMDUyMVoX DTI3MDExMzAyMTAyMVowMzExMC8GA1UEAxMoMjAzRUREMzk4MTYzMkQ1OEUzMDRC M0Q1MzMxRTJGQkY2QUJGN0EyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQmiJNVxs5eNJfMinvfrJmyMllYLtv+eAyRkurhzWEVfIT2ZqJu0ej1XH0c TNTcvcxyl7rJ8CRJNWGVSwGeMCUKo6Ue6RPETUvun5Ol6Mg7LJuVkesS2Qp4u7X7 6Oik+hv92CtOtY/HpPW1UR0qQRqCDKX9aniIw8J9n2Bjxg8fRfiDFfH5TqIEF2qa h7Ixw7BnvjMdKTAQt0ER/2437nk0TTV4KjWpKT7Pk8eF/upfDaR4YYTWKiVKXXgA hWycATWMKIgUBt0AGAcWfOk/xWglDPvrT1VleHYoraHLuxw0YikKl43srNBr7LKk x+9uwgP5LZUFkmuiZxAVG+6alTsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQgPt05 gWMtWOMEs9UzHi+/ar96JjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDE1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMBYZTANBgkqhkiG9w0BAQsFAAOCAQEAZIO+uxR0wg0GAAXDJQnY MqsSQi/fjtJVknpiIMLfJT4LCajnFpx150T7/FMNeqp5FHKdCnIAcNXhgXySOlV4 XT+47WsgFPkYxCxlDJ22TksnVmuo8zeK3H/rwxIE9sTEJ/aGQ/U4gY2jRJgYWLKU 9TkMaZJJs4LPLZMAcAxRt3IfyGZHP39jCnIWa5QcZaGMujMAbmqK6Ahm84Ev97Qz mQCPlOGfn46ZovfEWabLSXDlKgS/E0S+XqKa5zD3Ht/n2pJrep4OD4I0VTKs3G08 g9WgfzU+4nHRbcR8x4I4Z4kwXzcRfLVrxwm7rX1ugu7uZ/TdgtK7C8/xwg5gtRzu tA== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:55 2026 by rpki-client