This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154178.roa File: AS154178.roa (raw, json) Hash identifier: cMRNnczTTTNkRFTwXOTgP/CblI+FwUdh4YJm7+vrujY= Subject key identifier: B2:19:C6:77:88:52:8D:46:F3:B5:E1:51:27:E3:40:60:DB:60:3A:9A Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7E8263EF05890AC505CBF97DC3B70F41466E5F4D Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154178.roa Signing time: Mon 17 Nov 2025 02:56:18 +0000 ROA not before: Mon 17 Nov 2025 02:51:18 +0000 ROA not after: Mon 16 Nov 2026 02:56:18 +0000 asID: 154178 IP address blocks: 165.101.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:82:63:ef:05:89:0a:c5:05:cb:f9:7d:c3:b7:0f:41:46:6e:5f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 17 02:51:18 2025 GMT Not After : Nov 16 02:56:18 2026 GMT Subject: CN=B219C67788528D46F3B5E15127E34060DB603A9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:17:ff:da:1b:9e:52:cb:6b:2c:6c:cf:2c:8a: 65:54:41:94:81:50:1d:3a:ad:8a:95:3e:19:0a:5c: 71:a3:83:8e:37:63:ba:e0:36:0b:bf:70:7a:d5:b8: 29:bf:32:b6:a2:14:c8:bf:57:bb:65:5b:28:98:9a: 15:d0:0b:2b:26:ca:c7:2f:db:f9:c3:50:6d:93:1b: b6:f8:19:4a:c0:b4:3e:53:25:c0:45:2e:57:0c:90: c1:04:53:74:0d:61:57:26:36:4a:f9:cd:1a:26:1d: d7:3b:d3:a2:6c:49:79:d8:6e:dc:dc:cf:a1:72:2a: 25:2a:e1:fd:16:53:4d:60:b1:b4:ee:af:48:47:0b: 1c:1f:c6:7b:69:6b:49:15:f2:ac:2d:87:62:9a:84: 2b:d8:3c:9f:37:6b:11:75:d5:2e:bd:da:60:eb:8a: cb:8e:42:32:f3:59:c0:3b:a6:bc:d1:fd:fa:c8:49: 8b:63:f0:9b:59:fd:c2:77:de:ca:d1:d6:a7:e4:18: a7:bb:4a:73:61:da:44:b7:dc:53:af:72:cc:94:c6: 62:84:43:13:9c:d1:28:35:91:9d:0e:92:d6:51:78: ab:50:7c:4a:fb:6b:61:d9:83:76:64:11:49:85:4d: b5:2a:83:96:88:e1:33:2f:bf:37:d8:5b:07:01:81: ee:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:19:C6:77:88:52:8D:46:F3:B5:E1:51:27:E3:40:60:DB:60:3A:9A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154178.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.150.0/24 Signature Algorithm: sha256WithRSAEncryption 27:be:6b:87:1d:ad:05:64:ac:95:bf:09:c1:52:be:65:0f:dd: 09:85:b4:1b:b5:47:1b:53:50:f3:f3:b7:a2:a8:20:2e:ef:c9: 84:36:cb:da:64:5b:87:2c:fe:11:ed:a1:35:3f:0b:d2:d4:18: 08:14:07:ae:62:a4:66:64:bc:b4:e5:52:7e:13:8f:56:82:95: e7:02:23:de:25:09:10:94:dc:c1:c7:aa:db:ca:d2:2a:2d:35: d0:51:4c:19:cf:7f:40:e9:22:ab:7a:8f:af:4a:51:88:8f:a4: 0e:47:b1:3d:ab:a6:bc:85:31:07:7f:e4:66:5b:13:6a:56:6d: 3f:d8:e6:ee:1f:74:fa:96:68:48:c5:3c:c1:ee:ba:62:c8:81: f8:f9:86:48:17:66:7a:66:7e:41:1a:05:7d:49:c5:0c:2d:06: 36:6f:a0:72:e0:55:16:17:1a:2a:6e:35:57:6a:40:e5:2b:2c: 05:5e:53:fc:bf:2e:02:30:65:0d:dc:33:03:c1:fd:b7:99:8e: ff:7e:61:ca:51:10:78:f8:5f:ce:a0:ef:0f:54:8d:7c:b3:d2: db:9b:d9:47:fc:2d:0b:1c:1b:3e:da:61:8a:e1:93:bc:39:48: 27:b7:53:0f:bf:c8:88:9e:b8:53:1b:5a:b9:f1:17:8e:2a:c3: ca:5b:00:b9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUfoJj7wWJCsUFy/l9w7cPQUZuX00wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTExNzAyNTExOFoX DTI2MTExNjAyNTYxOFowMzExMC8GA1UEAxMoQjIxOUM2Nzc4ODUyOEQ0NkYzQjVF MTUxMjdFMzQwNjBEQjYwM0E5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJsX/9obnlLLayxszyyKZVRBlIFQHTqtipU+GQpccaODjjdjuuA2C79wetW4 Kb8ytqIUyL9Xu2VbKJiaFdALKybKxy/b+cNQbZMbtvgZSsC0PlMlwEUuVwyQwQRT dA1hVyY2SvnNGiYd1zvTomxJedhu3NzPoXIqJSrh/RZTTWCxtO6vSEcLHB/Ge2lr SRXyrC2HYpqEK9g8nzdrEXXVLr3aYOuKy45CMvNZwDumvNH9+shJi2Pwm1n9wnfe ytHWp+QYp7tKc2HaRLfcU69yzJTGYoRDE5zRKDWRnQ6S1lF4q1B8SvtrYdmDdmQR SYVNtSqDlojhMy+/N9hbBwGB7n0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSyGcZ3 iFKNRvO14VEn40Bg22A6mjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDE3OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVlljANBgkqhkiG9w0BAQsFAAOCAQEAJ75rhx2tBWSslb8JwVK+ ZQ/dCYW0G7VHG1NQ8/O3oqggLu/JhDbL2mRbhyz+Ee2hNT8L0tQYCBQHrmKkZmS8 tOVSfhOPVoKV5wIj3iUJEJTcwceq28rSKi010FFMGc9/QOkiq3qPr0pRiI+kDkex PaumvIUxB3/kZlsTalZtP9jm7h90+pZoSMU8we66YsiB+PmGSBdmemZ+QRoFfUnF DC0GNm+gcuBVFhcaKm41V2pA5SssBV5T/L8uAjBlDdwzA8H9t5mO/35hylEQePhf zqDvD1SNfLPS25vZR/wtCxwbPtphiuGTvDlIJ7dTD7/IiJ64UxtaufEXjirDylsA uQ== -----END CERTIFICATE-----Generated at Wed Dec 3 16:05:10 2025 by rpki-client