This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154314.roa File: AS154314.roa (raw, json) Hash identifier: R/207o0Vk3N9bpPQe3qrd2L0DAm4+zuxXmpev6Ap1qQ= Subject key identifier: 27:B0:E4:51:AC:16:F4:97:E2:B0:E9:8C:AF:46:71:2D:CC:61:19:6C Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 735DF572B3B7933755F8B995914ECEC723050C8F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154314.roa Signing time: Tue 06 Jan 2026 06:42:45 +0000 ROA not before: Tue 06 Jan 2026 06:37:45 +0000 ROA not after: Tue 05 Jan 2027 06:42:45 +0000 asID: 154314 IP address blocks: 138.252.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:5d:f5:72:b3:b7:93:37:55:f8:b9:95:91:4e:ce:c7:23:05:0c:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 6 06:37:45 2026 GMT Not After : Jan 5 06:42:45 2027 GMT Subject: CN=27B0E451AC16F497E2B0E98CAF46712DCC61196C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:80:c0:e4:9b:23:38:0e:af:f9:5d:8c:5e:f1: e4:6d:1d:4a:19:b7:3c:3e:44:0a:3e:8e:37:68:2f: 5a:08:e0:82:ee:17:f0:4e:f2:20:13:33:96:91:a4: 8e:e7:7b:4d:33:a1:b8:53:87:8b:78:28:3c:64:d8: c6:cd:0e:0e:e4:52:5d:86:72:49:cd:e1:f2:dc:2d: 58:4e:46:3d:9d:3d:13:39:9e:6e:30:89:9d:d8:a5: cf:1d:1d:b7:8f:cc:30:ab:07:ad:e7:b7:56:0c:56: 20:3e:e9:e0:6f:8c:07:e7:14:f8:27:fb:b3:b7:ad: 86:96:4a:a3:ec:9f:00:a7:02:66:d8:10:11:9f:a1: b7:72:df:c1:b3:7f:63:f6:50:7c:a9:0a:fd:78:01: 5e:ef:fb:9a:49:8c:d4:78:18:87:3b:bb:f4:16:59: 50:1a:8c:19:d6:19:5e:09:d1:b6:50:7f:9b:b7:91: c0:c5:c9:e7:1b:3f:92:90:68:2d:e9:e8:94:20:3b: 98:6b:9f:68:4d:dc:b5:3a:1e:e6:a5:1f:99:b6:bc: 0e:55:30:a1:fd:e3:85:e8:89:8c:72:ff:7b:45:4d: 08:0b:77:1c:ea:d9:b3:6f:9a:5e:80:97:ff:b4:89: 2e:63:5c:77:aa:8e:2a:ee:51:bc:29:55:31:d3:03: c1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B0:E4:51:AC:16:F4:97:E2:B0:E9:8C:AF:46:71:2D:CC:61:19:6C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154314.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.46.0/24 Signature Algorithm: sha256WithRSAEncryption 71:7a:fc:4d:29:c3:2d:47:7e:6e:45:14:77:82:3a:81:55:bf: c7:d4:5f:d3:c2:de:00:24:5f:e5:a1:c3:56:c1:d0:31:9a:4f: b0:15:ad:26:cc:17:a7:83:0a:cd:df:95:65:c0:c6:74:23:24: a1:a2:39:2c:43:3f:1f:dc:6c:5e:56:97:64:b9:63:9f:38:a7: 3c:3e:8b:27:5a:24:bb:dd:9e:1d:26:00:bb:17:c2:7c:8f:56: 32:38:ed:92:8a:e7:c8:31:87:99:45:da:58:17:64:cf:d8:88: c0:54:6c:5a:b3:c4:2d:ba:38:58:6d:15:65:da:10:18:f4:76: 60:0c:7a:3e:92:a9:c0:94:d6:2c:77:9f:28:ce:46:f8:31:88: 63:c2:a8:64:7b:39:4e:e6:a9:77:45:44:1d:b5:df:4d:bb:ff: bf:f3:23:8a:d4:fc:d8:10:b0:20:3b:d4:76:85:1b:f7:0c:00: 6b:13:c2:5a:e5:f1:8d:34:a4:52:ab:27:0f:6e:43:29:bd:b3: f9:c9:7b:8c:eb:99:61:00:b3:b9:14:4d:3a:94:95:33:51:20: 5e:46:bd:72:3b:86:38:6d:3c:82:06:56:a8:f1:09:6b:6e:df: 32:e9:cf:1f:17:a1:f0:d1:cf:76:e5:fb:4d:1e:ba:43:7f:29: 0f:2e:1b:cc -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUc131crO3kzdV+LmVkU7OxyMFDI8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwNjA2Mzc0NVoX DTI3MDEwNTA2NDI0NVowMzExMC8GA1UEAxMoMjdCMEU0NTFBQzE2RjQ5N0UyQjBF OThDQUY0NjcxMkRDQzYxMTk2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANCAwOSbIzgOr/ldjF7x5G0dShm3PD5ECj6ON2gvWgjggu4X8E7yIBMzlpGk jud7TTOhuFOHi3goPGTYxs0ODuRSXYZySc3h8twtWE5GPZ09EzmebjCJndilzx0d t4/MMKsHree3VgxWID7p4G+MB+cU+Cf7s7ethpZKo+yfAKcCZtgQEZ+ht3LfwbN/ Y/ZQfKkK/XgBXu/7mkmM1HgYhzu79BZZUBqMGdYZXgnRtlB/m7eRwMXJ5xs/kpBo LenolCA7mGufaE3ctToe5qUfmba8DlUwof3jheiJjHL/e0VNCAt3HOrZs2+aXoCX /7SJLmNcd6qOKu5RvClVMdMDwWcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQnsORR rBb0l+Kw6YyvRnEtzGEZbDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDMxNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIr8LjANBgkqhkiG9w0BAQsFAAOCAQEAcXr8TSnDLUd+bkUUd4I6 gVW/x9Rf08LeACRf5aHDVsHQMZpPsBWtJswXp4MKzd+VZcDGdCMkoaI5LEM/H9xs XlaXZLljnzinPD6LJ1oku92eHSYAuxfCfI9WMjjtkornyDGHmUXaWBdkz9iIwFRs WrPELbo4WG0VZdoQGPR2YAx6PpKpwJTWLHefKM5G+DGIY8KoZHs5Tuapd0VEHbXf Tbv/v/MjitT82BCwIDvUdoUb9wwAaxPCWuXxjTSkUqsnD25DKb2z+cl7jOuZYQCz uRRNOpSVM1EgXka9cjuGOG08ggZWqPEJa27fMunPHxeh8NHPduX7TR66Q38pDy4b zA== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:54 2026 by rpki-client