This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154344.roa File: AS154344.roa (raw, json) Hash identifier: U9bABDJ2Knotm7mDVBMbt2NSKe4ujUbQpzDGd0WzHxQ= Subject key identifier: BA:12:E4:C7:EA:AE:57:9F:24:CB:CC:72:27:13:D4:4E:B6:21:7E:7A Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 75C2531ADF95D616B75AF8BF6200ED0F3C46BEE2 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154344.roa Signing time: Wed 12 Nov 2025 03:21:08 +0000 ROA not before: Wed 12 Nov 2025 03:16:08 +0000 ROA not after: Wed 11 Nov 2026 03:21:08 +0000 asID: 154344 IP address blocks: 138.252.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:c2:53:1a:df:95:d6:16:b7:5a:f8:bf:62:00:ed:0f:3c:46:be:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 12 03:16:08 2025 GMT Not After : Nov 11 03:21:08 2026 GMT Subject: CN=BA12E4C7EAAE579F24CBCC722713D44EB6217E7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4a:f6:e4:20:b0:fe:91:75:9c:a7:80:99:8f: 46:94:a4:cb:76:89:e5:35:ca:50:85:20:57:23:d9: 9b:4b:e1:63:0b:e4:01:93:1a:23:36:30:21:a5:a6: de:9b:c6:c5:5f:f3:77:99:14:8c:ed:94:05:6c:1e: d5:86:eb:c1:2e:3a:dc:50:21:40:10:e1:48:de:cc: 8d:46:e1:42:87:4f:6a:c6:bf:63:b5:f7:c9:85:e6: c5:2c:d4:41:3a:75:9c:2d:dc:d2:38:74:38:86:8d: 39:ff:dd:56:10:5a:ec:0f:f3:3f:95:f5:d9:bd:6e: 4d:f7:46:38:fb:18:8d:14:eb:7c:42:4a:23:13:7d: 15:de:a3:de:1b:2c:34:79:68:88:69:04:3e:3f:a0: 43:9f:67:2b:9c:65:7f:ab:0a:87:00:9d:2d:56:1a: f9:a8:c4:97:c4:39:22:aa:f9:f1:d1:3d:57:fd:bc: 70:0c:95:50:c0:23:e9:84:af:9b:04:9a:1e:10:07: 51:dc:82:fd:de:92:87:c1:33:a2:f6:8b:83:d8:77: 76:a0:a5:60:b0:6c:63:a8:79:36:4c:95:51:7e:2d: 31:81:81:6f:5f:23:0e:77:71:10:74:2b:68:8b:3d: 10:1e:29:06:78:85:6a:f8:99:70:ff:34:97:15:2a: 10:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:12:E4:C7:EA:AE:57:9F:24:CB:CC:72:27:13:D4:4E:B6:21:7E:7A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154344.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.98.0/24 Signature Algorithm: sha256WithRSAEncryption 68:72:ce:66:0d:29:3a:93:f9:22:61:7f:c1:c7:ef:ff:46:42: 8e:06:5c:77:bc:a6:b8:c3:11:93:a5:61:03:0d:e3:9f:42:78: 1a:8d:aa:49:f8:9f:b9:5b:c4:9b:02:14:a0:67:b0:66:bd:e4: ba:f2:ea:f9:d2:e3:45:b7:1d:fb:5f:f6:c7:4e:35:cb:3a:2b: 07:bf:6c:13:ea:b4:9b:51:73:72:6d:70:a4:91:29:fe:4b:2d: ef:1e:94:18:7a:fa:31:b7:73:04:43:27:07:91:3d:ca:d0:5f: b5:8e:e1:4c:66:9b:50:9d:69:70:0c:b2:9a:4b:d4:93:a7:65: 24:62:73:1d:6e:fb:7f:41:a6:4f:f1:00:64:a4:ac:96:32:bb: 45:eb:22:66:65:01:fd:7d:90:fb:f4:95:5e:e5:9c:ef:86:4f: 8a:b4:5b:29:82:f5:06:2a:da:ab:42:63:6d:db:4c:e5:02:e9: 16:da:17:5b:39:b3:aa:ad:1d:c9:37:ee:5c:f9:6f:0a:15:df: 70:57:1b:c9:9d:cd:03:09:75:42:d3:9a:1f:b9:ef:22:ff:ae: 6b:9b:2e:bf:0c:4b:a5:61:f2:8c:c1:22:01:63:80:27:28:c7: 06:64:b8:98:e1:9d:d1:91:72:d5:ab:27:42:09:a6:3d:f8:7f: 5c:91:79:03 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdcJTGt+V1ha3Wvi/YgDtDzxGvuIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTExMjAzMTYwOFoX DTI2MTExMTAzMjEwOFowMzExMC8GA1UEAxMoQkExMkU0QzdFQUFFNTc5RjI0Q0JD QzcyMjcxM0Q0NEVCNjIxN0U3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtK9uQgsP6RdZyngJmPRpSky3aJ5TXKUIUgVyPZm0vhYwvkAZMaIzYwIaWm 3pvGxV/zd5kUjO2UBWwe1YbrwS463FAhQBDhSN7MjUbhQodPasa/Y7X3yYXmxSzU QTp1nC3c0jh0OIaNOf/dVhBa7A/zP5X12b1uTfdGOPsYjRTrfEJKIxN9Fd6j3hss NHloiGkEPj+gQ59nK5xlf6sKhwCdLVYa+ajEl8Q5Iqr58dE9V/28cAyVUMAj6YSv mwSaHhAHUdyC/d6Sh8EzovaLg9h3dqClYLBsY6h5NkyVUX4tMYGBb18jDndxEHQr aIs9EB4pBniFaviZcP80lxUqEHkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS6EuTH 6q5XnyTLzHInE9ROtiF+ejAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDM0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIr8YjANBgkqhkiG9w0BAQsFAAOCAQEAaHLOZg0pOpP5ImF/wcfv /0ZCjgZcd7ymuMMRk6VhAw3jn0J4Go2qSfifuVvEmwIUoGewZr3kuvLq+dLjRbcd +1/2x041yzorB79sE+q0m1Fzcm1wpJEp/kst7x6UGHr6MbdzBEMnB5E9ytBftY7h TGabUJ1pcAyymkvUk6dlJGJzHW77f0GmT/EAZKSsljK7ResiZmUB/X2Q+/SVXuWc 74ZPirRbKYL1Biraq0JjbdtM5QLpFtoXWzmzqq0dyTfuXPlvChXfcFcbyZ3NAwl1 QtOaH7nvIv+ua5suvwxLpWHyjMEiAWOAJyjHBmS4mOGd0ZFy1asnQgmmPfh/XJF5 Aw== -----END CERTIFICATE-----Generated at Wed Dec 3 16:05:10 2025 by rpki-client