This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154347.roa File: AS154347.roa (raw, json) Hash identifier: KTyi2KiSfsY14dqtyk8jCgl2Do0hI630m5HKX42S8pM= Subject key identifier: 11:A8:22:88:36:06:BB:CA:BC:59:CB:B3:65:4C:B4:E7:6A:FF:D1:BE Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 712A9385C5592D5C1519BD9CC39DEAD443D3C1AC Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154347.roa Signing time: Mon 05 Jan 2026 07:19:22 +0000 ROA not before: Mon 05 Jan 2026 07:14:22 +0000 ROA not after: Mon 04 Jan 2027 07:19:22 +0000 asID: 154347 IP address blocks: 165.101.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:2a:93:85:c5:59:2d:5c:15:19:bd:9c:c3:9d:ea:d4:43:d3:c1:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 5 07:14:22 2026 GMT Not After : Jan 4 07:19:22 2027 GMT Subject: CN=11A822883606BBCABC59CBB3654CB4E76AFFD1BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:76:ac:95:a3:b9:bd:47:ac:11:0d:1e:a7:df: 42:f8:59:39:ac:59:62:bf:aa:91:cf:23:7b:44:92: 83:de:d6:16:37:43:6d:d5:d2:74:79:31:92:31:7f: 20:2a:94:cf:9f:98:82:25:ea:30:ba:14:94:fc:b8: 72:19:30:ad:a7:3c:43:88:a9:e4:20:eb:f4:cc:4b: a7:60:20:68:ef:28:d6:5d:5c:ed:3d:fb:2d:ef:d5: cc:5d:cb:fc:61:0d:09:6b:25:ba:ea:d4:5e:f9:2e: 71:5c:77:32:ef:53:97:32:e2:93:b7:27:22:64:57: 43:5a:d6:fc:e5:06:08:95:66:12:49:63:94:ab:6a: d5:0b:7e:b1:93:a8:96:aa:ca:00:67:52:6a:01:1a: d4:f8:48:45:cf:aa:3a:ca:08:4f:ad:f9:e0:6d:21: 74:ce:b3:3f:3a:c2:2a:4e:65:e9:9b:da:01:76:45: 1b:52:4b:2a:15:b2:e6:2e:b1:f8:f4:89:16:b7:fe: 52:81:cf:b2:51:29:2a:7a:c6:41:bc:9c:1b:52:f1: 03:c7:e9:c4:6d:72:cc:b6:ae:93:f0:b4:ce:be:40: 4f:87:52:ef:a3:7f:85:3b:68:3d:bd:fb:b8:27:f5: a8:2a:ef:36:8d:21:7b:29:31:08:17:d1:b9:51:d5: a5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A8:22:88:36:06:BB:CA:BC:59:CB:B3:65:4C:B4:E7:6A:FF:D1:BE X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154347.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.101.27.0/24 Signature Algorithm: sha256WithRSAEncryption 84:b6:c9:46:97:2a:12:66:5e:d5:00:73:f5:9e:e7:89:49:db: 0b:43:5d:86:68:f9:5a:cb:c1:8d:16:6a:2c:4f:da:12:9f:fe: 3c:f3:25:03:76:03:90:74:6c:db:81:17:84:f9:92:90:20:e7: 34:ec:da:b0:18:70:ea:2e:94:76:e1:40:b0:99:65:6e:52:19: cc:6b:ea:f8:ad:e8:49:03:82:57:72:2f:54:98:50:fa:1f:9b: fa:6c:e3:2c:ee:ae:cf:0e:02:81:6d:99:01:8d:57:3a:8f:b8: 0d:29:1d:df:f9:7e:e8:d8:94:90:c4:5b:33:d5:5a:d8:2d:07: a4:51:a8:01:34:af:9f:bb:ae:e2:f1:8b:0f:82:e9:b0:5c:32: c0:3a:e3:2f:c7:f8:93:25:a7:d4:ca:be:bc:61:a2:90:96:23: 99:7e:5c:86:10:69:d3:f8:35:01:ab:00:70:ff:c8:b3:bf:50: a3:6d:00:de:04:2a:ec:15:47:01:6d:95:16:e7:be:8a:4d:b5: 25:bd:66:dc:17:ed:f9:27:be:a7:02:e6:12:d3:95:3b:71:48: 1b:29:24:b2:62:af:8d:29:cb:11:eb:4d:f8:d6:ed:b1:bd:94: 26:c6:6b:96:73:c8:11:25:42:70:d4:83:75:e5:32:99:2b:e0: a0:f6:46:99 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcSqThcVZLVwVGb2cw53q1EPTwawwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwNTA3MTQyMloX DTI3MDEwNDA3MTkyMlowMzExMC8GA1UEAxMoMTFBODIyODgzNjA2QkJDQUJDNTlD QkIzNjU0Q0I0RTc2QUZGRDFCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALV2rJWjub1HrBENHqffQvhZOaxZYr+qkc8je0SSg97WFjdDbdXSdHkxkjF/ ICqUz5+YgiXqMLoUlPy4chkwrac8Q4ip5CDr9MxLp2AgaO8o1l1c7T37Le/VzF3L /GENCWsluurUXvkucVx3Mu9TlzLik7cnImRXQ1rW/OUGCJVmEkljlKtq1Qt+sZOo lqrKAGdSagEa1PhIRc+qOsoIT6354G0hdM6zPzrCKk5l6ZvaAXZFG1JLKhWy5i6x +PSJFrf+UoHPslEpKnrGQbycG1LxA8fpxG1yzLauk/C0zr5AT4dS76N/hTtoPb37 uCf1qCrvNo0heykxCBfRuVHVpQ0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQRqCKI Nga7yrxZy7NlTLTnav/RvjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDM0Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKVlGzANBgkqhkiG9w0BAQsFAAOCAQEAhLbJRpcqEmZe1QBz9Z7n iUnbC0Ndhmj5WsvBjRZqLE/aEp/+PPMlA3YDkHRs24EXhPmSkCDnNOzasBhw6i6U duFAsJllblIZzGvq+K3oSQOCV3IvVJhQ+h+b+mzjLO6uzw4CgW2ZAY1XOo+4DSkd 3/l+6NiUkMRbM9Va2C0HpFGoATSvn7uu4vGLD4LpsFwywDrjL8f4kyWn1Mq+vGGi kJYjmX5chhBp0/g1AasAcP/Is79Qo20A3gQq7BVHAW2VFue+ik21Jb1m3Bft+Se+ pwLmEtOVO3FIGykksmKvjSnLEetN+Nbtsb2UJsZrlnPIESVCcNSDdeUymSvgoPZG mQ== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:55 2026 by rpki-client