This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154413.roa File: AS154413.roa (raw, json) Hash identifier: 3hwEtxHdNMHfxHIQPPsnH/xK+zvFcIrvECeOBWH9AUk= Subject key identifier: 7D:FD:53:3F:2A:23:36:6A:0F:0B:DC:C8:CE:84:57:12:C5:2C:75:78 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6B58D2DB8EBADF938A5DDBEE4388022059A776E6 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154413.roa Signing time: Tue 13 Jan 2026 07:15:06 +0000 ROA not before: Tue 13 Jan 2026 07:10:06 +0000 ROA not after: Tue 12 Jan 2027 07:15:06 +0000 asID: 154413 IP address blocks: 144.79.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:58:d2:db:8e:ba:df:93:8a:5d:db:ee:43:88:02:20:59:a7:76:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 13 07:10:06 2026 GMT Not After : Jan 12 07:15:06 2027 GMT Subject: CN=7DFD533F2A23366A0F0BDCC8CE845712C52C7578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:76:1b:43:04:66:03:fd:aa:8f:95:31:80:f9: b1:97:18:a7:bf:2a:1f:39:5d:2d:1b:b4:0e:31:a7: bf:f7:5c:32:e6:9b:42:03:c9:fa:87:75:ee:c1:17: b3:5b:23:f5:86:dd:18:9b:15:d1:8c:3d:66:b5:59: c9:be:39:1b:00:9c:ea:29:e3:73:b9:59:0a:0e:f6: 1d:c4:d9:81:3c:e8:83:8a:dc:33:1c:f4:64:92:91: 79:1e:e2:81:17:29:66:80:87:20:83:9a:ea:01:62: 35:b8:1e:ad:64:7b:17:a4:cd:b4:cb:0d:be:19:91: 91:75:f7:de:09:7e:fb:2d:a8:41:86:09:29:96:5c: 81:b9:0f:01:49:01:57:f5:be:cf:65:21:3b:af:b2: 28:ff:b1:33:15:12:ce:fe:57:82:39:31:9b:f7:7b: 4d:e4:b2:08:a2:17:7e:2e:87:49:96:a1:c9:a0:b5: 41:81:ae:64:55:5b:31:f5:26:fd:2f:05:a5:a7:8d: b1:4f:d9:be:ff:e0:c1:1f:7b:86:71:72:cc:5b:e7: f6:37:e6:ec:be:ad:33:53:3b:58:20:4e:67:e0:f9: 50:72:4a:15:21:c7:61:54:2c:e0:78:18:18:5b:af: d5:42:38:ea:63:d2:ec:bc:98:70:f6:42:d7:20:d0: 6e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FD:53:3F:2A:23:36:6A:0F:0B:DC:C8:CE:84:57:12:C5:2C:75:78 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154413.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.74.0/23 Signature Algorithm: sha256WithRSAEncryption 68:43:b8:9b:97:ab:c5:be:70:7e:22:8e:c4:c4:45:35:3b:86: f6:1d:cd:cd:14:db:88:cb:99:ad:8c:2e:22:7a:ce:29:37:e7: 11:76:4f:23:81:23:db:82:05:23:b3:ac:07:94:44:e3:35:c1: 85:1a:07:18:b9:a1:85:db:f7:b6:b6:15:88:cb:36:6c:7a:9f: 3d:95:fa:27:62:53:32:86:a1:bf:d0:16:78:99:e3:3f:15:75: b0:f7:dd:39:e7:c3:27:3f:07:21:7d:a2:cb:61:cd:f0:67:6b: 64:d0:19:73:7c:8f:be:c3:ba:b2:9c:84:88:99:0e:c0:7e:4a: e6:22:39:74:e8:7a:46:ea:62:2a:5e:b1:02:5b:53:87:9c:4e: de:35:74:ce:93:f9:0b:d4:42:9f:b1:a9:2f:3e:5c:72:78:80: cf:e1:d1:a6:6c:0a:b6:76:5e:c4:d8:61:1a:bb:3f:19:d2:57: f0:64:b4:2c:60:c2:c7:f5:6c:b2:fd:d8:ab:dc:47:3b:5c:06: e6:09:b6:e4:29:61:93:4a:ee:47:f6:e5:e4:44:d0:47:39:93: 3a:46:24:d8:ad:0a:46:c1:fe:89:50:b1:a4:7b:cc:d3:17:8c: 4c:16:fe:e7:f7:0c:a8:32:66:77:88:92:49:5f:dc:d4:da:db: 48:67:84:aa -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUa1jS246635OKXdvuQ4gCIFmnduYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDExMzA3MTAwNloX DTI3MDExMjA3MTUwNlowMzExMC8GA1UEAxMoN0RGRDUzM0YyQTIzMzY2QTBGMEJE Q0M4Q0U4NDU3MTJDNTJDNzU3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOh2G0MEZgP9qo+VMYD5sZcYp78qHzldLRu0DjGnv/dcMuabQgPJ+od17sEX s1sj9YbdGJsV0Yw9ZrVZyb45GwCc6injc7lZCg72HcTZgTzog4rcMxz0ZJKReR7i gRcpZoCHIIOa6gFiNbgerWR7F6TNtMsNvhmRkXX33gl++y2oQYYJKZZcgbkPAUkB V/W+z2UhO6+yKP+xMxUSzv5Xgjkxm/d7TeSyCKIXfi6HSZahyaC1QYGuZFVbMfUm /S8FpaeNsU/Zvv/gwR97hnFyzFvn9jfm7L6tM1M7WCBOZ+D5UHJKFSHHYVQs4HgY GFuv1UI46mPS7LyYcPZC1yDQbjECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR9/VM/ KiM2ag8L3MjOhFcSxSx1eDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDQxMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZBPSjANBgkqhkiG9w0BAQsFAAOCAQEAaEO4m5erxb5wfiKOxMRF NTuG9h3NzRTbiMuZrYwuInrOKTfnEXZPI4Ej24IFI7OsB5RE4zXBhRoHGLmhhdv3 trYViMs2bHqfPZX6J2JTMoahv9AWeJnjPxV1sPfdOefDJz8HIX2iy2HN8GdrZNAZ c3yPvsO6spyEiJkOwH5K5iI5dOh6RupiKl6xAltTh5xO3jV0zpP5C9RCn7GpLz5c cniAz+HRpmwKtnZexNhhGrs/GdJX8GS0LGDCx/Vssv3Yq9xHO1wG5gm25Clhk0ru R/bl5ETQRzmTOkYk2K0KRsH+iVCxpHvM0xeMTBb+5/cMqDJmd4iSSV/c1NrbSGeE qg== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:56 2026 by rpki-client