This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154415.roa File: AS154415.roa (raw, json) Hash identifier: iP/BAo8YEQxWr2RfC2rk/zHfqG69RtWfBwFgFj8YDS8= Subject key identifier: 6C:42:40:C9:38:80:04:77:8F:C8:8A:97:C5:E6:59:74:F0:77:27:47 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 280F7A3A73480FA21545193AEA6F5F9941D13611 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154415.roa Signing time: Tue 20 Jan 2026 07:28:06 +0000 ROA not before: Tue 20 Jan 2026 07:23:06 +0000 ROA not after: Tue 19 Jan 2027 07:28:06 +0000 asID: 154415 IP address blocks: 144.79.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:0f:7a:3a:73:48:0f:a2:15:45:19:3a:ea:6f:5f:99:41:d1:36:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 20 07:23:06 2026 GMT Not After : Jan 19 07:28:06 2027 GMT Subject: CN=6C4240C9388004778FC88A97C5E65974F0772747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b1:08:99:8f:39:08:4a:de:b1:97:b7:fa:6c: d2:0b:19:5f:99:9b:5e:d5:c2:21:cf:fa:54:25:df: 4a:4b:1a:f3:87:36:25:54:9d:68:15:45:d7:8c:28: e2:48:40:fa:4f:8d:b0:26:ae:2b:de:69:ab:74:f6: bc:b2:d4:92:98:b9:b4:9e:50:d3:00:03:dd:0a:35: 7b:0e:26:db:37:79:eb:6b:91:47:79:6c:fc:72:17: d5:fa:70:30:26:c2:eb:b5:b0:1d:e1:e2:07:3e:3d: 77:eb:40:6f:b0:bc:a8:43:39:e6:24:23:19:a5:14: fe:93:e0:87:55:87:af:4e:7a:73:54:1d:5f:29:92: 42:8d:80:5c:67:a3:e4:0f:d7:68:88:6c:a7:af:8b: c9:8c:a9:49:8b:e4:d7:6f:0b:89:3d:b0:4e:1c:0d: 66:9d:32:99:0a:a2:57:0b:d8:0c:62:66:ac:e8:3a: 9b:8d:62:61:61:1b:fc:0f:02:6a:1e:c4:bb:6e:10: aa:c4:99:7a:25:1c:c4:02:d4:92:90:e2:6f:1d:16: 79:a0:2d:0d:37:1f:42:f9:5d:cf:88:e2:55:16:b9: ed:c9:07:49:6f:06:b3:9d:4d:ed:17:a8:32:31:19: fc:1a:9b:ef:cd:b4:f4:96:b6:fb:c5:9d:ea:3d:e5: ba:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:42:40:C9:38:80:04:77:8F:C8:8A:97:C5:E6:59:74:F0:77:27:47 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154415.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.52.0/23 Signature Algorithm: sha256WithRSAEncryption 21:6e:7b:d9:ce:12:c3:e2:9b:45:59:00:ac:a5:c6:da:8b:4d: 5f:65:e5:fa:94:02:03:d3:30:bd:84:02:5a:28:d1:81:6c:61: 51:97:ff:54:26:47:12:41:05:37:e2:03:17:b0:22:ea:41:8b: 63:69:83:87:dd:0c:5c:98:04:14:9b:95:ae:0a:61:59:19:c4: 33:de:22:ae:2f:e1:a7:d0:6d:fa:60:ea:7c:fe:68:0f:a2:14: b4:85:54:ea:25:79:95:59:b1:8e:2e:f3:27:b3:17:70:5f:a7: c5:fa:b8:5f:1c:ed:69:15:c1:73:d3:5d:65:bb:41:b8:66:cc: dd:fa:04:24:b4:f7:3f:a7:79:39:5c:78:00:73:56:ed:c5:de: c5:c1:da:28:68:a6:77:c5:71:72:17:b2:b3:82:19:94:2a:c9: ed:3e:61:09:97:d4:4b:e4:34:c7:23:89:4b:91:5b:37:b5:cf: da:3e:99:1d:df:f7:52:7d:b1:45:a6:1a:20:f9:78:49:90:f4: eb:b4:9c:be:27:ce:88:39:cb:b8:0b:fe:0d:6b:11:6c:ae:73: 86:d6:6b:9e:f5:ae:74:43:39:09:f6:6e:aa:2b:65:e3:4f:ee: 10:f4:0f:30:49:1e:7f:8c:f9:2b:c1:92:40:1c:1f:16:70:52: 71:62:2d:76 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUKA96OnNID6IVRRk66m9fmUHRNhEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEyMDA3MjMwNloX DTI3MDExOTA3MjgwNlowMzExMC8GA1UEAxMoNkM0MjQwQzkzODgwMDQ3NzhGQzg4 QTk3QzVFNjU5NzRGMDc3Mjc0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmxCJmPOQhK3rGXt/ps0gsZX5mbXtXCIc/6VCXfSksa84c2JVSdaBVF14wo 4khA+k+NsCauK95pq3T2vLLUkpi5tJ5Q0wAD3Qo1ew4m2zd562uRR3ls/HIX1fpw MCbC67WwHeHiBz49d+tAb7C8qEM55iQjGaUU/pPgh1WHr056c1QdXymSQo2AXGej 5A/XaIhsp6+LyYypSYvk128LiT2wThwNZp0ymQqiVwvYDGJmrOg6m41iYWEb/A8C ah7Eu24QqsSZeiUcxALUkpDibx0WeaAtDTcfQvldz4jiVRa57ckHSW8Gs51N7Reo MjEZ/Bqb78209Ja2+8Wd6j3luucCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRsQkDJ OIAEd4/IipfF5ll08HcnRzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDQxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZBPNDANBgkqhkiG9w0BAQsFAAOCAQEAIW572c4Sw+KbRVkArKXG 2otNX2Xl+pQCA9MwvYQCWijRgWxhUZf/VCZHEkEFN+IDF7Ai6kGLY2mDh90MXJgE FJuVrgphWRnEM94iri/hp9Bt+mDqfP5oD6IUtIVU6iV5lVmxji7zJ7MXcF+nxfq4 XxztaRXBc9NdZbtBuGbM3foEJLT3P6d5OVx4AHNW7cXexcHaKGimd8Vxcheys4IZ lCrJ7T5hCZfUS+Q0xyOJS5FbN7XP2j6ZHd/3Un2xRaYaIPl4SZD067ScvifOiDnL uAv+DWsRbK5zhtZrnvWudEM5CfZuqitl40/uEPQPMEkef4z5K8GSQBwfFnBScWIt dg== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:55 2026 by rpki-client