This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154475.roa File: AS154475.roa (raw, json) Hash identifier: 6PsJ8RGuo3LnaRYZwd9B5t/fZFVw3W6/hUNqIWfekU4= Subject key identifier: 43:F4:A4:E2:24:81:82:40:37:A4:BB:93:D7:13:55:DC:4C:BD:D1:F9 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 726547DCA6D005BA28648D6FC89629908190DE1C Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154475.roa Signing time: Fri 02 Jan 2026 01:48:45 +0000 ROA not before: Fri 02 Jan 2026 01:43:45 +0000 ROA not after: Fri 01 Jan 2027 01:48:45 +0000 asID: 154475 IP address blocks: 144.79.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:65:47:dc:a6:d0:05:ba:28:64:8d:6f:c8:96:29:90:81:90:de:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 2 01:43:45 2026 GMT Not After : Jan 1 01:48:45 2027 GMT Subject: CN=43F4A4E22481824037A4BB93D71355DC4CBDD1F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e9:c9:c8:e0:53:c8:36:d1:58:4d:1e:06:8f: c5:78:f3:50:3a:cc:73:ff:b6:a4:45:39:95:d8:98: 64:b8:e7:81:39:05:d2:0b:09:97:91:d4:5c:29:64: 3c:f5:7a:bd:6f:07:86:67:c0:48:ce:bf:eb:0e:d9: 50:76:e8:14:29:82:35:bb:f3:94:5d:f7:c4:4e:9e: f8:8d:e5:db:d4:42:e9:e2:f5:06:50:9f:67:aa:25: 3f:07:f8:37:1e:b1:b5:2a:1d:47:e3:e1:d7:8c:11: ba:a4:3c:3b:6f:b2:cd:25:88:da:78:be:17:78:f9: 8e:c7:b3:76:77:24:31:8f:23:92:81:d2:71:57:2d: fc:92:a6:7b:af:a9:a1:f2:76:df:4c:92:a7:20:c8: 52:c6:6a:fb:2e:77:d5:49:17:02:4e:8a:ff:c8:92: 7e:f8:cf:97:e8:68:23:14:89:80:7e:ac:cd:24:b2: 4f:f3:f8:50:15:95:b8:b4:f6:58:f5:1f:45:8f:dd: cb:91:9c:af:35:c7:e0:84:f7:dc:de:53:db:6c:ac: 5c:68:8f:74:dd:c6:86:26:07:2a:09:cd:d0:99:d3: 9e:91:b4:4e:c0:87:4e:60:ab:6a:c0:50:b1:b6:bb: 56:f8:b4:9b:19:8c:e9:0d:c0:d7:08:60:a8:af:0c: 5f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F4:A4:E2:24:81:82:40:37:A4:BB:93:D7:13:55:DC:4C:BD:D1:F9 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.214.0/24 Signature Algorithm: sha256WithRSAEncryption 55:d9:85:30:04:21:f3:09:2b:52:3c:eb:3d:b3:75:af:ca:d5: 63:4f:62:4b:55:d4:8b:98:76:00:1c:6f:b1:ee:89:ee:db:25: 3d:c9:29:a3:b0:aa:45:d8:7b:a4:6c:1b:02:1d:87:1f:16:44: 95:b3:d2:fb:32:e5:32:e6:a4:f8:0d:75:ae:7a:3e:c3:4e:23: 54:5f:88:9a:1a:f7:5b:e2:9a:1f:67:35:d3:25:81:56:cd:2d: a0:31:46:25:65:32:f1:ca:51:75:e4:ce:b7:e2:b1:0f:84:97: c6:ad:91:2c:49:d7:ef:d9:7a:b9:c7:d0:3e:dc:f9:cd:c6:6f: da:c7:dc:d7:20:e6:18:a0:7b:bc:63:8a:e5:72:d7:a3:18:e1: 5c:e5:21:5f:32:b8:c9:35:b8:b5:9c:8c:ee:d6:aa:45:b4:b0: d3:f2:9e:03:1f:8a:91:fe:45:56:55:1d:84:08:73:0b:01:62: dd:0a:ad:4b:80:b0:90:af:03:94:dd:f8:76:d1:97:b4:48:73: 02:fb:75:c5:02:4f:f7:35:2c:f7:39:4f:6d:a7:12:7e:8e:da: c4:9b:80:ad:22:61:06:de:74:aa:5d:b4:03:e8:bf:63:a5:52: df:b0:ee:94:0e:48:64:69:5b:75:0b:2f:7f:66:cd:55:78:33: 8a:a9:e9:7e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcmVH3KbQBbooZI1vyJYpkIGQ3hwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwMjAxNDM0NVoX DTI3MDEwMTAxNDg0NVowMzExMC8GA1UEAxMoNDNGNEE0RTIyNDgxODI0MDM3QTRC QjkzRDcxMzU1REM0Q0JERDFGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANjpycjgU8g20VhNHgaPxXjzUDrMc/+2pEU5ldiYZLjngTkF0gsJl5HUXClk PPV6vW8HhmfASM6/6w7ZUHboFCmCNbvzlF33xE6e+I3l29RC6eL1BlCfZ6olPwf4 Nx6xtSodR+Ph14wRuqQ8O2+yzSWI2ni+F3j5jsezdnckMY8jkoHScVct/JKme6+p ofJ230ySpyDIUsZq+y531UkXAk6K/8iSfvjPl+hoIxSJgH6szSSyT/P4UBWVuLT2 WPUfRY/dy5GcrzXH4IT33N5T22ysXGiPdN3GhiYHKgnN0JnTnpG0TsCHTmCrasBQ sba7Vvi0mxmM6Q3A1whgqK8MX50CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRD9KTi JIGCQDeku5PXE1XcTL3R+TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDQ3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJBP1jANBgkqhkiG9w0BAQsFAAOCAQEAVdmFMAQh8wkrUjzrPbN1 r8rVY09iS1XUi5h2ABxvse6J7tslPckpo7CqRdh7pGwbAh2HHxZElbPS+zLlMuak +A11rno+w04jVF+Imhr3W+KaH2c10yWBVs0toDFGJWUy8cpRdeTOt+KxD4SXxq2R LEnX79l6ucfQPtz5zcZv2sfc1yDmGKB7vGOK5XLXoxjhXOUhXzK4yTW4tZyM7taq RbSw0/KeAx+Kkf5FVlUdhAhzCwFi3QqtS4CwkK8DlN34dtGXtEhzAvt1xQJP9zUs 9zlPbacSfo7axJuArSJhBt50ql20A+i/Y6VS37DulA5IZGlbdQsvf2bNVXgziqnp fg== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:57 2026 by rpki-client