This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151004.roa File: AS151004.roa (raw, json) Hash identifier: /YQ+EP+rW72ugiRjenDCBRcPKcUN+yi98L29ho67pe8= Subject key identifier: 4C:F2:53:C7:6D:CD:19:0B:48:1F:89:4A:9D:72:A4:A3:D0:B2:41:6E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 306ADBD58DD79505337D68AE2C1E29DBBE3EAD05 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151004.roa Signing time: Mon 18 Aug 2025 07:00:00 +0000 ROA not before: Mon 18 Aug 2025 06:55:00 +0000 ROA not after: Mon 17 Aug 2026 07:00:00 +0000 asID: 151004 IP address blocks: 103.214.250.0/24 maxlen: 24 103.251.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:6a:db:d5:8d:d7:95:05:33:7d:68:ae:2c:1e:29:db:be:3e:ad:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 18 06:55:00 2025 GMT Not After : Aug 17 07:00:00 2026 GMT Subject: CN=4CF253C76DCD190B481F894A9D72A4A3D0B2416E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:99:3b:fa:7e:c0:76:84:60:06:65:b9:e1:59: cb:69:30:60:61:a8:b5:78:f0:ab:ab:94:fa:0b:5c: 40:f3:34:94:3b:5a:79:c8:47:07:be:ab:4e:77:50: 75:c4:b6:4f:6c:bd:6b:01:e6:71:60:4a:a2:07:31: 76:db:ec:5c:79:d7:75:45:b3:a1:9a:6b:3c:87:40: 13:b6:a6:a3:0d:6e:e7:bd:7d:4f:dd:d0:aa:c9:51: 95:19:e2:2a:7f:93:a2:e0:15:aa:bc:b6:25:7e:df: c5:88:81:e1:24:7a:35:6c:35:53:c3:50:d6:41:a6: 9e:57:a1:95:ca:8c:da:63:b9:94:d9:d5:da:bd:f1: f7:38:f5:cd:69:fc:45:a4:94:17:88:2c:42:8c:eb: e5:d8:7f:7e:7a:d3:0f:74:29:16:e7:93:95:2e:c0: 52:c8:c6:31:0c:1c:45:a6:42:82:4f:4c:f8:e3:68: 55:26:9e:94:74:0b:4c:53:68:9f:78:46:61:a0:5e: 13:9c:27:ee:09:57:d4:54:66:c0:75:5c:dc:79:ce: 06:12:64:ae:8e:44:b2:d4:3c:ad:68:fe:43:d5:f2: 21:a9:6b:5c:8c:19:74:b3:65:f2:f5:3d:c5:6c:d6: d5:95:aa:b3:8f:67:28:52:f7:99:9a:b3:53:db:b7: 4f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F2:53:C7:6D:CD:19:0B:48:1F:89:4A:9D:72:A4:A3:D0:B2:41:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151004.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.250.0/24 103.251.69.0/24 Signature Algorithm: sha256WithRSAEncryption 66:de:a4:66:4d:dc:b4:a5:2a:b2:82:2f:84:e9:9d:65:03:47: 89:2a:6f:ad:e8:72:63:84:29:c8:2e:83:5a:b6:23:ef:80:76: 7b:76:b0:ad:ec:f0:39:50:f3:89:b9:a8:b8:ad:b9:99:d1:1f: 5f:d1:de:7a:be:c5:6e:7e:96:11:da:a0:a7:0d:2e:a4:ef:1c: 34:3d:72:35:30:1c:cc:8b:32:09:9d:e5:a2:8f:63:27:65:6c: d1:bb:9f:27:78:50:e8:c1:87:21:ff:ef:73:0f:f1:eb:4f:0f: 6d:67:fe:b4:27:68:62:cf:b5:dc:e7:cf:02:1b:08:a0:4d:fe: 1c:15:e6:24:2c:a0:2b:2f:f8:05:e8:88:3f:e7:63:32:46:ec: 88:3e:f9:d9:3a:3c:03:4b:ac:fd:e9:a8:0b:ac:41:e5:67:f8: 45:01:51:7c:8e:58:2c:db:7e:53:51:d6:e4:6e:6e:58:c3:0b: 8d:21:ee:fb:b4:80:8c:66:3a:c0:dc:52:8d:3d:3f:55:6f:6d: 73:a0:5c:4f:db:37:26:81:15:aa:76:8b:42:64:72:15:fb:6a: ec:63:a6:c6:ca:de:6a:a2:04:76:c0:ad:99:2f:3d:02:9b:e3: 63:73:b0:cc:6b:58:c4:3b:a2:a7:c7:11:61:f5:06:1e:00:1a: 25:53:d2:82 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUMGrb1Y3XlQUzfWiuLB4p274+rQUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgxODA2NTUwMFoX DTI2MDgxNzA3MDAwMFowMzExMC8GA1UEAxMoNENGMjUzQzc2RENEMTkwQjQ4MUY4 OTRBOUQ3MkE0QTNEMEIyNDE2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJyZO/p+wHaEYAZlueFZy2kwYGGotXjwq6uU+gtcQPM0lDtaechHB76rTndQ dcS2T2y9awHmcWBKogcxdtvsXHnXdUWzoZprPIdAE7amow1u5719T93QqslRlRni Kn+TouAVqry2JX7fxYiB4SR6NWw1U8NQ1kGmnlehlcqM2mO5lNnV2r3x9zj1zWn8 RaSUF4gsQozr5dh/fnrTD3QpFueTlS7AUsjGMQwcRaZCgk9M+ONoVSaelHQLTFNo n3hGYaBeE5wn7glX1FRmwHVc3HnOBhJkro5EstQ8rWj+Q9XyIalrXIwZdLNl8vU9 xWzW1ZWqs49nKFL3mZqzU9u3T2UCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBRM8lPH bc0ZC0gfiUqdcqSj0LJBbjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTAwNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGfW+gMEAGf7RTANBgkqhkiG9w0BAQsFAAOCAQEAZt6kZk3ctKUq soIvhOmdZQNHiSpvrehyY4QpyC6DWrYj74B2e3awrezwOVDzibmouK25mdEfX9He er7Fbn6WEdqgpw0upO8cND1yNTAczIsyCZ3loo9jJ2Vs0bufJ3hQ6MGHIf/vcw/x 608PbWf+tCdoYs+13OfPAhsIoE3+HBXmJCygKy/4BeiIP+djMkbsiD752To8A0us /emoC6xB5Wf4RQFRfI5YLNt+U1HW5G5uWMMLjSHu+7SAjGY6wNxSjT0/VW9tc6Bc T9s3JoEVqnaLQmRyFftq7GOmxsreaqIEdsCtmS89ApvjY3OwzGtYxDuip8cRYfUG HgAaJVPSgg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:41 2025 by rpki-client