This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa File: AS151520.roa (raw, json) Hash identifier: RwzOvX0JmSnJIFr7c/6ZlQX2tkhEYbs5mZge0FSPD1g= Subject key identifier: 63:5B:F1:ED:43:6F:5A:69:CF:66:2A:1C:96:C2:68:20:41:24:6D:19 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6BCF0FA50C38E11005AC937B4C0DCDA3E45E21C4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa Signing time: Mon 23 Jun 2025 05:00:00 +0000 ROA not before: Mon 23 Jun 2025 04:55:00 +0000 ROA not after: Mon 22 Jun 2026 05:00:00 +0000 asID: 151520 IP address blocks: 103.236.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:cf:0f:a5:0c:38:e1:10:05:ac:93:7b:4c:0d:cd:a3:e4:5e:21:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 23 04:55:00 2025 GMT Not After : Jun 22 05:00:00 2026 GMT Subject: CN=635BF1ED436F5A69CF662A1C96C2682041246D19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9f:83:16:a2:ad:d7:f8:be:3d:c1:31:1c:90: 7d:98:75:83:3e:a6:13:1a:ac:f0:97:98:7b:8a:f4: 94:63:aa:6f:65:e4:bb:92:21:2e:2c:5a:99:bd:b6: 2f:bd:cb:48:a9:cd:61:cc:3d:5a:d2:99:a2:16:96: 10:4c:76:ae:b6:69:3b:8a:bb:2d:11:15:2c:cf:65: 65:00:f1:f9:34:43:05:d5:50:17:bd:4a:bf:2a:52: 25:a5:00:fe:c6:3b:96:54:a4:09:72:3a:9a:b7:99: 60:41:b7:4e:e2:fc:9b:67:04:c0:1f:ce:37:1a:0d: e0:0e:a9:5a:df:83:a4:80:76:c1:12:55:d0:ab:37: 3d:ab:07:11:e2:5e:ef:ac:ff:cb:53:74:3f:06:32: 56:1b:01:e0:23:2a:dc:e9:a0:f3:e0:92:b9:eb:37: e2:21:97:57:f2:36:b4:05:92:38:25:d9:7d:1a:c2: bb:48:80:3e:6e:ae:fb:9c:a9:9b:e1:85:59:90:95: 38:89:98:43:b2:cf:b6:42:02:18:6a:3d:5c:e6:71: 80:7a:bd:70:56:25:3f:8d:3e:d9:27:ae:60:12:21: 54:c3:ec:49:96:f0:08:1d:a6:31:8a:9a:4c:ec:d9: 83:b5:eb:e2:d1:ba:d5:09:f9:78:3d:7b:21:82:b9: e2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:5B:F1:ED:43:6F:5A:69:CF:66:2A:1C:96:C2:68:20:41:24:6D:19 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151520.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.142.0/23 Signature Algorithm: sha256WithRSAEncryption 67:89:bf:5d:9f:3f:d6:5b:61:b5:95:56:12:3d:6b:c8:80:47: 49:26:a2:70:76:6e:7c:88:91:14:9f:63:7d:13:13:95:07:3d: 84:17:60:6d:eb:26:4f:ba:0e:49:d6:ff:26:28:f1:d0:56:3b: 45:6a:3d:6b:41:13:87:cc:44:fa:3f:79:90:d2:0f:06:9c:1f: 37:80:8d:8e:41:ce:ca:e9:7d:a6:56:48:2c:41:0d:21:cd:e9: ea:96:ce:61:dc:42:77:ba:40:bb:8a:e4:f1:d2:f2:78:75:ec: e1:e4:fb:a1:c5:ce:bd:eb:6c:bf:53:ef:fd:a2:43:6c:21:5a: b4:56:c0:6b:b5:d0:48:66:e1:6a:b2:3a:cc:89:0a:44:ac:fc: 3e:7e:01:f7:7f:1e:ae:86:03:e6:f0:0b:fe:9b:a8:2d:b3:22: 68:6b:e5:9e:fe:28:2b:7f:51:76:d2:0d:04:28:05:81:bd:3f: b6:64:e4:84:bd:dc:2b:3f:d5:5a:4f:a7:3e:d3:ae:27:f8:73: 9f:ac:06:58:5d:72:96:fb:0c:6b:c1:87:ef:a1:e7:41:60:93: f4:8f:1c:24:11:2b:b0:37:80:43:6b:22:56:eb:b3:05:15:d5: 60:d5:bf:57:06:c0:90:59:36:cc:0b:eb:ca:f3:7e:3a:1c:dd: f3:f3:f5:91 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUa88PpQw44RAFrJN7TA3No+ReIcQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYyMzA0NTUwMFoX DTI2MDYyMjA1MDAwMFowMzExMC8GA1UEAxMoNjM1QkYxRUQ0MzZGNUE2OUNGNjYy QTFDOTZDMjY4MjA0MTI0NkQxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2fgxairdf4vj3BMRyQfZh1gz6mExqs8JeYe4r0lGOqb2Xku5IhLixamb22 L73LSKnNYcw9WtKZohaWEEx2rrZpO4q7LREVLM9lZQDx+TRDBdVQF71KvypSJaUA /sY7llSkCXI6mreZYEG3TuL8m2cEwB/ONxoN4A6pWt+DpIB2wRJV0Ks3PasHEeJe 76z/y1N0PwYyVhsB4CMq3Omg8+CSues34iGXV/I2tAWSOCXZfRrCu0iAPm6u+5yp m+GFWZCVOImYQ7LPtkICGGo9XOZxgHq9cFYlP40+2SeuYBIhVMPsSZbwCB2mMYqa TOzZg7Xr4tG61Qn5eD17IYK54msCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRjW/Ht Q29aac9mKhyWwmggQSRtGTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTUyMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfsjjANBgkqhkiG9w0BAQsFAAOCAQEAZ4m/XZ8/1lthtZVWEj1r yIBHSSaicHZufIiRFJ9jfRMTlQc9hBdgbesmT7oOSdb/Jijx0FY7RWo9a0ETh8xE +j95kNIPBpwfN4CNjkHOyul9plZILEENIc3p6pbOYdxCd7pAu4rk8dLyeHXs4eT7 ocXOvetsv1Pv/aJDbCFatFbAa7XQSGbharI6zIkKRKz8Pn4B938eroYD5vAL/puo LbMiaGvlnv4oK39RdtINBCgFgb0/tmTkhL3cKz/VWk+nPtOuJ/hzn6wGWF1ylvsM a8GH76HnQWCT9I8cJBErsDeAQ2siVuuzBRXVYNW/VwbAkFk2zAvryvN+Ohzd8/P1 kQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:28 2025 by rpki-client