This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa File: AS151543.roa (raw, json) Hash identifier: YulHzchMtN6ELKd51lCsy0WRv9oSePmDTHFwZT1/71k= Subject key identifier: 36:D9:35:B7:A3:89:35:E4:4C:7F:4C:0A:B6:B2:AE:A0:ED:18:9A:FB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0F327E0C688F47C22075497A04713110D4F46147 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa Signing time: Mon 16 Jun 2025 07:00:00 +0000 ROA not before: Mon 16 Jun 2025 06:55:00 +0000 ROA not after: Mon 15 Jun 2026 07:00:00 +0000 asID: 151543 IP address blocks: 103.242.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:32:7e:0c:68:8f:47:c2:20:75:49:7a:04:71:31:10:d4:f4:61:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 16 06:55:00 2025 GMT Not After : Jun 15 07:00:00 2026 GMT Subject: CN=36D935B7A38935E44C7F4C0AB6B2AEA0ED189AFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:00:71:fa:28:f7:af:7c:cc:c8:a5:1d:45:d1: 7d:c6:e5:a0:9a:88:22:cb:92:1b:45:cc:94:54:24: 54:46:56:8e:5e:01:fd:69:5f:6f:21:eb:7c:30:96: f9:4a:36:15:e0:28:dc:94:32:44:0d:d8:8d:dd:1e: 1a:ed:84:45:63:eb:b1:0d:de:c2:a2:30:d4:87:36: f9:2b:49:37:23:01:b7:bc:cf:07:7c:8c:bd:74:c6: fb:59:96:50:19:6b:73:38:7c:b8:58:3f:62:de:3a: d3:dd:29:2e:da:5d:88:f4:a9:27:28:ec:9a:b7:dc: ec:ed:96:0d:a0:5c:5f:99:11:f0:bb:b6:56:d4:0b: 31:b1:ac:5c:1a:45:95:3b:7d:aa:e4:0e:ad:b1:7e: a0:d1:88:f6:d2:05:9f:dc:9c:a7:aa:90:6a:e1:56: 43:ee:a1:b9:b2:a7:27:ef:c1:32:06:ec:16:37:c6: 20:c6:35:73:52:b6:1d:ff:84:8a:45:a9:c9:4d:75: ad:73:23:ea:aa:ad:9e:9e:b7:77:60:ca:f2:8e:73: f4:77:50:03:eb:23:5b:07:85:7b:88:44:db:8b:45: ba:0b:f9:ce:c2:b8:46:79:15:2b:85:59:10:d3:4c: 7b:1c:98:8c:f0:36:d0:83:5c:ec:c2:c5:b8:99:10: 00:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D9:35:B7:A3:89:35:E4:4C:7F:4C:0A:B6:B2:AE:A0:ED:18:9A:FB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151543.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.82.0/24 Signature Algorithm: sha256WithRSAEncryption 96:24:70:64:1f:44:c1:ab:1d:5e:d2:08:ee:9e:50:0c:98:4b: 84:0e:50:e0:29:8c:4a:fd:23:68:a1:22:82:5f:b8:ee:00:0c: 89:c1:d6:1f:a4:e4:c6:34:af:af:2d:83:74:42:69:b8:b6:9c: 9c:95:e4:ea:30:ab:e3:13:f0:25:f3:1a:b2:19:f8:a6:7c:a3: 27:49:83:d2:60:ca:cf:26:d0:39:a2:71:b9:6b:0a:80:fb:91: 26:de:11:06:ec:72:d8:8e:09:ba:37:93:03:95:ce:e3:d8:f1: 25:b5:8e:47:de:46:bf:df:21:72:71:f6:b1:85:42:77:ca:2f: 36:3d:42:37:ae:95:09:4c:4b:59:94:7b:e5:77:9d:88:86:0c: ce:12:5a:f6:11:13:75:fe:0b:d8:60:a6:83:15:41:86:e8:24: 25:82:9f:8b:57:31:7c:17:05:a9:ec:5c:2f:75:22:b4:ae:ed: e8:e5:ce:95:22:5f:11:5b:cf:6e:0e:79:93:f0:e6:9a:be:6e: 81:ec:6e:d2:1d:68:f5:17:48:45:a2:c7:49:9c:c3:ce:48:60: 2c:e1:f5:fd:a3:e4:95:46:63:f1:e9:67:46:a8:5c:73:f1:23: 2b:fe:bc:74:b1:d7:cc:09:dc:ad:44:e4:f6:ae:de:0c:f0:bc: cf:9c:3b:03 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDzJ+DGiPR8IgdUl6BHExENT0YUcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxNjA2NTUwMFoX DTI2MDYxNTA3MDAwMFowMzExMC8GA1UEAxMoMzZEOTM1QjdBMzg5MzVFNDRDN0Y0 QzBBQjZCMkFFQTBFRDE4OUFGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYAcfoo9698zMilHUXRfcbloJqIIsuSG0XMlFQkVEZWjl4B/WlfbyHrfDCW +Uo2FeAo3JQyRA3Yjd0eGu2ERWPrsQ3ewqIw1Ic2+StJNyMBt7zPB3yMvXTG+1mW UBlrczh8uFg/Yt46090pLtpdiPSpJyjsmrfc7O2WDaBcX5kR8Lu2VtQLMbGsXBpF lTt9quQOrbF+oNGI9tIFn9ycp6qQauFWQ+6hubKnJ+/BMgbsFjfGIMY1c1K2Hf+E ikWpyU11rXMj6qqtnp63d2DK8o5z9HdQA+sjWweFe4hE24tFugv5zsK4RnkVK4VZ ENNMexyYjPA20INc7MLFuJkQAJUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ22TW3 o4k15Ex/TAq2sq6g7Ria+zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU0My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfyUjANBgkqhkiG9w0BAQsFAAOCAQEAliRwZB9EwasdXtII7p5Q DJhLhA5Q4CmMSv0jaKEigl+47gAMicHWH6TkxjSvry2DdEJpuLacnJXk6jCr4xPw JfMashn4pnyjJ0mD0mDKzybQOaJxuWsKgPuRJt4RBuxy2I4JujeTA5XO49jxJbWO R95Gv98hcnH2sYVCd8ovNj1CN66VCUxLWZR75XediIYMzhJa9hETdf4L2GCmgxVB hugkJYKfi1cxfBcFqexcL3UitK7t6OXOlSJfEVvPbg55k/Dmmr5ugexu0h1o9RdI RaLHSZzDzkhgLOH1/aPklUZj8elnRqhcc/EjK/68dLHXzAncrUTk9q7eDPC8z5w7 Aw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:49 2025 by rpki-client