This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa File: AS151567.roa (raw, json) Hash identifier: NqpEUJ6XT0qEJzKmdCfa9ZLAXVm6cVJeV99DtaSmUxM= Subject key identifier: 94:24:5E:0F:7E:59:96:F5:E6:7D:5A:72:40:40:F6:E3:8D:9E:30:12 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2696507FF955A2A15C6CD05B9AC16A2C5A835046 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa Signing time: Mon 14 Jul 2025 05:00:00 +0000 ROA not before: Mon 14 Jul 2025 04:55:00 +0000 ROA not after: Mon 13 Jul 2026 05:00:00 +0000 asID: 151567 IP address blocks: 103.38.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:96:50:7f:f9:55:a2:a1:5c:6c:d0:5b:9a:c1:6a:2c:5a:83:50:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 14 04:55:00 2025 GMT Not After : Jul 13 05:00:00 2026 GMT Subject: CN=94245E0F7E5996F5E67D5A724040F6E38D9E3012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a5:43:57:81:90:d3:b8:d3:fb:0b:2f:c0:59: 82:56:2e:b2:c7:e2:db:dc:12:97:46:d9:38:38:8e: 41:4f:44:70:0a:5d:66:c3:40:3d:46:bb:6e:75:6d: fd:31:35:00:17:40:44:a6:bd:16:2c:6b:fa:f9:1e: 1d:57:1c:76:cf:5f:87:a7:88:f2:51:c6:de:d9:c6: b8:f5:b0:f0:ed:97:95:ab:f0:cd:36:dc:f0:25:77: f9:2d:bc:31:10:5b:35:28:8a:d7:dc:55:95:1b:6a: a2:ea:0e:5e:45:5c:42:26:59:d7:87:0e:aa:f1:ae: 90:6d:61:a3:ce:dd:15:69:b7:fe:e3:8a:e7:be:09: bb:4a:8d:0b:cc:d1:e5:18:2e:95:48:a7:d4:36:c8: 8d:15:24:71:4d:20:26:e0:bf:2f:2d:4d:1f:aa:c4: f5:ad:12:ca:9b:81:bf:0e:0a:f6:c9:f2:57:07:05: 2a:3f:f7:46:04:b8:57:c6:3b:c5:34:19:24:9b:c6: 47:ee:53:9d:9b:08:9c:4b:91:6b:5d:d3:0b:e3:e9: c3:90:69:bb:4b:de:9a:5c:50:70:af:e8:b6:53:02: 60:19:6d:c8:c1:35:fc:05:7b:e8:e3:54:21:ee:af: 9f:30:8c:e0:dc:df:aa:66:8b:c9:19:7c:2d:e9:59: a2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:24:5E:0F:7E:59:96:F5:E6:7D:5A:72:40:40:F6:E3:8D:9E:30:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151567.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.104.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:5a:5a:0b:85:8e:b8:ef:28:9f:56:6d:11:3f:a8:5e:19:fc: cd:a7:dd:fb:40:35:54:74:2c:b1:8b:3b:75:1b:db:ac:e2:ba: 78:f3:62:9e:fa:af:db:74:0f:90:67:eb:b2:27:82:1a:6b:a7: 2e:ad:58:f1:64:4b:f4:55:df:6c:9f:4a:8d:56:27:28:e0:e9: 44:6b:f0:03:ca:88:e4:10:78:0d:65:5f:68:1b:6d:5e:93:dc: 82:06:08:ad:67:9c:62:f1:c7:4f:ee:b4:c2:47:9a:0d:28:f5: bd:2f:54:cb:aa:ff:ee:b5:0b:9a:b0:8e:90:54:cf:c1:e8:7a: 3f:dd:08:ba:7e:6f:09:07:2d:0a:a3:d6:bb:da:ba:cb:16:d1: a6:7f:11:26:58:cb:e2:26:f6:04:5b:16:fc:26:26:2a:c0:5a: ad:f2:77:13:04:5e:90:06:e6:56:8f:0e:51:ba:00:65:a9:40: 36:34:e6:0f:f6:66:4f:43:dc:84:e0:16:f0:c4:37:1f:cd:e0: 77:7b:43:d9:b3:54:a1:6d:37:a5:b7:bd:84:ab:d6:15:bb:c5: af:1c:d2:cd:88:47:df:54:6c:91:40:70:0f:85:4c:e8:ce:2c: 40:fc:1e:4d:0c:ef:5e:8c:d3:d7:e7:a6:1b:8f:e4:88:26:84: ac:d3:11:3b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJpZQf/lVoqFcbNBbmsFqLFqDUEYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxNDA0NTUwMFoX DTI2MDcxMzA1MDAwMFowMzExMC8GA1UEAxMoOTQyNDVFMEY3RTU5OTZGNUU2N0Q1 QTcyNDA0MEY2RTM4RDlFMzAxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANelQ1eBkNO40/sLL8BZglYussfi29wSl0bZODiOQU9EcApdZsNAPUa7bnVt /TE1ABdARKa9Fixr+vkeHVccds9fh6eI8lHG3tnGuPWw8O2XlavwzTbc8CV3+S28 MRBbNSiK19xVlRtqouoOXkVcQiZZ14cOqvGukG1ho87dFWm3/uOK574Ju0qNC8zR 5RgulUin1DbIjRUkcU0gJuC/Ly1NH6rE9a0SypuBvw4K9snyVwcFKj/3RgS4V8Y7 xTQZJJvGR+5TnZsInEuRa13TC+Ppw5Bpu0vemlxQcK/otlMCYBltyME1/AV76ONU Ie6vnzCM4NzfqmaLyRl8LelZoisCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSUJF4P flmW9eZ9WnJAQPbjjZ4wEjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWcmaDANBgkqhkiG9w0BAQsFAAOCAQEAC1paC4WOuO8on1ZtET+o Xhn8zafd+0A1VHQssYs7dRvbrOK6ePNinvqv23QPkGfrsieCGmunLq1Y8WRL9FXf bJ9KjVYnKODpRGvwA8qI5BB4DWVfaBttXpPcggYIrWecYvHHT+60wkeaDSj1vS9U y6r/7rULmrCOkFTPweh6P90Iun5vCQctCqPWu9q6yxbRpn8RJljL4ib2BFsW/CYm KsBarfJ3EwRekAbmVo8OUboAZalANjTmD/ZmT0PchOAW8MQ3H83gd3tD2bNUoW03 pbe9hKvWFbvFrxzSzYhH31RskUBwD4VM6M4sQPweTQzvXozT1+emG4/kiCaErNMR Ow== -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:59 2025 by rpki-client