This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153068.roa File: AS153068.roa (raw, json) Hash identifier: K2ckLEeLPDSTQWojgP7ic18QJi+N8JoFWQic073pz7s= Subject key identifier: 21:94:98:D5:03:3D:0A:4E:4C:2C:0D:20:46:55:3B:66:CA:0E:C2:FB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4EC608FF20DA49BA4A24C635466AE46D34BF7699 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153068.roa Signing time: Tue 25 Nov 2025 01:37:16 +0000 ROA not before: Tue 25 Nov 2025 01:32:16 +0000 ROA not after: Tue 24 Nov 2026 01:37:16 +0000 asID: 153068 IP address blocks: 103.136.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c6:08:ff:20:da:49:ba:4a:24:c6:35:46:6a:e4:6d:34:bf:76:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 25 01:32:16 2025 GMT Not After : Nov 24 01:37:16 2026 GMT Subject: CN=219498D5033D0A4E4C2C0D2046553B66CA0EC2FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ff:68:ab:b2:2d:a5:53:56:37:44:36:6d:eb: 3b:2d:ab:0d:42:13:bc:2a:66:35:7b:4c:d4:55:c1: 24:4d:12:be:17:82:45:c6:ed:2e:5b:ad:a2:55:4f: 99:de:2a:51:70:00:a5:fb:84:94:c5:d3:33:ca:eb: cf:12:df:2a:6e:2e:20:e5:51:a2:92:1f:bc:6b:65: 29:7c:cd:19:69:11:1e:4f:90:6a:ec:84:b2:b5:84: 58:67:0e:13:cb:b7:5c:42:95:2c:4f:e2:e3:a7:0b: fc:13:66:07:e6:97:1b:45:f6:b0:3a:20:9a:6e:3c: 46:8d:8d:95:11:80:9e:fc:80:1f:90:54:06:97:7c: 75:e6:11:2e:4a:96:f5:7b:92:dc:52:4f:fa:bd:ab: b1:09:e7:9e:cf:63:0c:83:b4:aa:f8:3b:8f:4d:49: f9:12:69:21:81:f4:e8:99:71:84:7b:0b:c6:80:a1: e2:8a:31:2c:f2:3a:ed:05:ae:99:0d:a2:6f:46:a9: 82:37:eb:27:4c:2c:2f:63:49:d5:06:3e:6b:dd:1f: 40:63:a0:e5:b9:01:a2:7f:27:9a:bf:06:1c:2f:80: f4:6a:34:06:b5:8d:c7:cb:fe:d2:52:a4:27:c1:e5: a6:be:d4:ef:f2:e1:00:07:af:1e:44:42:e3:57:82: 57:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:94:98:D5:03:3D:0A:4E:4C:2C:0D:20:46:55:3B:66:CA:0E:C2:FB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153068.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.76.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:d7:a4:ab:e8:bf:ca:ac:d4:84:c1:99:57:90:33:94:7d:fe: af:7a:9a:d1:18:59:da:b9:d5:69:e3:00:46:d8:eb:9b:55:57: 6d:07:57:d9:47:3c:09:ab:e8:88:e6:3e:03:36:e6:64:b2:2e: 2e:af:e8:64:8e:10:50:32:af:56:40:6a:bd:39:d4:36:fe:12: fd:b4:39:d9:b7:05:d1:c4:f4:55:91:22:a6:ea:b0:cd:c6:14: 99:ab:c9:e5:9f:4c:fe:cb:1f:51:dc:a3:11:d8:76:1b:9e:29: 1f:26:f9:10:9e:f2:9a:fe:ea:c6:ac:e4:31:f4:16:58:44:a5: ba:d6:27:d0:c0:79:ce:1d:60:d8:70:ac:be:5b:df:6d:20:8b: 24:f4:33:84:37:f8:0d:60:83:f8:1a:77:27:a0:6a:70:36:d5: c7:4b:71:a3:78:b8:93:54:fb:7c:85:a8:95:3a:90:e4:e7:32: a2:76:60:ab:0e:ea:42:26:8e:91:c2:90:16:01:fd:b0:df:ba: 0a:70:2b:dd:31:b2:4b:48:04:8b:13:9b:2d:2e:31:8a:a9:19: 79:8b:73:be:27:5f:6b:1d:59:16:bc:7d:91:93:84:2c:58:47: 5e:42:5c:86:c1:fa:d7:be:25:a8:65:ce:60:a9:38:b8:e3:61: 28:a2:8e:05 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTsYI/yDaSbpKJMY1RmrkbTS/dpkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNTAxMzIxNloX DTI2MTEyNDAxMzcxNlowMzExMC8GA1UEAxMoMjE5NDk4RDUwMzNEMEE0RTRDMkMw RDIwNDY1NTNCNjZDQTBFQzJGQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMb/aKuyLaVTVjdENm3rOy2rDUITvCpmNXtM1FXBJE0SvheCRcbtLlutolVP md4qUXAApfuElMXTM8rrzxLfKm4uIOVRopIfvGtlKXzNGWkRHk+QauyEsrWEWGcO E8u3XEKVLE/i46cL/BNmB+aXG0X2sDogmm48Ro2NlRGAnvyAH5BUBpd8deYRLkqW 9XuS3FJP+r2rsQnnns9jDIO0qvg7j01J+RJpIYH06JlxhHsLxoCh4ooxLPI67QWu mQ2ib0apgjfrJ0wsL2NJ1QY+a90fQGOg5bkBon8nmr8GHC+A9Go0BrWNx8v+0lKk J8Hlpr7U7/LhAAevHkRC41eCVwMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQhlJjV Az0KTkwsDSBGVTtmyg7C+zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzA2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeITDANBgkqhkiG9w0BAQsFAAOCAQEAnNekq+i/yqzUhMGZV5Az lH3+r3qa0RhZ2rnVaeMARtjrm1VXbQdX2Uc8CavoiOY+AzbmZLIuLq/oZI4QUDKv VkBqvTnUNv4S/bQ52bcF0cT0VZEipuqwzcYUmavJ5Z9M/ssfUdyjEdh2G54pHyb5 EJ7ymv7qxqzkMfQWWESlutYn0MB5zh1g2HCsvlvfbSCLJPQzhDf4DWCD+Bp3J6Bq cDbVx0txo3i4k1T7fIWolTqQ5OcyonZgqw7qQiaOkcKQFgH9sN+6CnAr3TGyS0gE ixObLS4xiqkZeYtzvidfax1ZFrx9kZOELFhHXkJchsH6174lqGXOYKk4uONhKKKO BQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:17 2025 by rpki-client