This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153584.roa File: AS153584.roa (raw, json) Hash identifier: KySDAcMY0OmJo+Jtqz7iSL4BCNHexJOGMNAbOvwjutY= Subject key identifier: FB:D5:0D:05:D5:3A:B3:6C:4C:8F:8A:4F:65:62:86:D5:01:E4:2D:0C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07FFF297D1199E31C7E9AF6BA90B07E95BFD77EE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153584.roa Signing time: Wed 26 Nov 2025 07:55:54 +0000 ROA not before: Wed 26 Nov 2025 07:50:54 +0000 ROA not after: Wed 25 Nov 2026 07:55:54 +0000 asID: 153584 IP address blocks: 163.47.28.0/24 maxlen: 24 2001:df4:fdc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ff:f2:97:d1:19:9e:31:c7:e9:af:6b:a9:0b:07:e9:5b:fd:77:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 26 07:50:54 2025 GMT Not After : Nov 25 07:55:54 2026 GMT Subject: CN=FBD50D05D53AB36C4C8F8A4F656286D501E42D0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e8:97:c6:8b:b6:d9:bd:f9:1c:cb:26:b1:45: 17:55:8a:3f:fd:c1:ba:6e:3f:7e:dd:b0:05:3a:98: 4c:f2:11:c9:0b:42:2d:a7:0b:cc:35:d0:ff:92:7a: 9f:b3:0b:91:6b:d7:2d:af:4b:ce:c0:ea:e6:d3:9b: 0c:75:92:52:2a:5d:46:7d:0f:e7:86:f4:d5:84:65: a4:79:99:5e:3e:b8:ee:d6:ed:5d:21:dc:c2:b6:49: 83:b4:cf:e9:2b:e9:d1:99:45:59:92:ae:81:63:c7: 1b:b7:8b:21:4a:f2:1c:d3:89:5c:9a:cf:a5:19:80: 66:e5:c8:58:8e:da:29:f4:a5:32:7e:3f:8b:dc:90: 6b:21:4a:2a:7a:e8:6b:7d:fc:c0:b5:f5:3f:00:84: 4f:19:b1:56:62:75:06:e4:9c:91:db:40:67:ca:11: cf:01:73:a4:9e:9d:1f:48:76:eb:77:95:55:33:86: 75:1d:d0:11:27:65:05:7f:57:7a:2b:58:7a:21:0b: bc:01:c7:08:99:91:d7:aa:45:91:eb:e5:12:ac:fb: 8f:17:18:e9:1b:b0:2b:54:1b:11:ea:d8:33:9c:c3: 6b:00:04:0b:e1:a1:43:9d:2f:24:07:80:ca:35:37: 69:9d:52:2d:4c:80:80:a3:62:6b:0d:92:39:46:34: fc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D5:0D:05:D5:3A:B3:6C:4C:8F:8A:4F:65:62:86:D5:01:E4:2D:0C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153584.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.47.28.0/24 IPv6: 2001:df4:fdc0::/48 Signature Algorithm: sha256WithRSAEncryption 8b:87:38:91:76:55:b3:88:c8:2f:ce:2c:92:b6:6a:9a:39:fd: 53:99:c7:67:ab:d3:fb:8f:fd:a7:34:3c:e5:d9:cc:f8:c2:97: c5:a4:04:4c:e9:1f:a1:67:da:21:02:68:5c:cc:a8:9f:3f:3b: 08:21:98:5e:f7:ab:ee:54:04:2d:62:48:fa:9f:bd:8d:7a:bf: bb:36:b9:43:35:8a:2e:2c:65:38:eb:65:37:97:25:30:06:43: fd:9e:63:01:aa:3a:04:8f:1e:e8:dc:19:1c:e6:ed:1f:bf:3a: 2b:35:50:c5:c5:82:ff:02:2e:24:0b:bf:ed:b0:43:34:cd:6f: 99:50:cd:28:84:c1:10:b5:61:d9:ff:da:9e:68:31:9b:06:bb: b3:e5:0e:9c:c2:64:ea:7c:43:d7:de:eb:47:f4:cc:ca:49:21: 10:86:a3:33:cb:78:0b:58:7e:aa:6a:92:76:aa:dc:37:48:25: cf:04:4b:4d:d7:e8:0f:a5:35:3e:ce:6a:86:75:10:d5:6f:43: 83:44:02:e1:d6:bf:42:42:c3:b9:14:00:4a:62:74:ce:25:12: 29:18:62:bb:a3:88:a0:17:7b:a0:a0:20:fd:71:81:a0:80:52: cd:cf:95:9c:01:f4:a0:93:ea:e0:5f:13:97:a4:01:d8:7c:fb: 2e:1a:33:8e -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUB//yl9EZnjHH6a9rqQsH6Vv9d+4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNjA3NTA1NFoX DTI2MTEyNTA3NTU1NFowMzExMC8GA1UEAxMoRkJENTBEMDVENTNBQjM2QzRDOEY4 QTRGNjU2Mjg2RDUwMUU0MkQwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKXol8aLttm9+RzLJrFFF1WKP/3Bum4/ft2wBTqYTPIRyQtCLacLzDXQ/5J6 n7MLkWvXLa9LzsDq5tObDHWSUipdRn0P54b01YRlpHmZXj647tbtXSHcwrZJg7TP 6Svp0ZlFWZKugWPHG7eLIUryHNOJXJrPpRmAZuXIWI7aKfSlMn4/i9yQayFKKnro a338wLX1PwCETxmxVmJ1BuSckdtAZ8oRzwFzpJ6dH0h263eVVTOGdR3QESdlBX9X eitYeiELvAHHCJmR16pFkevlEqz7jxcY6RuwK1QbEerYM5zDawAEC+GhQ50vJAeA yjU3aZ1SLUyAgKNiaw2SOUY0/AcCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBT71Q0F 1TqzbEyPik9lYobVAeQtDDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzU4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAKMvHDAPBAIAAjAJAwcAIAEN9P3AMA0GCSqGSIb3DQEBCwUAA4IB AQCLhziRdlWziMgvziyStmqaOf1Tmcdnq9P7j/2nNDzl2cz4wpfFpARM6R+hZ9oh AmhczKifPzsIIZhe96vuVAQtYkj6n72Ner+7NrlDNYouLGU462U3lyUwBkP9nmMB qjoEjx7o3Bkc5u0fvzorNVDFxYL/Ai4kC7/tsEM0zW+ZUM0ohMEQtWHZ/9qeaDGb Bruz5Q6cwmTqfEPX3utH9MzKSSEQhqMzy3gLWH6qapJ2qtw3SCXPBEtN1+gPpTU+ zmqGdRDVb0ODRALh1r9CQsO5FABKYnTOJRIpGGK7o4igF3ugoCD9cYGggFLNz5Wc AfSgk+rgXxOXpAHYfPsuGjOO -----END CERTIFICATE-----Generated at Wed Dec 3 14:50:02 2025 by rpki-client