This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa File: AS153717.roa (raw, json) Hash identifier: EhfryvLHJI9z6nSxOOKBhk+oTqzd6yeUw21AWHXsKNI= Subject key identifier: 56:0F:C9:DA:A5:C6:91:85:C7:16:C4:F7:F1:8C:9F:56:7A:06:0B:FE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6FB4BECE75BB181AD7E7947FFA89184A02174DCD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa Signing time: Fri 19 Dec 2025 03:27:37 +0000 ROA not before: Fri 19 Dec 2025 03:22:37 +0000 ROA not after: Fri 18 Dec 2026 03:27:37 +0000 asID: 153717 IP address blocks: 163.223.142.0/23 maxlen: 24 2001:df5:4240::/48 maxlen: 48 2407:ed40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 13:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b4:be:ce:75:bb:18:1a:d7:e7:94:7f:fa:89:18:4a:02:17:4d:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 19 03:22:37 2025 GMT Not After : Dec 18 03:27:37 2026 GMT Subject: CN=560FC9DAA5C69185C716C4F7F18C9F567A060BFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:31:6f:9c:cc:a6:f1:14:b5:85:ea:4c:31:68: ce:ea:2d:f6:cc:c7:4e:06:36:b7:36:f9:d7:92:56: 5d:7a:d3:09:99:58:a2:4d:ad:a9:8f:ef:f8:67:51: 1c:71:25:3e:22:a5:42:ab:38:0c:d0:4a:50:01:52: ca:00:68:ae:91:60:16:18:44:c0:9d:66:13:6b:13: 7a:2f:e8:e1:5e:7d:0f:99:42:34:ae:a2:f4:23:2c: 7d:19:4f:db:d9:95:30:48:df:9c:61:19:71:5b:17: f4:74:3e:4d:a1:b8:93:1c:fe:27:5a:30:a8:81:a1: ed:57:c9:50:e4:f6:bc:76:9f:b7:07:63:82:a0:5c: 7b:0a:20:e3:1d:e8:fc:ba:56:fb:80:ed:c0:ca:76: 76:ba:fa:04:b5:bc:b2:12:00:fe:56:67:23:bc:b1: ea:9d:ad:a5:1b:a4:c7:f1:92:8c:2f:5e:66:4c:1e: ef:fb:fa:29:24:75:e1:78:a9:86:d2:17:7f:34:0c: 2c:6b:04:32:77:83:06:f5:c2:be:78:7c:f6:b3:71: 93:c3:ca:85:9b:52:e3:0e:79:40:b9:8a:19:e0:45: 18:57:3b:2f:e8:98:2a:de:c1:20:db:78:70:00:b1: 2f:01:52:81:55:99:e0:bb:45:aa:69:d2:ac:f5:62: 29:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:0F:C9:DA:A5:C6:91:85:C7:16:C4:F7:F1:8C:9F:56:7A:06:0B:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153717.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.223.142.0/23 IPv6: 2001:df5:4240::/48 2407:ed40::/32 Signature Algorithm: sha256WithRSAEncryption 08:84:98:dd:2e:6a:35:41:5c:8e:4f:41:7b:f6:5b:4d:fd:70: 4e:e1:4b:4e:80:dc:73:6a:04:b7:12:ac:a3:93:78:c2:56:92: 63:99:dc:75:81:7b:3d:e0:47:fc:00:9c:47:06:c8:fb:c4:89: c6:38:f5:66:fe:df:ba:e7:25:ef:43:76:13:ef:d0:c7:bb:d9: 25:ef:75:92:5a:0b:db:ba:71:0b:ab:45:a5:a5:f2:46:51:2f: 91:c3:da:2d:dc:fe:12:dc:08:00:d4:00:1a:3e:f1:47:f8:1d: b4:ba:b6:b4:5b:2d:18:e6:02:61:fe:c3:53:2a:1e:05:2f:f5: b2:58:2a:8a:7e:83:7c:f7:84:4d:cf:14:83:20:85:ea:37:d5: 39:b0:2d:9a:d8:ef:4d:80:a7:ae:84:56:63:2c:1d:77:4d:9c: 6e:78:59:24:2c:8e:8f:de:44:04:0f:2c:06:9e:1f:5a:d8:ea: 79:b2:76:5c:35:89:1e:ca:f0:2f:11:b1:72:db:91:df:46:ae: e8:25:91:11:b8:53:85:72:64:51:4e:2d:da:38:ce:a6:8d:a2: 11:81:e2:e5:24:c2:62:8b:ca:ea:64:db:e8:c1:74:4d:45:35: 30:72:32:43:d5:ab:3c:c3:ab:78:ee:f5:9f:57:ee:90:3c:9c: 77:94:55:91 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUb7S+znW7GBrX55R/+okYSgIXTc0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxOTAzMjIzN1oX DTI2MTIxODAzMjczN1owMzExMC8GA1UEAxMoNTYwRkM5REFBNUM2OTE4NUM3MTZD NEY3RjE4QzlGNTY3QTA2MEJGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgxb5zMpvEUtYXqTDFozuot9szHTgY2tzb515JWXXrTCZlYok2tqY/v+GdR HHElPiKlQqs4DNBKUAFSygBorpFgFhhEwJ1mE2sTei/o4V59D5lCNK6i9CMsfRlP 29mVMEjfnGEZcVsX9HQ+TaG4kxz+J1owqIGh7VfJUOT2vHaftwdjgqBcewog4x3o /LpW+4DtwMp2drr6BLW8shIA/lZnI7yx6p2tpRukx/GSjC9eZkwe7/v6KSR14Xip htIXfzQMLGsEMneDBvXCvnh89rNxk8PKhZtS4w55QLmKGeBFGFc7L+iYKt7BINt4 cACxLwFSgVWZ4LtFqmnSrPViKcECAwEAAaOCAegwggHkMB0GA1UdDgQWBBRWD8na pcaRhccWxPfxjJ9WegYL/jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzcxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3BggrBgEFBQcBBwEB/wQoMCYw DAQCAAEwBgMEAaPfjjAWBAIAAjAQAwcAIAEN9UJAAwUAJAftQDANBgkqhkiG9w0B AQsFAAOCAQEACISY3S5qNUFcjk9Be/ZbTf1wTuFLToDcc2oEtxKso5N4wlaSY5nc dYF7PeBH/ACcRwbI+8SJxjj1Zv7fuucl70N2E+/Qx7vZJe91kloL27pxC6tFpaXy RlEvkcPaLdz+EtwIANQAGj7xR/gdtLq2tFstGOYCYf7DUyoeBS/1slgqin6DfPeE Tc8UgyCF6jfVObAtmtjvTYCnroRWYywdd02cbnhZJCyOj95EBA8sBp4fWtjqebJ2 XDWJHsrwLxGxctuR30au6CWREbhThXJkUU4t2jjOpo2iEYHi5STCYovK6mTb6MF0 TUU1MHIyQ9WrPMOreO71n1fukDycd5RVkQ== -----END CERTIFICATE-----Generated at Sun Jan 18 11:27:35 2026 by rpki-client