This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154345.roa File: AS154345.roa (raw, json) Hash identifier: IEsFXWwIO3DFHH6sHG7eViIIvUHzKBbqp4xHXJV8VNc= Subject key identifier: 72:E1:62:B4:5E:D6:B0:E8:59:69:1D:10:D1:AA:E9:3E:98:2E:03:FE Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 55D5C0E773C317952407AB086ACC13D07CC3B43C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154345.roa Signing time: Wed 03 Dec 2025 07:33:25 +0000 ROA not before: Wed 03 Dec 2025 07:28:25 +0000 ROA not after: Wed 02 Dec 2026 07:33:25 +0000 asID: 154345 IP address blocks: 203.25.66.0/24 maxlen: 24 2001:df6:12c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:d5:c0:e7:73:c3:17:95:24:07:ab:08:6a:cc:13:d0:7c:c3:b4:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 3 07:28:25 2025 GMT Not After : Dec 2 07:33:25 2026 GMT Subject: CN=72E162B45ED6B0E859691D10D1AAE93E982E03FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bd:c6:8a:04:15:41:15:1e:8b:39:5b:5c:d4: 54:43:b8:9d:32:27:bb:d4:c7:b9:89:94:67:a8:28: 14:a8:a8:09:f1:be:5d:61:35:fc:46:09:02:4c:cc: 48:7a:75:85:b0:c3:6d:88:5c:32:5b:89:05:79:83: a7:c9:9c:3e:7f:f0:68:81:55:96:7a:be:00:c7:42: 83:9c:31:16:7e:bf:f7:17:82:39:6a:e6:ad:6d:63: 91:3c:00:da:d3:7d:98:30:40:a9:b9:de:bb:82:92: ac:7d:52:ab:91:af:82:9d:ea:e6:70:22:14:31:70: 82:33:b2:99:e5:93:5c:8e:7a:3c:cc:16:6b:1a:b6: 44:e9:f6:fb:b2:ae:be:e0:39:5c:b9:e5:ba:e4:17: 70:74:b6:64:91:6e:ff:c5:7d:d0:9e:2a:1b:63:a4: 9e:05:0a:e5:4c:77:ce:30:0a:68:ec:34:39:50:91: 75:1f:a2:55:5e:77:f9:84:81:b9:5f:2f:c8:e0:e0: 94:11:d9:21:c0:f8:53:15:31:56:1e:cf:0c:eb:f8: c0:c0:ad:9f:61:0f:86:5f:de:d4:b2:22:b8:a1:ac: 23:be:78:3b:de:23:3b:60:97:50:32:88:3c:6c:ba: 2c:fe:f7:3e:ce:cf:13:15:f4:4c:f1:cf:77:52:64: 08:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:E1:62:B4:5E:D6:B0:E8:59:69:1D:10:D1:AA:E9:3E:98:2E:03:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154345.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.25.66.0/24 IPv6: 2001:df6:12c0::/48 Signature Algorithm: sha256WithRSAEncryption 47:19:e3:1c:df:5e:d9:f1:e7:86:be:5a:ef:94:02:f4:c7:e3: 77:cf:a8:94:20:13:ee:2c:2f:c4:52:42:fa:ed:33:54:9f:dc: 61:e4:5f:1a:f4:02:1f:24:ce:69:04:dc:9e:8e:3e:b9:1d:cc: a4:99:5b:2c:86:a7:55:bf:a1:20:e8:f7:8b:f4:b3:57:4c:b4: 5f:86:21:43:17:0d:fb:f5:03:b7:2d:5d:dc:02:08:e9:40:8b: ba:69:a3:08:a8:cb:58:48:40:36:47:88:51:58:e9:1d:34:7b: b2:4d:e7:00:05:ec:67:ad:08:68:53:7f:ed:c6:7f:a2:51:41: f3:6e:e2:86:27:de:40:61:d7:e8:04:f1:0b:bd:48:2b:d5:05: db:89:c8:68:a8:a5:d0:48:ec:75:59:a4:63:97:d9:35:35:c9: 5b:82:45:6e:36:59:ee:b4:99:db:d7:cc:71:a2:c9:07:de:9a: 56:b2:59:ea:ef:d7:87:19:a9:28:c7:37:a3:fc:6e:a6:d2:9b: 8d:d3:34:67:73:b2:21:b6:11:76:7c:c5:96:3c:0f:2d:32:85: 5d:9f:ac:0d:78:d5:56:07:4a:48:ff:dd:17:9a:5c:3c:b3:f2: 2e:3a:e0:45:cd:a7:50:57:0c:18:47:cc:70:b9:86:34:1d:5e: 90:a6:25:dc -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUVdXA53PDF5UkB6sIaswT0HzDtDwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIwMzA3MjgyNVoX DTI2MTIwMjA3MzMyNVowMzExMC8GA1UEAxMoNzJFMTYyQjQ1RUQ2QjBFODU5Njkx RDEwRDFBQUU5M0U5ODJFMDNGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+9xooEFUEVHos5W1zUVEO4nTInu9THuYmUZ6goFKioCfG+XWE1/EYJAkzM SHp1hbDDbYhcMluJBXmDp8mcPn/waIFVlnq+AMdCg5wxFn6/9xeCOWrmrW1jkTwA 2tN9mDBAqbneu4KSrH1Sq5Gvgp3q5nAiFDFwgjOymeWTXI56PMwWaxq2ROn2+7Ku vuA5XLnluuQXcHS2ZJFu/8V90J4qG2OkngUK5Ux3zjAKaOw0OVCRdR+iVV53+YSB uV8vyODglBHZIcD4UxUxVh7PDOv4wMCtn2EPhl/e1LIiuKGsI754O94jO2CXUDKI PGy6LP73Ps7PExX0TPHPd1JkCPkCAwEAAaOCAeEwggHdMB0GA1UdDgQWBBRy4WK0 Xtaw6FlpHRDRquk+mC4D/jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDM0NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAMsZQjAPBAIAAjAJAwcAIAEN9hLAMA0GCSqGSIb3DQEBCwUAA4IB AQBHGeMc317Z8eeGvlrvlAL0x+N3z6iUIBPuLC/EUkL67TNUn9xh5F8a9AIfJM5p BNyejj65HcykmVsshqdVv6Eg6PeL9LNXTLRfhiFDFw379QO3LV3cAgjpQIu6aaMI qMtYSEA2R4hRWOkdNHuyTecABexnrQhoU3/txn+iUUHzbuKGJ95AYdfoBPELvUgr 1QXbichoqKXQSOx1WaRjl9k1NclbgkVuNlnutJnb18xxoskH3ppWslnq79eHGako xzej/G6m0puN0zRnc7IhthF2fMWWPA8tMoVdn6wNeNVWB0pI/90Xmlw8s/IuOuBF zadQVwwYR8xwuYY0HV6QpiXc -----END CERTIFICATE-----Generated at Wed Dec 3 14:50:03 2025 by rpki-client