This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154367.roa File: AS154367.roa (raw, json) Hash identifier: N910jVcJntyirO7jJ9Wz/a2h0OOOIRlTHnCix84UKYw= Subject key identifier: BD:A4:55:4C:CA:DB:53:2E:BC:56:47:25:A3:B9:45:B7:84:E7:27:7C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21DE47B5C9E5339EA10C23751DCFFC7B33C7F8C0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154367.roa Signing time: Wed 17 Dec 2025 09:01:17 +0000 ROA not before: Wed 17 Dec 2025 08:56:17 +0000 ROA not after: Wed 16 Dec 2026 09:01:17 +0000 asID: 154367 IP address blocks: 202.94.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:de:47:b5:c9:e5:33:9e:a1:0c:23:75:1d:cf:fc:7b:33:c7:f8:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 17 08:56:17 2025 GMT Not After : Dec 16 09:01:17 2026 GMT Subject: CN=BDA4554CCADB532EBC564725A3B945B784E7277C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d1:0f:9c:5a:d8:79:d0:e0:2e:83:68:c1:84: d5:1e:a1:64:11:9f:1e:44:ab:27:88:d1:4e:f5:60: c4:1b:17:e7:e3:d8:60:5e:ae:3b:96:8a:ff:ee:62: 0f:d6:ae:95:78:41:2b:1f:21:7a:4b:0e:70:04:4d: 1d:7b:c4:77:2d:fc:f3:92:02:4e:41:44:dc:9a:32: f2:d7:5b:32:1a:b7:3e:27:5d:af:4b:b3:7c:60:21: 2b:56:c3:93:1b:fd:fd:cf:78:4e:f8:7d:9c:53:41: c5:53:f7:6f:2c:d1:c9:be:f5:e6:f8:56:e1:e0:22: 7b:7c:d4:f6:71:9a:bf:8d:6b:8c:b8:40:03:58:5b: c3:ac:bf:07:14:00:c5:dd:24:1e:4e:28:a8:86:9f: c0:dc:14:38:22:28:f0:fd:cc:d9:b7:51:53:19:5b: a9:4e:71:95:b5:0b:47:07:19:b6:3f:4c:8f:b5:82: b1:42:7f:f0:32:bc:4a:6a:a1:2c:86:5e:89:f8:9a: 5b:64:0c:75:dd:3e:1c:d8:6f:9a:03:f0:ed:b5:59: 05:33:4a:83:b2:14:a7:37:d5:a1:55:41:57:a2:ec: 0b:63:7c:d2:d1:dc:20:bf:90:82:a8:65:e2:17:25: cb:c4:b1:bf:20:97:ce:ec:e9:af:12:d4:cb:55:ba: 54:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A4:55:4C:CA:DB:53:2E:BC:56:47:25:A3:B9:45:B7:84:E7:27:7C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154367.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.94.71.0/24 Signature Algorithm: sha256WithRSAEncryption 57:8d:a0:18:38:6e:5b:82:25:f1:95:70:c2:77:3f:ba:fe:bc: 75:c4:61:73:40:26:26:4d:0b:9d:63:88:19:1c:46:60:9b:ce: ca:cb:9c:a1:72:61:c5:1e:31:e2:5b:f3:89:d3:03:3b:7d:8c: 26:56:54:95:91:08:10:2d:11:84:5a:63:5a:17:db:8f:b9:26: 97:84:3e:57:a1:ba:06:9f:a2:61:6e:83:5b:9f:1d:33:75:81: 02:23:e9:2c:18:c1:58:9a:44:95:6a:07:ae:e8:4b:38:2b:42: 69:b8:62:c5:46:9f:e4:22:97:95:d7:2d:7c:05:12:96:96:eb: 06:c3:64:04:2f:06:26:e3:70:c2:bd:fd:50:0e:30:b0:8b:88: 8f:a8:4b:91:47:3d:ca:8b:52:70:e4:fa:4c:a2:57:58:75:e5: a6:7f:79:7d:e1:45:b3:93:0a:4f:67:db:a7:56:15:28:fe:95: 36:1e:58:d7:a1:27:70:86:da:25:91:0e:5c:61:ff:63:6f:da: c1:7c:56:d2:4f:b9:72:61:55:7b:df:17:1c:0f:9a:d9:94:f4: ed:83:a3:e0:b8:6c:f1:6e:34:9e:c7:e9:d5:74:db:e3:21:70: 1c:67:ef:65:de:12:19:72:51:d3:71:ec:ab:cb:7d:c3:bf:92: 78:df:98:ee -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUId5HtcnlM56hDCN1Hc/8ezPH+MAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxNzA4NTYxN1oX DTI2MTIxNjA5MDExN1owMzExMC8GA1UEAxMoQkRBNDU1NENDQURCNTMyRUJDNTY0 NzI1QTNCOTQ1Qjc4NEU3Mjc3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALfRD5xa2HnQ4C6DaMGE1R6hZBGfHkSrJ4jRTvVgxBsX5+PYYF6uO5aK/+5i D9aulXhBKx8heksOcARNHXvEdy3885ICTkFE3Joy8tdbMhq3Piddr0uzfGAhK1bD kxv9/c94Tvh9nFNBxVP3byzRyb715vhW4eAie3zU9nGav41rjLhAA1hbw6y/BxQA xd0kHk4oqIafwNwUOCIo8P3M2bdRUxlbqU5xlbULRwcZtj9Mj7WCsUJ/8DK8Smqh LIZeifiaW2QMdd0+HNhvmgPw7bVZBTNKg7IUpzfVoVVBV6LsC2N80tHcIL+Qgqhl 4hcly8SxvyCXzuzprxLUy1W6VG0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS9pFVM yttTLrxWRyWjuUW3hOcnfDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDM2Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMpeRzANBgkqhkiG9w0BAQsFAAOCAQEAV42gGDhuW4Il8ZVwwnc/ uv68dcRhc0AmJk0LnWOIGRxGYJvOysucoXJhxR4x4lvzidMDO32MJlZUlZEIEC0R hFpjWhfbj7kml4Q+V6G6Bp+iYW6DW58dM3WBAiPpLBjBWJpElWoHruhLOCtCabhi xUaf5CKXldctfAUSlpbrBsNkBC8GJuNwwr39UA4wsIuIj6hLkUc9yotScOT6TKJX WHXlpn95feFFs5MKT2fbp1YVKP6VNh5Y16EncIbaJZEOXGH/Y2/awXxW0k+5cmFV e98XHA+a2ZT07YOj4Lhs8W40nsfp1XTb4yFwHGfvZd4SGXJR03Hsq8t9w7+SeN+Y 7g== -----END CERTIFICATE-----Generated at Fri Dec 19 06:37:23 2025 by rpki-client