This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154415.roa File: AS154415.roa (raw, json) Hash identifier: mNlp9/eqCJbfz77bucIRzXU/Krn0+XwiL1k5YAkjyCI= Subject key identifier: 15:A5:63:2F:E5:E7:65:24:07:B9:43:3D:4D:E9:A5:AB:34:DF:27:AD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 76A2110A1151EA220EF35E9CFC0515960A6DD477 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154415.roa Signing time: Tue 20 Jan 2026 07:29:33 +0000 ROA not before: Tue 20 Jan 2026 07:24:33 +0000 ROA not after: Tue 19 Jan 2027 07:29:33 +0000 asID: 154415 IP address blocks: 2001:df6:61c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:a2:11:0a:11:51:ea:22:0e:f3:5e:9c:fc:05:15:96:0a:6d:d4:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 20 07:24:33 2026 GMT Not After : Jan 19 07:29:33 2027 GMT Subject: CN=15A5632FE5E7652407B9433D4DE9A5AB34DF27AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:e0:37:0f:7e:7d:ea:5f:ff:b8:8e:f6:1a: e8:d7:09:ff:1d:43:bf:72:30:f3:cb:d7:7d:f5:cf: b1:ed:14:63:7a:72:4e:05:89:43:a3:da:fe:12:96: 90:39:02:8f:15:ff:47:46:e5:cf:ad:85:ae:d2:3c: 38:be:22:40:74:24:8d:90:09:ce:b7:01:41:de:b4: e3:70:81:6d:1b:96:30:c4:ea:aa:09:54:0e:5b:6a: 75:3d:2b:d3:0e:5c:97:df:58:61:e5:fc:a8:4f:18: ed:50:aa:8f:0d:31:cf:1e:e7:78:af:b4:39:1f:c1: db:cd:8e:7d:49:89:f6:cc:3d:6a:73:13:4f:b0:bd: 9c:52:cf:6d:4c:8b:ac:e3:5b:14:54:49:c8:cf:bc: 36:75:98:62:6b:37:76:8d:18:54:a3:73:92:2a:1d: d2:49:5f:d0:4f:90:58:fd:97:38:47:c2:96:50:84: 9b:7a:d1:75:6b:29:1f:7e:6b:ae:d7:cb:e6:d2:60: be:11:cd:d7:11:21:23:f6:0c:98:26:15:a6:e4:d2: 3f:20:b5:86:9a:64:8c:52:13:90:44:a6:0e:f5:bf: 0a:24:b1:be:64:2d:55:d2:48:d8:f6:80:ff:aa:d4: c6:cb:40:45:27:21:59:65:c9:d7:96:04:46:6e:71: 49:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A5:63:2F:E5:E7:65:24:07:B9:43:3D:4D:E9:A5:AB:34:DF:27:AD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154415.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:61c0::/48 Signature Algorithm: sha256WithRSAEncryption 4a:dd:68:5a:57:a3:ac:4f:2f:d5:d2:38:df:6c:aa:c9:ce:40: 01:fc:87:3c:1b:a7:7f:ca:77:13:37:9d:b8:f9:89:17:1d:ff: ee:3a:03:11:45:6c:7e:56:58:b3:ec:2f:0c:22:72:29:42:31: 61:2c:35:08:8c:09:e2:d5:40:49:26:2b:dc:26:4b:98:d3:55: 06:11:5f:e0:82:b1:7d:a1:eb:ef:2a:11:f4:51:7a:d8:a8:ec: 54:c5:ab:e0:ed:db:12:7b:96:ae:37:22:af:e3:9e:62:53:14: 87:dc:3d:d2:81:5f:19:38:a7:86:32:eb:39:37:23:ef:8e:9a: 25:56:65:56:60:25:12:5d:4f:d7:62:dc:b3:8e:5c:07:c4:50: 09:90:90:6b:3f:a7:7e:a9:8e:a8:d3:1c:81:04:3c:ec:a0:95: 1a:b5:3e:d1:0b:32:bd:b2:42:db:cb:85:55:02:2f:28:91:e6: 52:f3:e6:32:f5:c7:9d:53:ab:ec:d6:4f:9a:b7:d7:0e:9b:11: db:4a:d7:e5:bb:a4:6a:9f:5c:c0:fc:1d:b9:72:84:43:da:f5: 27:0b:6f:40:13:26:43:9d:e5:2b:64:64:d7:d4:e2:68:d5:7c: 07:6a:e5:97:93:80:19:b3:50:63:36:53:c1:ff:f3:b8:32:b8: a7:f0:4c:8c -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUdqIRChFR6iIO816c/AUVlgpt1HcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyMDA3MjQzM1oX DTI3MDExOTA3MjkzM1owMzExMC8GA1UEAxMoMTVBNTYzMkZFNUU3NjUyNDA3Qjk0 MzNENERFOUE1QUIzNERGMjdBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8K4DcPfn3qX/+4jvYa6NcJ/x1Dv3Iw88vXffXPse0UY3pyTgWJQ6Pa/hKW kDkCjxX/R0blz62FrtI8OL4iQHQkjZAJzrcBQd6043CBbRuWMMTqqglUDltqdT0r 0w5cl99YYeX8qE8Y7VCqjw0xzx7neK+0OR/B282OfUmJ9sw9anMTT7C9nFLPbUyL rONbFFRJyM+8NnWYYms3do0YVKNzkiod0klf0E+QWP2XOEfCllCEm3rRdWspH35r rtfL5tJgvhHN1xEhI/YMmCYVpuTSPyC1hppkjFITkESmDvW/CiSxvmQtVdJI2PaA /6rUxstARSchWWXJ15YERm5xSScCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQVpWMv 5edlJAe5Qz1N6aWrNN8nrTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDQxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfZhwDANBgkqhkiG9w0BAQsFAAOCAQEASt1oWlejrE8v1dI4 32yqyc5AAfyHPBunf8p3EzeduPmJFx3/7joDEUVsflZYs+wvDCJyKUIxYSw1CIwJ 4tVASSYr3CZLmNNVBhFf4IKxfaHr7yoR9FF62KjsVMWr4O3bEnuWrjcir+OeYlMU h9w90oFfGTinhjLrOTcj746aJVZlVmAlEl1P12Lcs45cB8RQCZCQaz+nfqmOqNMc gQQ87KCVGrU+0QsyvbJC28uFVQIvKJHmUvPmMvXHnVOr7NZPmrfXDpsR20rX5buk ap9cwPwduXKEQ9r1JwtvQBMmQ53lK2Rk19TiaNV8B2rll5OAGbNQYzZTwf/zuDK4 p/BMjA== -----END CERTIFICATE-----Generated at Wed Jan 21 14:30:06 2026 by rpki-client