This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154475.roa File: AS154475.roa (raw, json) Hash identifier: Hy/yu0203Gk8HsvrOaLPBX/8SdNHEjo9I/wHE0F/T7M= Subject key identifier: 18:8F:2A:39:F6:F5:88:55:72:11:89:62:A8:7A:BD:66:DE:9E:2B:AB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 025680879ECCEAE5887375D08EAA6017911E9935 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154475.roa Signing time: Mon 05 Jan 2026 03:35:20 +0000 ROA not before: Mon 05 Jan 2026 03:30:20 +0000 ROA not after: Mon 04 Jan 2027 03:35:20 +0000 asID: 154475 IP address blocks: 2001:df6:8140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:56:80:87:9e:cc:ea:e5:88:73:75:d0:8e:aa:60:17:91:1e:99:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 5 03:30:20 2026 GMT Not After : Jan 4 03:35:20 2027 GMT Subject: CN=188F2A39F6F5885572118962A87ABD66DE9E2BAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:55:7a:98:46:7b:f2:49:ab:ad:c8:9a:65:e9: 6e:b7:cb:5f:ca:49:d6:fe:8d:cc:9c:60:ef:c2:58: 79:a3:71:bf:63:e5:e8:ba:2d:ca:7e:62:22:0f:14: aa:05:63:4b:e7:68:24:eb:5b:32:f2:c4:5f:7e:b6: 2b:6d:f9:5f:58:84:64:3d:9c:00:68:b4:d8:03:e2: 25:06:70:07:da:19:a1:47:38:93:fb:a8:93:45:0a: 0e:bc:89:62:75:62:af:4a:1a:6e:83:28:fe:bd:b8: 1e:c0:03:47:66:01:54:e3:b8:d3:d9:a6:40:31:da: e1:a6:8e:3c:ed:d4:ee:a9:36:f8:c0:66:30:48:f3: 10:de:cd:d6:b0:59:b9:13:f9:a5:15:4f:8e:c0:fe: 66:22:07:de:c5:7a:1b:f0:04:13:de:1f:98:dc:d4: 48:1b:cc:da:6d:23:cb:59:b6:4d:93:0c:43:49:94: aa:ab:53:14:38:4f:bb:7a:40:2c:b5:b2:23:b2:a8: 0d:8e:72:54:48:b2:10:4f:ac:98:40:0d:35:89:1d: ac:be:00:3e:8f:9c:3e:3a:c4:98:ee:aa:6c:10:59: 1c:3c:e4:a6:3f:b8:55:b6:09:4c:a4:d6:be:7c:19: 23:b3:82:93:d6:c5:9a:f7:74:57:98:17:0f:14:a8: bb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:8F:2A:39:F6:F5:88:55:72:11:89:62:A8:7A:BD:66:DE:9E:2B:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:8140::/48 Signature Algorithm: sha256WithRSAEncryption 16:a5:65:b6:1d:38:e3:60:b6:ab:b9:23:14:5a:b8:12:db:bd: bf:c0:2e:63:55:ed:15:a7:29:29:5a:9a:21:78:91:28:1e:05: af:f9:d3:08:52:57:ed:88:3a:93:88:f5:41:ce:bc:26:93:8a: 45:05:d9:42:47:da:92:fb:4c:a2:aa:9a:b2:1a:ca:4c:7f:93: 1d:fb:3c:3d:c8:72:e0:7b:cf:bf:32:31:df:9d:fd:9d:a7:e6: a4:67:04:16:24:6d:a4:1e:05:3f:bc:bc:14:2f:4c:4e:0a:ca: 4c:83:fa:ed:1f:4e:df:85:3a:17:27:69:58:e2:8e:20:8d:d5: c3:ac:0c:c8:03:04:c6:3c:9d:31:b0:02:a7:87:49:ce:83:1a: 6a:81:f2:ee:e3:8a:96:01:aa:65:94:19:09:e6:17:7f:76:cd: 50:3c:b1:9d:f6:14:b2:be:59:f9:ea:e1:62:48:a6:ff:41:a7: 21:05:d5:c6:61:9b:79:72:95:62:e0:d3:04:b0:c2:85:a0:5d: 66:10:87:c7:68:a9:f9:84:d0:20:cb:7f:85:7e:43:3f:6f:e2: 28:b9:f2:58:bd:e7:a3:34:4a:92:40:9f:e2:35:10:87:53:fb: 3c:39:f5:87:83:52:e7:9b:a0:bb:e3:84:88:b1:a9:45:47:d7: 1d:14:79:2b -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUAlaAh57M6uWIc3XQjqpgF5EemTUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwNTAzMzAyMFoX DTI3MDEwNDAzMzUyMFowMzExMC8GA1UEAxMoMTg4RjJBMzlGNkY1ODg1NTcyMTE4 OTYyQTg3QUJENjZERTlFMkJBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlVephGe/JJq63ImmXpbrfLX8pJ1v6NzJxg78JYeaNxv2Pl6Lotyn5iIg8U qgVjS+doJOtbMvLEX362K235X1iEZD2cAGi02APiJQZwB9oZoUc4k/uok0UKDryJ YnVir0oaboMo/r24HsADR2YBVOO409mmQDHa4aaOPO3U7qk2+MBmMEjzEN7N1rBZ uRP5pRVPjsD+ZiIH3sV6G/AEE94fmNzUSBvM2m0jy1m2TZMMQ0mUqqtTFDhPu3pA LLWyI7KoDY5yVEiyEE+smEANNYkdrL4APo+cPjrEmO6qbBBZHDzkpj+4VbYJTKTW vnwZI7OCk9bFmvd0V5gXDxSou08CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQYjyo5 9vWIVXIRiWKoer1m3p4rqzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDQ3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfaBQDANBgkqhkiG9w0BAQsFAAOCAQEAFqVlth0442C2q7kj FFq4Etu9v8AuY1XtFacpKVqaIXiRKB4Fr/nTCFJX7Yg6k4j1Qc68JpOKRQXZQkfa kvtMoqqashrKTH+THfs8Pchy4HvPvzIx3539nafmpGcEFiRtpB4FP7y8FC9MTgrK TIP67R9O34U6FydpWOKOII3Vw6wMyAMExjydMbACp4dJzoMaaoHy7uOKlgGqZZQZ CeYXf3bNUDyxnfYUsr5Z+erhYkim/0GnIQXVxmGbeXKVYuDTBLDChaBdZhCHx2ip +YTQIMt/hX5DP2/iKLnyWL3nozRKkkCf4jUQh1P7PDn1h4NS55ugu+OEiLGpRUfX HRR5Kw== -----END CERTIFICATE-----Generated at Wed Jan 21 14:30:06 2026 by rpki-client