This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151594.roa File: AS151594.roa (raw, json) Hash identifier: kmnahbxF8nwQDEVX9DwUHDd9DJQP0DQJFoUae5ZiqUM= Subject key identifier: 5D:2A:6A:9F:5B:71:C7:DF:F3:13:64:7A:3A:87:48:17:02:A6:11:F5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5ECFFDDA83C70709A5581A6A9748569B3B8CA0F4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151594.roa Signing time: Wed 17 Dec 2025 04:00:00 +0000 ROA not before: Wed 17 Dec 2025 03:55:00 +0000 ROA not after: Wed 16 Dec 2026 04:00:00 +0000 asID: 151594 IP address blocks: 103.227.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 20:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:cf:fd:da:83:c7:07:09:a5:58:1a:6a:97:48:56:9b:3b:8c:a0:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 17 03:55:00 2025 GMT Not After : Dec 16 04:00:00 2026 GMT Subject: CN=5D2A6A9F5B71C7DFF313647A3A87481702A611F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b8:ba:87:40:4a:d8:5a:d4:11:c5:0c:c1:f2: 13:e2:be:f1:f1:b8:f4:92:1f:31:eb:f0:f9:b3:d6: 3e:0a:65:b2:fe:68:f2:a3:5e:f7:e9:9a:e7:87:a8: ef:e8:26:c4:91:9e:ef:69:fb:32:04:9e:c0:dc:3f: cc:b3:10:7e:0b:c2:6d:18:c7:8a:8e:90:20:24:4e: c9:43:70:80:7d:37:a6:7d:14:54:3b:cd:5b:5a:61: 91:da:49:03:5d:47:84:9c:63:f2:bc:fd:93:3f:8b: 26:95:60:3f:1d:ed:be:7a:e8:3d:ab:dc:e7:7a:9b: b9:64:d2:90:cc:68:22:49:fb:f9:4d:d2:a7:7c:05: fc:8b:40:f4:03:51:68:8b:1f:e6:b0:22:5c:e8:b7: 31:47:d1:74:3b:07:32:e7:81:b6:b7:c6:85:78:57: 68:de:2a:04:9d:32:c9:f5:bb:f3:e8:6c:40:5a:d3: 6a:ed:a9:05:5a:4a:d3:e2:9e:ad:9a:6f:6c:5b:ad: b3:ba:e4:f4:14:29:ac:76:f0:84:17:81:7f:91:e2: 07:69:83:5d:7a:af:83:ce:cc:e3:a7:f6:a5:23:6b: cd:e3:49:5a:95:db:38:10:8a:c9:f7:39:5f:82:36: 23:2f:48:7f:d0:6d:a1:57:b1:10:22:c3:ef:35:bf: c5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:2A:6A:9F:5B:71:C7:DF:F3:13:64:7A:3A:87:48:17:02:A6:11:F5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151594.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.227.0.0/24 Signature Algorithm: sha256WithRSAEncryption 97:fc:a5:69:76:b7:0c:ad:24:4f:23:3c:82:f1:e8:23:35:3a: d2:0b:7e:b2:db:b0:57:7f:24:33:44:ec:8e:54:d3:17:83:1a: ca:3d:73:88:08:85:70:6d:55:21:5a:66:12:28:45:d3:3a:6c: fd:2e:33:61:92:c4:9a:c4:da:50:4d:57:f5:c1:e1:12:4f:76: 0b:de:65:bd:34:6e:a6:8f:e9:c6:75:7b:66:d6:b5:1f:1c:7c: 52:4a:f8:bf:29:d1:0d:03:0b:eb:f9:2c:19:80:2b:40:ea:43: 7f:5b:c9:8b:dc:75:e3:08:99:92:e3:4f:55:e7:92:ab:0b:61: 70:69:e6:e4:35:f4:24:4d:7f:46:f5:44:60:40:87:61:64:b8: ef:0c:4b:29:8b:88:bf:97:36:e5:08:83:5b:e7:ed:46:95:f6: 06:21:ab:ca:1c:79:ed:77:f8:f5:ff:71:2a:40:e2:77:d9:3a: 68:2d:d1:3a:9a:e7:89:ea:b7:12:25:be:60:33:8b:f9:09:68: b3:b5:18:ae:e0:d7:ba:7d:1f:4d:6a:c5:df:0b:a6:14:a4:13: cf:e1:b9:ad:aa:7a:31:bd:47:42:68:ac:69:a1:fd:e6:13:e0: 39:44:7d:0a:e6:8c:fb:01:a5:99:80:92:5d:5d:95:90:15:a5: eb:2d:84:5d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXs/92oPHBwmlWBpql0hWmzuMoPQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxNzAzNTUwMFoX DTI2MTIxNjA0MDAwMFowMzExMC8GA1UEAxMoNUQyQTZBOUY1QjcxQzdERkYzMTM2 NDdBM0E4NzQ4MTcwMkE2MTFGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKy4uodAStha1BHFDMHyE+K+8fG49JIfMevw+bPWPgplsv5o8qNe9+ma54eo 7+gmxJGe72n7MgSewNw/zLMQfgvCbRjHio6QICROyUNwgH03pn0UVDvNW1phkdpJ A11HhJxj8rz9kz+LJpVgPx3tvnroPavc53qbuWTSkMxoIkn7+U3Sp3wF/ItA9ANR aIsf5rAiXOi3MUfRdDsHMueBtrfGhXhXaN4qBJ0yyfW78+hsQFrTau2pBVpK0+Ke rZpvbFuts7rk9BQprHbwhBeBf5HiB2mDXXqvg87M46f2pSNrzeNJWpXbOBCKyfc5 X4I2Iy9If9BtoVexECLD7zW/xX8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRdKmqf W3HH3/MTZHo6h0gXAqYR9TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU5NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfjADANBgkqhkiG9w0BAQsFAAOCAQEAl/ylaXa3DK0kTyM8gvHo IzU60gt+stuwV38kM0TsjlTTF4Mayj1ziAiFcG1VIVpmEihF0zps/S4zYZLEmsTa UE1X9cHhEk92C95lvTRupo/pxnV7Zta1Hxx8Ukr4vynRDQML6/ksGYArQOpDf1vJ i9x14wiZkuNPVeeSqwthcGnm5DX0JE1/RvVEYECHYWS47wxLKYuIv5c25QiDW+ft RpX2BiGryhx57Xf49f9xKkDid9k6aC3ROprnieq3EiW+YDOL+Qlos7UYruDXun0f TWrF3wumFKQTz+G5rap6Mb1HQmisaaH95hPgOUR9CuaM+wGlmYCSXV2VkBWl6y2E XQ== -----END CERTIFICATE-----Generated at Wed Dec 17 18:26:13 2025 by rpki-client