This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154385.roa File: AS154385.roa (raw, json) Hash identifier: 6hHt9jePgJk2tSHSz/WjxrKtMon1KoRyjuT2Sl9jiI8= Subject key identifier: E1:17:20:1E:FB:3F:CA:63:3B:C6:E1:73:FC:92:8F:76:CE:28:8B:DD Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2D1BFAD41FF4F9287CB1657B0A489C02C2B8E01B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154385.roa Signing time: Mon 08 Dec 2025 03:08:51 +0000 ROA not before: Mon 08 Dec 2025 03:03:51 +0000 ROA not after: Mon 07 Dec 2026 03:08:51 +0000 asID: 154385 IP address blocks: 2001:df6:56c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 13:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:1b:fa:d4:1f:f4:f9:28:7c:b1:65:7b:0a:48:9c:02:c2:b8:e0:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 8 03:03:51 2025 GMT Not After : Dec 7 03:08:51 2026 GMT Subject: CN=E117201EFB3FCA633BC6E173FC928F76CE288BDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a6:0b:b8:5f:ff:f7:8d:dd:a8:48:4f:11:41: 10:1a:db:9e:c1:53:b8:7b:77:fb:26:17:b8:84:86: 37:40:79:33:ba:7d:1d:02:28:d6:0c:6b:37:4a:66: 7b:b7:a8:62:ba:cd:32:34:be:9d:aa:f0:6d:25:c0: 85:37:39:c5:4d:d0:40:32:4d:0f:da:8d:55:b7:39: 9d:23:9f:42:c0:3c:c2:09:50:bd:76:cb:97:4a:24: 23:5e:5b:52:7f:3d:ce:d7:ff:e4:25:31:cf:76:af: 0d:46:5e:29:7e:f8:9e:e9:76:d3:62:04:75:60:49: 78:3b:77:90:c4:8e:aa:53:27:94:d9:a7:73:fe:40: c6:20:6c:f5:9e:7a:de:14:bf:e6:ec:b7:5d:9b:75: 54:c4:7a:27:89:cc:2d:59:69:68:d1:f3:9b:c5:c0: 13:b4:63:f6:b7:8d:18:f0:82:cc:0e:2b:2d:7e:34: 16:c8:13:8a:51:ed:77:2a:dc:95:22:44:cc:6a:ec: 12:01:20:c8:af:24:cf:80:56:7a:53:0c:36:55:cf: 4e:04:9a:34:5d:8b:08:d6:c0:17:c9:ec:a8:cf:f8: ca:b6:7b:b1:ef:ea:c5:b4:7b:d8:cc:d8:91:71:0a: d6:00:f0:7c:1a:54:41:df:36:02:3b:60:ce:b4:fc: c1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:17:20:1E:FB:3F:CA:63:3B:C6:E1:73:FC:92:8F:76:CE:28:8B:DD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS154385.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:56c0::/48 Signature Algorithm: sha256WithRSAEncryption 19:f9:af:fe:d8:93:6c:87:bf:a4:d7:7f:b7:dd:fb:ed:10:76: ec:28:5c:61:94:d8:3f:66:43:be:dc:72:ba:02:77:df:5c:8d: 29:0f:5a:bc:58:44:c8:f7:05:c2:9b:30:1a:7d:f0:2b:84:b0: 5a:55:71:83:8e:59:a9:29:48:13:dc:46:67:71:75:05:d9:6b: 9c:86:ea:4e:9d:af:65:ed:2d:0d:05:95:b2:e6:d7:99:f7:34: 86:ba:36:28:07:9e:b8:f3:8c:a6:71:00:a6:5e:81:a7:17:79: 3a:d8:62:36:db:33:e5:5a:d9:cc:12:c2:b8:38:63:80:e6:92: b0:72:c9:84:c4:a7:9c:2c:2e:cf:c5:04:cd:ef:f1:ff:46:69: dd:ff:bd:85:91:3a:c6:a9:a3:61:ec:59:19:06:3b:19:00:fb: 76:89:76:d0:eb:7d:f9:5b:6a:7a:15:c9:2a:91:65:88:7a:69: cb:2d:2e:13:7b:14:8e:57:e8:84:e4:3a:c3:eb:ca:38:4f:cd: d8:22:b3:82:15:89:70:b3:93:a8:f1:83:63:d1:55:83:b7:ee: fe:5a:c0:32:15:4c:f9:4b:ae:8c:6f:e1:1b:53:4d:c0:c5:91: 75:1c:f9:4f:a5:8c:2f:9c:e3:ce:19:6f:8f:c9:5b:d8:ea:f7: f6:41:07:fb -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIULRv61B/0+Sh8sWV7CkicAsK44BswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIwODAzMDM1MVoX DTI2MTIwNzAzMDg1MVowMzExMC8GA1UEAxMoRTExNzIwMUVGQjNGQ0E2MzNCQzZF MTczRkM5MjhGNzZDRTI4OEJERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKumC7hf//eN3ahITxFBEBrbnsFTuHt3+yYXuISGN0B5M7p9HQIo1gxrN0pm e7eoYrrNMjS+narwbSXAhTc5xU3QQDJND9qNVbc5nSOfQsA8wglQvXbLl0okI15b Un89ztf/5CUxz3avDUZeKX74nul202IEdWBJeDt3kMSOqlMnlNmnc/5AxiBs9Z56 3hS/5uy3XZt1VMR6J4nMLVlpaNHzm8XAE7Rj9reNGPCCzA4rLX40FsgTilHtdyrc lSJEzGrsEgEgyK8kz4BWelMMNlXPTgSaNF2LCNbAF8nsqM/4yrZ7se/qxbR72MzY kXEK1gDwfBpUQd82AjtgzrT8wfMCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBThFyAe +z/KYzvG4XP8ko92ziiL3TAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1NDM4NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfZWwDANBgkqhkiG9w0BAQsFAAOCAQEAGfmv/tiTbIe/pNd/ t9377RB27ChcYZTYP2ZDvtxyugJ331yNKQ9avFhEyPcFwpswGn3wK4SwWlVxg45Z qSlIE9xGZ3F1BdlrnIbqTp2vZe0tDQWVsubXmfc0hro2KAeeuPOMpnEApl6Bpxd5 OthiNtsz5VrZzBLCuDhjgOaSsHLJhMSnnCwuz8UEze/x/0Zp3f+9hZE6xqmjYexZ GQY7GQD7dol20Ot9+VtqehXJKpFliHppyy0uE3sUjlfohOQ6w+vKOE/N2CKzghWJ cLOTqPGDY9FVg7fu/lrAMhVM+UuujG/hG1NNwMWRdRz5T6WML5zjzhlvj8lb2Or3 9kEH+w== -----END CERTIFICATE-----Generated at Fri Dec 19 01:19:16 2025 by rpki-client