This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS0.roa File: AS0.roa (raw, json) Hash identifier: VyzBFPyzt0L+Jizt/PjSJpEfoKKjQqtBw6NVJmm0mqw= Subject key identifier: C6:5C:2B:97:FC:18:FB:15:0C:2E:1A:A8:52:B1:49:69:B0:00:13:AE Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0E2EE5F62D472B64B39E88F548A32F9CD5E14905 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS0.roa Signing time: Wed 03 Dec 2025 07:34:01 +0000 ROA not before: Wed 03 Dec 2025 07:29:01 +0000 ROA not after: Wed 02 Dec 2026 07:34:01 +0000 asID: 0 IP address blocks: 157.10.212.0/23 maxlen: 24 157.15.68.0/24 maxlen: 24 157.15.170.0/23 maxlen: 24 157.20.120.0/23 maxlen: 24 157.66.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:2e:e5:f6:2d:47:2b:64:b3:9e:88:f5:48:a3:2f:9c:d5:e1:49:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 3 07:29:01 2025 GMT Not After : Dec 2 07:34:01 2026 GMT Subject: CN=C65C2B97FC18FB150C2E1AA852B14969B00013AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a0:29:0d:cf:a2:32:79:55:bf:7e:22:bc:4a: 62:5b:12:a2:85:1c:08:e2:a5:3e:e5:5a:f7:15:d3: 09:09:e9:c8:e0:10:66:b7:ba:bf:b8:2e:01:29:c5: 24:fc:ea:af:50:d1:5a:eb:75:0a:a6:d8:45:9f:11: 83:87:d7:17:a4:45:f0:ad:ce:3a:f1:de:e4:db:67: 4b:47:ca:e4:13:82:f9:ab:6b:b1:2f:c1:ba:8c:91: 72:c8:f8:1b:4d:b1:ac:db:28:49:28:b0:e3:1a:8c: 7d:79:da:e8:58:da:7c:7d:26:e0:89:3e:a9:9e:55: 0f:96:60:d0:25:02:2b:74:5b:5f:80:b3:a2:34:7c: f3:3f:0f:c1:10:75:90:ca:cc:62:a3:73:19:92:e5: 39:28:28:4c:22:a1:95:e1:40:87:03:dc:e8:fd:4e: 14:89:35:0c:b9:e9:a0:f3:7d:17:1a:e5:cb:42:77: f9:d6:b0:6e:dd:f1:0d:ad:f7:3f:7b:0a:73:af:8d: 2b:08:34:f4:90:a9:8b:49:32:ca:ed:4b:6f:6c:86: 2d:e7:f7:d9:3a:83:39:57:db:36:9a:18:3e:b1:47: 53:eb:23:2d:cc:1e:f9:5d:49:71:0b:bd:3c:d4:78: 29:8f:47:3e:e1:51:2e:c4:5f:0d:db:3e:ba:07:99: 6f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:5C:2B:97:FC:18:FB:15:0C:2E:1A:A8:52:B1:49:69:B0:00:13:AE X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.212.0/23 157.15.68.0/24 157.15.170.0/23 157.20.120.0/23 157.66.126.0/23 Signature Algorithm: sha256WithRSAEncryption 80:ea:3f:09:38:bd:67:4e:b2:56:a2:7f:ab:97:ad:dc:9a:d8: d8:6b:97:ce:c9:ed:16:74:54:00:d5:c3:6b:bd:33:86:7d:95: 21:bc:f4:68:c1:c3:ea:bb:a1:ca:86:ec:43:1e:27:dd:4b:05: 0e:2e:a6:d2:44:eb:29:60:19:a8:5a:67:03:e1:dc:32:be:da: 00:f4:6d:58:ae:14:9a:1d:31:c8:9e:44:7d:c9:f1:21:53:60: e1:dd:6f:00:bc:92:aa:32:ce:c3:5c:e5:d4:15:e8:65:0b:e3: 2f:45:28:db:37:4b:11:42:f6:a3:ba:93:86:37:ce:d6:02:69: 41:37:9f:f0:57:25:59:ce:c0:dd:6c:13:10:75:06:bc:57:98: d0:dd:33:7c:a5:1d:45:4b:ca:84:60:9f:a7:eb:fc:c4:df:71: ab:a8:ba:53:7b:61:99:bc:82:26:64:6c:eb:fe:6b:0b:be:6e: 94:04:09:73:7f:3e:a7:62:a4:17:12:71:33:e3:bb:9a:5e:75: d2:47:b1:9d:fb:fe:87:0d:07:fd:80:65:36:0b:e6:54:28:1f: 8b:12:24:a1:9b:27:23:f6:2d:a6:f8:a4:99:ec:dd:b6:e0:b3: 0e:4f:b4:6f:dd:d1:d5:67:c6:41:a9:1b:08:d7:79:aa:51:99: c5:f4:72:47 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUDi7l9i1HK2Sznoj1SKMvnNXhSQUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIwMzA3MjkwMVoX DTI2MTIwMjA3MzQwMVowMzExMC8GA1UEAxMoQzY1QzJCOTdGQzE4RkIxNTBDMkUx QUE4NTJCMTQ5NjlCMDAwMTNBRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWgKQ3PojJ5Vb9+IrxKYlsSooUcCOKlPuVa9xXTCQnpyOAQZre6v7guASnF JPzqr1DRWut1CqbYRZ8Rg4fXF6RF8K3OOvHe5NtnS0fK5BOC+atrsS/BuoyRcsj4 G02xrNsoSSiw4xqMfXna6FjafH0m4Ik+qZ5VD5Zg0CUCK3RbX4CzojR88z8PwRB1 kMrMYqNzGZLlOSgoTCKhleFAhwPc6P1OFIk1DLnpoPN9Fxrly0J3+dawbt3xDa33 P3sKc6+NKwg09JCpi0kyyu1Lb2yGLef32TqDOVfbNpoYPrFHU+sjLcwe+V1JcQu9 PNR4KY9HPuFRLsRfDds+ugeZb08CAwEAAaOCAeMwggHfMB0GA1UdDgQWBBTGXCuX /Bj7FQwuGqhSsUlpsAATrjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyME8GCCsGAQUFBwELBEMwQTA/BggrBgEFBQcwC4YzcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzAucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgAB MB4DBAGdCtQDBACdD0QDBAGdD6oDBAGdFHgDBAGdQn4wDQYJKoZIhvcNAQELBQAD ggEBAIDqPwk4vWdOslaif6uXrdya2Nhrl87J7RZ0VADVw2u9M4Z9lSG89GjBw+q7 ocqG7EMeJ91LBQ4uptJE6ylgGahaZwPh3DK+2gD0bViuFJodMcieRH3J8SFTYOHd bwC8kqoyzsNc5dQV6GUL4y9FKNs3SxFC9qO6k4Y3ztYCaUE3n/BXJVnOwN1sExB1 BrxXmNDdM3ylHUVLyoRgn6fr/MTfcauoulN7YZm8giZkbOv+awu+bpQECXN/Pqdi pBcScTPju5peddJHsZ37/ocNB/2AZTYL5lQoH4sSJKGbJyP2Lab4pJns3bbgsw5P tG/d0dVnxkGpGwjXeapRmcX0ckc= -----END CERTIFICATE-----Generated at Sat Dec 6 09:49:47 2025 by rpki-client