This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153107.roa File: AS153107.roa (raw, json) Hash identifier: GW7lsLRrDSJuKM6yRW0BgQbrk2U+96NIvj0VAcNfM4A= Subject key identifier: 7C:D1:11:05:FD:6E:CD:D7:01:F6:5A:44:46:37:CA:F2:FA:4F:B4:0B Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4D71C3DCC4A695980E2867390D85B52257979D4A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153107.roa Signing time: Thu 08 Jan 2026 11:00:05 +0000 ROA not before: Thu 08 Jan 2026 10:55:05 +0000 ROA not after: Thu 07 Jan 2027 11:00:05 +0000 asID: 153107 IP address blocks: 160.25.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 21:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:71:c3:dc:c4:a6:95:98:0e:28:67:39:0d:85:b5:22:57:97:9d:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:05 2026 GMT Not After : Jan 7 11:00:05 2027 GMT Subject: CN=7CD11105FD6ECDD701F65A444637CAF2FA4FB40B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f0:c5:5b:9d:6f:8e:b3:79:79:ea:db:1d:b4: 0a:4b:84:5f:7d:07:4e:45:9c:b6:1e:e3:d9:38:bd: 25:2e:32:23:b8:f3:5b:40:41:fd:23:b2:42:c8:47: 78:a7:6d:d7:71:0c:78:01:e4:f7:a8:99:04:3c:94: 65:f3:65:30:29:42:1a:67:7c:a4:f4:89:33:ca:d3: 32:1c:9f:8a:eb:13:f5:9f:14:8d:7b:5a:0b:d3:2b: 25:9f:74:61:64:74:80:c2:c3:81:19:41:c1:3e:ad: db:33:89:84:ad:e5:7f:f4:fb:f0:33:c6:d6:d6:47: 54:91:3b:8b:6e:3d:71:ce:b9:1b:ec:bb:14:33:28: 99:69:61:4f:29:c7:7d:96:a7:2c:df:d5:ea:37:a0: c8:0e:4f:f7:1e:ac:bf:3b:35:d0:21:33:fd:ef:f2: 64:ec:b8:04:51:06:95:82:b8:56:3d:39:f4:c7:a4: 23:f2:2b:35:43:70:9d:6c:b7:b8:00:03:93:87:e6: 5a:ac:2f:76:be:b0:51:50:26:93:af:5a:d8:19:1d: 7b:4a:46:73:df:ae:03:0d:de:74:17:81:f8:99:f0: ab:38:b8:84:0c:88:ba:0d:92:f9:c5:86:69:df:e5: 32:b9:da:d2:25:1d:bb:cf:b3:43:32:45:9e:01:9b: 4d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D1:11:05:FD:6E:CD:D7:01:F6:5A:44:46:37:CA:F2:FA:4F:B4:0B X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS153107.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.196.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:76:74:f6:5c:bd:b0:e5:8c:5e:21:27:60:1c:ba:17:fb:8b: 57:5d:a0:d8:c6:d1:db:12:7a:97:ce:20:49:35:8d:5f:60:4b: 22:e1:f8:05:3a:40:93:2a:b3:02:43:ab:af:9f:b0:5b:4c:04: b4:cd:49:ad:92:d2:79:00:b8:64:33:ac:31:35:16:07:74:e1: 0d:f8:12:84:3e:9f:bb:8f:ba:1f:66:0e:a5:04:68:5f:06:03: 49:0c:04:69:0c:46:2c:50:aa:03:d7:0c:41:a9:5a:58:9e:32: e9:92:62:30:f8:23:fa:d1:f8:cf:71:b2:f0:43:5b:25:0d:dc: c4:65:cc:ba:07:ab:1c:99:7e:e6:03:13:90:ee:f6:e2:fd:23: ea:91:db:02:8a:a1:d4:9e:bb:06:c5:4b:8f:c9:51:a5:3a:67: 70:60:34:11:95:da:b3:e4:c4:f2:d8:1f:bd:19:1e:6a:7a:4c: 22:33:0e:78:4a:46:cc:86:80:4e:3a:26:3c:ad:d8:3e:ad:54: f1:6b:bd:fc:d8:98:4f:5b:58:68:f3:60:cd:30:33:e9:0f:a2: cd:08:58:01:37:25:3c:b3:ab:f7:2f:c1:2b:0c:7d:ae:32:b6: ab:0a:a2:f6:b7:d0:41:75:64:57:56:b4:5c:1e:f9:1a:c2:dc: 16:ea:bd:85 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUTXHD3MSmlZgOKGc5DYW1IleXnUowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNVoX DTI3MDEwNzExMDAwNVowMzExMC8GA1UEAxMoN0NEMTExMDVGRDZFQ0RENzAxRjY1 QTQ0NDYzN0NBRjJGQTRGQjQwQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfwxVudb46zeXnq2x20CkuEX30HTkWcth7j2Ti9JS4yI7jzW0BB/SOyQshH eKdt13EMeAHk96iZBDyUZfNlMClCGmd8pPSJM8rTMhyfiusT9Z8UjXtaC9MrJZ90 YWR0gMLDgRlBwT6t2zOJhK3lf/T78DPG1tZHVJE7i249cc65G+y7FDMomWlhTynH fZanLN/V6jegyA5P9x6svzs10CEz/e/yZOy4BFEGlYK4Vj059MekI/IrNUNwnWy3 uAADk4fmWqwvdr6wUVAmk69a2Bkde0pGc9+uAw3edBeB+Jnwqzi4hAyIug2S+cWG ad/lMrna0iUdu8+zQzJFngGbTa8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR80REF /W7N1wH2WkRGN8ry+k+0CzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MzEwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAaAZxDANBgkqhkiG9w0BAQsFAAOCAQEAXnZ09ly9sOWMXiEnYBy6 F/uLV12g2MbR2xJ6l84gSTWNX2BLIuH4BTpAkyqzAkOrr5+wW0wEtM1JrZLSeQC4 ZDOsMTUWB3ThDfgShD6fu4+6H2YOpQRoXwYDSQwEaQxGLFCqA9cMQalaWJ4y6ZJi MPgj+tH4z3Gy8ENbJQ3cxGXMugerHJl+5gMTkO724v0j6pHbAoqh1J67BsVLj8lR pTpncGA0EZXas+TE8tgfvRkeanpMIjMOeEpGzIaATjomPK3YPq1U8Wu9/NiYT1tY aPNgzTAz6Q+izQhYATclPLOr9y/BKwx9rjK2qwqi9rfQQXVkV1a0XB75GsLcFuq9 hQ== -----END CERTIFICATE-----Generated at Mon Jan 26 03:09:42 2026 by rpki-client