This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154164.roa File: AS154164.roa (raw, json) Hash identifier: QikoRnTh8zj8FjUtXlvKb2Bb5kXlO0VKCFR/eGrCmtk= Subject key identifier: 04:65:EB:52:12:C4:9E:1E:0B:FC:CB:09:5F:FC:60:D0:BC:26:F6:45 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 321DEEF2851654BF098EFB829E41913F766A1919 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154164.roa Signing time: Tue 16 Dec 2025 06:47:12 +0000 ROA not before: Tue 16 Dec 2025 06:42:12 +0000 ROA not after: Tue 15 Dec 2026 06:47:12 +0000 asID: 154164 IP address blocks: 192.172.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 09:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:1d:ee:f2:85:16:54:bf:09:8e:fb:82:9e:41:91:3f:76:6a:19:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 16 06:42:12 2025 GMT Not After : Dec 15 06:47:12 2026 GMT Subject: CN=0465EB5212C49E1E0BFCCB095FFC60D0BC26F645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:11:c7:38:2a:9d:9b:03:28:7e:60:31:e0:95: 71:64:d5:c6:b5:ba:72:ac:60:cf:b7:94:f2:db:b4: f1:fc:fb:1d:c6:de:ea:ae:2d:3b:7e:ce:6d:99:2d: d2:90:6d:54:26:2a:d4:8a:84:d0:db:77:eb:97:43: ac:e6:64:fd:bb:97:63:cb:7d:10:30:0d:53:2e:0e: bc:16:88:a9:7e:03:8f:44:a1:3f:82:0a:07:18:da: 9c:88:96:b6:c7:ab:5e:19:26:97:ea:42:91:34:80: 22:d9:75:67:a2:64:98:e5:2d:34:fc:91:5a:87:07: c1:8e:be:fb:1d:35:5f:d0:36:a0:aa:be:2e:8e:5d: 67:81:73:36:d7:5e:d9:85:5a:66:23:6e:6e:ea:90: 02:8c:72:7e:3f:a5:65:f4:0e:fa:f6:bd:6f:d9:2b: a1:62:00:d2:91:95:9a:58:11:58:26:20:8b:63:d0: 2a:41:20:97:68:9d:6f:8d:14:ca:b3:38:30:28:86: 6f:cb:ec:aa:4b:8d:cd:32:da:94:34:f3:04:7d:90: f5:62:97:4e:4c:e5:d9:d5:da:7d:6c:b5:84:e5:5f: 74:3c:27:bf:67:37:da:56:12:52:8c:da:a6:75:c4: 2e:6f:6d:9e:53:e7:c7:7d:46:5e:19:3a:ea:37:a3: ac:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:65:EB:52:12:C4:9E:1E:0B:FC:CB:09:5F:FC:60:D0:BC:26:F6:45 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154164.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.172.246.0/24 Signature Algorithm: sha256WithRSAEncryption 10:d4:9a:a2:15:ce:67:df:13:1e:f4:96:90:2d:91:18:7e:3f: db:56:ea:f4:82:5e:20:b7:ba:ed:57:f2:16:d2:85:13:14:23: 2f:48:b0:e6:04:3a:dd:7e:8a:af:73:2d:38:34:08:b7:1d:56: 93:0d:81:c8:23:15:ce:68:88:91:e7:1b:ec:9f:bd:de:df:9a: 05:e7:8e:e2:fd:c0:b6:c7:08:97:9d:a9:09:63:ea:d8:b6:c3: 75:33:7b:83:96:02:e2:63:eb:db:4b:0a:cb:75:a3:e9:12:3e: 9a:ec:7c:dd:a4:72:d6:df:18:8f:a7:17:79:79:59:2d:8c:59: 61:26:d7:4c:5a:16:d4:94:04:70:d3:d6:69:b7:1d:a8:f2:09: eb:b4:b9:7d:bc:a0:2b:99:87:36:96:ac:49:f2:eb:be:2c:f2: 22:c9:de:8c:b0:6e:33:c8:57:87:20:bb:a3:eb:ab:dd:d8:c4: ad:9d:4f:4d:0f:10:c4:5a:2b:e9:5b:d5:72:d6:29:e6:a5:73: 7d:e7:ef:04:77:87:fa:e1:5b:8a:69:ae:ba:7d:01:62:68:77: f4:4a:fe:cd:3f:fe:13:8f:4c:13:18:4b:f3:2d:d1:e9:1e:14: 97:6e:79:72:fe:f0:b3:cf:e4:9e:a3:2d:4d:ea:50:4c:df:a9: 41:2e:b0:5b -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMh3u8oUWVL8JjvuCnkGRP3ZqGRkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIxNjA2NDIxMloX DTI2MTIxNTA2NDcxMlowMzExMC8GA1UEAxMoMDQ2NUVCNTIxMkM0OUUxRTBCRkND QjA5NUZGQzYwRDBCQzI2RjY0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0RxzgqnZsDKH5gMeCVcWTVxrW6cqxgz7eU8tu08fz7Hcbe6q4tO37ObZkt 0pBtVCYq1IqE0Nt365dDrOZk/buXY8t9EDANUy4OvBaIqX4Dj0ShP4IKBxjanIiW tserXhkml+pCkTSAItl1Z6JkmOUtNPyRWocHwY6++x01X9A2oKq+Lo5dZ4FzNtde 2YVaZiNubuqQAoxyfj+lZfQO+va9b9kroWIA0pGVmlgRWCYgi2PQKkEgl2idb40U yrM4MCiGb8vsqkuNzTLalDTzBH2Q9WKXTkzl2dXafWy1hOVfdDwnv2c32lYSUoza pnXELm9tnlPnx31GXhk66jejrKkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQEZetS EsSeHgv8ywlf/GDQvCb2RTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDE2NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMCs9jANBgkqhkiG9w0BAQsFAAOCAQEAENSaohXOZ98THvSWkC2R GH4/21bq9IJeILe67VfyFtKFExQjL0iw5gQ63X6Kr3MtODQItx1Wkw2ByCMVzmiI kecb7J+93t+aBeeO4v3AtscIl52pCWPq2LbDdTN7g5YC4mPr20sKy3Wj6RI+mux8 3aRy1t8Yj6cXeXlZLYxZYSbXTFoW1JQEcNPWabcdqPIJ67S5fbygK5mHNpasSfLr vizyIsnejLBuM8hXhyC7o+ur3djErZ1PTQ8QxFor6VvVctYp5qVzfefvBHeH+uFb immuun0BYmh39Er+zT/+E49MExhL8y3R6R4Ul255cv7ws8/knqMtTepQTN+pQS6w Ww== -----END CERTIFICATE-----Generated at Wed Dec 17 20:07:27 2025 by rpki-client