This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154330.roa File: AS154330.roa (raw, json) Hash identifier: ZhbmJj4qC9tjvin27EDPFFxMdxArJDUDaB/lBXVnz9E= Subject key identifier: F4:9B:0B:AF:63:E0:6B:88:2B:43:0F:3C:41:FE:6A:FA:7D:3E:F0:DE Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 449B5104E3B4812CA8820B6A48179880301EADE9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154330.roa Signing time: Mon 17 Nov 2025 10:18:19 +0000 ROA not before: Mon 17 Nov 2025 10:13:19 +0000 ROA not after: Mon 16 Nov 2026 10:18:19 +0000 asID: 154330 IP address blocks: 138.252.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:9b:51:04:e3:b4:81:2c:a8:82:0b:6a:48:17:98:80:30:1e:ad:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 17 10:13:19 2025 GMT Not After : Nov 16 10:18:19 2026 GMT Subject: CN=F49B0BAF63E06B882B430F3C41FE6AFA7D3EF0DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a9:85:32:40:bf:bc:16:7a:fa:0e:bf:e2:31: f2:ee:8e:e7:46:21:09:d7:b5:2a:20:04:53:84:b3: 56:be:a5:06:03:79:67:71:5b:b9:47:df:c0:21:81: 3b:ba:ad:b1:ce:ad:57:15:d6:ff:df:5d:d2:b9:43: fe:f2:db:85:fb:81:1f:82:39:e0:3d:f0:a9:f1:ea: b5:18:b9:18:ea:2e:0c:75:59:87:b3:ca:eb:78:a3: ce:ea:a5:eb:be:29:cb:14:02:16:c3:6c:07:46:e0: a4:de:2e:90:b2:f5:f0:8c:77:24:0d:db:b0:58:bc: e0:59:58:e9:1a:18:83:2e:ce:56:03:36:09:8f:a5: eb:64:a1:be:5f:77:34:fe:99:e3:df:75:d8:ea:36: be:bf:d0:59:74:d5:32:b1:87:cd:29:db:35:5b:6e: 51:e7:fa:2b:f4:45:9c:59:53:db:85:7a:80:f5:0c: a8:e3:36:6d:85:ee:c4:f3:6b:07:27:6a:d9:51:f7: 46:3d:bb:e0:b7:39:76:c5:93:d3:90:74:a1:c4:fa: 1c:7a:d3:53:5d:88:35:1f:7c:cb:24:57:b2:48:9a: 5c:1c:47:ad:65:de:d1:a2:02:55:4a:75:a8:5e:0c: 11:83:45:59:e8:6d:f6:b0:40:51:27:41:3f:ae:e9: e9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9B:0B:AF:63:E0:6B:88:2B:43:0F:3C:41:FE:6A:FA:7D:3E:F0:DE X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.65.0/24 Signature Algorithm: sha256WithRSAEncryption 10:dd:99:36:bc:d4:13:9f:79:e8:6a:41:92:c4:7f:6a:eb:54: 8d:ae:5a:0a:1e:04:56:2c:86:12:fd:f2:14:26:6b:0d:c0:1c: 10:f0:05:aa:ac:4f:d0:81:eb:cf:e8:c9:2e:0f:b9:89:45:89: 6b:30:85:8f:c2:45:d3:e4:a7:1b:0d:5a:08:e3:ba:0a:25:37: 3c:ad:e7:59:7d:9a:e8:d0:c1:05:31:f7:4d:ef:a7:e7:69:ee: d4:d4:83:17:aa:a9:ff:8d:55:36:05:61:fb:cb:32:2e:bc:8a: 46:77:70:04:1f:79:40:ba:52:7d:67:a5:61:b4:69:92:a0:81: a9:a8:d8:93:d0:72:f6:9a:2d:c8:1c:11:1e:fc:a5:2d:fb:46: ed:ba:87:3c:43:df:d3:a5:63:51:23:ca:5d:e4:92:83:03:ad: 58:76:6b:75:92:d8:49:2c:4e:5d:0d:36:f0:78:d6:92:58:51: dd:a5:6f:01:7a:a6:57:30:7f:a1:1d:18:29:1e:a9:b7:44:64: a0:9e:15:27:6f:a3:2c:3a:84:b7:b9:18:d2:e0:85:6f:65:f0: 08:0a:53:73:19:02:43:c2:9d:35:13:83:b3:65:2e:38:6d:48: 76:5b:fe:06:1a:2a:6f:15:6c:04:88:3f:f8:93:e8:42:6e:37: de:09:99:0e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURJtRBOO0gSyoggtqSBeYgDAerekwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTExNzEwMTMxOVoX DTI2MTExNjEwMTgxOVowMzExMC8GA1UEAxMoRjQ5QjBCQUY2M0UwNkI4ODJCNDMw RjNDNDFGRTZBRkE3RDNFRjBERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGphTJAv7wWevoOv+Ix8u6O50YhCde1KiAEU4SzVr6lBgN5Z3FbuUffwCGB O7qtsc6tVxXW/99d0rlD/vLbhfuBH4I54D3wqfHqtRi5GOouDHVZh7PK63ijzuql 674pyxQCFsNsB0bgpN4ukLL18Ix3JA3bsFi84FlY6RoYgy7OVgM2CY+l62Shvl93 NP6Z49912Oo2vr/QWXTVMrGHzSnbNVtuUef6K/RFnFlT24V6gPUMqOM2bYXuxPNr Bydq2VH3Rj274Lc5dsWT05B0ocT6HHrTU12INR98yyRXskiaXBxHrWXe0aICVUp1 qF4MEYNFWeht9rBAUSdBP67p6TcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBT0mwuv Y+BriCtDDzxB/mr6fT7w3jAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDMzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIr8QTANBgkqhkiG9w0BAQsFAAOCAQEAEN2ZNrzUE5956GpBksR/ autUja5aCh4EViyGEv3yFCZrDcAcEPAFqqxP0IHrz+jJLg+5iUWJazCFj8JF0+Sn Gw1aCOO6CiU3PK3nWX2a6NDBBTH3Te+n52nu1NSDF6qp/41VNgVh+8syLryKRndw BB95QLpSfWelYbRpkqCBqajYk9By9potyBwRHvylLftG7bqHPEPf06VjUSPKXeSS gwOtWHZrdZLYSSxOXQ028HjWklhR3aVvAXqmVzB/oR0YKR6pt0RkoJ4VJ2+jLDqE t7kY0uCFb2XwCApTcxkCQ8KdNRODs2UuOG1Idlv+BhoqbxVsBIg/+JPoQm433gmZ Dg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:54:21 2025 by rpki-client