This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154336.roa File: AS154336.roa (raw, json) Hash identifier: TICAcfCZbgNRJXM7a40/jW9oDJ9T2HdtUSKN305HMic= Subject key identifier: 0F:36:85:3E:4A:7F:00:AA:58:0C:44:8B:E4:5D:A8:D8:62:8E:44:FE Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3301EDFEB67C567AB11B823D96915DED77BBB3CF Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154336.roa Signing time: Fri 05 Dec 2025 01:33:17 +0000 ROA not before: Fri 05 Dec 2025 01:28:17 +0000 ROA not after: Fri 04 Dec 2026 01:33:17 +0000 asID: 154336 IP address blocks: 138.252.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:01:ed:fe:b6:7c:56:7a:b1:1b:82:3d:96:91:5d:ed:77:bb:b3:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 5 01:28:17 2025 GMT Not After : Dec 4 01:33:17 2026 GMT Subject: CN=0F36853E4A7F00AA580C448BE45DA8D8628E44FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8a:71:8c:aa:b3:78:97:7e:58:4d:ae:96:51: f1:dd:73:14:04:c2:02:1f:15:45:d1:c0:81:df:cc: e9:9d:4a:50:cf:a6:87:96:2d:a3:be:0f:d9:90:6f: cf:a0:d4:bd:78:55:9d:bc:0a:58:82:60:80:5d:9e: 8f:4f:b0:34:ec:2b:4d:15:d7:8f:f6:64:b9:46:96: fa:35:41:0e:70:56:d4:22:2d:d4:88:cc:9d:0c:c4: 56:8b:9f:cb:00:36:8c:e3:a9:b0:42:c7:58:eb:08: 44:a3:56:bd:b7:97:ad:0d:42:80:67:a1:69:ab:98: fd:da:ac:ed:a6:11:d2:52:83:26:27:b8:c8:c3:dd: 95:47:2a:b9:30:29:69:4c:3f:c5:12:93:a6:22:9a: fc:8c:4c:81:75:08:75:89:9a:d4:dc:50:ce:6c:a5: 31:3e:33:72:54:6c:9e:86:54:9c:9d:cd:71:f8:48: 83:7d:c7:ce:3a:e9:3a:de:c5:86:d9:6f:00:c1:82: 45:4d:ca:ca:f8:7a:df:6b:1d:83:c8:87:33:88:24: 9d:f3:2d:e2:17:02:e8:86:af:07:43:15:06:b8:15: 1e:63:b7:7a:a5:49:20:79:45:a1:6b:c2:6b:14:47: 45:42:bb:63:38:e6:e3:05:72:26:b6:c3:cd:5c:af: e2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:36:85:3E:4A:7F:00:AA:58:0C:44:8B:E4:5D:A8:D8:62:8E:44:FE X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.252.86.0/24 Signature Algorithm: sha256WithRSAEncryption 06:fb:94:48:69:3e:7c:b0:ec:90:4e:dc:f4:4e:86:d1:19:65: ce:cf:8b:44:e8:84:47:b6:40:2d:d0:f8:12:98:28:2a:88:5f: bb:15:1a:3e:36:26:e8:aa:a4:7d:76:9f:36:34:5e:55:9a:02: 91:23:e3:84:35:9a:52:7c:82:5e:98:e5:57:dc:6a:29:a0:1f: 03:ff:8a:2b:4a:cc:6e:ec:98:00:45:8a:40:fb:65:3c:a8:3a: 6e:90:89:e5:5d:92:62:aa:34:9d:32:88:e2:77:a7:f9:de:77: ec:82:ae:d6:d3:a6:d4:e9:28:3d:ee:21:01:51:22:f4:65:d5: 74:57:2e:ac:29:4a:d2:82:dd:97:40:fe:29:36:9c:15:6f:95: 49:28:df:20:b9:05:c9:0c:be:87:99:66:cd:1c:0b:3b:c0:f8: 77:81:ed:86:0e:1e:03:e9:b6:a8:a4:fe:b9:13:6d:bd:91:e3: 6c:fc:a2:9e:c9:ed:dd:e7:7b:d3:ac:71:d8:20:c4:1a:30:17: ae:3f:3d:77:7d:eb:2b:aa:33:b4:c8:92:57:f9:e0:9e:9c:f9: fb:0b:fc:39:4d:76:8f:ef:82:3d:27:44:dc:c5:05:9b:fa:20: 92:e0:17:e4:83:28:c6:b4:1a:c1:be:c3:d1:6d:aa:d8:d7:f1: 08:c8:6f:eb -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUMwHt/rZ8VnqxG4I9lpFd7Xe7s88wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIwNTAxMjgxN1oX DTI2MTIwNDAxMzMxN1owMzExMC8GA1UEAxMoMEYzNjg1M0U0QTdGMDBBQTU4MEM0 NDhCRTQ1REE4RDg2MjhFNDRGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANSKcYyqs3iXflhNrpZR8d1zFATCAh8VRdHAgd/M6Z1KUM+mh5Yto74P2ZBv z6DUvXhVnbwKWIJggF2ej0+wNOwrTRXXj/ZkuUaW+jVBDnBW1CIt1IjMnQzEVouf ywA2jOOpsELHWOsIRKNWvbeXrQ1CgGehaauY/dqs7aYR0lKDJie4yMPdlUcquTAp aUw/xRKTpiKa/IxMgXUIdYma1NxQzmylMT4zclRsnoZUnJ3NcfhIg33HzjrpOt7F htlvAMGCRU3Kyvh632sdg8iHM4gknfMt4hcC6IavB0MVBrgVHmO3eqVJIHlFoWvC axRHRUK7Yzjm4wVyJrbDzVyv4vkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQPNoU+ Sn8AqlgMRIvkXajYYo5E/jAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDMzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAIr8VjANBgkqhkiG9w0BAQsFAAOCAQEABvuUSGk+fLDskE7c9E6G 0Rllzs+LROiER7ZALdD4EpgoKohfuxUaPjYm6KqkfXafNjReVZoCkSPjhDWaUnyC XpjlV9xqKaAfA/+KK0rMbuyYAEWKQPtlPKg6bpCJ5V2SYqo0nTKI4nen+d537IKu 1tOm1OkoPe4hAVEi9GXVdFcurClK0oLdl0D+KTacFW+VSSjfILkFyQy+h5lmzRwL O8D4d4Hthg4eA+m2qKT+uRNtvZHjbPyinsnt3ed706xx2CDEGjAXrj89d33rK6oz tMiSV/ngnpz5+wv8OU12j++CPSdE3MUFm/ogkuAX5IMoxrQawb7D0W2q2NfxCMhv 6w== -----END CERTIFICATE-----Generated at Sat Dec 6 12:54:19 2025 by rpki-client