This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154401.roa File: AS154401.roa (raw, json) Hash identifier: OntxmB0F9iestMiliw4etr9G8XQzsA80DMR5EZPCsqE= Subject key identifier: D1:9F:C5:33:54:38:17:CE:36:51:3B:56:DA:04:56:45:AA:F7:87:7F Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 61D3183CE6DBACE0247A511A15B80345A957A016 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154401.roa Signing time: Mon 08 Dec 2025 02:29:33 +0000 ROA not before: Mon 08 Dec 2025 02:24:33 +0000 ROA not after: Mon 07 Dec 2026 02:29:33 +0000 asID: 154401 IP address blocks: 144.79.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 09:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d3:18:3c:e6:db:ac:e0:24:7a:51:1a:15:b8:03:45:a9:57:a0:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 8 02:24:33 2025 GMT Not After : Dec 7 02:29:33 2026 GMT Subject: CN=D19FC533543817CE36513B56DA045645AAF7877F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:59:ef:b4:ff:8e:33:b6:dd:60:0f:50:c6:0f: 58:c2:90:c3:01:47:86:da:8b:cc:34:61:23:af:4c: 0d:27:95:14:5d:5e:5c:89:22:30:81:b7:39:85:5e: 4b:d8:50:ba:e1:7d:83:89:4c:f0:c7:3d:9c:4b:0f: 34:78:ec:3d:66:f3:85:67:ac:7f:ca:56:c2:5b:a3: 03:9e:d0:b5:e7:c9:f9:96:1f:f4:28:37:23:05:ad: 7d:b9:b6:56:cb:79:aa:0e:b2:55:4a:9f:80:42:c6: 5b:1b:4e:37:d2:13:aa:42:1c:6b:ac:4f:cf:af:0a: 4a:f5:21:67:70:46:66:18:44:7c:ba:a7:f2:2d:ba: 22:8f:32:b5:03:a6:fe:f4:00:99:cb:8e:06:83:df: e5:0f:2b:9e:9c:b7:8f:d1:91:d1:b3:7a:9c:97:59: d8:d9:c7:ab:0b:03:1f:9e:d0:34:fe:6a:82:e5:6f: af:ae:0e:94:4c:c9:de:e9:86:37:91:a2:06:78:dd: 9b:7c:7e:b8:b0:66:9b:43:d4:61:c5:fd:b4:c2:39: 56:2a:f3:69:b9:6e:28:ae:78:57:56:49:a0:8b:b4: 23:d5:4a:69:be:d2:69:92:0f:92:8c:43:9d:81:77: c2:90:ba:f7:13:1d:d3:f5:ae:8e:b2:96:66:99:6d: c1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9F:C5:33:54:38:17:CE:36:51:3B:56:DA:04:56:45:AA:F7:87:7F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154401.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.34.0/23 Signature Algorithm: sha256WithRSAEncryption 14:53:15:b8:74:6c:82:e0:d7:61:42:27:9b:76:bb:31:02:ee: 25:ca:f9:c7:ea:cb:39:1e:e9:83:77:5a:f6:d8:9c:62:cf:ce: 6a:c4:ea:67:0b:e9:fb:30:8e:c0:46:6e:d9:bc:96:84:3a:5c: c5:cd:7a:86:1b:5a:14:4b:4d:3b:de:41:af:1a:c4:90:a5:5b: 8a:2d:e6:71:b1:da:91:bd:58:be:21:2b:04:89:a6:7b:95:e1: 76:35:f4:7c:8b:7c:ed:e4:a2:11:0d:2a:88:45:64:c1:96:89: 38:3b:61:df:f9:42:1c:9c:c3:07:d8:81:65:f9:5a:77:55:9d: 7f:b1:fb:a0:97:3c:9d:05:bf:b5:38:70:24:24:dd:4d:b2:5d: 2f:a3:0f:42:08:2d:81:89:6b:4c:71:b3:0e:77:d6:f0:7d:dd: 0f:f1:1e:55:44:ca:be:82:0a:31:4d:70:f6:ba:32:1d:64:e3: ed:ce:b0:ba:e5:01:7c:a0:6c:ed:2a:22:15:dd:55:ca:90:b8: c3:91:fb:c6:c7:b9:57:9b:70:01:25:88:71:d0:60:14:57:31: d6:c7:cf:da:6f:ba:c9:3e:32:9f:88:62:54:0e:b8:5a:05:fc: bb:03:53:c5:56:2b:79:de:3e:4d:93:df:bd:be:8f:52:fc:61: da:e9:2e:ef -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUYdMYPObbrOAkelEaFbgDRalXoBYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIwODAyMjQzM1oX DTI2MTIwNzAyMjkzM1owMzExMC8GA1UEAxMoRDE5RkM1MzM1NDM4MTdDRTM2NTEz QjU2REEwNDU2NDVBQUY3ODc3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFZ77T/jjO23WAPUMYPWMKQwwFHhtqLzDRhI69MDSeVFF1eXIkiMIG3OYVe S9hQuuF9g4lM8Mc9nEsPNHjsPWbzhWesf8pWwlujA57QtefJ+ZYf9Cg3IwWtfbm2 Vst5qg6yVUqfgELGWxtON9ITqkIca6xPz68KSvUhZ3BGZhhEfLqn8i26Io8ytQOm /vQAmcuOBoPf5Q8rnpy3j9GR0bN6nJdZ2NnHqwsDH57QNP5qguVvr64OlEzJ3umG N5GiBnjdm3x+uLBmm0PUYcX9tMI5VirzabluKK54V1ZJoIu0I9VKab7SaZIPkoxD nYF3wpC69xMd0/WujrKWZpltwScCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTRn8Uz VDgXzjZRO1baBFZFqveHfzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDQwMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZBPIjANBgkqhkiG9w0BAQsFAAOCAQEAFFMVuHRsguDXYUInm3a7 MQLuJcr5x+rLOR7pg3da9ticYs/OasTqZwvp+zCOwEZu2byWhDpcxc16hhtaFEtN O95BrxrEkKVbii3mcbHakb1YviErBImme5XhdjX0fIt87eSiEQ0qiEVkwZaJODth 3/lCHJzDB9iBZflad1Wdf7H7oJc8nQW/tThwJCTdTbJdL6MPQggtgYlrTHGzDnfW 8H3dD/EeVUTKvoIKMU1w9royHWTj7c6wuuUBfKBs7SoiFd1VypC4w5H7xse5V5tw ASWIcdBgFFcx1sfP2m+6yT4yn4hiVA64WgX8uwNTxVYred4+TZPfvb6PUvxh2uku 7w== -----END CERTIFICATE-----Generated at Wed Dec 17 20:07:28 2025 by rpki-client