This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154430.roa File: AS154430.roa (raw, json) Hash identifier: NqKB2XScJI/o7DrRIm/hzeokZZpDxcBnrJSEz3fNY4o= Subject key identifier: 46:3C:4D:45:99:3B:5F:F1:B1:C7:C6:3D:33:0D:60:59:0C:DF:A5:35 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2E27DBEB1A67C904956295D568B7BD0BEE1033B5 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154430.roa Signing time: Wed 17 Dec 2025 08:46:01 +0000 ROA not before: Wed 17 Dec 2025 08:41:01 +0000 ROA not after: Wed 16 Dec 2026 08:46:01 +0000 asID: 154430 IP address blocks: 144.79.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 09:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:27:db:eb:1a:67:c9:04:95:62:95:d5:68:b7:bd:0b:ee:10:33:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 17 08:41:01 2025 GMT Not After : Dec 16 08:46:01 2026 GMT Subject: CN=463C4D45993B5FF1B1C7C63D330D60590CDFA535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:da:65:05:4d:aa:cf:2a:96:48:b6:0e:b7:c7: 20:04:11:58:59:b3:e1:16:b2:0c:ec:9d:03:9e:36: bc:66:17:3a:33:5f:28:6a:14:9e:5c:39:ed:c7:08: d4:bc:fe:18:95:fe:34:40:53:a2:9e:2d:45:fa:b7: 7c:c0:4f:57:3b:c4:0f:50:8b:0c:1f:5b:98:8a:1e: da:57:c1:c3:ef:e8:26:3a:a4:a8:c2:94:dc:f2:41: 05:08:40:48:f1:bc:e1:2a:37:4d:5a:92:f0:97:f8: af:2c:aa:ce:42:79:be:c0:ed:f8:31:32:3c:b4:43: 79:ab:14:d3:fc:99:35:44:d6:a8:8b:90:55:b8:35: 13:b5:5c:2e:60:fa:6b:2b:4d:28:12:89:e0:39:65: 55:f1:3a:32:ba:f8:1c:45:f2:47:16:88:7a:8a:36: 72:83:97:ef:01:49:48:0e:5d:57:d3:1e:67:ad:ff: 72:0b:25:9d:f7:84:4f:16:1f:a2:c7:e4:ae:c8:e6: 9a:da:92:f0:8c:00:b9:06:e8:91:4a:b2:13:4c:2f: 84:47:9e:d7:fd:0a:bf:71:72:81:5f:de:1c:c1:3c: d6:57:02:be:2b:82:e4:d0:fd:08:13:ba:d4:8c:9a: 8f:50:66:96:16:33:4b:ee:e3:70:49:7b:51:16:4a: e1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3C:4D:45:99:3B:5F:F1:B1:C7:C6:3D:33:0D:60:59:0C:DF:A5:35 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS154430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.24.0/23 Signature Algorithm: sha256WithRSAEncryption 90:1a:20:27:a1:b7:23:68:e3:a2:0b:9c:d1:76:fe:96:88:38: 44:07:c0:3d:30:5f:15:2d:ec:5b:56:d7:74:c8:f9:77:e5:d4: 92:68:b2:b3:f3:52:bd:02:b4:1d:91:cd:2e:71:03:1b:b4:0a: d1:a8:a6:1e:83:27:d6:ba:4a:c3:70:c6:c0:fb:eb:a1:82:77: 9a:a0:ea:10:32:a9:2a:b9:0a:da:a9:53:e1:f1:45:e7:ad:f6: 85:db:26:b5:7f:99:cc:68:aa:8b:ae:46:1b:08:6f:72:0c:de: 7f:1b:0a:92:f7:90:65:89:9e:02:a0:1b:5d:f5:3a:17:f7:32: 5b:40:bc:27:6e:a2:0d:a0:e1:ed:e9:46:10:e7:44:19:86:32: ab:2a:57:ce:86:60:ef:5f:b4:ca:ae:2b:30:ca:56:bb:45:31: d1:ca:23:74:16:c7:f6:ea:af:5e:8f:b7:0d:3b:43:13:56:67: a1:30:b8:0f:10:da:aa:5b:c2:98:38:1c:82:4d:b9:1d:ef:29: 30:54:33:f6:f9:0f:af:7c:34:6e:b8:ef:03:55:ed:8a:01:25: eb:3c:45:f7:26:6c:98:94:15:41:03:3a:57:76:00:f0:04:71: e2:de:c0:de:10:1c:cf:73:71:87:ac:bc:81:3b:7a:68:13:65: e6:e1:5f:43 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIULifb6xpnyQSVYpXVaLe9C+4QM7UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIxNzA4NDEwMVoX DTI2MTIxNjA4NDYwMVowMzExMC8GA1UEAxMoNDYzQzRENDU5OTNCNUZGMUIxQzdD NjNEMzMwRDYwNTkwQ0RGQTUzNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALjaZQVNqs8qlki2DrfHIAQRWFmz4RayDOydA542vGYXOjNfKGoUnlw57ccI 1Lz+GJX+NEBTop4tRfq3fMBPVzvED1CLDB9bmIoe2lfBw+/oJjqkqMKU3PJBBQhA SPG84So3TVqS8Jf4ryyqzkJ5vsDt+DEyPLRDeasU0/yZNUTWqIuQVbg1E7VcLmD6 aytNKBKJ4DllVfE6Mrr4HEXyRxaIeoo2coOX7wFJSA5dV9MeZ63/cgslnfeETxYf osfkrsjmmtqS8IwAuQbokUqyE0wvhEee1/0Kv3FygV/eHME81lcCviuC5ND9CBO6 1Iyaj1BmlhYzS+7jcEl7URZK4U8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRGPE1F mTtf8bHHxj0zDWBZDN+lNTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1NDQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZBPGDANBgkqhkiG9w0BAQsFAAOCAQEAkBogJ6G3I2jjoguc0Xb+ log4RAfAPTBfFS3sW1bXdMj5d+XUkmiys/NSvQK0HZHNLnEDG7QK0aimHoMn1rpK w3DGwPvroYJ3mqDqEDKpKrkK2qlT4fFF5632hdsmtX+ZzGiqi65GGwhvcgzefxsK kveQZYmeAqAbXfU6F/cyW0C8J26iDaDh7elGEOdEGYYyqypXzoZg71+0yq4rMMpW u0Ux0cojdBbH9uqvXo+3DTtDE1ZnoTC4DxDaqlvCmDgcgk25He8pMFQz9vkPr3w0 brjvA1XtigEl6zxF9yZsmJQVQQM6V3YA8ARx4t7A3hAcz3Nxh6y8gTt6aBNl5uFf Qw== -----END CERTIFICATE-----Generated at Wed Dec 17 20:07:27 2025 by rpki-client