This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151554.roa File: AS151554.roa (raw, json) Hash identifier: b2/QCt9CQe28NsJvGWtUnX1orQkY0bTJbjuJlPH487A= Subject key identifier: C8:6D:5C:D0:09:4E:30:2A:BC:0F:C6:18:8B:51:D7:53:25:FA:36:7E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B045EDC9FEBA2B3A3EBDC977CACEC79704507A0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151554.roa Signing time: Thu 01 Jan 2026 05:00:00 +0000 ROA not before: Thu 01 Jan 2026 04:55:00 +0000 ROA not after: Thu 31 Dec 2026 05:00:00 +0000 asID: 151554 IP address blocks: 103.244.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:04:5e:dc:9f:eb:a2:b3:a3:eb:dc:97:7c:ac:ec:79:70:45:07:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 1 04:55:00 2026 GMT Not After : Dec 31 05:00:00 2026 GMT Subject: CN=C86D5CD0094E302ABC0FC6188B51D75325FA367E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:56:81:74:d4:93:17:fc:7e:f9:09:4a:7e:f1: d8:66:16:b6:97:ca:58:b8:8e:06:88:ca:1f:3a:42: 7f:8b:38:1d:ff:f4:13:13:d5:bb:cd:10:db:d3:1f: 39:c8:91:4c:77:e7:12:bd:be:02:79:d7:48:1e:10: 00:ac:1f:5e:51:6b:84:ff:12:18:69:2b:c4:1b:43: 5c:b8:55:ae:5c:e0:b7:d2:e9:21:a7:74:3d:3c:16: 5e:5f:e1:e8:1f:93:24:01:8d:af:fc:40:3b:90:8a: 52:60:c8:4a:45:df:07:64:43:8a:76:2c:8f:c8:bd: 0b:3a:73:7f:48:51:12:bd:99:7f:5b:0c:32:a0:d6: 10:91:05:60:5b:f5:7c:74:3b:53:76:4e:f9:ae:2c: fb:64:54:71:66:4d:82:fd:20:30:03:a0:40:4f:c6: 0c:cc:84:3f:5d:67:e3:9d:7a:9d:9a:9f:b7:64:d6: ff:5f:5a:5b:c8:c3:10:fa:d6:20:47:33:ad:34:c4: d9:b0:5f:88:0d:3f:62:f3:8d:bc:e5:5e:5a:03:c0: 28:f2:c7:58:fe:f8:ca:4c:12:9d:57:29:d4:21:34: ad:4c:09:52:67:83:89:0d:fa:73:b0:f8:68:c8:3c: 4f:6a:a6:c7:ad:5a:fc:04:1f:3e:d9:6f:a8:0e:ff: 62:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6D:5C:D0:09:4E:30:2A:BC:0F:C6:18:8B:51:D7:53:25:FA:36:7E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS151554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.104.0/23 Signature Algorithm: sha256WithRSAEncryption 09:dd:68:5e:f3:18:0d:28:01:81:68:34:17:d4:96:bd:a5:1e: be:5d:09:ab:56:5f:d9:f0:9a:3b:81:29:b2:c5:d5:10:d6:15: 65:01:4f:5d:6e:e8:86:13:e7:1a:eb:08:9b:ba:71:f5:51:3a: 6a:9f:b4:e4:7e:12:97:5f:a0:70:8b:12:f1:61:20:aa:dc:7f: b3:6c:64:88:49:28:f5:99:a5:2e:c1:2d:4f:ca:19:b9:b8:66: ba:59:f2:b6:31:a4:d8:06:f0:e8:92:f6:16:fd:b0:d6:eb:74: 57:cb:58:5b:e9:b8:1a:72:58:0f:eb:c1:e4:bb:5b:40:43:4a: 8a:37:5d:31:8c:a5:08:21:c2:11:3a:b6:1f:69:dd:a3:1f:ba: 15:45:0d:d0:55:9e:3e:fc:22:3c:19:ce:a4:6d:a5:a5:be:77: 8e:5c:fd:ea:30:99:b9:ee:a3:f0:ea:c1:49:d8:fe:14:de:2d: 1d:da:12:ff:e7:67:c3:35:67:fd:74:18:bb:c8:e9:fc:d5:ca: 63:0c:2d:97:45:8d:00:54:b9:a1:37:c9:06:e7:0e:9e:f4:c4: a4:75:14:f4:9e:93:77:39:e0:3a:12:7a:79:af:b8:4d:fa:29: 43:3c:04:1a:cd:7e:bd:b5:fb:47:55:33:cc:f0:54:f7:08:b5: cf:2a:e5:8d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOwRe3J/rorOj69yXfKzseXBFB6AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwMTA0NTUwMFoX DTI2MTIzMTA1MDAwMFowMzExMC8GA1UEAxMoQzg2RDVDRDAwOTRFMzAyQUJDMEZD NjE4OEI1MUQ3NTMyNUZBMzY3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKNWgXTUkxf8fvkJSn7x2GYWtpfKWLiOBojKHzpCf4s4Hf/0ExPVu80Q29Mf OciRTHfnEr2+AnnXSB4QAKwfXlFrhP8SGGkrxBtDXLhVrlzgt9LpIad0PTwWXl/h 6B+TJAGNr/xAO5CKUmDISkXfB2RDinYsj8i9Czpzf0hREr2Zf1sMMqDWEJEFYFv1 fHQ7U3ZO+a4s+2RUcWZNgv0gMAOgQE/GDMyEP11n4516nZqft2TW/19aW8jDEPrW IEczrTTE2bBfiA0/YvONvOVeWgPAKPLHWP74ykwSnVcp1CE0rUwJUmeDiQ36c7D4 aMg8T2qmx61a/AQfPtlvqA7/Yp0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTIbVzQ CU4wKrwPxhiLUddTJfo2fjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MTU1NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWf0aDANBgkqhkiG9w0BAQsFAAOCAQEACd1oXvMYDSgBgWg0F9SW vaUevl0Jq1Zf2fCaO4EpssXVENYVZQFPXW7ohhPnGusIm7px9VE6ap+05H4Sl1+g cIsS8WEgqtx/s2xkiEko9ZmlLsEtT8oZubhmulnytjGk2Abw6JL2Fv2w1ut0V8tY W+m4GnJYD+vB5LtbQENKijddMYylCCHCETq2H2ndox+6FUUN0FWePvwiPBnOpG2l pb53jlz96jCZue6j8OrBSdj+FN4tHdoS/+dnwzVn/XQYu8jp/NXKYwwtl0WNAFS5 oTfJBucOnvTEpHUU9J6TdzngOhJ6ea+4TfopQzwEGs1+vbX7R1UzzPBU9wi1zyrl jQ== -----END CERTIFICATE-----Generated at Sun Jan 25 21:36:49 2026 by rpki-client