This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153107.roa File: AS153107.roa (raw, json) Hash identifier: cWXj7SlSzUJrBXcVux/qAy4PGM+3I2p8p3vpl37MccQ= Subject key identifier: 03:2C:65:C5:15:E3:D4:BC:20:CC:32:AA:1D:15:E0:9E:BC:99:58:A5 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 771CF6B5FD6410F201E3DCDD8326BEE01E216914 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153107.roa Signing time: Wed 21 Jan 2026 03:33:07 +0000 ROA not before: Wed 21 Jan 2026 03:28:07 +0000 ROA not after: Wed 20 Jan 2027 03:33:07 +0000 asID: 153107 IP address blocks: 2402:4520::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:1c:f6:b5:fd:64:10:f2:01:e3:dc:dd:83:26:be:e0:1e:21:69:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 21 03:28:07 2026 GMT Not After : Jan 20 03:33:07 2027 GMT Subject: CN=032C65C515E3D4BC20CC32AA1D15E09EBC9958A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:87:64:c7:b4:f1:05:10:91:c0:b7:d2:12:26: c9:a2:98:3a:e6:96:73:21:99:01:7f:4b:0b:01:2a: 7d:e0:91:e0:45:eb:f4:7c:68:4d:55:ac:e8:33:a9: c3:2d:10:66:e2:98:e7:e1:82:8f:7a:99:23:e6:44: ab:94:cc:57:89:2e:5f:78:18:63:d7:62:4a:73:5a: 2a:bb:08:7a:c1:56:e8:ae:73:dc:ed:e4:27:08:6f: d1:65:89:ae:06:86:c5:43:f1:19:fa:c5:b4:36:1c: 85:2c:2a:26:d1:b3:a2:8d:35:a7:d4:a2:66:d2:2a: d8:5b:49:a7:39:63:f7:cb:56:ee:e2:c2:60:6a:62: 91:99:f9:c1:7e:b8:e1:d6:82:84:ff:a1:07:10:ee: e6:f4:42:15:30:14:09:8e:2e:73:f8:7b:ab:78:78: 48:17:56:5e:f6:b4:52:98:64:f9:a6:a4:be:f7:a1: 85:73:55:e7:1d:ca:97:8a:94:f5:38:27:4b:b1:39: 98:22:df:ac:0d:78:38:e8:64:76:d3:e0:c6:77:91: ca:e7:96:ed:64:08:56:83:c9:22:b9:0e:d2:b2:1e: bc:45:75:3c:d0:33:ee:d4:e2:c9:db:19:4f:78:f2: 95:bd:17:ef:cc:19:d9:24:ee:d5:5d:7e:ce:88:ac: 09:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2C:65:C5:15:E3:D4:BC:20:CC:32:AA:1D:15:E0:9E:BC:99:58:A5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS153107.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4520::/32 Signature Algorithm: sha256WithRSAEncryption 6f:05:81:04:4e:1b:67:3e:97:db:ba:21:70:28:8a:88:01:b7: 57:e2:6f:3e:45:b9:75:2c:3f:d1:c4:c5:ca:a6:4b:8a:7d:31: 00:13:11:65:14:68:c2:49:d3:f4:8e:e8:16:c8:d5:0d:c7:96: 16:74:1f:37:2a:7c:71:f8:b1:1a:24:01:99:22:fe:76:8a:ba: 83:a1:69:3c:2e:29:70:fb:e4:c3:fc:53:05:5f:6f:02:fc:63: e2:71:8a:40:23:39:ad:4b:2f:51:25:b0:7f:38:5b:e6:f1:fe: 82:40:d3:2c:83:d7:b2:b7:78:5a:89:10:ee:ef:26:7b:c2:80: ef:e2:a0:33:78:62:87:a4:60:bc:7a:24:86:28:b3:d8:43:18: 59:15:6b:73:33:dd:c0:81:17:59:8b:33:cb:eb:7a:24:08:93: 65:2f:69:27:f5:67:ca:f6:bb:d6:77:03:be:16:b7:0b:22:73: 31:73:c8:e7:33:c7:55:3b:06:4d:9c:fe:ea:86:6c:52:87:ff: c0:d1:55:54:35:d1:14:66:1f:1c:bc:a1:2b:23:a8:90:61:d7: fd:f1:ee:e1:96:b3:86:22:08:6d:91:bc:8d:c1:7e:e1:c8:4a: b1:a2:8a:8b:5c:35:a4:90:aa:f9:f2:17:7d:64:5c:5a:0d:a9: c3:4e:21:a6 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUdxz2tf1kEPIB49zdgya+4B4haRQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyMTAzMjgwN1oX DTI3MDEyMDAzMzMwN1owMzExMC8GA1UEAxMoMDMyQzY1QzUxNUUzRDRCQzIwQ0Mz MkFBMUQxNUUwOUVCQzk5NThBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+HZMe08QUQkcC30hImyaKYOuaWcyGZAX9LCwEqfeCR4EXr9HxoTVWs6DOp wy0QZuKY5+GCj3qZI+ZEq5TMV4kuX3gYY9diSnNaKrsIesFW6K5z3O3kJwhv0WWJ rgaGxUPxGfrFtDYchSwqJtGzoo01p9SiZtIq2FtJpzlj98tW7uLCYGpikZn5wX64 4daChP+hBxDu5vRCFTAUCY4uc/h7q3h4SBdWXva0Uphk+aakvvehhXNV5x3Kl4qU 9TgnS7E5mCLfrA14OOhkdtPgxneRyueW7WQIVoPJIrkO0rIevEV1PNAz7tTiydsZ T3jylb0X78wZ2STu1V1+zoisCS8CAwEAAaOCAdEwggHNMB0GA1UdDgQWBBQDLGXF FePUvCDMMqodFeCevJlYpTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MzEwNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQCRSAwDQYJKoZIhvcNAQELBQADggEBAG8FgQROG2c+l9u6IXAo iogBt1fibz5FuXUsP9HExcqmS4p9MQATEWUUaMJJ0/SO6BbI1Q3HlhZ0HzcqfHH4 sRokAZki/naKuoOhaTwuKXD75MP8UwVfbwL8Y+JxikAjOa1LL1ElsH84W+bx/oJA 0yyD17K3eFqJEO7vJnvCgO/ioDN4YoekYLx6JIYos9hDGFkVa3Mz3cCBF1mLM8vr eiQIk2UvaSf1Z8r2u9Z3A74WtwsiczFzyOczx1U7Bk2c/uqGbFKH/8DRVVQ10RRm Hxy8oSsjqJBh1/3x7uGWs4YiCG2RvI3BfuHISrGiiotcNaSQqvnyF31kXFoNqcNO IaY= -----END CERTIFICATE-----Generated at Sun Jan 25 22:49:53 2026 by rpki-client