This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152025.roa File: AS152025.roa (raw, json) Hash identifier: xYcQOTfJrkZaCq8fMKiRDZIkAYn4M13RS7ICdjOypdg= Subject key identifier: DB:D8:B0:46:2B:6D:A9:C4:99:98:7E:FD:32:C8:C5:07:BD:39:44:12 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 45CA780B731C2EF049D270292C3E9DC4013408B1 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152025.roa Signing time: Mon 05 Jan 2026 03:22:01 +0000 ROA not before: Mon 05 Jan 2026 03:17:01 +0000 ROA not after: Mon 04 Jan 2027 03:22:01 +0000 asID: 152025 IP address blocks: 144.79.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:ca:78:0b:73:1c:2e:f0:49:d2:70:29:2c:3e:9d:c4:01:34:08:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 5 03:17:01 2026 GMT Not After : Jan 4 03:22:01 2027 GMT Subject: CN=DBD8B0462B6DA9C499987EFD32C8C507BD394412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:21:45:55:a2:70:c5:b6:39:ef:db:22:ca:15: 38:a3:3f:b1:82:94:18:0a:66:58:bf:4c:ec:99:03: f3:d2:62:51:27:9b:7f:27:fb:29:7a:30:bb:f4:ad: 02:4f:f4:f7:3a:64:53:1a:0d:63:2b:80:b9:2e:f5: 76:43:01:86:98:ab:44:1a:ed:aa:c9:10:31:19:d9: 5b:18:8f:03:50:8d:aa:0c:7b:92:7d:30:5a:b6:cb: 25:e5:09:92:c6:bc:0f:ac:23:c9:a1:ba:e2:0e:7d: 73:92:45:08:f7:86:d6:f6:9f:69:f0:cc:6f:cc:58: 27:56:71:d5:27:22:4b:e4:1a:d6:42:c3:20:46:58: 3f:2f:f5:a4:3b:e6:f6:50:45:39:22:1c:c1:e7:a6: e6:94:0b:3c:b0:f3:e2:31:cf:cd:95:ef:c3:c0:85: f7:60:a0:6e:0a:0e:8d:88:28:23:b1:a1:af:35:e9: 01:34:be:b5:5f:38:0e:bc:31:e0:a1:36:6d:38:60: bf:07:62:eb:a5:58:52:c0:50:12:de:7c:fe:e2:bb: aa:1d:93:45:72:eb:2b:ac:27:9f:e6:61:8e:ad:7a: e6:ef:42:30:6f:bf:4e:c0:9e:d5:bb:f7:a1:4c:d8: a5:e4:f0:bd:73:6f:ac:64:01:77:33:a5:6c:55:7c: c1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D8:B0:46:2B:6D:A9:C4:99:98:7E:FD:32:C8:C5:07:BD:39:44:12 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152025.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.79.195.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:2c:48:bf:b2:0c:3b:a7:0c:16:74:7a:ff:4b:76:38:8a:88: a3:3d:9f:1d:e7:ee:a7:f1:f4:c8:59:06:f5:3a:1a:d0:40:47: 1d:51:f8:db:e2:51:2c:85:28:69:20:46:9b:e9:e9:8b:b0:e2: 87:ee:b7:43:97:6a:b4:ec:9b:03:ac:d5:58:8b:3b:13:5e:3f: 45:43:39:e9:a6:9a:31:86:e2:e6:d5:1a:58:ee:7f:26:7d:58: ad:eb:de:b5:d2:31:bb:39:3b:3d:a9:73:0a:8a:d8:4d:84:75: 36:fc:67:2e:d8:7b:e1:ff:c8:c1:15:db:02:2f:f2:66:bf:7d: 37:1a:42:b4:4a:f8:de:30:0a:d5:70:52:71:05:ce:62:b3:43: 59:59:26:9e:8e:f0:f4:da:9f:bb:48:d3:36:fb:87:a3:8d:43: f0:41:2b:5c:00:71:e6:34:3a:31:f2:97:57:fe:a2:84:71:39: da:77:82:97:d5:f7:89:0f:a1:d7:10:2f:c9:30:1d:70:6f:f9: b6:37:82:cc:b9:ad:7c:4a:56:76:88:04:5e:98:d5:c7:a3:d4: 29:f6:b5:5b:da:82:93:ec:9d:af:81:c1:11:9a:5b:b7:4f:24: f2:52:2e:ac:7b:1b:1b:e0:f4:87:c8:d5:7b:f9:67:0b:d8:11: 8f:f9:6e:5d -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIURcp4C3McLvBJ0nApLD6dxAE0CLEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwNTAzMTcwMVoX DTI3MDEwNDAzMjIwMVowMzExMC8GA1UEAxMoREJEOEIwNDYyQjZEQTlDNDk5OTg3 RUZEMzJDOEM1MDdCRDM5NDQxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALghRVWicMW2Oe/bIsoVOKM/sYKUGApmWL9M7JkD89JiUSebfyf7KXowu/St Ak/09zpkUxoNYyuAuS71dkMBhpirRBrtqskQMRnZWxiPA1CNqgx7kn0wWrbLJeUJ ksa8D6wjyaG64g59c5JFCPeG1vafafDMb8xYJ1Zx1SciS+Qa1kLDIEZYPy/1pDvm 9lBFOSIcweem5pQLPLDz4jHPzZXvw8CF92CgbgoOjYgoI7GhrzXpATS+tV84Drwx 4KE2bThgvwdi66VYUsBQEt58/uK7qh2TRXLrK6wnn+Zhjq165u9CMG+/TsCe1bv3 oUzYpeTwvXNvrGQBdzOlbFV8wdMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTb2LBG K22pxJmYfv0yyMUHvTlEEjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjAyNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJBPwzANBgkqhkiG9w0BAQsFAAOCAQEAeyxIv7IMO6cMFnR6/0t2 OIqIoz2fHefup/H0yFkG9Toa0EBHHVH42+JRLIUoaSBGm+npi7Dih+63Q5dqtOyb A6zVWIs7E14/RUM56aaaMYbi5tUaWO5/Jn1YrevetdIxuzk7PalzCorYTYR1Nvxn Lth74f/IwRXbAi/yZr99NxpCtEr43jAK1XBScQXOYrNDWVkmno7w9Nqfu0jTNvuH o41D8EErXABx5jQ6MfKXV/6ihHE52neCl9X3iQ+h1xAvyTAdcG/5tjeCzLmtfEpW dogEXpjVx6PUKfa1W9qCk+ydr4HBEZpbt08k8lIurHsbG+D0h8jVe/lnC9gRj/lu XQ== -----END CERTIFICATE-----Generated at Wed Jan 21 10:27:55 2026 by rpki-client