This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152373.roa File: AS152373.roa (raw, json) Hash identifier: 9KDZRQxdP+7ik6J7nVOEkz3gLIIZOkthlm9CWPyab1o= Subject key identifier: E5:7F:1A:47:BC:7B:A5:74:AE:35:7C:D8:5F:0D:E3:B7:91:D1:D4:45 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 56792578725784B8E9761AD7C5F42C3FF9D9352C Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152373.roa Signing time: Thu 08 Jan 2026 11:00:07 +0000 ROA not before: Thu 08 Jan 2026 10:55:07 +0000 ROA not after: Thu 07 Jan 2027 11:00:07 +0000 asID: 152373 IP address blocks: 157.15.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:79:25:78:72:57:84:b8:e9:76:1a:d7:c5:f4:2c:3f:f9:d9:35:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:07 2026 GMT Not After : Jan 7 11:00:07 2027 GMT Subject: CN=E57F1A47BC7BA574AE357CD85F0DE3B791D1D445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:99:d0:85:b2:cb:e4:32:af:81:ed:dc:87:3b: 50:ea:64:27:43:4c:e9:38:89:51:8d:f6:25:98:5e: 8b:39:86:33:a8:60:9f:42:f7:76:3b:a3:6b:9b:ea: 7f:03:de:c3:50:cc:d6:11:32:e6:6f:19:de:ca:af: 2e:d2:fd:46:27:64:86:7c:6e:20:e8:0a:2e:0d:2e: f6:d6:c0:b8:9f:28:5d:71:be:98:47:64:a2:2a:6a: b6:fd:65:82:6d:1d:f2:71:7f:a5:0f:0c:65:d5:4f: ea:0e:bf:86:50:3e:36:ce:67:14:c6:c5:ab:6e:a3: 6b:d7:2f:b8:45:e5:18:b2:33:7c:49:f6:1f:2d:48: f2:f5:38:94:0f:01:28:a9:2b:3a:d8:36:2f:48:b9: ed:90:48:3a:60:e9:66:ad:15:25:93:07:8d:f1:8c: 2b:fd:0d:38:89:a4:50:57:b0:fa:45:0d:8c:23:67: a8:0e:4c:47:77:2e:7f:d0:92:54:30:68:a8:40:c6: 96:a3:22:09:04:84:60:c2:fe:95:98:37:49:06:eb: f6:87:5c:4b:9b:14:37:78:8a:35:dc:df:d5:92:0a: ca:ff:8b:7d:72:89:fd:ad:fb:7a:8a:1e:e2:ed:e7: cd:b6:fb:f4:a4:d9:5c:25:00:1a:7c:ec:d7:b1:e9: ff:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7F:1A:47:BC:7B:A5:74:AE:35:7C:D8:5F:0D:E3:B7:91:D1:D4:45 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152373.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.62.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:2a:59:78:d8:f2:c3:a4:9c:85:dc:13:0f:17:4b:27:03:32: 3f:9d:38:3f:2c:34:02:93:9b:6c:6a:56:74:ec:0a:00:2a:49: da:90:f5:0e:5c:34:f6:a8:a3:32:12:da:7e:a6:94:84:de:40: 40:7d:1a:8b:b6:a4:e6:09:98:64:17:3c:73:5f:4b:cc:ce:06: a1:80:19:6e:dc:b2:05:a6:63:aa:14:cc:37:e1:7c:d6:79:f8: 2d:0a:2c:9a:34:6c:e9:a5:3a:3f:09:8c:f7:a2:0d:6d:6e:c6: 4b:80:9e:48:a5:20:9c:ca:5d:06:1f:18:a6:c8:cc:d0:8e:db: 0e:2f:ca:cc:a1:83:dd:5b:d7:f4:0a:7e:8f:78:b7:1c:30:b4: ae:19:44:e1:b9:f9:5a:8e:c8:dd:87:63:66:da:bf:25:42:22: a3:41:a8:5c:3a:63:ac:00:84:e1:de:7c:13:d8:1b:1f:aa:75: 80:6f:16:f0:76:20:8b:0c:04:74:4e:6a:b6:ce:59:14:85:2e: 3d:42:a2:83:f7:6e:78:88:a9:58:14:7b:c7:30:47:62:7d:4d: d3:7e:66:43:4b:d7:4d:4e:a1:9f:f3:f0:cb:07:88:6b:6e:6a: 90:6e:c5:57:9c:84:08:d4:af:55:ee:2c:33:00:f1:d6:72:41: 57:69:dc:f9 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVnkleHJXhLjpdhrXxfQsP/nZNSwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwN1oX DTI3MDEwNzExMDAwN1owMzExMC8GA1UEAxMoRTU3RjFBNDdCQzdCQTU3NEFFMzU3 Q0Q4NUYwREUzQjc5MUQxRDQ0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOyZ0IWyy+Qyr4Ht3Ic7UOpkJ0NM6TiJUY32JZheizmGM6hgn0L3djuja5vq fwPew1DM1hEy5m8Z3sqvLtL9RidkhnxuIOgKLg0u9tbAuJ8oXXG+mEdkoipqtv1l gm0d8nF/pQ8MZdVP6g6/hlA+Ns5nFMbFq26ja9cvuEXlGLIzfEn2Hy1I8vU4lA8B KKkrOtg2L0i57ZBIOmDpZq0VJZMHjfGMK/0NOImkUFew+kUNjCNnqA5MR3cuf9CS VDBoqEDGlqMiCQSEYML+lZg3SQbr9odcS5sUN3iKNdzf1ZIKyv+LfXKJ/a37eooe 4u3nzbb79KTZXCUAGnzs17Hp/9ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTlfxpH vHuldK41fNhfDeO3kdHURTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjM3My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0PPjANBgkqhkiG9w0BAQsFAAOCAQEASipZeNjyw6SchdwTDxdL JwMyP504Pyw0ApObbGpWdOwKACpJ2pD1Dlw09qijMhLafqaUhN5AQH0ai7ak5gmY ZBc8c19LzM4GoYAZbtyyBaZjqhTMN+F81nn4LQosmjRs6aU6PwmM96INbW7GS4Ce SKUgnMpdBh8YpsjM0I7bDi/KzKGD3VvX9Ap+j3i3HDC0rhlE4bn5Wo7I3YdjZtq/ JUIio0GoXDpjrACE4d58E9gbH6p1gG8W8HYgiwwEdE5qts5ZFIUuPUKig/dueIip WBR7xzBHYn1N035mQ0vXTU6hn/PwyweIa25qkG7FV5yECNSvVe4sMwDx1nJBV2nc +Q== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:33 2026 by rpki-client