This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152384.roa File: AS152384.roa (raw, json) Hash identifier: GsE9JOozGv6jpR41PwT8hUHDs0tg32UdBuloGBb8j3w= Subject key identifier: 5B:2B:08:EB:E1:CD:A8:50:45:EE:B9:34:ED:EC:07:89:84:58:2C:B5 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 50761C929F2241E9737A4C3C210A1FCEB9727E63 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152384.roa Signing time: Thu 08 Jan 2026 11:00:05 +0000 ROA not before: Thu 08 Jan 2026 10:55:05 +0000 ROA not after: Thu 07 Jan 2027 11:00:05 +0000 asID: 152384 IP address blocks: 157.15.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:76:1c:92:9f:22:41:e9:73:7a:4c:3c:21:0a:1f:ce:b9:72:7e:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:05 2026 GMT Not After : Jan 7 11:00:05 2027 GMT Subject: CN=5B2B08EBE1CDA85045EEB934EDEC078984582CB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8f:f5:be:c7:28:2a:28:fd:d3:c9:20:e6:90: 5e:41:75:6d:51:17:75:4b:7b:10:bf:9f:13:17:47: c4:da:18:f1:de:82:4d:d9:42:9e:a2:a6:32:b0:84: 88:95:75:41:5a:e2:8c:25:0f:2d:2e:bf:27:bd:c8: db:08:77:48:fd:0a:2f:3e:31:b3:2e:67:15:34:a4: d3:e2:e9:49:66:12:77:d8:0f:5a:50:47:d8:ae:dc: d1:66:a6:a8:dd:1f:95:93:5c:70:05:bc:a7:a1:49: f4:c5:39:24:39:aa:79:2d:db:14:31:22:59:ca:eb: a0:66:33:f0:4b:74:e9:5c:eb:74:02:6d:6a:fb:53: 95:b8:ce:84:c6:57:8a:8e:58:78:74:a9:ec:53:80: d5:0b:cf:10:2a:d0:1d:6c:2d:42:5e:46:08:49:e9: a5:df:41:ca:c3:f3:7f:10:4c:1b:74:df:74:26:36: 7c:75:cc:d7:f4:11:03:dd:92:bb:6c:9a:d4:39:ed: 27:81:51:4f:2d:8a:08:73:34:51:b3:f7:73:57:39: 5e:f8:4d:d6:36:ae:75:72:79:cb:28:d6:49:f5:32: 71:a8:e0:ee:36:da:ef:45:98:44:93:29:6b:0b:1d: 7d:2d:b3:43:4b:ff:ba:89:7a:d8:da:d5:5d:69:31: 6a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:2B:08:EB:E1:CD:A8:50:45:EE:B9:34:ED:EC:07:89:84:58:2C:B5 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152384.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.80.0/24 Signature Algorithm: sha256WithRSAEncryption 25:33:5c:fb:cc:e7:29:bf:43:68:89:8a:67:91:fe:b4:ad:33: 5e:88:60:85:e0:83:12:88:fb:02:21:c6:2c:b1:cc:34:a5:69: 0a:b6:27:35:0c:32:47:55:b1:d4:93:33:d1:2b:4f:5a:b5:45: c8:5d:79:72:2d:b9:b3:3b:a0:cc:da:af:04:b6:8b:62:4b:8e: 59:c2:d4:a2:ee:72:f3:f9:8d:c5:80:18:5f:f4:48:a4:39:23: 23:c2:89:91:e3:61:f7:56:cd:31:e6:78:ac:05:4b:5e:a4:d2: 50:00:91:7d:e9:91:ab:4c:e5:2e:90:18:b4:19:f1:5a:7d:fd: 4c:a6:e3:71:0b:40:1e:5d:6b:e3:c2:62:43:2a:a9:83:02:53: 89:23:05:bd:03:71:67:c5:92:ed:3b:f0:a0:2c:c8:e3:0a:07: ad:b3:1b:10:15:60:ca:94:57:96:dc:23:87:e1:3d:cc:ce:92: 45:1a:7d:76:67:c9:d2:b1:f6:80:a1:53:17:7a:0e:ba:20:33: 87:ff:be:d9:3b:c7:88:50:5c:7f:04:ff:cc:2b:3c:97:f4:de: 44:a6:f4:b7:8d:af:4c:1d:52:df:5f:0d:1d:5e:6d:3b:57:a9: 3d:36:70:58:ed:e4:a0:45:4a:2f:c2:21:d6:54:c5:a5:4c:16: 1b:15:64:2e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUHYckp8iQelzekw8IQofzrlyfmMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNVoX DTI3MDEwNzExMDAwNVowMzExMC8GA1UEAxMoNUIyQjA4RUJFMUNEQTg1MDQ1RUVC OTM0RURFQzA3ODk4NDU4MkNCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKqP9b7HKCoo/dPJIOaQXkF1bVEXdUt7EL+fExdHxNoY8d6CTdlCnqKmMrCE iJV1QVrijCUPLS6/J73I2wh3SP0KLz4xsy5nFTSk0+LpSWYSd9gPWlBH2K7c0Wam qN0flZNccAW8p6FJ9MU5JDmqeS3bFDEiWcrroGYz8Et06VzrdAJtavtTlbjOhMZX io5YeHSp7FOA1QvPECrQHWwtQl5GCEnppd9BysPzfxBMG3TfdCY2fHXM1/QRA92S u2ya1DntJ4FRTy2KCHM0UbP3c1c5XvhN1jaudXJ5yyjWSfUycajg7jba70WYRJMp awsdfS2zQ0v/uol62NrVXWkxassCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRbKwjr 4c2oUEXuuTTt7AeJhFgstTAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjM4NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0PUDANBgkqhkiG9w0BAQsFAAOCAQEAJTNc+8znKb9DaImKZ5H+ tK0zXohgheCDEoj7AiHGLLHMNKVpCrYnNQwyR1Wx1JMz0StPWrVFyF15ci25szug zNqvBLaLYkuOWcLUou5y8/mNxYAYX/RIpDkjI8KJkeNh91bNMeZ4rAVLXqTSUACR femRq0zlLpAYtBnxWn39TKbjcQtAHl1r48JiQyqpgwJTiSMFvQNxZ8WS7TvwoCzI 4woHrbMbEBVgypRXltwjh+E9zM6SRRp9dmfJ0rH2gKFTF3oOuiAzh/++2TvHiFBc fwT/zCs8l/TeRKb0t42vTB1S318NHV5tO1epPTZwWO3koEVKL8Ih1lTFpUwWGxVk Lg== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:13 2026 by rpki-client