This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152401.roa File: AS152401.roa (raw, json) Hash identifier: vOyvZXDMEO1wWD3w3Upz/+h69/bdS9Y2bwGagvCrKgs= Subject key identifier: 1F:CD:12:6A:81:F6:A7:C9:FC:5C:07:F0:B9:12:64:33:17:CF:70:9E Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7163D82E957E601A463B03B5B0C640045A198B95 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152401.roa Signing time: Thu 08 Jan 2026 11:00:06 +0000 ROA not before: Thu 08 Jan 2026 10:55:06 +0000 ROA not after: Thu 07 Jan 2027 11:00:06 +0000 asID: 152401 IP address blocks: 157.15.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 04:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:63:d8:2e:95:7e:60:1a:46:3b:03:b5:b0:c6:40:04:5a:19:8b:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:06 2026 GMT Not After : Jan 7 11:00:06 2027 GMT Subject: CN=1FCD126A81F6A7C9FC5C07F0B912643317CF709E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d1:ea:74:3c:fd:7f:86:c0:55:e0:50:f7:f9: ce:89:06:4f:de:b7:4c:9d:ca:ca:d9:ff:76:a4:5f: 1a:18:42:1b:fa:0b:85:70:91:a8:e0:aa:4d:6b:5b: 2c:0b:a5:2a:35:e6:98:66:5e:d5:f1:67:48:71:e9: 4f:ff:9a:41:c8:ac:a9:7b:5c:a5:59:84:56:eb:c7: ef:5d:ce:a2:7c:bf:ef:05:62:30:77:f7:43:6f:0b: a8:78:89:05:fb:8d:1a:00:f5:c9:e0:19:62:71:49: ba:38:f6:45:41:e2:37:93:90:5b:ca:c1:85:06:c1: a0:c7:81:38:a5:ef:3a:f8:00:3e:c4:20:08:7e:c8: ff:8f:86:f8:ef:dc:10:9a:f4:57:57:99:f3:83:f9: 2c:e2:98:6d:97:37:b7:9d:07:59:1e:09:db:86:9a: 50:8c:7e:48:9b:db:55:a4:fe:e6:f9:d9:91:ea:3b: 43:57:3e:e9:c2:08:e8:45:95:5d:78:bf:bc:db:2e: 9b:5e:74:aa:6f:40:27:55:94:b3:87:b1:18:b9:77: 46:77:7f:90:21:7e:aa:3b:4a:b3:d3:06:58:b1:e9: 9b:c2:86:45:80:1c:f4:a1:e3:97:5b:95:41:df:e2: 78:cf:14:72:43:7e:44:28:1b:66:23:2d:ba:cb:c4: fe:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CD:12:6A:81:F6:A7:C9:FC:5C:07:F0:B9:12:64:33:17:CF:70:9E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152401.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.118.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:28:08:7e:f1:07:82:44:80:22:3e:3d:09:3d:b3:79:54:01: 2e:68:d7:80:87:cc:b1:87:ab:26:98:31:0a:d0:ab:6b:c6:33: 75:4f:74:d5:38:2c:b4:22:da:b7:7f:e2:ee:e5:e7:8e:96:aa: 80:bd:7d:7f:78:4b:0a:d1:f9:44:a0:aa:17:02:89:33:34:d5: b5:13:db:5e:0f:15:ce:db:f4:17:99:0f:61:05:f6:7f:0f:4a: f7:62:bd:b6:df:52:ed:d1:c0:94:7b:40:7c:ee:2d:45:10:58: 98:0e:91:55:5c:34:f6:b2:80:2f:70:46:d9:a3:70:32:04:f1: 06:c8:82:a6:27:48:76:d6:19:31:c0:7f:dc:31:42:71:75:ec: d6:e9:d0:e7:eb:ef:a3:e9:ab:aa:ca:f6:77:d8:be:4b:b9:36: 0d:11:69:86:a8:05:54:0a:bd:b2:d8:c0:f1:56:f6:40:56:a8: 70:95:01:fd:5c:10:04:b8:60:f2:eb:d3:24:e0:8a:90:e0:6e: ad:d0:43:89:75:cb:be:cf:39:57:0c:2a:f1:d5:44:33:4f:ab: 31:44:74:c6:e7:c3:c4:9d:15:ee:12:72:70:79:92:ad:f1:7d: 0e:7f:7b:8c:3f:0b:5f:9a:c5:26:cd:df:cf:73:af:13:55:6e: a3:0b:c2:ca -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUcWPYLpV+YBpGOwO1sMZABFoZi5UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNloX DTI3MDEwNzExMDAwNlowMzExMC8GA1UEAxMoMUZDRDEyNkE4MUY2QTdDOUZDNUMw N0YwQjkxMjY0MzMxN0NGNzA5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKXR6nQ8/X+GwFXgUPf5zokGT963TJ3Kytn/dqRfGhhCG/oLhXCRqOCqTWtb LAulKjXmmGZe1fFnSHHpT/+aQcisqXtcpVmEVuvH713Oony/7wViMHf3Q28LqHiJ BfuNGgD1yeAZYnFJujj2RUHiN5OQW8rBhQbBoMeBOKXvOvgAPsQgCH7I/4+G+O/c EJr0V1eZ84P5LOKYbZc3t50HWR4J24aaUIx+SJvbVaT+5vnZkeo7Q1c+6cII6EWV XXi/vNsum150qm9AJ1WUs4exGLl3Rnd/kCF+qjtKs9MGWLHpm8KGRYAc9KHjl1uV Qd/ieM8UckN+RCgbZiMtusvE/r8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQfzRJq gfanyfxcB/C5EmQzF89wnjAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjQwMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0PdjANBgkqhkiG9w0BAQsFAAOCAQEAOygIfvEHgkSAIj49CT2z eVQBLmjXgIfMsYerJpgxCtCra8YzdU901TgstCLat3/i7uXnjpaqgL19f3hLCtH5 RKCqFwKJMzTVtRPbXg8Vztv0F5kPYQX2fw9K92K9tt9S7dHAlHtAfO4tRRBYmA6R VVw09rKAL3BG2aNwMgTxBsiCpidIdtYZMcB/3DFCcXXs1unQ5+vvo+mrqsr2d9i+ S7k2DRFphqgFVAq9stjA8Vb2QFaocJUB/VwQBLhg8uvTJOCKkOBurdBDiXXLvs85 Vwwq8dVEM0+rMUR0xufDxJ0V7hJycHmSrfF9Dn97jD8LX5rFJs3fz3OvE1VuowvC yg== -----END CERTIFICATE-----Generated at Mon Feb 2 12:45:02 2026 by rpki-client