This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa File: AS152003.roa (raw, json) Hash identifier: Ud6kNavkRY/p3txp+IoHQ4kpzcTLhmibk8jDxS07lic= Subject key identifier: 9A:E5:A7:4D:89:FA:A1:53:BF:F5:C4:B7:34:05:E4:E1:72:45:89:41 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7429EFF9FFA510FD18CDDFB9248AD773C6F2C5F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa Signing time: Tue 09 Sep 2025 05:00:23 +0000 ROA not before: Tue 09 Sep 2025 04:55:23 +0000 ROA not after: Tue 08 Sep 2026 05:00:23 +0000 asID: 152003 IP address blocks: 115.84.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:29:ef:f9:ff:a5:10:fd:18:cd:df:b9:24:8a:d7:73:c6:f2:c5:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 9 04:55:23 2025 GMT Not After : Sep 8 05:00:23 2026 GMT Subject: CN=9AE5A74D89FAA153BFF5C4B73405E4E172458941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3e:6c:d8:58:5a:3c:c0:27:c8:9d:62:a4:88: e9:b0:4e:20:a7:4b:5d:87:5c:5a:01:cf:3c:f5:b9: 53:c5:51:2e:79:e5:da:10:5d:c3:66:fe:37:ec:94: 7c:dc:5d:5a:49:82:d7:99:ed:d0:21:e0:94:86:38: f6:8f:c8:54:fc:96:f3:55:bc:d9:54:17:93:c4:03: 19:83:85:9b:4c:9b:15:df:10:79:24:ff:d5:d8:ad: fc:db:e0:db:08:ec:ee:80:04:96:53:43:59:16:6e: 0e:a0:e3:dd:bf:c5:2c:ed:1e:1a:d1:14:45:c3:8a: 67:89:67:85:7d:69:0c:39:f8:d5:fc:19:10:77:f5: 17:2b:b7:d8:01:cf:b7:72:f0:3b:5e:c2:74:32:db: 52:85:a6:2c:a3:ec:82:27:2b:6f:8f:10:28:2a:47: 1d:9a:66:99:34:a4:0c:1b:59:c9:a4:31:d7:b1:98: cd:e6:fb:83:0a:99:3b:45:92:28:a7:66:ea:83:11: 9f:ee:bb:33:04:fc:43:12:17:7f:0c:21:41:84:c6: 2d:62:be:90:96:b3:7e:56:0e:20:f1:6e:37:27:99: 70:89:2d:68:f9:c2:1d:b0:92:a9:1c:3a:cb:00:9c: 65:90:ab:80:6b:12:bf:af:5a:9c:70:da:53:ac:76: 34:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E5:A7:4D:89:FA:A1:53:BF:F5:C4:B7:34:05:E4:E1:72:45:89:41 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152003.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.84.175.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:d6:86:5b:a7:f6:50:2d:e1:dc:8f:b2:f1:d8:43:e9:37:0a: 79:04:05:17:de:eb:0d:2a:da:5e:d5:92:14:5a:70:8a:db:02: 61:73:2b:cb:ca:2a:69:5c:e7:e8:da:55:7e:69:9f:5c:ca:79: 23:89:90:3c:71:a7:86:a9:f4:61:85:f1:76:a7:46:3e:9c:b4: 9c:35:76:67:aa:d7:37:0f:89:7f:c4:07:00:64:39:3e:32:1d: 0c:f1:cf:3f:80:71:87:42:12:10:29:fd:45:6d:74:d5:04:84: de:16:71:91:62:c6:d5:56:2b:79:ec:9a:28:4a:ff:cc:c4:52: 6e:df:eb:72:ae:25:86:93:d2:80:6f:1d:31:c0:b8:b2:00:09: 16:60:e8:f4:4a:43:c7:94:fc:e9:dd:fa:24:47:dd:46:83:f0: cb:0e:cf:00:c1:90:a1:fc:3e:41:0a:51:38:68:e6:49:3a:f3: 88:cb:d9:e3:cd:07:bb:01:b7:a7:93:ee:29:d1:a5:d0:66:26: b4:7f:96:25:f8:17:3a:94:ee:af:a8:48:67:17:2e:37:bd:1f: e3:3b:b3:02:65:08:d5:40:c4:bc:f3:de:e6:70:0b:cd:06:20: 9f:f3:19:5a:55:13:be:14:d1:9c:28:78:51:59:0e:09:69:50: 1c:04:2e:36 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdCnv+f+lEP0Yzd+5JIrXc8byxfEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwOTA0NTUyM1oX DTI2MDkwODA1MDAyM1owMzExMC8GA1UEAxMoOUFFNUE3NEQ4OUZBQTE1M0JGRjVD NEI3MzQwNUU0RTE3MjQ1ODk0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALo+bNhYWjzAJ8idYqSI6bBOIKdLXYdcWgHPPPW5U8VRLnnl2hBdw2b+N+yU fNxdWkmC15nt0CHglIY49o/IVPyW81W82VQXk8QDGYOFm0ybFd8QeST/1dit/Nvg 2wjs7oAEllNDWRZuDqDj3b/FLO0eGtEURcOKZ4lnhX1pDDn41fwZEHf1Fyu32AHP t3LwO17CdDLbUoWmLKPsgicrb48QKCpHHZpmmTSkDBtZyaQx17GYzeb7gwqZO0WS KKdm6oMRn+67MwT8QxIXfwwhQYTGLWK+kJazflYOIPFuNyeZcIktaPnCHbCSqRw6 ywCcZZCrgGsSv69anHDaU6x2NMcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSa5adN ifqhU7/1xLc0BeThckWJQTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAwMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAHNUrzANBgkqhkiG9w0BAQsFAAOCAQEAHNaGW6f2UC3h3I+y8dhD 6TcKeQQFF97rDSraXtWSFFpwitsCYXMry8oqaVzn6NpVfmmfXMp5I4mQPHGnhqn0 YYXxdqdGPpy0nDV2Z6rXNw+Jf8QHAGQ5PjIdDPHPP4Bxh0ISECn9RW101QSE3hZx kWLG1VYreeyaKEr/zMRSbt/rcq4lhpPSgG8dMcC4sgAJFmDo9EpDx5T86d36JEfd RoPwyw7PAMGQofw+QQpROGjmSTrziMvZ480HuwG3p5PuKdGl0GYmtH+WJfgXOpTu r6hIZxcuN70f4zuzAmUI1UDEvPPe5nALzQYgn/MZWlUTvhTRnCh4UVkOCWlQHAQu Ng== -----END CERTIFICATE-----Generated at Wed Dec 3 14:41:47 2025 by rpki-client