This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa File: AS152018.roa (raw, json) Hash identifier: XUM6mfITuCoCmQW2dFlv3epdJCnjjHd6JTfmPBXoaoY= Subject key identifier: 14:C9:5A:BE:A3:79:54:EB:37:95:DD:88:7D:31:5D:69:3B:EE:F6:70 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0897061259B98EDA82AD2C1AD7D8AF8FCB422CC6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa Signing time: Thu 18 Sep 2025 09:02:24 +0000 ROA not before: Thu 18 Sep 2025 08:57:24 +0000 ROA not after: Thu 17 Sep 2026 09:02:24 +0000 asID: 152018 IP address blocks: 27.124.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:97:06:12:59:b9:8e:da:82:ad:2c:1a:d7:d8:af:8f:cb:42:2c:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 18 08:57:24 2025 GMT Not After : Sep 17 09:02:24 2026 GMT Subject: CN=14C95ABEA37954EB3795DD887D315D693BEEF670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:42:be:57:27:c2:11:29:f2:94:d4:7a:63:99: 65:8d:48:b2:e7:11:bc:4a:2b:c8:b6:5d:d4:04:23: 75:3b:00:3a:d1:72:4f:51:25:d0:58:02:ee:b5:ad: e4:92:96:99:3f:8b:cf:99:9c:46:91:f5:f5:11:f1: 68:d5:eb:c8:48:99:e5:34:65:0f:84:94:52:2a:14: ba:a5:ae:93:87:6b:ed:e2:d6:79:f2:ae:a6:3b:d8: 7b:86:1d:79:cc:ea:b4:88:90:f6:be:da:95:d1:18: bd:ce:b8:37:44:e5:e5:50:16:87:0b:3a:b4:71:65: dd:2e:b4:ce:09:20:c6:d3:a6:00:de:8b:8b:cd:f2: 07:2e:8a:a8:d4:6c:8b:ff:df:07:14:e5:70:99:04: 43:fb:06:63:3f:ea:72:3e:08:c3:8d:3e:0d:1d:c5: f9:30:00:5d:9b:0b:65:54:10:47:24:3b:5e:8e:81: 71:7d:22:aa:c7:40:07:4d:cc:39:09:48:8b:51:e5: 94:5d:41:5c:bb:11:ae:3c:dc:f5:ec:10:13:cb:c8: 7a:7a:f2:ce:37:05:87:b3:93:29:94:40:bf:53:72: 47:86:5d:a0:74:be:96:e4:c2:0a:8b:e3:80:38:ec: 6f:97:f1:df:b5:44:5c:4c:1e:cf:a8:12:2b:3c:b9: 0a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C9:5A:BE:A3:79:54:EB:37:95:DD:88:7D:31:5D:69:3B:EE:F6:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.68.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:7a:3a:6d:98:79:0c:37:46:a8:7d:01:e1:0d:67:63:7b:8f: 47:d7:64:17:99:af:bb:09:81:4c:50:d7:11:b4:e8:e2:7c:a3: 6a:9f:87:df:5e:5f:32:2b:a1:40:ff:7f:bd:f8:3e:fe:0c:03: f6:ca:d9:42:ff:44:81:ff:d0:05:1d:c3:3d:ab:bf:7b:4f:70: 06:c2:72:9b:1b:51:a1:a2:d1:b9:5e:6f:37:62:46:c7:d5:3a: b6:99:97:ab:4c:52:04:0a:12:92:fd:e5:df:df:bf:30:83:ed: f6:e6:65:71:b1:b7:85:b2:17:af:6f:64:6b:f6:b4:e8:5f:ea: 95:58:14:22:75:08:e1:b6:13:ec:0e:99:9d:df:2f:be:cf:24: a6:8d:42:f9:d5:7f:51:08:79:2f:d8:f6:7d:51:58:91:24:e7: 72:83:fc:13:5b:5c:11:7b:75:2c:6e:e6:b3:92:1e:73:7a:40: 2c:bb:11:95:eb:44:79:6c:78:00:f6:2f:bb:cd:06:b0:77:44: f9:15:c9:f1:12:92:ef:d1:e0:46:c4:28:57:95:37:b8:3b:4e: c6:24:15:54:23:2e:97:a8:2f:8e:03:52:cb:01:10:2d:58:46: de:75:91:18:56:47:5d:0b:71:f6:bc:27:a6:48:ba:ce:e5:94: 5e:d4:36:c2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUCJcGElm5jtqCrSwa19ivj8tCLMYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkxODA4NTcyNFoX DTI2MDkxNzA5MDIyNFowMzExMC8GA1UEAxMoMTRDOTVBQkVBMzc5NTRFQjM3OTVE RDg4N0QzMTVENjkzQkVFRjY3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9CvlcnwhEp8pTUemOZZY1IsucRvEoryLZd1AQjdTsAOtFyT1El0FgC7rWt 5JKWmT+Lz5mcRpH19RHxaNXryEiZ5TRlD4SUUioUuqWuk4dr7eLWefKupjvYe4Yd eczqtIiQ9r7aldEYvc64N0Tl5VAWhws6tHFl3S60zgkgxtOmAN6Li83yBy6KqNRs i//fBxTlcJkEQ/sGYz/qcj4Iw40+DR3F+TAAXZsLZVQQRyQ7Xo6BcX0iqsdAB03M OQlIi1HllF1BXLsRrjzc9ewQE8vIenryzjcFh7OTKZRAv1NyR4ZdoHS+luTCCovj gDjsb5fx37VEXEwez6gSKzy5Ck8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQUyVq+ o3lU6zeV3Yh9MV1pO+72cDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAxOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEARt8RDANBgkqhkiG9w0BAQsFAAOCAQEADHo6bZh5DDdGqH0B4Q1n Y3uPR9dkF5mvuwmBTFDXEbTo4nyjap+H315fMiuhQP9/vfg+/gwD9srZQv9Egf/Q BR3DPau/e09wBsJymxtRoaLRuV5vN2JGx9U6tpmXq0xSBAoSkv3l39+/MIPt9uZl cbG3hbIXr29ka/a06F/qlVgUInUI4bYT7A6Znd8vvs8kpo1C+dV/UQh5L9j2fVFY kSTncoP8E1tcEXt1LG7ms5Iec3pALLsRletEeWx4APYvu80GsHdE+RXJ8RKS79Hg RsQoV5U3uDtOxiQVVCMul6gvjgNSywEQLVhG3nWRGFZHXQtx9rwnpki6zuWUXtQ2 wg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:01 2025 by rpki-client