This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152019.roa File: AS152019.roa (raw, json) Hash identifier: aIvpMC8IWZkFw2Z3y6yCl6AgZGsesoFKkMPVrMh8uUM= Subject key identifier: 95:E7:67:19:29:18:9E:E7:69:C6:8A:41:BD:93:68:35:DE:50:7F:28 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 728F0AA7883EFA1038D78EFB4E34AA8A0B7F893D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152019.roa Signing time: Wed 26 Nov 2025 04:02:42 +0000 ROA not before: Wed 26 Nov 2025 03:57:42 +0000 ROA not after: Wed 25 Nov 2026 04:02:42 +0000 asID: 152019 IP address blocks: 180.131.130.0/24 maxlen: 24 2001:df3:6340::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:8f:0a:a7:88:3e:fa:10:38:d7:8e:fb:4e:34:aa:8a:0b:7f:89:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 26 03:57:42 2025 GMT Not After : Nov 25 04:02:42 2026 GMT Subject: CN=95E7671929189EE769C68A41BD936835DE507F28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1b:16:af:bc:31:55:f1:ff:ff:cb:36:00:ea: 0e:6f:08:3e:86:bc:5f:1c:f1:a0:30:cf:04:86:6b: 78:03:a3:9b:20:af:8e:79:5e:d9:6e:b8:27:68:ce: 56:b9:3b:52:f1:d8:e9:0e:23:a9:b1:2f:48:e4:74: db:9c:28:07:33:65:0e:22:b5:7c:d5:de:41:69:e7: 52:00:68:12:fc:68:2b:98:af:94:3b:02:6d:8a:9a: cb:29:0a:3b:9e:2d:5b:37:1f:c4:b5:d8:5c:b6:57: d9:92:ed:c7:13:ab:d2:a8:76:d1:db:8d:58:3a:bf: d2:d6:66:28:fc:a6:bb:f7:07:5b:04:6d:cc:d4:30: 5a:dc:9a:bd:29:07:60:b6:db:26:6d:17:89:0b:cd: 0d:3c:96:ac:44:7d:d6:97:01:1a:29:98:df:67:b9: 95:5d:24:84:03:90:c9:df:0b:6d:9b:c2:d8:f4:ed: 22:9d:92:cd:99:92:15:f4:67:ba:97:82:45:64:c3: 72:53:6e:20:0f:30:a5:dd:50:71:30:31:5c:6a:39: 21:85:05:75:0f:8b:00:34:28:95:35:16:c3:d3:83: 33:1d:ab:0f:35:f6:56:07:dd:81:ec:7d:af:9e:33: 93:0d:39:17:94:6f:d5:a0:b5:e3:b2:07:60:93:bf: 66:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:E7:67:19:29:18:9E:E7:69:C6:8A:41:BD:93:68:35:DE:50:7F:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152019.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.130.0/24 IPv6: 2001:df3:6340::/48 Signature Algorithm: sha256WithRSAEncryption 6d:60:06:bd:32:3d:de:81:b8:26:65:9d:1f:34:dd:70:c1:ef: 0b:88:c2:0e:e9:9c:27:4b:68:1d:eb:2e:bd:cc:c2:a2:40:a8: b2:d6:3a:7e:56:07:b7:27:6b:1f:5d:a9:8f:56:d6:3d:a8:80: 6b:95:68:ba:62:05:d7:27:5d:72:a0:a0:64:a6:79:90:86:64: 6b:80:7e:03:4d:f6:61:ca:f7:db:09:38:0a:85:7a:a3:ce:f8: 42:ff:be:da:4a:46:16:3e:a5:36:8e:6f:3c:03:ca:3c:d4:67: 18:ca:85:2d:59:6d:aa:e4:53:b6:13:bd:fa:a8:7a:7b:fb:d4: 01:9e:92:0b:36:94:b1:a9:8d:60:b8:c1:55:3f:8c:7e:f2:f1: 86:a3:81:2f:18:b4:8b:dc:0d:af:27:23:4a:0a:e2:cf:ef:5c: b4:d8:a2:24:c8:bf:a4:1e:d1:8f:b9:40:8a:29:c8:87:2e:8c: 61:f9:c7:f3:b4:f8:41:eb:62:62:64:72:9e:51:46:57:47:e9: f5:31:ca:5f:5a:38:6c:da:a0:91:58:b4:9b:ef:b4:b5:17:18: f7:16:c6:67:e3:f3:ba:b1:b7:07:b6:23:4c:70:bc:d5:a4:c8: 48:27:c0:6e:ff:08:b5:6c:a9:c0:7c:5f:69:e8:2b:eb:1c:a8: 6b:f5:23:8b -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUco8Kp4g++hA41477TjSqigt/iT0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNjAzNTc0MloX DTI2MTEyNTA0MDI0MlowMzExMC8GA1UEAxMoOTVFNzY3MTkyOTE4OUVFNzY5QzY4 QTQxQkQ5MzY4MzVERTUwN0YyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKUbFq+8MVXx///LNgDqDm8IPoa8XxzxoDDPBIZreAOjmyCvjnle2W64J2jO Vrk7UvHY6Q4jqbEvSOR025woBzNlDiK1fNXeQWnnUgBoEvxoK5ivlDsCbYqayykK O54tWzcfxLXYXLZX2ZLtxxOr0qh20duNWDq/0tZmKPymu/cHWwRtzNQwWtyavSkH YLbbJm0XiQvNDTyWrER91pcBGimY32e5lV0khAOQyd8LbZvC2PTtIp2SzZmSFfRn upeCRWTDclNuIA8wpd1QcTAxXGo5IYUFdQ+LADQolTUWw9ODMx2rDzX2Vgfdgex9 r54zkw05F5Rv1aC147IHYJO/Zu0CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBSV52cZ KRie52nGikG9k2g13lB/KDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAxOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEALSDgjAPBAIAAjAJAwcAIAEN82NAMA0GCSqGSIb3DQEBCwUAA4IB AQBtYAa9Mj3egbgmZZ0fNN1wwe8LiMIO6ZwnS2gd6y69zMKiQKiy1jp+Vge3J2sf XamPVtY9qIBrlWi6YgXXJ11yoKBkpnmQhmRrgH4DTfZhyvfbCTgKhXqjzvhC/77a SkYWPqU2jm88A8o81GcYyoUtWW2q5FO2E736qHp7+9QBnpILNpSxqY1guMFVP4x+ 8vGGo4EvGLSL3A2vJyNKCuLP71y02KIkyL+kHtGPuUCKKciHLoxh+cfztPhB62Ji ZHKeUUZXR+n1McpfWjhs2qCRWLSb77S1Fxj3FsZn4/O6sbcHtiNMcLzVpMhIJ8Bu /wi1bKnAfF9p6CvrHKhr9SOL -----END CERTIFICATE-----Generated at Wed Dec 3 13:16:01 2025 by rpki-client