This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152022.roa File: AS152022.roa (raw, json) Hash identifier: lzhj9WL9sYqFC4wpF/j3YkFmv1TRE/9NUIeSXEGJnm0= Subject key identifier: C7:66:F6:92:62:93:36:E8:B1:A7:4A:D4:FA:04:12:BA:43:6E:94:18 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14FD648F58F0CB5AFD3E80EE84F8C77731724A32 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152022.roa Signing time: Mon 26 Jan 2026 04:00:00 +0000 ROA not before: Mon 26 Jan 2026 03:55:00 +0000 ROA not after: Mon 25 Jan 2027 04:00:00 +0000 asID: 152022 IP address blocks: 202.47.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 14:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fd:64:8f:58:f0:cb:5a:fd:3e:80:ee:84:f8:c7:77:31:72:4a:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 26 03:55:00 2026 GMT Not After : Jan 25 04:00:00 2027 GMT Subject: CN=C766F692629336E8B1A74AD4FA0412BA436E9418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3a:61:de:52:af:9e:e4:6a:07:e5:aa:9f:07: 4e:f1:13:58:44:cd:73:91:91:7b:d2:67:15:50:e9: 92:12:5a:a4:eb:5b:57:da:1e:dc:61:ba:ad:e4:7a: df:72:e5:35:a5:4f:32:99:28:d1:8b:48:64:91:af: 03:57:66:69:78:7b:20:8f:e7:72:59:9e:70:f8:89: 85:30:f7:7f:26:3e:f6:89:2d:67:f3:a3:71:e1:f2: 98:ac:22:23:13:b7:d5:aa:6b:9d:de:32:96:14:a5: 30:86:6b:33:3b:a3:e7:5e:17:18:8b:be:9f:15:46: 4b:c1:a3:6b:e9:6e:ed:47:11:ec:86:3f:f6:02:19: b3:1f:d3:95:89:d0:c1:5c:ea:e6:e1:37:56:a4:de: 96:d6:f9:4d:0d:0e:09:cb:52:9e:d6:e5:59:07:55: fb:9a:50:81:da:63:3e:2a:76:14:64:2b:6d:9e:f7: 21:10:61:3b:b2:f1:38:9b:cd:84:a2:1e:b5:e6:da: de:44:10:99:c6:bc:c2:c9:3f:1a:4a:96:20:24:d6: ad:26:7c:72:f7:ad:06:27:fb:eb:2f:02:64:b7:4c: a4:32:ac:97:e1:87:53:5f:99:df:01:b9:ca:56:96: 53:e4:2c:7c:31:46:af:15:c2:1a:a4:2b:c4:2d:02: 17:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:66:F6:92:62:93:36:E8:B1:A7:4A:D4:FA:04:12:BA:43:6E:94:18 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152022.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.176.0/23 Signature Algorithm: sha256WithRSAEncryption 95:3e:d9:09:2c:70:86:d9:d3:da:63:63:be:66:31:d1:5e:90: 48:3f:a4:23:69:7b:9e:6f:89:08:0e:b1:69:84:cd:97:0c:a3: d9:20:8b:bb:42:92:bf:3b:d3:e3:57:6b:5d:3f:d5:56:86:00: 6b:1c:e9:4a:37:fb:13:67:48:20:95:ba:f7:63:2c:97:cf:37: 84:1d:9a:1a:fe:8f:cf:7b:05:b0:b6:9d:bc:2f:3d:97:27:d3: 95:c9:7c:45:62:17:39:e3:8e:0c:4d:bf:35:88:1f:dd:6a:f1: 02:c3:bc:53:c1:fa:ad:bf:54:9d:02:ce:e0:2d:21:27:f7:50: 60:2a:f7:d7:3b:62:b4:58:5f:e6:33:19:35:77:be:dd:de:0f: 14:cd:0e:68:07:6a:c5:be:03:93:a5:f6:ed:99:ed:2e:bf:59: 38:38:56:5b:4c:a6:0b:6d:86:04:f2:b7:0d:d7:26:cc:16:78: 18:2f:55:9c:0d:60:92:ce:81:4f:c6:ee:01:db:09:47:d7:ab: 84:9c:57:26:0f:83:70:46:9e:ff:1f:28:eb:c5:89:5d:8d:bc: 30:6e:3b:83:88:0d:b8:fa:f9:5f:bd:f5:4e:8d:60:da:f5:14: c4:0e:49:c8:eb:1d:e1:f2:e9:4c:ab:c1:49:fd:35:cd:80:55: d1:89:f5:e3 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFP1kj1jwy1r9PoDuhPjHdzFySjIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyNjAzNTUwMFoX DTI3MDEyNTA0MDAwMFowMzExMC8GA1UEAxMoQzc2NkY2OTI2MjkzMzZFOEIxQTc0 QUQ0RkEwNDEyQkE0MzZFOTQxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANY6Yd5Sr57kagflqp8HTvETWETNc5GRe9JnFVDpkhJapOtbV9oe3GG6reR6 33LlNaVPMpko0YtIZJGvA1dmaXh7II/nclmecPiJhTD3fyY+9oktZ/OjceHymKwi IxO31aprnd4ylhSlMIZrMzuj514XGIu+nxVGS8Gja+lu7UcR7IY/9gIZsx/TlYnQ wVzq5uE3VqTeltb5TQ0OCctSntblWQdV+5pQgdpjPip2FGQrbZ73IRBhO7LxOJvN hKIeteba3kQQmca8wsk/GkqWICTWrSZ8cvetBif76y8CZLdMpDKsl+GHU1+Z3wG5 ylaWU+QsfDFGrxXCGqQrxC0CF0ECAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTHZvaS YpM26LGnStT6BBK6Q26UGDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjAyMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAcovsDANBgkqhkiG9w0BAQsFAAOCAQEAlT7ZCSxwhtnT2mNjvmYx 0V6QSD+kI2l7nm+JCA6xaYTNlwyj2SCLu0KSvzvT41drXT/VVoYAaxzpSjf7E2dI IJW692Msl883hB2aGv6Pz3sFsLadvC89lyfTlcl8RWIXOeOODE2/NYgf3WrxAsO8 U8H6rb9UnQLO4C0hJ/dQYCr31ztitFhf5jMZNXe+3d4PFM0OaAdqxb4Dk6X27Znt Lr9ZODhWW0ymC22GBPK3DdcmzBZ4GC9VnA1gks6BT8buAdsJR9erhJxXJg+DcEae /x8o68WJXY28MG47g4gNuPr5X731To1g2vUUxA5JyOsd4fLpTKvBSf01zYBV0Yn1 4w== -----END CERTIFICATE-----Generated at Mon Feb 2 08:10:53 2026 by rpki-client