This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa File: AS152047.roa (raw, json) Hash identifier: 8AMikRuPd6AHrtRIslpqPOGMCeM1mtwcEY+OW67ON98= Subject key identifier: 22:FA:D7:E7:7A:16:D3:E3:73:DE:32:1D:3C:67:64:58:8B:3F:E1:50 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7F571D26C043AE9E127D5A72665BBA850D86C7A1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa Signing time: Thu 20 Nov 2025 04:00:00 +0000 ROA not before: Thu 20 Nov 2025 03:55:00 +0000 ROA not after: Thu 19 Nov 2026 04:00:00 +0000 asID: 152047 IP address blocks: 210.79.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:57:1d:26:c0:43:ae:9e:12:7d:5a:72:66:5b:ba:85:0d:86:c7:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 20 03:55:00 2025 GMT Not After : Nov 19 04:00:00 2026 GMT Subject: CN=22FAD7E77A16D3E373DE321D3C6764588B3FE150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0d:d6:db:a8:0a:c3:bb:2d:45:e4:74:51:29: 68:30:60:75:49:16:c1:b7:c0:cf:2c:42:dd:a7:9d: 00:c8:e2:8b:57:46:e2:20:ed:fe:42:92:1c:54:f0: 5c:79:39:8f:e3:db:5f:88:3c:32:d9:97:46:06:9e: 1d:c4:b5:1d:72:21:dc:43:d6:1e:ae:a9:36:1e:ef: d9:41:ba:45:a7:e1:d6:c4:7f:60:b4:cf:17:fa:81: 43:80:1e:18:83:95:c6:87:cf:c5:13:b7:40:68:ae: ca:01:1d:a5:8b:0d:75:2c:ca:09:05:3e:5d:e4:18: be:07:be:e0:f3:9b:31:0a:ab:a0:ec:41:15:ed:c2: 15:ea:d0:1e:6c:90:c1:a8:86:db:c2:7c:2f:1d:d0: 70:87:57:02:83:3d:d6:88:ee:e5:bd:ce:b2:79:a0: 4b:21:8b:66:3d:79:91:42:70:68:0c:45:ee:fc:89: 8c:eb:59:1a:c3:dc:ed:44:1f:2d:57:ed:4b:89:65: 60:80:b7:34:89:eb:11:89:ad:20:c0:b2:e8:a9:dc: 4d:e0:91:2b:e4:e8:06:c7:6f:61:c3:00:6e:f9:44: ee:ff:dd:8e:f7:de:c0:53:c2:a6:c6:e1:7d:7f:d8: f1:00:50:b4:e5:1d:85:aa:a4:99:4e:97:5b:e2:3a: e9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FA:D7:E7:7A:16:D3:E3:73:DE:32:1D:3C:67:64:58:8B:3F:E1:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152047.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.79.144.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:c5:36:c2:3f:ef:75:dd:98:9a:5a:bf:4c:3e:14:ad:e8:9a: e3:65:fb:3f:e1:bb:2e:2f:e3:dc:88:7f:c1:94:14:09:86:c1: 4f:8c:10:b1:5c:17:3d:d8:da:53:80:45:45:03:0d:0b:43:ee: 53:fe:f5:5d:90:2b:1b:67:03:a4:1b:41:dd:61:e7:ec:a9:6d: e1:b9:15:13:07:a4:c3:6e:8f:6c:f0:48:5d:b0:e5:16:3e:d8: e7:04:2c:d4:f0:74:23:2d:f4:d8:11:66:91:3e:0a:eb:42:d2: 3c:43:22:b6:bf:8c:c0:0b:a2:da:17:a6:8a:2f:65:db:fa:24: fc:29:98:e1:5f:7e:88:18:63:d2:61:96:eb:cb:71:5c:ae:90: 8d:76:79:8f:94:58:06:9a:66:d7:59:bf:95:8f:f1:6d:20:7c: a0:86:47:21:3a:8c:11:5b:25:c4:84:5a:38:2e:48:ed:21:55: b6:c1:39:56:4c:4c:27:ee:ff:fb:85:a6:16:4c:52:25:07:92: 15:bf:36:ab:b4:31:22:67:4e:51:28:ec:88:48:88:5b:33:90: 2a:e0:eb:2d:af:75:1d:69:78:1a:fd:26:02:e0:ec:37:1c:80: 29:2d:7c:fe:32:aa:4f:42:cf:60:26:44:53:41:e2:a0:cc:50: 9b:c6:4a:29 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUf1cdJsBDrp4SfVpyZlu6hQ2Gx6EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMDAzNTUwMFoX DTI2MTExOTA0MDAwMFowMzExMC8GA1UEAxMoMjJGQUQ3RTc3QTE2RDNFMzczREUz MjFEM0M2NzY0NTg4QjNGRTE1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJoN1tuoCsO7LUXkdFEpaDBgdUkWwbfAzyxC3aedAMjii1dG4iDt/kKSHFTw XHk5j+PbX4g8MtmXRgaeHcS1HXIh3EPWHq6pNh7v2UG6Rafh1sR/YLTPF/qBQ4Ae GIOVxofPxRO3QGiuygEdpYsNdSzKCQU+XeQYvge+4PObMQqroOxBFe3CFerQHmyQ waiG28J8Lx3QcIdXAoM91oju5b3OsnmgSyGLZj15kUJwaAxF7vyJjOtZGsPc7UQf LVftS4llYIC3NInrEYmtIMCy6KncTeCRK+ToBsdvYcMAbvlE7v/djvfewFPCpsbh fX/Y8QBQtOUdhaqkmU6XW+I66dUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQi+tfn ehbT43PeMh08Z2RYiz/hUDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA0Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEANJPkDANBgkqhkiG9w0BAQsFAAOCAQEAP8U2wj/vdd2Ymlq/TD4U reia42X7P+G7Li/j3Ih/wZQUCYbBT4wQsVwXPdjaU4BFRQMNC0PuU/71XZArG2cD pBtB3WHn7Klt4bkVEwekw26PbPBIXbDlFj7Y5wQs1PB0Iy302BFmkT4K60LSPEMi tr+MwAui2hemii9l2/ok/CmY4V9+iBhj0mGW68txXK6QjXZ5j5RYBppm11m/lY/x bSB8oIZHITqMEVslxIRaOC5I7SFVtsE5VkxMJ+7/+4WmFkxSJQeSFb82q7QxImdO USjsiEiIWzOQKuDrLa91HWl4Gv0mAuDsNxyAKS18/jKqT0LPYCZEU0HioMxQm8ZK KQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:22 2025 by rpki-client