This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa File: AS152056.roa (raw, json) Hash identifier: Bjcny3WmGzBp6Bs7wfyfo6V2q9MR9JjX4W00x/1B+bc= Subject key identifier: 7C:00:C8:09:4E:6A:C1:B4:AD:1F:56:DC:50:63:0A:71:A2:41:90:24 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 24077CA5F18B4342A997F786916D6224E622984C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa Signing time: Mon 17 Nov 2025 08:00:00 +0000 ROA not before: Mon 17 Nov 2025 07:55:00 +0000 ROA not after: Mon 16 Nov 2026 08:00:00 +0000 asID: 152056 IP address blocks: 210.87.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:07:7c:a5:f1:8b:43:42:a9:97:f7:86:91:6d:62:24:e6:22:98:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 17 07:55:00 2025 GMT Not After : Nov 16 08:00:00 2026 GMT Subject: CN=7C00C8094E6AC1B4AD1F56DC50630A71A2419024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:40:cc:cb:53:51:5b:03:59:3b:a0:2f:13:31: 6c:f0:74:dc:df:d6:43:d1:ed:4a:9d:15:9a:58:1d: 05:86:9b:86:9a:b0:ff:dd:7f:c4:f5:ee:0e:68:92: bc:c1:40:3b:bc:43:43:d1:b4:c7:bc:bd:53:b8:bc: 5a:9d:4a:8c:b0:bb:1e:21:b2:98:62:66:8d:c4:df: fc:e3:e5:b5:e9:9c:8a:da:4d:93:33:33:b8:2f:2a: 69:b3:61:09:24:76:8c:31:72:53:1d:75:91:f5:05: 9f:ad:09:a3:33:4e:c4:5a:7c:1c:fe:c4:f0:ab:67: b6:a3:12:02:01:ff:31:61:b2:d4:82:6a:37:e4:bc: 72:f5:f1:c1:d9:53:b2:83:20:bf:ba:45:cb:be:a8: 5c:f1:7b:35:91:98:c6:fe:aa:90:0f:9c:b8:6c:16: 62:bf:cc:4e:24:24:f9:fc:2a:a3:ad:5b:91:55:72: 01:33:6d:0d:9f:61:3a:7f:04:b2:5b:6d:6b:32:91: 16:86:a8:94:6e:3b:e6:75:3c:d5:0a:9f:c4:8c:aa: d7:da:f8:83:ea:61:1b:8d:27:e2:a1:17:63:56:4e: f1:c4:09:58:4c:e6:f7:a7:5e:35:94:52:7e:1e:48: 97:49:16:df:df:47:1d:55:b9:65:60:5b:3a:44:0f: 98:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:00:C8:09:4E:6A:C1:B4:AD:1F:56:DC:50:63:0A:71:A2:41:90:24 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152056.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.120.0/23 Signature Algorithm: sha256WithRSAEncryption 22:d1:03:2f:a1:0f:de:cd:00:b3:8c:4d:32:c9:5a:70:7e:6c: f7:f5:7b:33:e2:3a:96:06:63:d2:d3:42:fe:19:60:3c:ca:bc: 40:2d:26:ba:dc:a6:30:f9:4c:c5:dc:a3:33:21:24:fb:6f:16: 55:3b:41:bc:e3:2c:9f:cd:71:ad:f4:ba:37:2a:e9:3d:b8:86: a1:3b:f6:a3:be:62:6c:46:36:49:05:88:05:21:ce:2f:fe:af: f6:78:a1:f4:fb:07:13:8b:ca:39:cb:aa:ad:1c:ee:b2:29:78: 8e:41:03:2c:98:8f:49:82:cb:87:0a:46:72:02:6e:3a:ae:39: 53:7c:51:51:cd:c8:32:b6:73:56:b1:67:eb:b7:27:cc:3a:36: 0c:ba:b4:a9:66:1f:ac:c3:82:c4:db:87:bd:fe:56:e1:fe:a8: d5:d7:1d:cd:6f:d4:2b:5c:db:28:1e:cc:c1:58:08:33:6a:dd: 95:14:08:ed:e6:5d:78:eb:a7:27:0d:87:59:19:56:18:e1:a7: ff:12:0d:5a:c8:70:c6:47:b9:0d:0e:0f:48:bf:e5:06:27:4e: 19:d2:c9:0b:e3:6e:3c:88:00:ac:4e:e9:f0:ee:77:e1:79:da: f1:c6:0e:b4:96:2c:d4:e2:83:c1:d7:9b:8b:79:f6:93:34:39: 51:fb:84:76 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUJAd8pfGLQ0Kpl/eGkW1iJOYimEwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExNzA3NTUwMFoX DTI2MTExNjA4MDAwMFowMzExMC8GA1UEAxMoN0MwMEM4MDk0RTZBQzFCNEFEMUY1 NkRDNTA2MzBBNzFBMjQxOTAyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNAzMtTUVsDWTugLxMxbPB03N/WQ9HtSp0VmlgdBYabhpqw/91/xPXuDmiS vMFAO7xDQ9G0x7y9U7i8Wp1KjLC7HiGymGJmjcTf/OPltemcitpNkzMzuC8qabNh CSR2jDFyUx11kfUFn60JozNOxFp8HP7E8KtntqMSAgH/MWGy1IJqN+S8cvXxwdlT soMgv7pFy76oXPF7NZGYxv6qkA+cuGwWYr/MTiQk+fwqo61bkVVyATNtDZ9hOn8E slttazKRFoaolG475nU81QqfxIyq19r4g+phG40n4qEXY1ZO8cQJWEzm96deNZRS fh5Il0kW399HHVW5ZWBbOkQPmO8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBR8AMgJ TmrBtK0fVtxQYwpxokGQJDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA1Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAdJXeDANBgkqhkiG9w0BAQsFAAOCAQEAItEDL6EP3s0As4xNMsla cH5s9/V7M+I6lgZj0tNC/hlgPMq8QC0mutymMPlMxdyjMyEk+28WVTtBvOMsn81x rfS6NyrpPbiGoTv2o75ibEY2SQWIBSHOL/6v9nih9PsHE4vKOcuqrRzusil4jkED LJiPSYLLhwpGcgJuOq45U3xRUc3IMrZzVrFn67cnzDo2DLq0qWYfrMOCxNuHvf5W 4f6o1dcdzW/UK1zbKB7MwVgIM2rdlRQI7eZdeOunJw2HWRlWGOGn/xINWshwxke5 DQ4PSL/lBidOGdLJC+NuPIgArE7p8O534Xna8cYOtJYs1OKDwdebi3n2kzQ5UfuE dg== -----END CERTIFICATE-----Generated at Wed Dec 3 14:41:35 2025 by rpki-client