This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152057.roa File: AS152057.roa (raw, json) Hash identifier: ehSfxqWeELHe59iecSk0NSALawZR/wW563T0WcrxDkk= Subject key identifier: 87:9F:CE:86:58:54:E7:08:44:BE:1F:E4:E7:CC:D8:D0:49:4E:67:46 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6928D5A2A254C5DDBFA498A4B7E5C1A132D8C8B1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152057.roa Signing time: Wed 07 Jan 2026 05:00:00 +0000 ROA not before: Wed 07 Jan 2026 04:55:00 +0000 ROA not after: Wed 06 Jan 2027 05:00:00 +0000 asID: 152057 IP address blocks: 2407:87c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 14:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:28:d5:a2:a2:54:c5:dd:bf:a4:98:a4:b7:e5:c1:a1:32:d8:c8:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 7 04:55:00 2026 GMT Not After : Jan 6 05:00:00 2027 GMT Subject: CN=879FCE865854E70844BE1FE4E7CCD8D0494E6746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a4:c9:9e:b1:80:48:d3:dd:58:ec:95:3d:80: 73:bf:7e:c3:3a:c9:6b:88:19:c5:11:40:70:dc:c7: 1d:05:10:c3:8b:52:56:9f:be:2a:6f:40:7f:6f:21: 99:c3:81:8e:19:71:3a:45:04:30:1c:ca:4f:11:78: aa:2b:c6:c3:5e:e5:30:bb:6f:90:7b:9b:c4:1a:07: 84:96:dc:f9:82:8e:38:e4:16:0b:a2:7b:7b:28:58: f8:dc:5c:46:37:7b:4e:96:1b:7c:f4:0a:f4:22:6f: 2e:15:f6:be:7b:ab:4a:b8:51:bb:df:60:01:58:ab: a6:47:4b:05:bb:c4:b5:5a:a8:52:98:65:8d:d4:82: 26:9b:bc:04:25:b7:63:81:0f:3e:12:a1:48:0f:79: cb:b4:c0:d1:ec:b2:0b:f0:cb:66:a3:eb:26:8b:a6: 70:28:36:37:83:92:a0:5b:81:19:35:c7:f1:b2:33: 51:c6:50:eb:47:eb:b9:36:26:5a:34:1c:09:7b:df: bb:03:fa:88:70:5b:14:8e:09:10:40:09:6a:f3:b9: 00:1b:d6:54:bc:b5:a8:04:8e:bb:eb:b5:9f:98:0e: a3:4a:d7:e6:4c:ac:4d:1a:4b:86:ab:56:de:6b:ef: 00:8f:44:6f:47:00:42:d0:41:36:20:54:f1:07:ed: f4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:9F:CE:86:58:54:E7:08:44:BE:1F:E4:E7:CC:D8:D0:49:4E:67:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:87c0::/32 Signature Algorithm: sha256WithRSAEncryption 4b:23:9c:55:3b:d0:6d:6e:13:94:64:64:b9:4e:2c:79:26:64: bb:ea:0c:27:3c:da:53:2e:8b:93:ef:4c:1a:29:f2:a4:11:f6: 7e:e8:ab:54:3c:af:95:61:95:c7:a0:0a:6d:ff:29:68:a4:ef: 9a:34:f9:5a:cc:23:27:4a:43:8f:d4:08:c0:d8:a5:c1:c2:41: 3d:9a:dc:e0:b0:c8:5a:3a:e9:b4:75:00:a5:0d:cd:7a:06:c8: 90:c9:6b:24:02:f4:48:a4:4c:d0:e8:0b:66:35:0e:82:87:11: 4c:96:4c:65:22:0e:b3:43:ee:4a:15:57:3b:bc:77:2c:78:d7: 39:9c:03:4f:98:c4:8c:3b:82:d6:9d:44:94:44:1c:b6:6f:42: 55:72:8d:1b:3c:ec:8b:29:a1:10:a2:1f:71:69:27:b4:59:44: 3d:64:c7:bd:22:c4:d6:9b:0a:7c:03:7e:25:eb:8f:a9:4a:ef: 7a:40:fa:38:ec:57:03:3d:26:fc:af:3a:b9:8f:d1:b3:ec:48: 53:b9:60:21:58:69:db:01:1a:f9:e1:40:ca:01:5b:4c:b4:d7: 60:01:bd:c1:08:0c:f4:e3:42:73:33:61:90:73:b8:0b:74:ff: 39:55:59:d2:51:ed:f0:de:7f:59:99:11:bf:29:a6:5d:b6:53: 1b:6b:75:80 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUaSjVoqJUxd2/pJikt+XBoTLYyLEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwNzA0NTUwMFoX DTI3MDEwNjA1MDAwMFowMzExMC8GA1UEAxMoODc5RkNFODY1ODU0RTcwODQ0QkUx RkU0RTdDQ0Q4RDA0OTRFNjc0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGkyZ6xgEjT3VjslT2Ac79+wzrJa4gZxRFAcNzHHQUQw4tSVp++Km9Af28h mcOBjhlxOkUEMBzKTxF4qivGw17lMLtvkHubxBoHhJbc+YKOOOQWC6J7eyhY+Nxc Rjd7TpYbfPQK9CJvLhX2vnurSrhRu99gAVirpkdLBbvEtVqoUphljdSCJpu8BCW3 Y4EPPhKhSA95y7TA0eyyC/DLZqPrJoumcCg2N4OSoFuBGTXH8bIzUcZQ60fruTYm WjQcCXvfuwP6iHBbFI4JEEAJavO5ABvWVLy1qASOu+u1n5gOo0rX5kysTRpLhqtW 3mvvAI9Eb0cAQtBBNiBU8Qft9EUCAwEAAaOCAdEwggHNMB0GA1UdDgQWBBSHn86G WFTnCES+H+TnzNjQSU5nRjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA1Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQHh8AwDQYJKoZIhvcNAQELBQADggEBAEsjnFU70G1uE5RkZLlO LHkmZLvqDCc82lMui5PvTBop8qQR9n7oq1Q8r5VhlcegCm3/KWik75o0+VrMIydK Q4/UCMDYpcHCQT2a3OCwyFo66bR1AKUNzXoGyJDJayQC9EikTNDoC2Y1DoKHEUyW TGUiDrND7koVVzu8dyx41zmcA0+YxIw7gtadRJREHLZvQlVyjRs87IspoRCiH3Fp J7RZRD1kx70ixNabCnwDfiXrj6lK73pA+jjsVwM9JvyvOrmP0bPsSFO5YCFYadsB GvnhQMoBW0y012ABvcEIDPTjQnMzYZBzuAt0/zlVWdJR7fDef1mZEb8ppl22Uxtr dYA= -----END CERTIFICATE-----Generated at Mon Feb 2 08:11:07 2026 by rpki-client