This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa File: AS152070.roa (raw, json) Hash identifier: 7oz6kPh0BF6MQEKEuQSypNM+GwQpLzTnSRuJrlBu1jc= Subject key identifier: 9B:C3:DC:52:66:38:29:30:A1:D5:BB:AD:BB:0C:41:B0:39:D5:8F:C9 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4BBDE643C3F2DE3122E3BAACB43DC21C8B8071DF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa Signing time: Thu 06 Nov 2025 04:02:13 +0000 ROA not before: Thu 06 Nov 2025 03:57:13 +0000 ROA not after: Thu 05 Nov 2026 04:02:13 +0000 asID: 152070 IP address blocks: 36.50.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:bd:e6:43:c3:f2:de:31:22:e3:ba:ac:b4:3d:c2:1c:8b:80:71:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 03:57:13 2025 GMT Not After : Nov 5 04:02:13 2026 GMT Subject: CN=9BC3DC5266382930A1D5BBADBB0C41B039D58FC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4f:eb:e8:b2:97:ae:08:97:01:69:d8:f8:20: c7:ac:ab:9e:d1:fa:e8:1c:7f:a1:62:5d:f7:8e:ff: 26:28:9b:20:52:cd:b0:11:aa:2f:0e:80:5d:25:c3: 07:6a:70:1a:c4:a2:f1:b5:ce:b3:4c:d6:c2:b0:47: 7d:9a:d9:7a:c3:43:66:c9:10:ba:d3:09:58:b7:69: 70:12:fa:4c:ca:4e:80:bd:c4:e1:ae:4c:c8:52:91: 9e:28:c3:dd:f2:4c:5a:69:82:2f:98:5d:81:36:de: 12:13:f0:80:94:02:9d:1c:53:ac:e8:95:d3:e2:b8: fe:3f:43:1e:df:30:d4:3c:e3:09:1d:3f:e9:90:2e: e4:af:57:29:24:36:07:86:b5:3d:43:5d:d4:eb:4a: 07:e2:be:e8:fc:49:0f:76:b3:f1:a5:d1:e3:5a:91: 6e:41:8e:7a:85:fe:b1:c5:9b:a9:90:5a:3f:91:64: a4:57:72:02:a1:de:02:11:43:70:1c:c3:59:d6:47: 34:e9:bb:79:a3:9d:6c:b4:fb:d9:d2:3a:29:f5:09: 08:b6:ee:c3:56:93:63:b5:cd:e8:1c:1a:10:09:93: f4:63:20:df:63:b6:4d:fe:dd:4b:e7:5e:b3:95:1e: c1:86:a4:e8:73:3e:cb:6d:7f:c8:8f:15:c4:8b:a1: 6c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:C3:DC:52:66:38:29:30:A1:D5:BB:AD:BB:0C:41:B0:39:D5:8F:C9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152070.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.219.0/24 Signature Algorithm: sha256WithRSAEncryption 13:c4:7a:2f:d0:70:45:f9:ab:16:cd:d1:e0:8a:ba:43:50:ea: 12:a8:3f:44:6c:c1:3f:4b:b6:05:21:d2:91:38:e3:ae:33:74: 89:d8:66:c7:d7:76:36:db:ab:f2:d1:a2:c8:d4:31:97:93:d5: 46:09:b0:31:51:1b:a5:05:fc:ed:74:8b:3e:ea:86:62:2f:28: fd:4b:ce:88:2d:d4:8c:03:73:d4:b5:c3:10:a6:fd:e1:e0:bd: 6d:44:dc:86:5f:22:e8:34:a7:31:6b:6e:77:cd:80:4e:52:80: 33:0f:e1:c3:08:b2:40:e0:4e:52:9e:b4:76:fc:7f:a1:95:e4: 6f:e1:ee:da:38:c4:57:d0:71:24:b9:62:5f:17:2d:96:9a:d3: 32:2f:9d:f7:80:f0:8c:d5:ba:6b:3b:64:7a:aa:23:9f:bb:f3: 95:c1:4f:7e:4d:90:d0:b7:18:e8:55:9d:45:7e:82:1a:fc:9e: 90:20:36:11:c4:43:5a:21:88:dd:60:69:43:bf:6d:11:38:1b: 2c:c5:b3:62:13:de:c0:b4:86:5a:91:f4:4e:90:5c:e7:40:2d: 3b:dc:00:be:10:6b:be:c0:56:ed:9a:70:ee:36:42:0d:4e:9b: 05:47:b6:9a:19:85:2a:2b:c5:d8:14:26:e6:39:f8:6a:7b:20: 82:34:b2:28 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUS73mQ8Py3jEi47qstD3CHIuAcd8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNjAzNTcxM1oX DTI2MTEwNTA0MDIxM1owMzExMC8GA1UEAxMoOUJDM0RDNTI2NjM4MjkzMEExRDVC QkFEQkIwQzQxQjAzOUQ1OEZDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRP6+iyl64IlwFp2Pggx6yrntH66Bx/oWJd947/JiibIFLNsBGqLw6AXSXD B2pwGsSi8bXOs0zWwrBHfZrZesNDZskQutMJWLdpcBL6TMpOgL3E4a5MyFKRnijD 3fJMWmmCL5hdgTbeEhPwgJQCnRxTrOiV0+K4/j9DHt8w1DzjCR0/6ZAu5K9XKSQ2 B4a1PUNd1OtKB+K+6PxJD3az8aXR41qRbkGOeoX+scWbqZBaP5FkpFdyAqHeAhFD cBzDWdZHNOm7eaOdbLT72dI6KfUJCLbuw1aTY7XN6BwaEAmT9GMg32O2Tf7dS+de s5UewYak6HM+y21/yI8VxIuhbIsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSbw9xS ZjgpMKHVu627DEGwOdWPyTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACQy2zANBgkqhkiG9w0BAQsFAAOCAQEAE8R6L9BwRfmrFs3R4Iq6 Q1DqEqg/RGzBP0u2BSHSkTjjrjN0idhmx9d2Ntur8tGiyNQxl5PVRgmwMVEbpQX8 7XSLPuqGYi8o/UvOiC3UjANz1LXDEKb94eC9bUTchl8i6DSnMWtud82ATlKAMw/h wwiyQOBOUp60dvx/oZXkb+Hu2jjEV9BxJLliXxctlprTMi+d94DwjNW6aztkeqoj n7vzlcFPfk2Q0LcY6FWdRX6CGvyekCA2EcRDWiGI3WBpQ79tETgbLMWzYhPewLSG WpH0TpBc50AtO9wAvhBrvsBW7Zpw7jZCDU6bBUe2mhmFKivF2BQm5jn4ansggjSy KA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:08 2025 by rpki-client