This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa File: AS152072.roa (raw, json) Hash identifier: oNVVSMlsA2Mb18+NADu5yINw1IoKAtHv0vZqepaeJpU= Subject key identifier: 86:44:DE:83:A1:54:A0:2F:1B:D2:8D:0E:1B:28:9B:AE:0D:82:C6:13 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 76A5FE9388685E981A86F14CC4D939B9DC3EE2E5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa Signing time: Tue 18 Nov 2025 03:00:00 +0000 ROA not before: Tue 18 Nov 2025 02:55:00 +0000 ROA not after: Tue 17 Nov 2026 03:00:00 +0000 asID: 152072 IP address blocks: 36.50.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:a5:fe:93:88:68:5e:98:1a:86:f1:4c:c4:d9:39:b9:dc:3e:e2:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 18 02:55:00 2025 GMT Not After : Nov 17 03:00:00 2026 GMT Subject: CN=8644DE83A154A02F1BD28D0E1B289BAE0D82C613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:a3:63:99:67:b2:1b:d9:14:4d:66:bf:97: 38:70:b7:ac:5a:4b:bf:2e:e4:d3:99:d9:16:6e:d9: bb:d2:1c:1c:18:93:2d:b9:d4:d3:f2:01:93:d1:51: 9e:61:f2:de:70:e3:b9:4c:33:9e:77:97:33:7d:1c: 9d:fb:74:c7:c4:1c:ba:e9:d5:1a:ea:fc:94:71:13: bb:35:b6:8b:67:93:67:24:69:9b:f5:e0:f3:55:c1: 3d:04:b5:db:19:b2:e0:c6:a8:a4:57:94:2a:bc:1c: 64:f5:e0:e9:39:51:dc:e4:7e:97:d4:fa:39:1e:94: e1:90:f0:96:e0:fb:b7:e7:9c:77:68:43:c4:15:06: bb:5a:9d:1f:a2:b1:13:81:c1:d3:48:98:13:7f:69: df:61:5b:6b:58:b4:43:75:14:6f:27:6f:68:71:c2: f7:07:85:1e:44:93:04:6b:e6:45:1c:f9:3b:3f:1e: ca:49:93:09:d1:dc:46:f5:4c:09:a2:bd:70:01:82: bb:02:01:44:e9:bc:1e:94:5d:de:98:2d:37:b0:66: b2:e7:11:3f:e6:2d:a9:de:86:03:cd:03:c1:de:cf: 7e:97:e5:5e:40:16:a5:23:d6:5c:aa:ee:a3:a5:22: 28:1e:e7:4a:5c:fe:74:f2:17:cc:a2:5e:43:86:10: b3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:44:DE:83:A1:54:A0:2F:1B:D2:8D:0E:1B:28:9B:AE:0D:82:C6:13 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152072.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.218.0/24 Signature Algorithm: sha256WithRSAEncryption 93:5e:5b:65:86:90:7b:66:2e:99:9c:06:70:87:ce:e3:ae:d1: b7:69:4f:ee:30:82:c1:05:48:83:af:af:1e:c4:85:57:d0:ab: 26:73:0a:03:eb:55:f5:e2:83:de:44:9d:6b:ff:a5:42:d1:29: d9:99:93:c4:a4:f8:26:69:65:78:82:44:fa:6d:7d:e9:f3:ab: 51:13:4f:ed:45:97:61:3c:cf:5d:b9:3f:d3:28:07:81:f2:a6: 70:df:41:d7:4a:1c:cc:5f:1b:50:99:3f:19:45:65:36:59:43: bc:ba:65:3c:ff:eb:93:92:51:c9:09:b5:eb:ce:5a:f8:f6:51: 0b:b2:5c:9c:8a:09:b9:80:7e:28:e9:ef:d1:4a:c2:f5:a0:76: a2:19:94:01:41:ce:4d:51:bb:ab:e9:3a:d3:33:25:84:e2:9b: e4:12:cc:6d:25:9b:5e:39:bd:66:52:99:ab:a4:30:9a:36:85: 73:86:1f:9f:a1:80:41:51:f2:aa:0b:d0:f5:b5:fb:3d:94:ac: 6b:cb:32:3b:5a:87:49:99:f6:29:46:06:de:05:5a:e2:69:e3: 1b:e5:7d:a5:82:02:31:2b:ff:9d:cd:2c:02:ca:b4:51:8b:7b: 7f:a3:5f:6d:cc:bd:ba:78:16:82:86:74:1d:c3:74:45:8a:1c: d4:d8:49:af -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdqX+k4hoXpgahvFMxNk5udw+4uUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExODAyNTUwMFoX DTI2MTExNzAzMDAwMFowMzExMC8GA1UEAxMoODY0NERFODNBMTU0QTAyRjFCRDI4 RDBFMUIyODlCQUUwRDgyQzYxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1+o2OZZ7Ib2RRNZr+XOHC3rFpLvy7k05nZFm7Zu9IcHBiTLbnU0/IBk9FR nmHy3nDjuUwznneXM30cnft0x8QcuunVGur8lHETuzW2i2eTZyRpm/Xg81XBPQS1 2xmy4MaopFeUKrwcZPXg6TlR3OR+l9T6OR6U4ZDwluD7t+ecd2hDxBUGu1qdH6Kx E4HB00iYE39p32Fba1i0Q3UUbydvaHHC9weFHkSTBGvmRRz5Oz8eykmTCdHcRvVM CaK9cAGCuwIBROm8HpRd3pgtN7BmsucRP+Ytqd6GA80Dwd7PfpflXkAWpSPWXKru o6UiKB7nSlz+dPIXzKJeQ4YQs1cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSGRN6D oVSgLxvSjQ4bKJuuDYLGEzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjA3Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACQy2jANBgkqhkiG9w0BAQsFAAOCAQEAk15bZYaQe2YumZwGcIfO 467Rt2lP7jCCwQVIg6+vHsSFV9CrJnMKA+tV9eKD3kSda/+lQtEp2ZmTxKT4Jmll eIJE+m196fOrURNP7UWXYTzPXbk/0ygHgfKmcN9B10oczF8bUJk/GUVlNllDvLpl PP/rk5JRyQm1685a+PZRC7JcnIoJuYB+KOnv0UrC9aB2ohmUAUHOTVG7q+k60zMl hOKb5BLMbSWbXjm9ZlKZq6QwmjaFc4Yfn6GAQVHyqgvQ9bX7PZSsa8syO1qHSZn2 KUYG3gVa4mnjG+V9pYICMSv/nc0sAsq0UYt7f6Nfbcy9ungWgoZ0HcN0RYoc1NhJ rw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:23 2025 by rpki-client