This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa File: AS18156.roa (raw, json) Hash identifier: fGClo1ZvdbNiogPLCJzgKlnnHcXnEfXGC8ba+cSKJQQ= Subject key identifier: A5:4D:02:3E:BA:6F:04:BD:6D:34:EC:37:95:85:B5:21:B4:B8:85:2D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F3BC06E34C45A2A1D9960FC9484CBB7B04201B3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa Signing time: Wed 07 Jan 2026 03:00:00 +0000 ROA not before: Wed 07 Jan 2026 02:55:00 +0000 ROA not after: Wed 06 Jan 2027 03:00:00 +0000 asID: 18156 IP address blocks: 202.147.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:3b:c0:6e:34:c4:5a:2a:1d:99:60:fc:94:84:cb:b7:b0:42:01:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 7 02:55:00 2026 GMT Not After : Jan 6 03:00:00 2027 GMT Subject: CN=A54D023EBA6F04BD6D34EC379585B521B4B8852D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:49:dd:a3:55:8d:09:5d:85:7b:fa:42:d1:5a: 59:a7:52:a6:da:58:f4:56:9f:db:87:98:fc:00:de: 1c:0c:50:5c:a0:ad:80:83:34:6f:d3:bc:9c:86:82: d0:4f:b0:3d:ed:1c:72:9c:e6:ba:71:01:e5:9b:73: 94:bb:b4:c2:f0:3f:53:40:36:9a:35:2e:90:3b:d4: 02:3f:53:4b:d1:f5:40:ed:4f:08:ed:70:0a:ca:88: 7d:0b:95:ba:25:8e:62:17:b4:96:78:1d:51:4e:73: 76:f3:60:d7:35:52:8f:5f:7d:51:56:a6:b9:0c:43: 66:f9:51:62:2e:52:10:0d:e1:2c:0f:32:ab:6d:f7: 25:aa:d2:6a:75:92:bd:df:da:1e:41:bc:f1:9b:2b: a0:56:23:b9:a8:44:51:3a:4e:e7:96:1c:4f:84:07: 96:65:8f:c2:5d:5a:6a:5d:dd:95:d7:d8:f6:83:c5: 1a:2a:18:97:2f:55:df:52:37:a0:15:09:55:2a:27: d2:39:b2:01:46:94:6c:52:d8:07:5c:ad:0b:cd:ca: 2e:ea:eb:57:f9:63:11:eb:03:49:7a:af:fd:d9:cf: fc:c9:37:c6:cc:2f:16:b3:17:21:86:35:1a:03:40: 7e:94:94:49:56:65:10:50:6b:c0:87:9e:47:90:d0: f6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:4D:02:3E:BA:6F:04:BD:6D:34:EC:37:95:85:B5:21:B4:B8:85:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS18156.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.147.224.0/19 Signature Algorithm: sha256WithRSAEncryption 6b:9b:1b:53:1f:19:f3:5c:93:fb:26:d1:7a:a8:08:47:96:dc: 38:0e:e3:0d:5a:3b:3c:ee:07:d6:b0:a6:c7:84:c8:17:37:20: b1:51:1c:62:2f:62:68:d6:b5:62:78:b4:f5:14:71:98:40:f2: d5:51:42:81:28:57:f3:31:2a:9e:28:1f:ee:ab:7d:0e:2b:e9: 37:c0:3a:1e:2d:82:03:68:20:81:df:aa:a5:ac:1f:66:2c:f0: bd:01:a4:46:42:83:9d:ac:91:7a:5e:25:e3:08:00:66:6c:1d: cb:49:28:c9:6f:82:db:d2:e8:1d:28:5a:ea:9f:f9:8c:3e:70: 60:6c:31:be:8a:4a:3c:5f:68:17:87:3b:8a:80:d2:92:ef:8b: 1b:47:a5:71:bb:ca:4c:1f:f4:c4:60:2c:ed:d3:2e:6f:62:ad: 22:5f:af:aa:02:89:c8:8b:a2:e0:a5:9b:96:cf:df:35:cf:35: 08:ac:40:53:45:00:ef:f2:1a:de:a5:22:e7:20:90:e7:8f:8c: 73:02:51:c8:41:c5:c2:e0:b8:6b:e7:df:a4:34:a5:3a:4d:8a: ce:2b:c5:6c:aa:f4:99:06:a3:ca:69:81:ef:94:cc:47:7f:39: 8f:60:04:3a:ae:79:d1:00:d9:cf:a4:6e:4b:0b:cb:46:51:7e: 69:bd:b7:69 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIULzvAbjTEWiodmWD8lITLt7BCAbMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwNzAyNTUwMFoX DTI3MDEwNjAzMDAwMFowMzExMC8GA1UEAxMoQTU0RDAyM0VCQTZGMDRCRDZEMzRF QzM3OTU4NUI1MjFCNEI4ODUyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdJ3aNVjQldhXv6QtFaWadSptpY9Faf24eY/ADeHAxQXKCtgIM0b9O8nIaC 0E+wPe0ccpzmunEB5ZtzlLu0wvA/U0A2mjUukDvUAj9TS9H1QO1PCO1wCsqIfQuV uiWOYhe0lngdUU5zdvNg1zVSj199UVamuQxDZvlRYi5SEA3hLA8yq233JarSanWS vd/aHkG88ZsroFYjuahEUTpO55YcT4QHlmWPwl1aal3dldfY9oPFGioYly9V31I3 oBUJVSon0jmyAUaUbFLYB1ytC83KLurrV/ljEesDSXqv/dnP/Mk3xswvFrMXIYY1 GgNAfpSUSVZlEFBrwIeeR5DQ9i8CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBSlTQI+ um8EvW007DeVhbUhtLiFLTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE4MTU2LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFypPgMA0GCSqGSIb3DQEBCwUAA4IBAQBrmxtTHxnzXJP7JtF6qAhH ltw4DuMNWjs87gfWsKbHhMgXNyCxURxiL2Jo1rVieLT1FHGYQPLVUUKBKFfzMSqe KB/uq30OK+k3wDoeLYIDaCCB36qlrB9mLPC9AaRGQoOdrJF6XiXjCABmbB3LSSjJ b4Lb0ugdKFrqn/mMPnBgbDG+iko8X2gXhzuKgNKS74sbR6Vxu8pMH/TEYCzt0y5v Yq0iX6+qAonIi6LgpZuWz981zzUIrEBTRQDv8hrepSLnIJDnj4xzAlHIQcXC4Lhr 59+kNKU6TYrOK8VsqvSZBqPKaYHvlMxHfzmPYAQ6rnnRANnPpG5LC8tGUX5pvbdp -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:05 2026 by rpki-client