This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS136052.roa File: AS136052.roa (raw, json) Hash identifier: VuN99vgRtVg8wwcVTRYj9IByLTGhEem1mOKcpik/VXo= Subject key identifier: 4F:4B:99:23:35:85:53:DE:1B:84:F7:BD:E5:8B:73:85:C8:39:8A:00 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 329C1387903A09409E40F9B7CFEF422ECD75372E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS136052.roa Signing time: Thu 08 Jan 2026 11:00:08 +0000 ROA not before: Thu 08 Jan 2026 10:55:08 +0000 ROA not after: Thu 07 Jan 2027 11:00:08 +0000 asID: 136052 IP address blocks: 157.10.160.0/23 maxlen: 24 157.20.96.0/23 maxlen: 24 157.20.154.0/23 maxlen: 24 160.19.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 21:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9c:13:87:90:3a:09:40:9e:40:f9:b7:cf:ef:42:2e:cd:75:37:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:08 2026 GMT Not After : Jan 7 11:00:08 2027 GMT Subject: CN=4F4B9923358553DE1B84F7BDE58B7385C8398A00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f0:8e:e3:16:4f:4e:c1:72:0a:41:3d:e5:ae: 5b:25:03:3b:8d:98:70:6d:13:b2:66:1e:25:5a:ae: a3:36:dc:ce:d5:50:1f:58:37:a6:2a:a3:ec:0d:9d: b2:79:59:09:e0:a1:df:52:75:6f:07:eb:b0:e0:7c: fb:bb:a2:69:01:bb:a4:13:e2:a3:b2:b5:87:2f:65: 8d:58:78:7a:29:da:d0:cc:c0:b2:84:a4:94:b1:d4: a2:a1:11:cb:dd:19:7a:4d:83:1d:f8:3e:66:8e:a9: 82:5c:04:88:b8:dc:80:99:59:ad:39:04:be:f8:41: 4d:af:44:6a:65:78:0d:c1:4e:9e:11:58:70:49:4b: 8e:ab:4a:bd:62:f3:71:d3:c0:9e:d6:af:8b:78:49: 34:e5:d3:58:3b:b6:f9:57:19:33:de:30:7a:2b:a3: 10:66:5b:40:67:3f:cb:87:a5:60:44:86:55:22:0d: a2:c0:b0:81:c6:f6:b4:45:6d:08:83:7e:9c:f9:7c: 2f:68:31:a6:5c:8d:50:c8:0a:cb:f8:52:09:87:1a: 93:7f:6e:71:ee:54:2b:7c:dd:4b:e6:0c:e5:45:a4: 88:36:0b:02:af:51:37:cb:8e:15:6b:e4:32:8f:8e: 16:25:0c:ee:88:4b:30:79:25:30:fd:95:64:90:ba: eb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:4B:99:23:35:85:53:DE:1B:84:F7:BD:E5:8B:73:85:C8:39:8A:00 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS136052.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.160.0/23 157.20.96.0/23 157.20.154.0/23 160.19.186.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:5e:27:7a:66:85:ad:61:ba:64:07:93:7a:fe:49:d7:aa:45: 57:7d:a8:83:12:2a:98:f5:4e:33:c5:36:16:a7:1e:c1:b5:5f: 51:79:d9:2c:46:f3:4e:59:83:91:53:1f:c5:96:0c:d9:d3:79: d0:b8:3c:ab:18:7e:35:40:31:e2:0c:1d:e6:19:a8:ea:c2:a5: 3a:fa:de:b2:aa:67:3a:be:e3:ce:d4:f7:d8:5c:47:73:e3:1f: d2:2e:fe:24:e6:a2:00:46:34:d0:a7:6f:bd:31:eb:d6:09:5c: 14:bd:8f:3e:34:c6:c0:b0:6c:ca:5e:09:75:22:ab:b5:49:98: 76:92:e4:44:83:4c:d5:ce:e6:61:75:fb:c5:e4:9b:71:8e:36: a4:96:c9:99:2d:8e:a5:51:de:4a:da:bd:8d:c2:37:95:35:a2: 21:2c:7b:27:63:15:62:17:02:d2:aa:6d:a9:1a:8c:b3:9c:9c: c1:4e:10:b7:1d:3b:96:ab:3d:9e:f0:26:48:90:ea:2e:20:7a: 2a:0e:ac:12:78:58:f7:cb:a3:48:c4:2e:97:f9:d7:73:0b:92: 8e:75:c6:ed:2b:91:c9:76:25:f7:b7:d2:85:ef:0d:e1:d4:3f: 12:36:8d:d4:9a:7d:ac:d4:0f:40:52:74:59:f2:52:67:5d:ca: 72:f6:cb:ed -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIUMpwTh5A6CUCeQPm3z+9CLs11Ny4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwOFoX DTI3MDEwNzExMDAwOFowMzExMC8GA1UEAxMoNEY0Qjk5MjMzNTg1NTNERTFCODRG N0JERTU4QjczODVDODM5OEEwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrwjuMWT07BcgpBPeWuWyUDO42YcG0TsmYeJVquozbcztVQH1g3piqj7A2d snlZCeCh31J1bwfrsOB8+7uiaQG7pBPio7K1hy9ljVh4eina0MzAsoSklLHUoqER y90Zek2DHfg+Zo6pglwEiLjcgJlZrTkEvvhBTa9EamV4DcFOnhFYcElLjqtKvWLz cdPAntavi3hJNOXTWDu2+VcZM94weiujEGZbQGc/y4elYESGVSINosCwgcb2tEVt CIN+nPl8L2gxplyNUMgKy/hSCYcak39uce5UK3zdS+YM5UWkiDYLAq9RN8uOFWvk Mo+OFiUM7ohLMHklMP2VZJC66yECAwEAAaOCAeIwggHeMB0GA1UdDgQWBBRPS5kj NYVT3huE973li3OFyDmKADAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzEzNjA1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAxBggrBgEFBQcBBwEB/wQiMCAw HgQCAAEwGAMEAZ0KoAMEAZ0UYAMEAZ0UmgMEAaATujANBgkqhkiG9w0BAQsFAAOC AQEACl4nemaFrWG6ZAeTev5J16pFV32ogxIqmPVOM8U2FqcewbVfUXnZLEbzTlmD kVMfxZYM2dN50Lg8qxh+NUAx4gwd5hmo6sKlOvresqpnOr7jztT32FxHc+Mf0i7+ JOaiAEY00KdvvTHr1glcFL2PPjTGwLBsyl4JdSKrtUmYdpLkRINM1c7mYXX7xeSb cY42pJbJmS2OpVHeStq9jcI3lTWiISx7J2MVYhcC0qptqRqMs5ycwU4Qtx07lqs9 nvAmSJDqLiB6Kg6sEnhY98ujSMQul/nXcwuSjnXG7SuRyXYl97fShe8N4dQ/EjaN 1Jp9rNQPQFJ0WfJSZ13KcvbL7Q== -----END CERTIFICATE-----Generated at Sun Jan 25 21:41:25 2026 by rpki-client