This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152353.roa File: AS152353.roa (raw, json) Hash identifier: jGEbP6aJBJ/P0t0Pi5hMxfdV88VlO6nW3JaUnj/nzMU= Subject key identifier: DF:B6:CB:E3:89:BA:2F:8F:A0:48:0B:A2:7F:90:30:0A:31:88:2A:30 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3E5BCABB014321724D266A8626DA03096C81A04A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152353.roa Signing time: Mon 08 Dec 2025 08:39:11 +0000 ROA not before: Mon 08 Dec 2025 08:34:11 +0000 ROA not after: Mon 07 Dec 2026 08:39:11 +0000 asID: 152353 IP address blocks: 157.10.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 09:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:5b:ca:bb:01:43:21:72:4d:26:6a:86:26:da:03:09:6c:81:a0:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Dec 8 08:34:11 2025 GMT Not After : Dec 7 08:39:11 2026 GMT Subject: CN=DFB6CBE389BA2F8FA0480BA27F90300A31882A30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:91:c2:88:c1:4e:75:2c:00:3e:02:d6:c6:1f: c7:3b:cf:49:f0:f2:3a:58:46:a7:13:4f:9e:c8:b4: 33:16:96:2e:bd:d2:48:06:d7:e8:fb:ed:79:df:a5: 63:95:c2:fa:5e:b9:33:e9:47:b3:26:9f:d5:40:92: d8:ee:04:c2:90:39:89:8c:65:d7:a5:41:8f:2a:f6: 74:f2:f1:12:b2:59:e8:24:fc:17:87:11:d6:c0:2b: 1f:7c:80:5a:14:0d:5d:73:71:c6:c8:bc:80:fb:9e: 1c:d9:64:e7:1c:35:ae:18:4f:41:4b:57:cc:fb:b2: cc:df:6a:51:1f:58:bd:aa:4e:48:15:95:61:66:77: 99:2b:a4:70:dc:a0:9d:e4:e6:d2:d7:33:03:13:92: d3:69:44:d7:24:79:77:bc:8c:fa:9b:18:35:23:28: de:3f:2f:76:cb:2c:b2:f1:7d:27:93:1a:a7:27:79: 2c:08:67:86:4d:09:cb:6e:d5:af:8c:6d:5b:b1:87: 74:3a:1c:81:77:be:15:6f:a1:d3:59:db:bf:d9:99: c3:20:10:0e:4d:e6:c2:a7:ca:1d:2b:00:8c:81:9f: a1:c2:69:96:81:45:8f:9e:9d:65:8e:f9:da:e2:80: da:e1:f4:56:b3:63:3b:d2:83:d8:5a:56:63:4a:ee: 7d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B6:CB:E3:89:BA:2F:8F:A0:48:0B:A2:7F:90:30:0A:31:88:2A:30 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS152353.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.180.0/24 Signature Algorithm: sha256WithRSAEncryption 10:d5:19:31:ea:d8:eb:77:c4:8e:6b:46:05:78:e5:42:90:cf: 1c:0a:f9:11:f0:b3:cb:6b:cf:6d:84:8c:e6:f7:60:9f:86:95: c5:f3:d4:8a:aa:07:da:6c:22:48:49:ab:da:03:1f:fc:31:80: c1:c2:04:7b:62:d7:ec:0f:54:c6:42:95:f1:bb:a3:aa:8f:e2: ef:d5:fd:91:c4:c3:28:d9:f3:99:88:51:b2:40:07:04:97:a8: 91:99:fd:bd:09:ba:63:0c:50:db:ef:93:66:b0:a9:56:16:0a: c1:26:a1:25:a3:dd:9c:52:81:40:f4:7a:e0:79:4f:15:07:d0: 4f:c3:d5:81:94:fe:60:e9:bb:d1:5b:ae:20:2e:41:35:20:35: a1:ca:8e:1c:d2:40:0f:e5:e9:af:ef:cf:3f:4a:63:93:74:1d: a2:6c:e2:a9:3e:f1:17:a9:72:26:ef:52:46:0a:c0:91:b8:13: 1a:77:c2:61:43:0f:ae:4b:c3:ef:fe:cc:a9:36:db:17:11:91: 03:6a:37:6c:2c:be:72:5f:75:39:5f:bc:84:61:dd:3b:72:b4: a5:83:a6:49:af:28:4b:7d:18:8e:73:31:36:b5:8d:7e:5b:77: dd:0d:df:36:fb:ce:bf:10:aa:14:5b:ea:ae:0a:21:b4:39:7d: 04:f3:41:81 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUPlvKuwFDIXJNJmqGJtoDCWyBoEowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MTIwODA4MzQxMVoX DTI2MTIwNzA4MzkxMVowMzExMC8GA1UEAxMoREZCNkNCRTM4OUJBMkY4RkEwNDgw QkEyN0Y5MDMwMEEzMTg4MkEzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKORwojBTnUsAD4C1sYfxzvPSfDyOlhGpxNPnsi0MxaWLr3SSAbX6Pvted+l Y5XC+l65M+lHsyaf1UCS2O4EwpA5iYxl16VBjyr2dPLxErJZ6CT8F4cR1sArH3yA WhQNXXNxxsi8gPueHNlk5xw1rhhPQUtXzPuyzN9qUR9YvapOSBWVYWZ3mSukcNyg neTm0tczAxOS02lE1yR5d7yM+psYNSMo3j8vdssssvF9J5Mapyd5LAhnhk0Jy27V r4xtW7GHdDocgXe+FW+h01nbv9mZwyAQDk3mwqfKHSsAjIGfocJploFFj56dZY75 2uKA2uH0VrNjO9KD2FpWY0rufbUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTftsvj ibovj6BIC6J/kDAKMYgqMDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MjM1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0KtDANBgkqhkiG9w0BAQsFAAOCAQEAENUZMerY63fEjmtGBXjl QpDPHAr5EfCzy2vPbYSM5vdgn4aVxfPUiqoH2mwiSEmr2gMf/DGAwcIEe2LX7A9U xkKV8bujqo/i79X9kcTDKNnzmYhRskAHBJeokZn9vQm6YwxQ2++TZrCpVhYKwSah JaPdnFKBQPR64HlPFQfQT8PVgZT+YOm70VuuIC5BNSA1ocqOHNJAD+Xpr+/PP0pj k3QdomziqT7xF6lyJu9SRgrAkbgTGnfCYUMPrkvD7/7MqTbbFxGRA2o3bCy+cl91 OV+8hGHdO3K0pYOmSa8oS30YjnMxNrWNflt33Q3fNvvOvxCqFFvqrgohtDl9BPNB gQ== -----END CERTIFICATE-----Generated at Wed Dec 17 20:07:27 2025 by rpki-client