This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152352.roa File: AS152352.roa (raw, json) Hash identifier: 9dr2+Irqs7BEgxRKX1hL3gfgHKhyOcjBLUulHbdALeU= Subject key identifier: 46:C2:30:7B:F4:65:43:41:CC:F1:F8:2C:DD:05:98:18:6B:20:01:C4 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 76DA6AA577BC9BA36C9B04E32332707800999DE2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152352.roa Signing time: Fri 12 Dec 2025 11:00:00 +0000 ROA not before: Fri 12 Dec 2025 10:55:00 +0000 ROA not after: Fri 11 Dec 2026 11:00:00 +0000 asID: 152352 IP address blocks: 103.184.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 06:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:da:6a:a5:77:bc:9b:a3:6c:9b:04:e3:23:32:70:78:00:99:9d:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 12 10:55:00 2025 GMT Not After : Dec 11 11:00:00 2026 GMT Subject: CN=46C2307BF4654341CCF1F82CDD0598186B2001C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a3:50:b1:88:a1:9f:de:7c:77:a5:a0:d9:18: 0e:03:73:30:dc:65:db:9b:87:9a:01:a1:b9:8c:8f: bb:10:e2:14:7b:51:90:62:b4:7b:2d:db:2e:34:1f: 58:cc:be:96:78:00:9b:eb:3f:a0:f1:61:cd:ef:30: 0f:1f:f8:d1:de:84:12:9d:d8:f2:0d:05:a1:8a:91: cd:19:07:82:d9:02:2e:86:a7:4c:0c:c9:f2:91:2c: 43:38:9f:0f:2d:ed:dd:86:54:57:bd:14:72:28:1b: 90:57:ed:ec:b5:cc:cc:6b:97:9b:79:e4:10:ba:1f: ee:db:38:14:4e:b7:f1:f4:f9:21:43:e9:42:ad:dc: 84:b0:ed:29:17:d7:5e:7e:2d:fc:c5:de:e7:fa:44: b3:cd:57:1a:ff:ab:05:94:7b:46:d8:92:ce:ef:0a: 2f:0a:c9:5c:d0:9b:54:17:a6:18:6d:8f:0e:d4:dc: bf:1f:cb:26:fe:e9:ab:d2:e7:66:25:0a:be:01:e5: 44:14:53:97:c2:09:c3:50:b6:ea:71:56:64:e9:c2: 25:ba:f9:24:13:ae:4e:90:61:f2:82:ac:e5:7f:df: 1c:49:6d:a8:95:06:5b:de:86:6b:bd:30:ca:e6:d3: 53:52:de:cc:e1:76:08:b6:48:24:ba:9e:30:bb:73: 67:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C2:30:7B:F4:65:43:41:CC:F1:F8:2C:DD:05:98:18:6B:20:01:C4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152352.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.57.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:2d:e7:38:16:e8:7c:ae:a7:d2:f1:db:df:72:c7:5b:da:8f: b1:04:fe:8d:a5:d1:20:2e:f1:44:02:69:4e:0e:92:4d:35:e1: 44:89:19:15:32:96:32:78:bd:4f:0c:b6:5a:c5:33:ce:86:9c: a1:f9:73:96:1a:d3:7f:b5:d3:c1:6d:c0:26:69:14:68:14:a0: 79:90:62:e0:b1:f0:b6:d8:46:3a:ec:8c:91:55:87:0c:b9:2d: 9b:0f:f0:03:7c:c3:68:d6:41:5a:11:ad:4a:83:f2:05:b8:97: db:94:7f:48:37:e1:05:ff:77:84:3e:1c:d2:1e:c9:2d:78:a0: 2e:b3:b0:17:4c:7a:43:b9:48:91:7b:58:47:c4:a8:0f:74:22: 8a:ea:75:10:23:31:0d:cf:3c:bd:44:eb:af:dc:d3:e9:81:79: f3:34:54:ff:93:0c:00:20:59:de:e0:b5:ee:0e:2f:7c:88:d4: dd:13:b5:2e:0b:a4:97:42:71:58:0c:ae:c8:b2:bf:d9:bc:a4: 2e:7f:75:63:56:1d:40:1b:92:3d:c0:d8:8f:4b:d2:42:67:15: 87:e2:54:b4:90:01:30:e1:bc:3b:29:b5:6e:c0:32:70:39:5d: 1a:70:61:ed:fc:b4:a5:62:5e:ab:8d:ea:92:b2:0b:b7:95:68: b5:72:16:4f -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdtpqpXe8m6NsmwTjIzJweACZneIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxMjEwNTUwMFoX DTI2MTIxMTExMDAwMFowMzExMC8GA1UEAxMoNDZDMjMwN0JGNDY1NDM0MUNDRjFG ODJDREQwNTk4MTg2QjIwMDFDNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALOjULGIoZ/efHeloNkYDgNzMNxl25uHmgGhuYyPuxDiFHtRkGK0ey3bLjQf WMy+lngAm+s/oPFhze8wDx/40d6EEp3Y8g0FoYqRzRkHgtkCLoanTAzJ8pEsQzif Dy3t3YZUV70UcigbkFft7LXMzGuXm3nkELof7ts4FE638fT5IUPpQq3chLDtKRfX Xn4t/MXe5/pEs81XGv+rBZR7RtiSzu8KLwrJXNCbVBemGG2PDtTcvx/LJv7pq9Ln ZiUKvgHlRBRTl8IJw1C26nFWZOnCJbr5JBOuTpBh8oKs5X/fHEltqJUGW96Ga70w yubTU1LezOF2CLZIJLqeMLtzZ+MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRGwjB7 9GVDQczx+CzdBZgYayABxDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjM1Mi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGe4OTANBgkqhkiG9w0BAQsFAAOCAQEAHi3nOBbofK6n0vHb33LH W9qPsQT+jaXRIC7xRAJpTg6STTXhRIkZFTKWMni9Twy2WsUzzoacoflzlhrTf7XT wW3AJmkUaBSgeZBi4LHwtthGOuyMkVWHDLktmw/wA3zDaNZBWhGtSoPyBbiX25R/ SDfhBf93hD4c0h7JLXigLrOwF0x6Q7lIkXtYR8SoD3Qiiup1ECMxDc88vUTrr9zT 6YF58zRU/5MMACBZ3uC17g4vfIjU3RO1Lgukl0JxWAyuyLK/2bykLn91Y1YdQBuS PcDYj0vSQmcVh+JUtJABMOG8Oym1bsAycDldGnBh7fy0pWJeq43qkrILt5VotXIW Tw== -----END CERTIFICATE-----Generated at Tue Dec 16 07:08:35 2025 by rpki-client