This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152832.roa File: AS152832.roa (raw, json) Hash identifier: qvfrxE2LglCpYE02vE24pDVAWS4FtoDCpK3Sok43kpE= Subject key identifier: 94:38:D6:19:80:F3:1C:A6:2E:B0:E6:CD:58:3A:6C:D4:0B:FA:45:25 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0CD81F2691C24B8E110FF9A942A1F96258E11203 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152832.roa Signing time: Wed 19 Nov 2025 08:00:00 +0000 ROA not before: Wed 19 Nov 2025 07:55:00 +0000 ROA not after: Wed 18 Nov 2026 08:00:00 +0000 asID: 152832 IP address blocks: 2001:df4:c740::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:d8:1f:26:91:c2:4b:8e:11:0f:f9:a9:42:a1:f9:62:58:e1:12:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 19 07:55:00 2025 GMT Not After : Nov 18 08:00:00 2026 GMT Subject: CN=9438D61980F31CA62EB0E6CD583A6CD40BFA4525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:59:be:c6:7c:ba:ed:34:44:7b:76:66:6d:59: a4:49:7d:8b:d2:68:09:c6:b3:e3:c3:ff:30:4b:2f: 12:56:fe:8d:e1:b1:75:16:cc:80:8d:30:7f:ca:18: 8f:5f:7d:f9:87:f6:2d:1a:b3:f6:2f:bd:8f:fe:40: 3a:36:8f:fd:84:f2:87:f4:8d:7a:5a:97:57:2e:6e: b5:d1:e2:70:ea:b6:07:f8:40:a4:bf:01:ca:72:b7: 97:0c:4c:ff:82:16:42:0b:de:96:c4:ee:01:e3:57: 49:90:79:8b:f1:de:fd:03:fe:fd:4e:c0:1b:ca:74: e6:e4:be:1c:15:4f:80:9a:68:cf:3e:b4:dc:24:86: 70:d6:d9:3b:5a:11:0e:40:37:2b:b3:0e:c5:93:6d: 6f:bd:ba:95:c1:95:db:34:0b:19:9d:1b:2f:87:dc: 2f:2d:fe:a5:98:fb:4c:6e:2f:23:7a:d2:29:71:b5: 49:25:05:83:42:12:68:c6:b3:70:0f:69:bf:75:00: e9:e2:30:45:a9:83:96:73:a4:9d:10:86:c4:04:5d: 72:a9:06:b9:5f:15:5b:f5:f0:0c:0d:5a:95:82:a0: b6:b1:92:e4:5e:17:64:3d:3b:ae:08:68:58:b6:ec: d2:fc:e2:aa:83:2c:6c:c6:0b:36:65:fb:f9:e9:bc: d5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:38:D6:19:80:F3:1C:A6:2E:B0:E6:CD:58:3A:6C:D4:0B:FA:45:25 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS152832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:c740::/48 Signature Algorithm: sha256WithRSAEncryption 3c:07:06:55:8b:0b:e6:e9:21:96:84:29:a1:ba:c1:1d:7e:ec: 7b:40:67:02:57:80:8d:02:50:ef:54:db:2a:ba:88:79:6a:16: 58:80:ae:01:3e:66:d7:e1:c8:fa:8f:38:59:44:5b:9b:3a:33: 5a:42:e9:8a:41:76:80:78:cc:35:2e:ce:ac:98:1c:9c:93:3c: f9:95:ed:cd:b0:45:6a:06:f7:75:dd:8b:74:e6:72:eb:41:35: 1e:3b:55:c5:89:ff:88:4e:62:c9:2a:ac:f6:41:90:ff:8d:37: b0:8a:6d:4e:92:0a:4f:f3:81:8b:8e:1c:24:9b:17:74:22:2f: 7b:a6:60:9c:05:56:29:71:38:05:87:0d:79:78:61:0a:2f:31: 5f:d7:41:52:8c:de:e2:13:02:c4:b9:fd:cb:11:0e:cf:e3:e5: 33:4d:83:93:b8:f9:ad:97:8d:59:0c:89:12:68:37:32:8b:49: 0d:8b:9d:fb:3f:30:aa:ce:40:c9:7b:b5:fb:14:cd:e9:d9:7a: 38:52:55:a2:ef:a7:be:8c:f0:1a:70:14:56:8f:b2:04:90:3a: 4d:b8:5c:6e:e1:ff:79:8d:61:af:63:81:43:1b:ca:c1:b9:5c: 5c:68:9a:3e:db:9f:9a:f3:46:f5:4f:5a:90:32:eb:54:e7:f7: 20:cd:7d:28 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUDNgfJpHCS44RD/mpQqH5YljhEgMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExOTA3NTUwMFoX DTI2MTExODA4MDAwMFowMzExMC8GA1UEAxMoOTQzOEQ2MTk4MEYzMUNBNjJFQjBF NkNENTgzQTZDRDQwQkZBNDUyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9ZvsZ8uu00RHt2Zm1ZpEl9i9JoCcaz48P/MEsvElb+jeGxdRbMgI0wf8oY j199+Yf2LRqz9i+9j/5AOjaP/YTyh/SNelqXVy5utdHicOq2B/hApL8BynK3lwxM /4IWQgvelsTuAeNXSZB5i/He/QP+/U7AG8p05uS+HBVPgJpozz603CSGcNbZO1oR DkA3K7MOxZNtb726lcGV2zQLGZ0bL4fcLy3+pZj7TG4vI3rSKXG1SSUFg0ISaMaz cA9pv3UA6eIwRamDlnOknRCGxARdcqkGuV8VW/XwDA1alYKgtrGS5F4XZD07rgho WLbs0vziqoMsbMYLNmX7+em81csCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSUONYZ gPMcpi6w5s1YOmzUC/pFJTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MjgzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfTHQDANBgkqhkiG9w0BAQsFAAOCAQEAPAcGVYsL5ukhloQp obrBHX7se0BnAleAjQJQ71TbKrqIeWoWWICuAT5m1+HI+o84WURbmzozWkLpikF2 gHjMNS7OrJgcnJM8+ZXtzbBFagb3dd2LdOZy60E1HjtVxYn/iE5iySqs9kGQ/403 sIptTpIKT/OBi44cJJsXdCIve6ZgnAVWKXE4BYcNeXhhCi8xX9dBUoze4hMCxLn9 yxEOz+PlM02Dk7j5rZeNWQyJEmg3MotJDYud+z8wqs5AyXu1+xTN6dl6OFJVou+n vozwGnAUVo+yBJA6TbhcbuH/eY1hr2OBQxvKwblcXGiaPtufmvNG9U9akDLrVOf3 IM19KA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:51:46 2025 by rpki-client