This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149337.roa File: AS149337.roa (raw, json) Hash identifier: CybyEimLbBv3Isw5epXR5f12HYgYWjO0mp87wVr3TM8= Subject key identifier: B7:87:2D:FD:31:36:22:27:41:D5:7D:FA:14:94:E8:0F:C1:2B:35:1C Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 50894113AD06F592AC9B2FA7FFEDF6DCEECAB5E7 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149337.roa Signing time: Thu 08 Jan 2026 11:00:01 +0000 ROA not before: Thu 08 Jan 2026 10:55:01 +0000 ROA not after: Thu 07 Jan 2027 11:00:01 +0000 asID: 149337 IP address blocks: 157.10.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 04:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:89:41:13:ad:06:f5:92:ac:9b:2f:a7:ff:ed:f6:dc:ee:ca:b5:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:01 2026 GMT Not After : Jan 7 11:00:01 2027 GMT Subject: CN=B7872DFD3136222741D57DFA1494E80FC12B351C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:39:56:05:35:c7:d7:ac:89:76:04:b5:31:28: 9a:8d:f8:f3:f2:a6:df:02:64:b1:ca:6a:c5:c5:3b: 24:c8:2c:8b:6b:a1:a7:cd:c2:09:36:4e:13:66:a7: 81:55:4c:af:62:0b:6d:45:01:c4:1f:12:81:e2:cd: e5:eb:8e:0b:f2:c8:97:10:59:30:20:a8:85:a6:f3: 64:0e:0a:8e:ca:78:60:c7:a1:ed:6c:11:5e:e6:19: 0d:dd:5f:89:2a:85:82:67:67:5e:40:93:93:9a:d2: 45:31:e0:e8:8d:24:da:f7:78:0b:e0:b6:42:7f:82: b5:25:b3:5d:55:d8:3e:bb:e2:ba:48:d5:d6:dd:07: a1:dc:77:57:d2:ae:5b:96:94:c4:28:4b:49:61:de: 29:dc:b4:e9:77:2d:be:a7:78:ec:d1:46:b4:df:01: 8e:20:d1:d3:58:b6:5e:04:b0:9d:c4:1e:40:d6:fe: ed:c7:b6:52:5c:28:e2:19:4e:8e:47:65:38:c6:ff: 20:14:54:e7:66:c9:da:03:63:43:55:f5:75:33:80: 91:2f:f7:43:48:08:00:fd:22:bf:95:f7:d7:c4:86: 5d:22:e8:3c:c5:f2:f8:05:90:f8:6e:d8:de:2e:0b: dc:2b:2f:ff:9d:fc:4b:6f:9f:74:31:36:e2:12:3a: 4f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:87:2D:FD:31:36:22:27:41:D5:7D:FA:14:94:E8:0F:C1:2B:35:1C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.236.0/24 Signature Algorithm: sha256WithRSAEncryption 68:6d:bf:8f:e6:0a:01:ff:f1:cf:ab:8e:0a:70:69:0a:8b:49: 0e:b2:ff:b8:ff:64:75:11:28:d8:27:36:86:9e:2d:3d:be:02: c5:ae:fd:51:49:ce:75:73:fb:92:94:38:ec:7f:58:ac:1a:4e: 5a:5a:18:6b:43:39:fb:11:78:e2:91:29:67:b3:e6:d5:3e:5d: ee:df:a7:a0:36:85:8b:09:55:93:60:60:45:72:86:07:3e:9a: b7:ea:5b:53:dc:42:a7:c4:94:4c:41:64:f9:7f:64:6b:af:07: 1c:63:1a:0e:9a:1d:7a:af:10:9c:0a:7b:d3:50:2f:2a:f3:5e: ba:09:fa:e8:61:93:69:dc:99:3c:61:be:c6:a9:db:60:95:dd: 67:69:d8:f3:ce:09:83:b4:60:96:d7:e7:58:6d:bc:64:c1:a0: c9:a1:d7:a5:ab:37:58:59:ff:ce:c0:0d:8d:06:16:3f:87:24: 09:25:01:ed:d3:bc:64:f8:7b:8f:09:ff:9f:1b:f1:2c:e3:99: 6a:52:93:8f:b5:5d:42:1b:27:dc:88:5c:c1:15:08:d5:7c:0f: 4e:44:19:01:96:8a:96:3d:f4:e2:b7:c8:17:df:78:70:48:8b: 98:46:ea:20:c6:1a:ce:33:17:03:17:2b:40:58:0a:7a:3a:c3: 4b:5d:34:64 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUIlBE60G9ZKsmy+n/+323O7KtecwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwMVoX DTI3MDEwNzExMDAwMVowMzExMC8GA1UEAxMoQjc4NzJERkQzMTM2MjIyNzQxRDU3 REZBMTQ5NEU4MEZDMTJCMzUxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL45VgU1x9esiXYEtTEomo348/Km3wJkscpqxcU7JMgsi2uhp83CCTZOE2an gVVMr2ILbUUBxB8SgeLN5euOC/LIlxBZMCCohabzZA4Kjsp4YMeh7WwRXuYZDd1f iSqFgmdnXkCTk5rSRTHg6I0k2vd4C+C2Qn+CtSWzXVXYPrviukjV1t0Hodx3V9Ku W5aUxChLSWHeKdy06Xctvqd47NFGtN8BjiDR01i2XgSwncQeQNb+7ce2Ulwo4hlO jkdlOMb/IBRU52bJ2gNjQ1X1dTOAkS/3Q0gIAP0iv5X318SGXSLoPMXy+AWQ+G7Y 3i4L3Csv/538S2+fdDE24hI6TxsCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS3hy39 MTYiJ0HVffoUlOgPwSs1HDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0OTMzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0K7DANBgkqhkiG9w0BAQsFAAOCAQEAaG2/j+YKAf/xz6uOCnBp CotJDrL/uP9kdREo2Cc2hp4tPb4Cxa79UUnOdXP7kpQ47H9YrBpOWloYa0M5+xF4 4pEpZ7Pm1T5d7t+noDaFiwlVk2BgRXKGBz6at+pbU9xCp8SUTEFk+X9ka68HHGMa Dpodeq8QnAp701AvKvNeugn66GGTadyZPGG+xqnbYJXdZ2nY884Jg7RgltfnWG28 ZMGgyaHXpas3WFn/zsANjQYWP4ckCSUB7dO8ZPh7jwn/nxvxLOOZalKTj7VdQhsn 3IhcwRUI1XwPTkQZAZaKlj304rfIF994cEiLmEbqIMYazjMXAxcrQFgKejrDS100 ZA== -----END CERTIFICATE-----Generated at Mon Feb 2 17:19:52 2026 by rpki-client