This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149353.roa File: AS149353.roa (raw, json) Hash identifier: w/W+1Q+Iza771746Hllo9inGP1bWcTUXrQPhjGAKaMM= Subject key identifier: 4A:EE:04:73:F7:F3:65:0F:AB:CF:83:23:EE:9A:E6:12:8A:B7:F5:DC Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 770709BEA2ACE6D4453C40BA24667829B48EB6F7 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149353.roa Signing time: Thu 08 Jan 2026 11:00:04 +0000 ROA not before: Thu 08 Jan 2026 10:55:04 +0000 ROA not after: Thu 07 Jan 2027 11:00:04 +0000 asID: 149353 IP address blocks: 157.15.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:07:09:be:a2:ac:e6:d4:45:3c:40:ba:24:66:78:29:b4:8e:b6:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:04 2026 GMT Not After : Jan 7 11:00:04 2027 GMT Subject: CN=4AEE0473F7F3650FABCF8323EE9AE6128AB7F5DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f5:3c:0f:82:12:41:d6:c1:e1:37:bd:85:59: 9e:79:a3:87:00:e4:3e:f8:9c:75:6e:40:39:28:00: 33:30:cf:49:cf:d7:cd:9f:67:03:57:ab:3e:95:a9: 33:11:d8:08:fd:c8:f7:5f:fc:3c:91:da:e2:ce:c3: 8f:ed:b5:44:50:23:6a:9f:ca:87:87:ea:fb:57:8f: 22:0c:e2:71:c9:7c:28:20:ed:97:05:2c:9d:13:0f: 63:8c:80:9f:6f:2b:e4:4a:80:bc:8c:0a:e6:85:a6: df:a6:9c:78:54:bd:da:c5:2e:ac:df:c3:ac:f6:7e: 40:62:91:88:64:73:3e:47:2e:5c:6c:fb:e1:4f:0b: d7:b4:d4:c5:6a:92:ed:25:88:64:2b:c2:b8:8f:bd: ab:d0:0e:ad:74:26:df:2d:46:67:f9:33:7e:67:3a: 97:80:86:a7:53:ac:fe:c0:14:e9:06:5b:56:f9:e8: 55:5f:19:67:08:51:66:01:9a:1a:27:4d:08:fa:50: db:ec:27:d6:01:09:3d:b4:26:94:cb:e4:ee:d9:a3: 98:42:96:8f:47:da:c4:01:76:ca:65:bb:ad:19:3e: 54:18:fa:5e:9b:5c:be:73:cd:c8:82:d4:3f:c5:90: e7:85:7b:88:84:19:36:15:36:61:f2:ef:70:7b:c4: a3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:EE:04:73:F7:F3:65:0F:AB:CF:83:23:EE:9A:E6:12:8A:B7:F5:DC X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS149353.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.48.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:38:58:4c:bc:6c:06:76:a2:52:36:4d:37:01:fb:07:7b:49: 42:8b:a7:d1:c8:58:f7:80:7f:58:87:ae:6d:1f:3c:0d:d9:29: 90:0b:a7:fe:76:cb:85:18:39:a0:08:bb:b0:f5:78:f2:14:74: 4f:9c:be:a3:9c:8f:b7:86:e4:d9:fe:9c:23:8e:19:3b:dc:60: 04:2e:07:85:4f:43:42:20:1c:c9:63:22:78:e6:82:51:b3:42: f0:aa:78:dd:4e:15:ab:fd:65:f4:6b:76:9e:49:38:e9:ca:b0: 4e:eb:e3:0a:e1:49:96:90:7c:cf:09:e7:00:28:be:6c:fa:f2: f5:8d:be:50:ee:9d:f5:cb:01:4c:62:92:3f:74:66:9d:ee:5f: 38:da:dc:29:e3:1d:4b:f7:37:80:13:98:a2:f0:8f:0f:78:e4: b3:de:1a:db:ba:15:cb:72:7f:42:45:df:a2:44:02:99:2d:87: 68:9f:ee:35:42:90:60:f2:18:bc:47:31:61:62:db:e7:73:19: c9:6b:ea:30:20:64:06:23:7f:5b:a2:73:b5:e8:4a:06:b8:a0: b3:93:9f:1d:bf:7a:62:91:55:d2:bb:43:e9:56:8a:b2:da:ab: 60:2c:53:6d:4e:a4:36:7c:4a:7b:e9:85:0a:01:30:a7:e7:b3: c9:49:77:6c -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUdwcJvqKs5tRFPEC6JGZ4KbSOtvcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwNFoX DTI3MDEwNzExMDAwNFowMzExMC8GA1UEAxMoNEFFRTA0NzNGN0YzNjUwRkFCQ0Y4 MzIzRUU5QUU2MTI4QUI3RjVEQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMP1PA+CEkHWweE3vYVZnnmjhwDkPvicdW5AOSgAMzDPSc/XzZ9nA1erPpWp MxHYCP3I91/8PJHa4s7Dj+21RFAjap/Kh4fq+1ePIgziccl8KCDtlwUsnRMPY4yA n28r5EqAvIwK5oWm36aceFS92sUurN/DrPZ+QGKRiGRzPkcuXGz74U8L17TUxWqS 7SWIZCvCuI+9q9AOrXQm3y1GZ/kzfmc6l4CGp1Os/sAU6QZbVvnoVV8ZZwhRZgGa GidNCPpQ2+wn1gEJPbQmlMvk7tmjmEKWj0faxAF2ymW7rRk+VBj6XptcvnPNyILU P8WQ54V7iIQZNhU2YfLvcHvEowMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRK7gRz 9/NlD6vPgyPumuYSirf13DAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE0OTM1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAZ0PMDANBgkqhkiG9w0BAQsFAAOCAQEAPDhYTLxsBnaiUjZNNwH7 B3tJQoun0chY94B/WIeubR88DdkpkAun/nbLhRg5oAi7sPV48hR0T5y+o5yPt4bk 2f6cI44ZO9xgBC4HhU9DQiAcyWMieOaCUbNC8Kp43U4Vq/1l9Gt2nkk46cqwTuvj CuFJlpB8zwnnACi+bPry9Y2+UO6d9csBTGKSP3Rmne5fONrcKeMdS/c3gBOYovCP D3jks94a27oVy3J/QkXfokQCmS2HaJ/uNUKQYPIYvEcxYWLb53MZyWvqMCBkBiN/ W6JztehKBrigs5OfHb96YpFV0rtD6VaKstqrYCxTbU6kNnxKe+mFCgEwp+ezyUl3 bA== -----END CERTIFICATE-----Generated at Wed Jan 21 10:30:32 2026 by rpki-client