This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150249.roa File: AS150249.roa (raw, json) Hash identifier: /Q2A8yvISwOyO/fXB4vOe8Htll1k0G1Y/ZYRwt60y/8= Subject key identifier: 8F:F8:63:5E:71:D0:BA:6C:17:99:1A:8E:B9:59:2D:46:83:46:E9:B4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1628D505C9DD17B905BDFBC98F85A2C0B79BF885 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150249.roa Signing time: Thu 08 Jan 2026 11:00:02 +0000 ROA not before: Thu 08 Jan 2026 10:55:02 +0000 ROA not after: Thu 07 Jan 2027 11:00:02 +0000 asID: 150249 IP address blocks: 157.10.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 10:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:28:d5:05:c9:dd:17:b9:05:bd:fb:c9:8f:85:a2:c0:b7:9b:f8:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:02 2026 GMT Not After : Jan 7 11:00:02 2027 GMT Subject: CN=8FF8635E71D0BA6C17991A8EB9592D468346E9B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6c:f5:c4:fc:15:ca:2b:a9:ae:b8:67:f0:dc: 8d:6e:08:29:73:06:c9:89:96:47:0c:bc:2d:53:b2: 68:16:45:5c:4e:80:97:5f:b9:81:5e:5f:2e:d1:99: 75:1f:33:bb:c5:22:69:11:bc:90:f1:81:57:27:54: 40:42:54:6f:49:d8:88:66:e6:a3:5b:12:d3:78:2b: 18:d1:cf:f1:ec:35:6a:fe:b6:d5:f6:94:4c:b2:a0: 4b:85:ab:c2:81:ad:ea:cd:55:a2:48:80:a0:06:3f: db:46:92:53:73:af:fc:c0:18:0c:04:56:e7:ff:f6: ef:ea:5c:63:23:d1:f7:db:52:bc:de:7f:a8:8c:83: 5a:7a:ac:91:47:4f:2d:62:21:cc:41:3a:7c:3f:17: 23:0e:7f:de:57:99:fc:ed:22:04:08:e2:05:9e:d7: de:cf:0c:98:81:75:c4:98:d6:88:e9:b2:81:f8:bf: f2:ad:22:4c:43:82:bc:b2:b0:ae:66:68:f2:c1:5d: cf:ec:99:c3:d9:a1:24:51:83:20:20:f2:ba:06:25: 29:4f:21:db:75:41:f9:69:17:37:4a:04:12:70:74: d4:2b:25:98:cf:b6:25:7d:4c:a9:35:7a:c8:7b:58: 76:9f:69:0a:15:9e:f0:2c:97:50:ca:d0:bf:69:14: fe:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F8:63:5E:71:D0:BA:6C:17:99:1A:8E:B9:59:2D:46:83:46:E9:B4 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150249.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.181.0/24 Signature Algorithm: sha256WithRSAEncryption 58:21:70:8e:e5:8e:8f:ce:fe:8b:fc:83:38:55:88:ac:4a:4c: 32:da:b2:e5:aa:17:9f:d1:d9:2e:7a:d6:ef:42:09:89:02:60: 48:23:12:73:2e:e6:fb:08:75:51:ea:5b:09:68:46:74:3d:22: c2:28:08:68:a1:0b:d4:1e:a1:a7:ff:fb:3d:16:83:e1:ef:0a: 33:a5:b6:ab:c1:24:30:81:c6:a1:23:af:39:79:72:a7:1f:98: b9:6f:2a:aa:44:d0:c8:c8:6f:4d:09:af:92:04:5e:06:aa:5b: d9:b6:5e:dc:bf:34:0a:31:d2:01:ac:74:e1:94:7b:7d:0e:0b: 48:a8:08:9b:de:1e:ae:50:09:5a:97:2b:67:b9:03:ff:53:14: 42:07:e7:e7:0f:59:11:be:6d:10:1c:a4:bc:dc:09:a5:bf:96: 73:2a:11:5f:2b:84:a8:56:77:24:d5:a5:80:31:92:26:d7:14: 9a:40:1a:a9:5d:aa:47:0e:39:08:61:da:ba:96:b4:2c:93:9a: 8f:3a:d6:75:49:ad:3f:c5:05:7e:ff:7f:9c:10:3f:fe:04:41: 3e:47:ca:8e:3d:a2:ef:fb:2f:d2:e6:0a:ee:0c:b4:7a:05:5d: 53:af:50:c8:2a:76:cb:91:48:b5:15:91:e0:77:49:d2:57:7f: 4c:58:50:dc -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFijVBcndF7kFvfvJj4WiwLeb+IUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwMloX DTI3MDEwNzExMDAwMlowMzExMC8GA1UEAxMoOEZGODYzNUU3MUQwQkE2QzE3OTkx QThFQjk1OTJENDY4MzQ2RTlCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKts9cT8Fcorqa64Z/DcjW4IKXMGyYmWRwy8LVOyaBZFXE6Al1+5gV5fLtGZ dR8zu8UiaRG8kPGBVydUQEJUb0nYiGbmo1sS03grGNHP8ew1av621faUTLKgS4Wr woGt6s1VokiAoAY/20aSU3Ov/MAYDARW5//27+pcYyPR99tSvN5/qIyDWnqskUdP LWIhzEE6fD8XIw5/3leZ/O0iBAjiBZ7X3s8MmIF1xJjWiOmygfi/8q0iTEOCvLKw rmZo8sFdz+yZw9mhJFGDICDyugYlKU8h23VB+WkXN0oEEnB01CslmM+2JX1MqTV6 yHtYdp9pChWe8CyXUMrQv2kU/tkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSP+GNe cdC6bBeZGo65WS1Gg0bptDAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MDI0OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0KtTANBgkqhkiG9w0BAQsFAAOCAQEAWCFwjuWOj87+i/yDOFWI rEpMMtqy5aoXn9HZLnrW70IJiQJgSCMScy7m+wh1UepbCWhGdD0iwigIaKEL1B6h p//7PRaD4e8KM6W2q8EkMIHGoSOvOXlypx+YuW8qqkTQyMhvTQmvkgReBqpb2bZe 3L80CjHSAax04ZR7fQ4LSKgIm94erlAJWpcrZ7kD/1MUQgfn5w9ZEb5tEBykvNwJ pb+WcyoRXyuEqFZ3JNWlgDGSJtcUmkAaqV2qRw45CGHaupa0LJOajzrWdUmtP8UF fv9/nBA//gRBPkfKjj2i7/sv0uYK7gy0egVdU69QyCp2y5FItRWR4HdJ0ld/TFhQ 3A== -----END CERTIFICATE-----Generated at Thu Jan 29 03:54:15 2026 by rpki-client