This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150279.roa File: AS150279.roa (raw, json) Hash identifier: RlOVg4O8lvyNBmgZkxiyUDEdF7dnxD8IPlpPfouZRVM= Subject key identifier: E9:F4:5D:2F:A8:61:6F:6C:8C:8A:F2:2A:55:5C:F6:F8:3A:35:67:F5 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 58891AA67C70C97643BEC2815A164F4F96E0C068 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150279.roa Signing time: Thu 08 Jan 2026 11:00:03 +0000 ROA not before: Thu 08 Jan 2026 10:55:03 +0000 ROA not after: Thu 07 Jan 2027 11:00:03 +0000 asID: 150279 IP address blocks: 157.20.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 Jan 2026 04:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:89:1a:a6:7c:70:c9:76:43:be:c2:81:5a:16:4f:4f:96:e0:c0:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 8 10:55:03 2026 GMT Not After : Jan 7 11:00:03 2027 GMT Subject: CN=E9F45D2FA8616F6C8C8AF22A555CF6F83A3567F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:71:9f:fd:4d:b0:16:69:e7:a5:5b:a2:f8:9b: 8b:3a:63:3a:e9:4a:a5:e2:59:3f:83:04:98:3d:f1: cd:1e:4c:f3:44:88:dd:fa:3d:c9:c8:87:dd:94:f4: 3a:3b:57:6e:45:54:cf:98:e7:a5:9c:d5:4c:07:96: c1:12:a5:0b:d4:2b:56:51:9f:34:2e:48:65:06:5f: 6e:56:93:cf:2e:07:7d:c4:13:a8:97:0b:26:85:4f: 77:d1:61:6f:dc:98:4c:f7:e9:2d:cb:b8:d5:7a:97: 3c:bb:73:4f:c5:c1:56:26:84:54:39:21:98:ff:87: 28:d7:91:93:81:18:bf:98:ef:8f:b5:56:62:c1:0c: 00:ed:4b:e9:99:60:36:ab:74:33:c6:b2:89:5c:36: 0c:82:b0:34:c6:50:47:b4:fa:af:9f:14:1f:c6:98: 0a:e3:29:31:4a:10:87:9a:9f:c3:45:be:0b:9d:4e: 84:67:de:d6:66:58:de:19:77:78:41:3b:d2:1f:4c: e2:25:e4:06:96:77:54:34:62:c2:b3:16:37:af:cf: 01:19:63:45:23:82:a2:d9:39:90:05:0c:d2:d6:6c: be:61:e9:98:37:13:15:17:d9:cb:3a:bc:6d:9a:cd: 16:81:ac:50:91:d5:04:8a:77:27:1e:0a:ca:45:f7: e3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F4:5D:2F:A8:61:6F:6C:8C:8A:F2:2A:55:5C:F6:F8:3A:35:67:F5 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS150279.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.144.0/24 Signature Algorithm: sha256WithRSAEncryption 15:61:ac:eb:fd:c5:1c:6d:43:19:99:46:50:30:aa:f0:e7:09: 60:e3:e9:f6:fe:6d:2a:83:71:ea:34:03:28:16:c9:da:ed:b0: 93:8b:ff:21:60:62:3e:de:d8:d5:cb:08:7f:d1:ff:2c:45:1a: 35:95:c3:ef:51:a2:24:5d:83:0f:4b:9e:99:0d:61:f6:61:1c: a0:7f:21:67:8a:68:ac:58:22:ac:47:7a:f2:67:f8:4a:15:5d: 6f:e3:1a:ca:09:5f:1d:cf:ea:54:82:7e:6f:d8:5e:8e:82:45: 2f:0e:fc:db:30:88:b8:fa:2e:be:e4:86:50:c4:14:08:6e:ff: 5e:9b:46:06:76:84:b6:24:d6:0b:74:26:33:b6:cb:fa:76:05: 64:f4:91:ab:14:9b:46:a8:9e:ff:56:a5:37:a7:aa:30:76:12: 94:cf:eb:ec:77:60:7d:2c:8d:17:80:2e:4b:48:0e:b8:8e:de: f5:97:59:c7:6f:d3:1a:37:c2:c7:dd:3c:22:96:0b:ca:15:b9: 16:25:61:54:5d:f2:97:2a:fc:c2:73:54:b3:a1:25:4d:1a:8e: d9:e5:cf:86:05:56:b5:e3:5a:ed:c5:4b:75:5a:5c:32:1f:9b: a3:d1:c1:63:fc:bb:4a:3b:ef:16:17:bc:f8:3b:ea:0d:85:ab: 5b:60:de:e5 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUWIkapnxwyXZDvsKBWhZPT5bgwGgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDEwODEwNTUwM1oX DTI3MDEwNzExMDAwM1owMzExMC8GA1UEAxMoRTlGNDVEMkZBODYxNkY2QzhDOEFG MjJBNTU1Q0Y2RjgzQTM1NjdGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZxn/1NsBZp56VbovibizpjOulKpeJZP4MEmD3xzR5M80SI3fo9yciH3ZT0 OjtXbkVUz5jnpZzVTAeWwRKlC9QrVlGfNC5IZQZfblaTzy4HfcQTqJcLJoVPd9Fh b9yYTPfpLcu41XqXPLtzT8XBViaEVDkhmP+HKNeRk4EYv5jvj7VWYsEMAO1L6Zlg Nqt0M8ayiVw2DIKwNMZQR7T6r58UH8aYCuMpMUoQh5qfw0W+C51OhGfe1mZY3hl3 eEE70h9M4iXkBpZ3VDRiwrMWN6/PARljRSOCotk5kAUM0tZsvmHpmDcTFRfZyzq8 bZrNFoGsUJHVBIp3Jx4KykX349cCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTp9F0v qGFvbIyK8ipVXPb4OjVn9TAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MDI3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAJ0UkDANBgkqhkiG9w0BAQsFAAOCAQEAFWGs6/3FHG1DGZlGUDCq 8OcJYOPp9v5tKoNx6jQDKBbJ2u2wk4v/IWBiPt7Y1csIf9H/LEUaNZXD71GiJF2D D0uemQ1h9mEcoH8hZ4porFgirEd68mf4ShVdb+MayglfHc/qVIJ+b9hejoJFLw78 2zCIuPouvuSGUMQUCG7/XptGBnaEtiTWC3QmM7bL+nYFZPSRqxSbRqie/1alN6eq MHYSlM/r7HdgfSyNF4AuS0gOuI7e9ZdZx2/TGjfCx908IpYLyhW5FiVhVF3ylyr8 wnNUs6ElTRqO2eXPhgVWteNa7cVLdVpcMh+bo9HBY/y7SjvvFhe8+DvqDYWrW2De 5Q== -----END CERTIFICATE-----Generated at Mon Jan 19 22:38:38 2026 by rpki-client