This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa File: AS149315.roa (raw, json) Hash identifier: Yx4oEbXjlii1Imekg6Riz7XN6ZFdH4h16II/04V81/Y= Subject key identifier: E6:07:42:4E:EC:C1:6A:8D:D7:B2:E3:AD:92:2E:34:5C:ED:3D:B4:2D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4EF24BC93B704EBF6C844D51D92CD9808C8CF6D4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa Signing time: Tue 20 Jan 2026 07:00:00 +0000 ROA not before: Tue 20 Jan 2026 06:55:00 +0000 ROA not after: Tue 19 Jan 2027 07:00:00 +0000 asID: 149315 IP address blocks: 2407:7c0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f2:4b:c9:3b:70:4e:bf:6c:84:4d:51:d9:2c:d9:80:8c:8c:f6:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 20 06:55:00 2026 GMT Not After : Jan 19 07:00:00 2027 GMT Subject: CN=E607424EECC16A8DD7B2E3AD922E345CED3DB42D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b3:a5:a2:45:d3:73:82:ab:95:7e:a8:d2:47: cc:bf:40:0f:2e:5d:b2:e1:77:69:df:8b:c2:44:cf: 2d:10:90:e3:2b:41:35:07:a0:16:c2:b4:20:26:fd: 69:4d:05:9b:45:d5:11:7b:95:e2:f7:82:4d:db:33: 7e:3f:a2:06:1f:bc:8b:df:28:6d:47:9d:81:a8:9a: ff:de:9a:84:83:77:69:cb:9d:a7:9d:d5:b4:3b:45: 26:61:11:10:08:80:f6:e8:ca:ba:7c:65:c4:a0:ee: f8:55:a7:97:f6:c6:c6:39:d2:05:ea:65:64:06:2f: 33:74:c8:89:e5:a1:ca:4f:02:8b:b8:33:24:62:d5: e1:d2:af:f5:b5:1c:56:8e:76:ef:36:c9:46:b7:c6: 78:a0:b5:08:d4:b6:74:45:3e:ac:c4:bb:5e:61:9b: b0:09:39:a2:c4:96:73:b6:05:ad:03:57:26:17:66: 75:c5:ab:59:14:42:12:68:2a:c2:60:36:1b:ed:7a: df:f7:08:ab:72:90:47:da:4e:9c:74:d6:39:df:af: 63:e7:32:3d:28:df:1f:ff:8c:45:be:01:20:47:30: 48:9e:06:9c:ee:16:bf:7b:9b:ad:43:b8:37:91:69: 6b:d9:0d:6a:2f:aa:b2:ec:78:08:0d:97:a3:a3:03: de:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:07:42:4E:EC:C1:6A:8D:D7:B2:E3:AD:92:2E:34:5C:ED:3D:B4:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149315.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:7c0:200::/40 Signature Algorithm: sha256WithRSAEncryption 32:dc:ac:c5:74:db:a8:b0:7f:81:53:1e:94:eb:34:75:0d:6b: f6:17:13:5c:87:a2:97:cd:7d:7f:22:a0:cd:86:79:ed:00:23: 2c:6c:1c:46:66:0c:f6:e9:44:c1:28:41:82:e2:7b:93:40:4d: fe:7c:70:ec:b5:7b:db:e5:ec:fb:c3:11:b8:a2:19:3c:7a:4b: eb:a2:23:98:cf:2f:07:ff:f3:32:ae:fc:a5:3f:d1:66:e5:f0: 54:c8:76:0b:7b:18:68:cc:d4:69:dd:bd:47:48:c1:3f:9d:0f: be:7c:29:7a:fe:41:5b:20:4a:54:d9:c2:58:a1:77:c7:9e:15: 50:f8:ea:9c:fb:f5:bb:16:3f:26:f8:27:47:8c:3a:4d:e0:11: ea:a3:3e:19:15:27:9c:2f:30:16:74:4d:4f:e5:d3:47:ed:ac: 31:5c:d8:86:4b:30:54:22:e2:ab:29:cb:eb:07:d7:15:20:c3: f6:4f:06:e5:57:a4:2c:dd:18:d1:a8:be:9d:2d:43:5f:42:c5: d4:53:76:d1:42:12:47:be:a5:13:3b:37:08:86:ac:9d:80:a5: ab:01:54:76:c5:e5:4a:44:a3:c5:0c:2c:c0:64:75:6d:88:9d: c1:5c:66:e3:e1:6b:ef:28:ee:44:c6:9f:f9:c1:70:4a:fe:4c: 67:d5:4e:af -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgIUTvJLyTtwTr9shE1R2SzZgIyM9tQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyMDA2NTUwMFoX DTI3MDExOTA3MDAwMFowMzExMC8GA1UEAxMoRTYwNzQyNEVFQ0MxNkE4REQ3QjJF M0FEOTIyRTM0NUNFRDNEQjQyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCzpaJF03OCq5V+qNJHzL9ADy5dsuF3ad+LwkTPLRCQ4ytBNQegFsK0ICb9 aU0Fm0XVEXuV4veCTdszfj+iBh+8i98obUedgaia/96ahIN3acudp53VtDtFJmER EAiA9ujKunxlxKDu+FWnl/bGxjnSBeplZAYvM3TIieWhyk8Ci7gzJGLV4dKv9bUc Vo527zbJRrfGeKC1CNS2dEU+rMS7XmGbsAk5osSWc7YFrQNXJhdmdcWrWRRCEmgq wmA2G+163/cIq3KQR9pOnHTWOd+vY+cyPSjfH/+MRb4BIEcwSJ4GnO4Wv3ubrUO4 N5Fpa9kNai+qsux4CA2Xo6MD3ukCAwEAAaOCAdIwggHOMB0GA1UdDgQWBBTmB0JO 7MFqjdey462SLjRc7T20LTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTMxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACQHB8ACMA0GCSqGSIb3DQEBCwUAA4IBAQAy3KzFdNuosH+BUx6U 6zR1DWv2FxNch6KXzX1/IqDNhnntACMsbBxGZgz26UTBKEGC4nuTQE3+fHDstXvb 5ez7wxG4ohk8ekvroiOYzy8H//MyrvylP9Fm5fBUyHYLexhozNRp3b1HSME/nQ++ fCl6/kFbIEpU2cJYoXfHnhVQ+Oqc+/W7Fj8m+CdHjDpN4BHqoz4ZFSecLzAWdE1P 5dNH7awxXNiGSzBUIuKrKcvrB9cVIMP2TwblV6Qs3RjRqL6dLUNfQsXUU3bRQhJH vqUTOzcIhqydgKWrAVR2xeVKRKPFDCzAZHVtiJ3BXGbj4WvvKO5Exp/5wXBK/kxn 1U6v -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:15 2026 by rpki-client