This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149350.roa File: AS149350.roa (raw, json) Hash identifier: tdQRGAdGSWRzCBzxSygmDDMOOHYkjEPOQq1etyNMg/M= Subject key identifier: AE:02:2B:4F:83:4F:67:30:1E:DF:D7:47:3B:74:91:CE:37:29:44:4E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B1621E2F88C085F3FB12ECAC4A3564B083AB1DA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149350.roa Signing time: Tue 18 Nov 2025 10:00:00 +0000 ROA not before: Tue 18 Nov 2025 09:55:00 +0000 ROA not after: Tue 17 Nov 2026 10:00:00 +0000 asID: 149350 IP address blocks: 103.179.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:16:21:e2:f8:8c:08:5f:3f:b1:2e:ca:c4:a3:56:4b:08:3a:b1:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 18 09:55:00 2025 GMT Not After : Nov 17 10:00:00 2026 GMT Subject: CN=AE022B4F834F67301EDFD7473B7491CE3729444E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:90:9c:7f:a8:cd:e2:98:43:09:4a:0c:7f:37: 30:18:7e:58:c4:15:ac:fc:be:9f:fa:c8:22:93:5f: cd:fe:61:06:59:fd:8e:82:42:01:60:91:c5:65:15: 00:12:3d:3d:c2:fc:b5:41:2a:51:36:01:68:00:dd: 3b:5e:58:32:b2:6d:58:7f:d0:a5:4c:db:33:03:b2: ee:8c:60:2e:73:b6:b3:96:a6:ca:62:83:0c:c3:03: 98:c0:21:99:b8:f6:4d:c9:76:c1:7d:33:06:b7:4c: e4:6a:11:81:ca:72:a8:2c:d2:62:b8:9f:41:ac:87: e1:b5:84:2a:2a:24:d4:07:e7:43:43:a8:af:ef:27: 26:43:60:b3:a8:89:f8:73:81:2a:8d:d3:a8:2e:90: a6:20:1a:10:9e:22:a0:65:36:25:3d:c1:43:c5:70: b3:82:a8:99:01:03:21:29:c7:4e:4b:ff:d9:cc:40: 3f:f2:34:4c:81:3e:2b:f0:2c:bf:60:12:0f:74:54: ba:80:da:41:89:ab:9c:7d:64:33:3c:78:12:26:47: 79:3a:a0:9c:52:33:c3:88:9f:39:d1:89:7c:15:49: 65:7e:23:d8:2d:cf:52:6b:24:e2:a3:63:3b:a8:fe: 7a:a8:fd:67:3b:ce:36:56:07:dd:4b:b2:2f:d9:c6: 66:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:02:2B:4F:83:4F:67:30:1E:DF:D7:47:3B:74:91:CE:37:29:44:4E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149350.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.252.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:dc:e8:02:2e:74:bc:c0:1f:78:35:f7:e6:fd:f8:76:28:82: dc:4e:94:b1:67:1d:ae:50:57:1b:46:ae:84:10:b7:40:d8:0f: 31:31:8c:41:98:29:50:a8:a0:93:28:00:5d:75:72:32:a1:ac: 0b:4d:f9:73:21:6b:73:c7:03:3d:91:99:87:c7:3e:9d:d6:e8: f1:b3:37:fc:e3:df:75:1a:42:54:af:e9:a4:02:ef:38:33:95: db:31:99:bb:aa:95:8a:d0:3f:da:5b:50:ca:5f:fd:43:4b:f8: ac:cd:40:fc:11:bb:34:e1:9f:b9:21:16:4b:0e:bd:f3:78:78: 72:85:df:35:ad:40:53:a5:72:26:76:2a:9c:98:8b:21:7f:a6: 63:cc:a3:47:42:bb:17:9c:80:d3:f6:6a:5a:a3:b0:c0:dc:3a: 0e:5f:ac:61:19:bf:0c:d4:80:d3:d9:9c:e7:d2:1b:42:ab:43: 55:e6:f5:7d:17:2a:c1:3e:2d:b2:05:4b:a9:1d:75:6f:c3:86: cf:34:28:41:fe:26:ff:7e:fd:d6:85:bc:e9:03:15:72:d8:b4: 72:31:22:6f:29:c0:3c:32:cb:b3:06:f7:12:17:c2:93:2a:74: de:3a:c3:d4:40:cc:b5:0a:e4:83:80:96:57:47:57:c1:9f:be: 31:87:01:3e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUOxYh4viMCF8/sS7KxKNWSwg6sdowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExODA5NTUwMFoX DTI2MTExNzEwMDAwMFowMzExMC8GA1UEAxMoQUUwMjJCNEY4MzRGNjczMDFFREZE NzQ3M0I3NDkxQ0UzNzI5NDQ0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCQnH+ozeKYQwlKDH83MBh+WMQVrPy+n/rIIpNfzf5hBln9joJCAWCRxWUV ABI9PcL8tUEqUTYBaADdO15YMrJtWH/QpUzbMwOy7oxgLnO2s5amymKDDMMDmMAh mbj2Tcl2wX0zBrdM5GoRgcpyqCzSYrifQayH4bWEKiok1AfnQ0Oor+8nJkNgs6iJ +HOBKo3TqC6QpiAaEJ4ioGU2JT3BQ8Vws4KomQEDISnHTkv/2cxAP/I0TIE+K/As v2ASD3RUuoDaQYmrnH1kMzx4EiZHeTqgnFIzw4ifOdGJfBVJZX4j2C3PUmsk4qNj O6j+eqj9ZzvONlYH3UuyL9nGZt0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSuAitP g09nMB7f10c7dJHONylETjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM1MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWez/DANBgkqhkiG9w0BAQsFAAOCAQEAPtzoAi50vMAfeDX35v34 diiC3E6UsWcdrlBXG0auhBC3QNgPMTGMQZgpUKigkygAXXVyMqGsC035cyFrc8cD PZGZh8c+ndbo8bM3/OPfdRpCVK/ppALvODOV2zGZu6qVitA/2ltQyl/9Q0v4rM1A /BG7NOGfuSEWSw6983h4coXfNa1AU6VyJnYqnJiLIX+mY8yjR0K7F5yA0/ZqWqOw wNw6Dl+sYRm/DNSA09mc59IbQqtDVeb1fRcqwT4tsgVLqR11b8OGzzQoQf4m/379 1oW86QMVcti0cjEibynAPDLLswb3EhfCkyp03jrD1EDMtQrkg4CWV0dXwZ++MYcB Pg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:29 2025 by rpki-client