This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa File: AS149368.roa (raw, json) Hash identifier: MWoi+oGD+X8d1queEc743j4BpQHH6gh42OKFPlu3dDw= Subject key identifier: BF:E5:A0:8A:3B:AA:E1:B4:B1:F8:9D:7E:63:2E:92:01:EF:84:55:E3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3433E5E1E09ECE454BBBD564CFFB5C24DDD96EBC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa Signing time: Thu 13 Nov 2025 03:00:00 +0000 ROA not before: Thu 13 Nov 2025 02:55:00 +0000 ROA not after: Thu 12 Nov 2026 03:00:00 +0000 asID: 149368 IP address blocks: 103.180.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:33:e5:e1:e0:9e:ce:45:4b:bb:d5:64:cf:fb:5c:24:dd:d9:6e:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 13 02:55:00 2025 GMT Not After : Nov 12 03:00:00 2026 GMT Subject: CN=BFE5A08A3BAAE1B4B1F89D7E632E9201EF8455E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:ef:04:c8:6a:f4:41:5e:f9:ad:5b:31:53: 4a:76:c6:8b:60:70:82:01:52:3b:5d:26:b4:09:bb: 3c:7b:9d:7b:85:b0:f4:c8:6a:3f:e6:f6:0a:10:03: 41:2c:78:d2:12:c1:7b:d5:32:4d:71:cc:47:9b:0a: 28:9b:6e:28:f0:e3:2b:01:e9:1f:fa:c5:97:10:69: cb:19:e5:17:f0:de:c0:d1:9d:10:bc:fe:bb:d4:86: eb:86:58:b9:ff:dc:88:36:fe:6a:34:7e:69:c1:43: d0:4e:9f:6c:11:c7:5f:9c:c2:d8:8b:d4:e2:31:83: 42:7f:67:81:67:a5:69:9a:cf:e6:bf:e2:d8:23:1b: 35:cc:f9:a8:d0:d0:4d:dd:35:e5:b5:44:3e:23:c9: 74:d7:89:c9:cf:b3:31:61:17:87:d2:31:40:13:de: 9e:03:9a:f8:9e:57:09:67:bf:53:4d:68:8a:ad:b5: 9f:7a:07:c8:db:63:17:d8:10:25:c8:12:c5:f1:3b: 82:5b:b9:f8:69:28:04:2c:6b:e0:91:e1:34:72:ab: fe:3c:6f:5f:47:fc:57:a5:cf:75:0d:20:71:31:0a: 6d:9a:e0:1d:c1:53:70:28:ad:6a:c2:88:87:85:f6: c2:9c:99:3d:5d:90:3e:85:90:20:e6:cb:46:86:ee: 7e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E5:A0:8A:3B:AA:E1:B4:B1:F8:9D:7E:63:2E:92:01:EF:84:55:E3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149368.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.180.198.0/23 Signature Algorithm: sha256WithRSAEncryption 07:d6:81:03:1c:21:41:ff:74:79:b3:3f:5d:d6:38:e1:65:ce: 2b:06:a0:63:e8:1a:82:82:0b:57:f0:f9:71:6a:ff:4e:ff:bf: 3e:4d:fd:fa:fb:b8:f7:98:2b:1a:ae:23:2b:00:83:5c:22:02: 6e:98:19:2f:74:1b:e8:e6:85:9d:b7:62:66:e8:77:7b:51:b2: 97:4c:e2:80:de:a6:50:ca:66:2f:0c:f4:13:d6:fb:6a:d9:e9: d2:a0:85:81:3b:54:f4:64:ee:33:0a:d2:07:d9:cd:be:ce:57: 99:91:8a:45:47:b1:e6:56:96:1d:d6:ab:67:cd:33:9a:44:2c: 49:6b:41:b0:d4:d1:d0:bb:96:62:53:b4:e0:f3:c6:c8:74:30: 9f:01:91:e1:01:df:70:57:93:9c:1b:ba:49:ec:18:b7:1f:48: 62:a0:c0:8b:cd:c5:79:f5:38:c8:6b:f9:9c:1d:91:c3:6b:ef: e3:f1:77:52:69:72:6e:00:fc:c8:75:e7:23:d7:87:a2:65:a1: 5c:d6:bb:91:5d:c6:4b:51:75:16:7d:5f:16:d3:a3:42:63:d3: b9:4c:32:f1:b4:09:22:3c:0d:fe:8d:90:1c:f3:2c:e2:20:27: bb:86:27:82:01:24:ac:cd:e2:da:99:66:93:ea:6f:b6:c6:d7: 2a:90:06:7a -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUNDPl4eCezkVLu9Vkz/tcJN3ZbrwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMzAyNTUwMFoX DTI2MTExMjAzMDAwMFowMzExMC8GA1UEAxMoQkZFNUEwOEEzQkFBRTFCNEIxRjg5 RDdFNjMyRTkyMDFFRjg0NTVFMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGf7wTIavRBXvmtWzFTSnbGi2BwggFSO10mtAm7PHude4Ww9MhqP+b2ChAD QSx40hLBe9UyTXHMR5sKKJtuKPDjKwHpH/rFlxBpyxnlF/DewNGdELz+u9SG64ZY uf/ciDb+ajR+acFD0E6fbBHHX5zC2IvU4jGDQn9ngWelaZrP5r/i2CMbNcz5qNDQ Td015bVEPiPJdNeJyc+zMWEXh9IxQBPengOa+J5XCWe/U01oiq21n3oHyNtjF9gQ JcgSxfE7glu5+GkoBCxr4JHhNHKr/jxvX0f8V6XPdQ0gcTEKbZrgHcFTcCitasKI h4X2wpyZPV2QPoWQIObLRobuft8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBS/5aCK O6rhtLH4nX5jLpIB74RV4zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe0xjANBgkqhkiG9w0BAQsFAAOCAQEAB9aBAxwhQf90ebM/XdY4 4WXOKwagY+gagoILV/D5cWr/Tv+/Pk39+vu495grGq4jKwCDXCICbpgZL3Qb6OaF nbdiZuh3e1Gyl0zigN6mUMpmLwz0E9b7atnp0qCFgTtU9GTuMwrSB9nNvs5XmZGK RUex5laWHdarZ80zmkQsSWtBsNTR0LuWYlO04PPGyHQwnwGR4QHfcFeTnBu6SewY tx9IYqDAi83FefU4yGv5nB2Rw2vv4/F3UmlybgD8yHXnI9eHomWhXNa7kV3GS1F1 Fn1fFtOjQmPTuUwy8bQJIjwN/o2QHPMs4iAnu4YnggEkrM3i2plmk+pvtsbXKpAG eg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:22 2025 by rpki-client