This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149374.roa File: AS149374.roa (raw, json) Hash identifier: t0t2sdNW9giwaiNCXN3KyuSJhObOYzUwzfpJ3FGnyFE= Subject key identifier: F6:CB:46:D7:FC:46:EA:50:B9:21:CF:11:69:8E:4B:C4:56:1D:34:18 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 32F1CE4D92B3B61FAA5CCB99E29EF1824C47D132 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149374.roa Signing time: Mon 26 Jan 2026 04:00:00 +0000 ROA not before: Mon 26 Jan 2026 03:55:00 +0000 ROA not after: Mon 25 Jan 2027 04:00:00 +0000 asID: 149374 IP address blocks: 2001:df3:8440::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:f1:ce:4d:92:b3:b6:1f:aa:5c:cb:99:e2:9e:f1:82:4c:47:d1:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 26 03:55:00 2026 GMT Not After : Jan 25 04:00:00 2027 GMT Subject: CN=F6CB46D7FC46EA50B921CF11698E4BC4561D3418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:6a:c8:65:d5:0e:1f:90:f4:d9:c3:96:9b: 26:01:ae:86:c2:ff:98:ac:5b:7c:46:5d:5c:d6:ea: 31:fe:4a:76:ef:d9:79:c5:89:e7:f7:b9:fc:72:f8: 82:ec:54:5e:c6:cc:1a:96:03:38:04:4a:a4:2e:79: bb:00:50:fb:e9:97:41:62:77:fb:3b:fb:c9:9f:da: 4b:0c:69:50:b2:64:dc:c7:1b:e6:be:4e:06:b0:c2: a2:59:00:a9:03:ed:88:fa:bd:86:d8:68:46:dd:9a: 96:67:66:3e:27:41:7d:aa:87:ed:7f:bb:7d:69:81: 33:c4:b5:69:23:d9:97:f7:b2:91:b7:f2:20:c8:b3: 84:97:4f:5e:a7:cb:bf:ae:76:c6:d0:c2:85:3e:79: 2c:bd:04:f6:d4:17:d1:f9:14:3e:95:53:da:2c:15: 1c:da:a0:7f:a8:bd:4b:ec:e5:77:cd:0a:03:4b:df: 89:d9:ba:2e:2c:06:3f:c1:cd:0a:fc:7f:d8:5a:f5: e0:c5:a9:2e:1b:21:28:02:b2:35:e9:58:1a:61:d3: 6a:43:b8:f4:6f:2e:81:88:3e:b4:18:aa:83:c5:aa: 8c:40:f7:4f:f0:cc:b4:1a:2d:e9:49:03:da:a4:13: 2a:8f:df:0f:b1:a1:84:95:6f:ed:65:c9:77:98:2f: 9c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CB:46:D7:FC:46:EA:50:B9:21:CF:11:69:8E:4B:C4:56:1D:34:18 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149374.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:8440::/48 Signature Algorithm: sha256WithRSAEncryption 17:e0:a4:37:00:29:d8:da:ee:2d:17:a1:f7:55:7b:59:76:79: ed:63:6b:7d:57:78:19:f9:3f:36:eb:0a:a8:ae:9a:ed:a1:89: d5:31:57:f8:98:d0:ff:45:1f:9f:f6:4c:59:8d:4d:06:74:df: 41:71:d5:c7:08:0e:95:9e:95:d6:a9:02:e5:98:92:29:63:1d: eb:06:21:e7:61:5b:38:14:e3:3d:34:e5:20:18:31:aa:b9:85: 07:d7:08:a4:fd:ca:f7:86:8d:f1:2c:6a:70:07:e4:a0:52:19: ca:3b:64:4b:d7:aa:36:99:48:5e:2a:45:a9:9b:46:1a:9c:f0: 9f:a0:b5:8c:9a:e5:80:53:7d:ae:f5:c4:5e:f7:48:93:2a:6e: 86:53:44:d1:fd:2d:52:b1:e4:a7:e7:6d:e7:1f:09:df:a2:f2: d3:da:db:dd:91:47:30:eb:ed:ef:45:05:63:5c:8d:a0:5b:77: 98:c1:97:3a:29:24:47:ca:2f:d7:36:e8:01:7e:51:b5:c9:e9: 59:5f:b8:3e:9a:ea:1d:fb:ac:93:c3:aa:8d:1b:01:40:e7:34: 80:ce:6e:01:7e:3b:ed:c7:e7:96:fc:86:56:21:dd:d0:9b:18: d8:2f:fd:42:cd:bc:ff:a1:e7:2b:ed:64:77:13:ae:43:a8:2d: d6:3e:3f:63 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUMvHOTZKzth+qXMuZ4p7xgkxH0TIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyNjAzNTUwMFoX DTI3MDEyNTA0MDAwMFowMzExMC8GA1UEAxMoRjZDQjQ2RDdGQzQ2RUE1MEI5MjFD RjExNjk4RTRCQzQ1NjFEMzQxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2zashl1Q4fkPTZw5abJgGuhsL/mKxbfEZdXNbqMf5Kdu/ZecWJ5/e5/HL4 guxUXsbMGpYDOARKpC55uwBQ++mXQWJ3+zv7yZ/aSwxpULJk3Mcb5r5OBrDColkA qQPtiPq9hthoRt2almdmPidBfaqH7X+7fWmBM8S1aSPZl/eykbfyIMizhJdPXqfL v652xtDChT55LL0E9tQX0fkUPpVT2iwVHNqgf6i9S+zld80KA0vfidm6LiwGP8HN Cvx/2Fr14MWpLhshKAKyNelYGmHTakO49G8ugYg+tBiqg8WqjED3T/DMtBot6UkD 2qQTKo/fD7GhhJVv7WXJd5gvnCsCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBT2y0bX /EbqULkhzxFpjkvEVh00GDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfOEQDANBgkqhkiG9w0BAQsFAAOCAQEAF+CkNwAp2NruLReh 91V7WXZ57WNrfVd4Gfk/NusKqK6a7aGJ1TFX+JjQ/0Ufn/ZMWY1NBnTfQXHVxwgO lZ6V1qkC5ZiSKWMd6wYh52FbOBTjPTTlIBgxqrmFB9cIpP3K94aN8SxqcAfkoFIZ yjtkS9eqNplIXipFqZtGGpzwn6C1jJrlgFN9rvXEXvdIkypuhlNE0f0tUrHkp+dt 5x8J36Ly09rb3ZFHMOvt70UFY1yNoFt3mMGXOikkR8ov1zboAX5RtcnpWV+4Pprq Hfusk8OqjRsBQOc0gM5uAX477cfnlvyGViHd0JsY2C/9Qs28/6HnK+1kdxOuQ6gt 1j4/Yw== -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:09 2026 by rpki-client