This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149375.roa File: AS149375.roa (raw, json) Hash identifier: SPQSiH5T+0LnfyNHpQ3HMg7RRWAwmJnQLcY3Zo7lkDU= Subject key identifier: 1D:47:30:74:C6:6D:15:F9:EC:66:D1:FD:52:B7:5C:BD:06:EE:31:FF Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0785BB8EAD4295F098491E1C9F612DD279701FAB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149375.roa Signing time: Tue 11 Nov 2025 06:00:08 +0000 ROA not before: Tue 11 Nov 2025 05:55:08 +0000 ROA not after: Tue 10 Nov 2026 06:00:08 +0000 asID: 149375 IP address blocks: 2001:df0:6b40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:85:bb:8e:ad:42:95:f0:98:49:1e:1c:9f:61:2d:d2:79:70:1f:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:08 2025 GMT Not After : Nov 10 06:00:08 2026 GMT Subject: CN=1D473074C66D15F9EC66D1FD52B75CBD06EE31FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4a:f3:d2:c3:77:3a:f2:88:79:ce:f2:f1:75: 71:e2:ff:3e:f5:f0:aa:00:50:f0:8d:e1:0d:f5:e9: 3f:10:ab:af:3e:99:82:c0:55:6b:5d:13:18:54:12: 28:ba:84:7a:13:61:e5:41:f4:2a:c2:bb:e3:01:94: bc:c8:dc:a7:b3:84:58:07:a3:48:ca:3f:d2:23:d2: fb:8d:ed:1d:5e:73:21:3c:4b:c8:16:d5:de:47:61: 5a:a6:67:77:16:8e:1a:12:71:86:dc:85:05:0e:74: a7:fa:cc:26:e1:3e:6b:8d:2c:6b:3a:b6:0c:57:36: 3c:7d:35:ce:92:ab:40:da:b0:8b:82:b9:51:16:62: 51:1d:f3:50:77:b9:60:46:54:23:47:71:62:93:02: f6:1c:db:9c:53:49:80:b7:13:63:7c:63:fc:ae:98: f2:9a:8f:00:04:ac:3a:9d:4f:84:45:54:f9:08:13: 7c:f8:62:32:e5:ab:e5:35:c0:05:5e:a1:c9:cd:30: b8:d2:01:ac:30:56:e9:7c:fc:1e:ff:bc:4e:38:ff: ae:b7:76:05:23:fb:00:2b:8a:59:49:7e:0f:e4:2a: c8:bc:84:ec:7b:45:ed:8a:0e:84:e0:ce:5c:76:96: bf:12:69:bf:13:60:5f:83:e8:21:8f:a9:7e:4f:ef: d8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:47:30:74:C6:6D:15:F9:EC:66:D1:FD:52:B7:5C:BD:06:EE:31:FF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149375.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:6b40::/48 Signature Algorithm: sha256WithRSAEncryption 0c:e8:14:39:36:9a:0e:51:b4:d9:cc:ba:7f:be:56:b3:b6:45: 5a:8d:24:bd:f0:ef:29:db:f6:99:fc:de:da:0c:03:af:dc:ec: 46:72:01:19:fd:36:9c:c6:6e:fe:ba:f8:b9:bc:df:58:1e:de: a3:be:1c:b6:d6:6c:e0:d3:b9:ad:64:fe:87:1d:f8:37:c5:bb: 89:a3:a7:22:d3:5f:87:c4:3e:c5:37:2b:bc:7c:00:f3:03:1f: 81:03:d0:71:3e:52:9f:c9:cb:10:49:d3:44:d5:7d:81:22:86: 69:21:3e:77:26:79:db:fb:93:37:1b:7d:2b:f0:5b:cd:b8:cf: 3f:75:6d:8b:9f:94:2d:9f:99:ff:4f:4e:b1:c9:4f:64:cf:d0: 69:60:f0:6f:b0:0b:0c:7a:57:c8:e4:d0:9e:2f:ba:34:30:60: bd:ca:1a:dd:8e:e1:81:b9:a4:20:6d:8a:dc:36:09:59:f4:b7: 3f:24:f8:24:17:5f:c3:ff:8a:2d:a7:e7:1c:b5:11:cd:ed:f3: 1c:8e:ef:5b:a5:b6:27:c2:d8:9f:a7:25:3f:45:df:c5:a7:fc: 85:18:9e:42:ce:32:7a:97:40:0e:90:5c:23:25:58:0e:9b:da: cb:04:3f:da:8f:5e:6e:8f:34:b1:e2:64:e1:62:50:e1:05:a8: 05:d4:19:8c -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUB4W7jq1ClfCYSR4cn2Et0nlwH6swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwOFoX DTI2MTExMDA2MDAwOFowMzExMC8GA1UEAxMoMUQ0NzMwNzRDNjZEMTVGOUVDNjZE MUZENTJCNzVDQkQwNkVFMzFGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBK89LDdzryiHnO8vF1ceL/PvXwqgBQ8I3hDfXpPxCrrz6ZgsBVa10TGFQS KLqEehNh5UH0KsK74wGUvMjcp7OEWAejSMo/0iPS+43tHV5zITxLyBbV3kdhWqZn dxaOGhJxhtyFBQ50p/rMJuE+a40sazq2DFc2PH01zpKrQNqwi4K5URZiUR3zUHe5 YEZUI0dxYpMC9hzbnFNJgLcTY3xj/K6Y8pqPAASsOp1PhEVU+QgTfPhiMuWr5TXA BV6hyc0wuNIBrDBW6Xz8Hv+8Tjj/rrd2BSP7ACuKWUl+D+QqyLyE7HtF7YoOhODO XHaWvxJpvxNgX4PoIY+pfk/v2OcCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQdRzB0 xm0V+exm0f1St1y9Bu4x/zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTM3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfBrQDANBgkqhkiG9w0BAQsFAAOCAQEADOgUOTaaDlG02cy6 f75Ws7ZFWo0kvfDvKdv2mfze2gwDr9zsRnIBGf02nMZu/rr4ubzfWB7eo74cttZs 4NO5rWT+hx34N8W7iaOnItNfh8Q+xTcrvHwA8wMfgQPQcT5Sn8nLEEnTRNV9gSKG aSE+dyZ52/uTNxt9K/BbzbjPP3Vti5+ULZ+Z/09OsclPZM/QaWDwb7ALDHpXyOTQ ni+6NDBgvcoa3Y7hgbmkIG2K3DYJWfS3PyT4JBdfw/+KLafnHLURze3zHI7vW6W2 J8LYn6clP0Xfxaf8hRieQs4yepdADpBcIyVYDpvaywQ/2o9ebo80seJk4WJQ4QWo BdQZjA== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:29 2025 by rpki-client