This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa File: AS149402.roa (raw, json) Hash identifier: /RcjyuvUS8kFgAsiWYf4/OQoDIxo2Vek/1Y+pV3gGCM= Subject key identifier: 20:A6:79:89:1A:49:4D:09:E5:57:C4:20:E1:F6:BA:A6:87:CC:BB:C8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 526294D80BE9E97F04095DDF1FABB8FFAA26FEAD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa Signing time: Fri 14 Nov 2025 03:00:00 +0000 ROA not before: Fri 14 Nov 2025 02:55:00 +0000 ROA not after: Fri 13 Nov 2026 03:00:00 +0000 asID: 149402 IP address blocks: 103.182.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:62:94:d8:0b:e9:e9:7f:04:09:5d:df:1f:ab:b8:ff:aa:26:fe:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 02:55:00 2025 GMT Not After : Nov 13 03:00:00 2026 GMT Subject: CN=20A679891A494D09E557C420E1F6BAA687CCBBC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e2:e2:57:64:02:80:16:b1:53:86:7e:73:90: e0:63:f7:a4:f0:61:c5:0e:ce:ea:9f:b0:3b:66:76: f7:42:80:01:71:5e:71:39:ac:c6:44:bd:a2:37:2d: 3d:ac:2c:00:14:01:18:9e:49:99:4b:6a:e4:31:14: 76:3f:5a:57:c6:50:7a:6d:5f:48:6f:16:b7:32:af: 62:46:ab:1d:16:65:66:87:0d:4d:6e:3e:48:dc:94: 53:40:36:32:0b:2b:8f:af:78:f1:a5:ee:6c:ec:36: ec:96:c4:81:fb:bc:d4:7e:e1:d5:26:25:1c:94:f8: a8:52:8c:84:f7:c6:ff:42:49:e8:35:49:3c:29:8f: e7:0b:4e:4b:6c:20:00:51:96:4f:ae:75:28:46:9e: e8:2e:d2:8a:7e:4e:cf:59:0e:b2:3a:64:6f:a9:5f: 43:9f:a5:ab:7d:36:8d:ba:4f:47:43:68:29:89:b4: 22:32:8a:8f:f1:54:85:2a:43:be:0f:dd:2e:40:fd: 43:f4:a1:c3:3e:5b:f5:d9:03:3f:b4:84:20:9e:73: 1c:5b:4a:08:14:9f:23:f7:c7:7b:57:24:94:10:e4: 52:25:1a:37:84:00:74:e1:09:05:7d:49:12:a4:3a: 93:8c:00:80:67:88:dc:17:65:bd:73:45:c3:2c:88: e8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A6:79:89:1A:49:4D:09:E5:57:C4:20:E1:F6:BA:A6:87:CC:BB:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149402.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.182.48.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:d3:49:75:b5:16:a6:52:eb:2e:72:ea:19:f3:f7:e1:c0:a4: 33:48:9c:4a:4d:c0:f7:af:83:18:60:6d:be:75:0d:ed:b2:e4: 62:1c:3c:9a:1f:5f:4f:33:d3:d0:2f:29:08:43:a5:ad:37:c7: 06:ae:57:9a:d7:2f:aa:73:36:52:e9:62:df:67:95:c1:be:a4: a5:0e:9b:37:9f:6d:d9:20:d7:d4:0d:48:f4:14:57:04:67:2b: 25:6f:0c:67:d7:bc:28:aa:66:a0:35:db:cf:11:c5:f9:b0:ed: de:f2:d2:3e:df:a9:54:12:20:ac:9b:93:e8:50:c5:ff:f4:3b: e6:53:55:fc:9c:6c:c6:77:ab:2d:3f:43:50:42:d7:b3:00:2d: 9e:9c:54:d5:81:5b:94:0f:e7:8a:8b:21:31:22:a2:3f:ee:82: da:01:6d:74:7c:e1:78:13:45:a2:e3:21:f1:95:1a:27:52:a9: 1f:eb:40:63:1c:33:46:6f:5a:20:0b:73:b4:17:82:8b:d2:54: 49:04:43:8b:29:ca:fc:2d:7f:b5:f3:09:f5:0d:78:31:98:0b: 49:98:08:35:45:52:b9:51:8d:fa:ae:ab:03:f7:fb:01:30:66: b5:4e:20:bb:b6:9b:46:ff:38:5f:6a:2b:31:f6:3a:b1:03:00: 1a:c5:6a:7e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUUmKU2Avp6X8ECV3fH6u4/6om/q0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExNDAyNTUwMFoX DTI2MTExMzAzMDAwMFowMzExMC8GA1UEAxMoMjBBNjc5ODkxQTQ5NEQwOUU1NTdD NDIwRTFGNkJBQTY4N0NDQkJDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTi4ldkAoAWsVOGfnOQ4GP3pPBhxQ7O6p+wO2Z290KAAXFecTmsxkS9ojct PawsABQBGJ5JmUtq5DEUdj9aV8ZQem1fSG8WtzKvYkarHRZlZocNTW4+SNyUU0A2 Mgsrj6948aXubOw27JbEgfu81H7h1SYlHJT4qFKMhPfG/0JJ6DVJPCmP5wtOS2wg AFGWT651KEae6C7Sin5Oz1kOsjpkb6lfQ5+lq302jbpPR0NoKYm0IjKKj/FUhSpD vg/dLkD9Q/Shwz5b9dkDP7SEIJ5zHFtKCBSfI/fHe1cklBDkUiUaN4QAdOEJBX1J EqQ6k4wAgGeI3BdlvXNFwyyI6MMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQgpnmJ GklNCeVXxCDh9rqmh8y7yDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTQwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWe2MDANBgkqhkiG9w0BAQsFAAOCAQEAPNNJdbUWplLrLnLqGfP3 4cCkM0icSk3A96+DGGBtvnUN7bLkYhw8mh9fTzPT0C8pCEOlrTfHBq5XmtcvqnM2 Uuli32eVwb6kpQ6bN59t2SDX1A1I9BRXBGcrJW8MZ9e8KKpmoDXbzxHF+bDt3vLS Pt+pVBIgrJuT6FDF//Q75lNV/JxsxnerLT9DUELXswAtnpxU1YFblA/nioshMSKi P+6C2gFtdHzheBNFouMh8ZUaJ1KpH+tAYxwzRm9aIAtztBeCi9JUSQRDiynK/C1/ tfMJ9Q14MZgLSZgINUVSuVGN+q6rA/f7ATBmtU4gu7abRv84X2orMfY6sQMAGsVq fg== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:34 2025 by rpki-client