This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149699.roa File: AS149699.roa (raw, json) Hash identifier: whoGjJGmooozfj0mUD06v03mFdK4Y253q8Nt/CI7yMY= Subject key identifier: FE:65:2C:37:FB:CA:C4:21:6F:29:87:6F:22:C6:D1:C7:0E:9C:4C:BA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0E88B7DCE9C32C5736506E84CE6505D57F36637F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149699.roa Signing time: Mon 14 Apr 2025 08:00:00 +0000 ROA not before: Mon 14 Apr 2025 07:55:00 +0000 ROA not after: Mon 13 Apr 2026 08:00:00 +0000 asID: 149699 IP address blocks: 103.186.166.0/24 maxlen: 24 103.242.86.0/24 maxlen: 24 2400:f5a0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:88:b7:dc:e9:c3:2c:57:36:50:6e:84:ce:65:05:d5:7f:36:63:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 14 07:55:00 2025 GMT Not After : Apr 13 08:00:00 2026 GMT Subject: CN=FE652C37FBCAC4216F29876F22C6D1C70E9C4CBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:97:a5:df:38:9d:19:8a:cb:c0:b6:86:51:88: 1e:91:4c:56:14:47:e3:01:4d:17:4a:06:6e:57:d0: 19:4b:c2:e1:62:98:ec:e3:cf:01:ce:78:10:b4:2e: 66:57:c7:3e:38:03:4d:80:76:87:60:3d:27:94:25: eb:1a:11:89:06:71:dc:b2:e9:f8:3a:a4:f2:38:66: f7:4c:d9:08:bf:7c:23:7e:49:fc:23:2d:11:58:6d: cc:eb:97:b1:03:7d:51:e5:2c:e4:02:43:b0:c1:77: 60:23:dc:9a:52:1e:61:66:b6:73:e6:22:8a:73:45: 4e:5e:f5:72:9f:4b:aa:ec:8f:60:96:52:7e:a2:4d: 56:fd:f6:17:f5:8d:25:2e:bf:85:37:db:b6:d9:a6: 84:6a:cb:c0:a7:89:e5:55:93:81:21:49:d8:2c:15: 5a:6b:86:62:a3:f0:47:10:03:06:af:18:c0:fc:8c: a3:51:30:7e:ed:8e:5f:4f:4f:3f:a5:92:86:cc:83: 3f:ee:c2:56:e8:12:da:21:fa:a2:0a:67:65:0d:74: 74:1d:bd:04:50:d7:f1:99:7f:ea:b7:a5:da:4b:a4: c4:50:96:89:dd:81:d8:41:9f:41:d1:0a:f4:cc:52: 4b:07:14:44:86:c7:79:77:f7:44:01:80:dc:13:30: c4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:65:2C:37:FB:CA:C4:21:6F:29:87:6F:22:C6:D1:C7:0E:9C:4C:BA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.166.0/24 103.242.86.0/24 IPv6: 2400:f5a0::/32 Signature Algorithm: sha256WithRSAEncryption 9a:e2:d9:d3:f1:9d:04:e6:88:33:c3:d3:8b:ed:c0:39:2b:dc: 83:4c:00:c6:e4:d5:eb:c7:8e:de:29:11:24:eb:97:14:21:e7: 4f:a3:21:3f:f4:cc:8e:3c:3e:2f:db:07:18:f8:75:6a:4d:10: 3d:06:b4:1b:0f:6e:f7:ea:bc:e5:48:a6:7e:09:fd:b8:d8:0c: 5a:f3:35:8e:4c:d9:c9:53:59:78:6d:c8:8b:b2:74:ee:9d:91: cd:9e:b4:79:05:47:a5:7f:a8:32:7d:18:a1:c2:70:31:ea:9f: d5:cf:a7:98:0b:14:85:3c:9d:68:a4:45:59:bc:b6:5e:8c:2c: 35:33:43:dd:f6:3d:d6:55:4e:da:63:d4:9d:0b:b5:fc:13:67: 70:23:1a:67:59:ad:c2:f6:09:cc:48:85:ec:42:eb:b2:d3:57: 32:9b:79:a8:cf:fc:b4:a0:83:a0:c9:b0:e6:f8:ef:4f:9d:16: dd:87:79:0c:67:35:8a:41:46:a4:00:c1:ce:d3:63:f1:07:6c: e8:ea:5e:ef:ec:55:60:ac:da:7a:d8:fe:69:3d:2b:8a:4b:93: bf:75:b5:d1:8b:34:61:f1:b3:41:3c:6e:71:a0:67:c1:4b:f2: d6:6c:41:a0:c5:4d:91:94:0a:ab:61:b5:7f:cf:7a:55:12:5e: 8c:a0:b2:1f -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUDoi33OnDLFc2UG6EzmUF1X82Y38wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxNDA3NTUwMFoX DTI2MDQxMzA4MDAwMFowMzExMC8GA1UEAxMoRkU2NTJDMzdGQkNBQzQyMTZGMjk4 NzZGMjJDNkQxQzcwRTlDNENCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2Xpd84nRmKy8C2hlGIHpFMVhRH4wFNF0oGblfQGUvC4WKY7OPPAc54ELQu ZlfHPjgDTYB2h2A9J5Ql6xoRiQZx3LLp+Dqk8jhm90zZCL98I35J/CMtEVhtzOuX sQN9UeUs5AJDsMF3YCPcmlIeYWa2c+YiinNFTl71cp9LquyPYJZSfqJNVv32F/WN JS6/hTfbttmmhGrLwKeJ5VWTgSFJ2CwVWmuGYqPwRxADBq8YwPyMo1Ewfu2OX09P P6WShsyDP+7CVugS2iH6ogpnZQ10dB29BFDX8Zl/6rel2kukxFCWid2B2EGfQdEK 9MxSSwcURIbHeXf3RAGA3BMwxN8CAwEAAaOCAeUwggHhMB0GA1UdDgQWBBT+ZSw3 +8rEIW8ph28ixtHHDpxMujAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY5OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQlMCMw EgQCAAEwDAMEAGe6pgMEAGfyVjANBAIAAjAHAwUAJAD1oDANBgkqhkiG9w0BAQsF AAOCAQEAmuLZ0/GdBOaIM8PTi+3AOSvcg0wAxuTV68eO3ikRJOuXFCHnT6MhP/TM jjw+L9sHGPh1ak0QPQa0Gw9u9+q85Uimfgn9uNgMWvM1jkzZyVNZeG3Ii7J07p2R zZ60eQVHpX+oMn0YocJwMeqf1c+nmAsUhTydaKRFWby2XowsNTND3fY91lVO2mPU nQu1/BNncCMaZ1mtwvYJzEiF7ELrstNXMpt5qM/8tKCDoMmw5vjvT50W3Yd5DGc1 ikFGpADBztNj8Qds6Ope7+xVYKzaetj+aT0rikuTv3W10Ys0YfGzQTxucaBnwUvy 1mxBoMVNkZQKq2G1f896VRJejKCyHw== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:29 2025 by rpki-client