This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149715.roa File: AS149715.roa (raw, json) Hash identifier: sx2u+p6PErFTDhqx/C+y83ghjKlZfXn7IEyoV0WGjzA= Subject key identifier: 3E:14:8C:56:E9:02:20:E0:EA:89:9B:70:0B:EA:A2:E9:1C:B6:31:65 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 01118420F32611256E7DC15A13B193B6261988F7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149715.roa Signing time: Thu 19 Jun 2025 05:00:00 +0000 ROA not before: Thu 19 Jun 2025 04:55:00 +0000 ROA not after: Thu 18 Jun 2026 05:00:00 +0000 asID: 149715 IP address blocks: 2001:df1:1140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:11:84:20:f3:26:11:25:6e:7d:c1:5a:13:b1:93:b6:26:19:88:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 19 04:55:00 2025 GMT Not After : Jun 18 05:00:00 2026 GMT Subject: CN=3E148C56E90220E0EA899B700BEAA2E91CB63165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:26:53:d8:9a:08:47:68:46:9c:76:6c:74:ad: 06:41:89:2d:9a:8e:f5:07:9c:c0:a2:db:a0:98:b5: 62:9e:65:6a:c3:2a:7a:31:a5:ba:04:2e:6b:59:a4: fa:5d:4e:2b:a2:f8:14:c5:02:c6:11:45:a2:a3:04: 97:67:d0:e5:e2:22:3c:69:83:d8:43:1a:4f:f4:bc: 2f:27:4d:92:21:bf:73:e6:81:10:e8:c8:f3:6e:57: 63:c4:5b:8e:e6:c6:09:df:29:32:e1:4b:7e:07:29: 50:05:34:86:4d:f7:71:64:30:c9:9c:e4:8e:50:16: 20:74:9e:a1:e5:8c:94:84:5f:9c:87:2e:04:aa:96: 17:51:d9:06:72:76:af:7f:aa:79:7c:05:76:1d:8e: 0e:f7:f1:6a:9f:2a:f0:20:08:ee:fe:f8:cd:db:1f: 4a:b3:5b:9d:b3:b4:be:70:08:60:1c:8c:84:60:d0: 70:67:c4:d6:a9:e3:7c:db:49:2d:a0:a8:c8:ea:ec: 5f:92:db:f5:ce:60:8e:26:ef:24:fa:f8:03:1c:de: b0:33:bb:c7:cd:17:bc:c4:4b:8b:43:51:cc:cf:3d: de:2e:2c:f2:81:b1:5b:bf:8d:f3:2c:b7:7b:13:2e: d9:fe:35:80:8e:3d:ca:64:31:2d:e7:e6:99:b5:96: f4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:14:8C:56:E9:02:20:E0:EA:89:9B:70:0B:EA:A2:E9:1C:B6:31:65 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149715.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1140::/48 Signature Algorithm: sha256WithRSAEncryption 55:18:6a:78:46:38:cf:94:a9:7e:fb:56:8a:6c:ff:17:ea:92: 10:53:c4:22:51:9f:1d:f9:32:69:97:61:81:46:36:e5:f5:b4: af:7b:bf:6f:d0:a1:0f:23:e0:c7:6f:0d:f4:6c:81:fa:52:4c: d8:0f:75:99:c8:f5:5c:a6:04:89:d8:ca:80:4d:52:50:6f:8b: 36:75:00:8c:12:d4:42:e8:ea:7d:b3:de:95:36:51:3c:17:48: 58:6b:ae:b5:0e:82:f9:2f:53:37:cf:17:cb:a9:8f:7c:39:b6: 30:25:fb:5a:18:e6:67:58:b4:ef:18:f6:52:af:a7:31:73:7d: df:59:e2:85:fc:a5:bc:95:c5:b8:31:0a:d7:c6:c0:10:ca:01: 22:b3:48:26:e9:ff:5c:c8:21:55:39:b9:c4:e2:c9:bf:78:a8: cb:6e:c0:05:a6:09:70:80:15:82:e5:70:f6:46:59:10:35:d5: c6:33:20:07:a8:67:62:4e:d2:49:c0:27:11:c4:8a:b5:ed:a8: 32:42:0e:37:69:bb:9c:ed:8d:e8:f1:45:8c:b5:c4:24:60:40: 3b:44:ca:d1:41:a1:fe:36:a6:e9:49:bc:89:d6:58:88:a9:e3: d5:12:8b:4a:a0:d2:35:da:45:50:fb:57:19:f4:5a:1d:9e:3a: 31:63:c7:f9 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUARGEIPMmESVufcFaE7GTtiYZiPcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxOTA0NTUwMFoX DTI2MDYxODA1MDAwMFowMzExMC8GA1UEAxMoM0UxNDhDNTZFOTAyMjBFMEVBODk5 QjcwMEJFQUEyRTkxQ0I2MzE2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOUmU9iaCEdoRpx2bHStBkGJLZqO9QecwKLboJi1Yp5lasMqejGlugQua1mk +l1OK6L4FMUCxhFFoqMEl2fQ5eIiPGmD2EMaT/S8LydNkiG/c+aBEOjI825XY8Rb jubGCd8pMuFLfgcpUAU0hk33cWQwyZzkjlAWIHSeoeWMlIRfnIcuBKqWF1HZBnJ2 r3+qeXwFdh2ODvfxap8q8CAI7v74zdsfSrNbnbO0vnAIYByMhGDQcGfE1qnjfNtJ LaCoyOrsX5Lb9c5gjibvJPr4AxzesDO7x80XvMRLi0NRzM893i4s8oGxW7+N8yy3 exMu2f41gI49ymQxLefmmbWW9C8CAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQ+FIxW 6QIg4OqJm3AL6qLpHLYxZTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTcxNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfERQDANBgkqhkiG9w0BAQsFAAOCAQEAVRhqeEY4z5SpfvtW imz/F+qSEFPEIlGfHfkyaZdhgUY25fW0r3u/b9ChDyPgx28N9GyB+lJM2A91mcj1 XKYEidjKgE1SUG+LNnUAjBLUQujqfbPelTZRPBdIWGuutQ6C+S9TN88Xy6mPfDm2 MCX7WhjmZ1i07xj2Uq+nMXN931nihfylvJXFuDEK18bAEMoBIrNIJun/XMghVTm5 xOLJv3ioy27ABaYJcIAVguVw9kZZEDXVxjMgB6hnYk7SScAnEcSKte2oMkION2m7 nO2N6PFFjLXEJGBAO0TK0UGh/jam6Um8idZYiKnj1RKLSqDSNdpFUPtXGfRaHZ46 MWPH+Q== -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:58 2025 by rpki-client