This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149744.roa File: AS149744.roa (raw, json) Hash identifier: qMLvCKKNLcJr+Own6Etx7O+zxr0W/mP2KKB7U8bcmJU= Subject key identifier: 00:EC:8C:FE:6D:A6:1A:8D:3D:1A:8F:62:0F:A5:35:C9:4D:75:07:C6 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4F77890DDB2A0B16526F81BBBBF3ECC8D1AAB588 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149744.roa Signing time: Tue 11 Nov 2025 06:00:24 +0000 ROA not before: Tue 11 Nov 2025 05:55:24 +0000 ROA not after: Tue 10 Nov 2026 06:00:24 +0000 asID: 149744 IP address blocks: 2001:df0:d140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:77:89:0d:db:2a:0b:16:52:6f:81:bb:bb:f3:ec:c8:d1:aa:b5:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:24 2025 GMT Not After : Nov 10 06:00:24 2026 GMT Subject: CN=00EC8CFE6DA61A8D3D1A8F620FA535C94D7507C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cc:45:23:68:ba:80:15:4d:bc:87:eb:6f:3e: 7c:7e:55:cc:9b:fd:d3:d4:24:6a:ff:22:96:d6:32: d7:b1:fb:6e:76:54:f5:61:ca:a9:ef:b9:06:c3:2b: 1c:6b:2b:b6:d7:19:c9:15:99:a0:cd:a2:ee:7c:c7: 9c:6f:af:fe:73:51:2c:5e:34:f4:6d:1f:3d:16:20: 1f:0d:f8:e3:d3:51:f5:00:f8:b4:d7:49:62:70:c9: 92:11:e3:cc:98:4e:05:00:73:68:de:d9:c7:c5:8f: 8b:99:24:e1:bd:a3:71:9f:c4:44:22:ec:0b:09:b6: a2:96:21:d1:a1:4f:b9:d0:f6:c9:33:8f:94:e4:93: 13:ba:2c:07:29:3e:c8:65:a9:a5:83:36:ef:2d:d2: 03:41:13:36:6e:a4:32:dd:df:cb:df:b2:69:78:1b: 25:2c:00:52:f5:a9:3d:6e:a1:35:1c:1e:3c:c9:6a: ca:f0:bd:80:56:3b:41:4f:f7:4f:e0:17:68:90:e3: ab:07:36:5e:ff:85:14:70:d3:d0:e9:e1:cb:bd:09: 99:1a:03:fa:6e:bb:38:aa:70:92:2c:7f:bb:4e:69: 43:f2:6e:3c:7e:1f:7b:63:4c:3f:78:5d:f4:4b:8d: 9e:fa:8b:1f:f5:c3:26:42:4a:1c:ef:b2:db:e6:55: a1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:EC:8C:FE:6D:A6:1A:8D:3D:1A:8F:62:0F:A5:35:C9:4D:75:07:C6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149744.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:d140::/48 Signature Algorithm: sha256WithRSAEncryption 3a:02:70:eb:bd:a0:28:0f:35:c8:e9:59:6f:72:3f:45:cc:26: ba:67:dd:90:d2:e9:00:51:6b:a5:8e:a2:1a:ec:a5:32:a7:da: 98:00:41:b8:c1:52:b5:03:71:2f:14:b1:7f:02:5b:8f:f2:c6: 87:7c:84:fe:6e:ab:a7:3e:5e:69:3f:5a:f6:7d:5e:89:50:18: e6:be:97:c1:ec:10:f3:39:28:8e:2a:23:8c:93:a9:2a:42:e2: 95:dc:fa:04:6a:c8:af:23:5e:a1:07:0c:19:04:cb:5b:41:df: bc:c0:09:c1:68:8a:9d:f9:bf:2a:1b:f4:36:25:05:80:dd:f7: bd:c2:0b:a4:60:4a:03:43:b5:65:50:f3:78:5a:36:86:ce:92: ac:a4:39:ee:38:c3:e1:e7:5e:47:c0:ad:a8:6e:bf:89:d6:94: 1e:1e:96:6b:68:ae:f1:bd:a6:5a:cd:19:f5:07:e3:80:fd:8c: ac:de:0d:ec:26:29:2e:b2:b9:04:3f:b4:d3:b4:93:86:6c:29: 73:a0:28:d4:65:d7:c1:b0:fe:b0:1d:f8:68:af:a1:68:5d:15: 16:8b:39:cd:7c:82:7b:e1:13:8b:ef:9a:9b:7f:9f:c3:48:fb: b2:0e:4f:e2:b3:16:e8:6b:fd:2a:5f:6f:81:eb:59:2e:b8:fa: 24:2e:a9:35 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUT3eJDdsqCxZSb4G7u/PsyNGqtYgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUyNFoX DTI2MTExMDA2MDAyNFowMzExMC8GA1UEAxMoMDBFQzhDRkU2REE2MUE4RDNEMUE4 RjYyMEZBNTM1Qzk0RDc1MDdDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALrMRSNouoAVTbyH628+fH5VzJv909Qkav8iltYy17H7bnZU9WHKqe+5BsMr HGsrttcZyRWZoM2i7nzHnG+v/nNRLF409G0fPRYgHw3449NR9QD4tNdJYnDJkhHj zJhOBQBzaN7Zx8WPi5kk4b2jcZ/ERCLsCwm2opYh0aFPudD2yTOPlOSTE7osByk+ yGWppYM27y3SA0ETNm6kMt3fy9+yaXgbJSwAUvWpPW6hNRwePMlqyvC9gFY7QU/3 T+AXaJDjqwc2Xv+FFHDT0Onhy70JmRoD+m67OKpwkix/u05pQ/JuPH4fe2NMP3hd 9EuNnvqLH/XDJkJKHO+y2+ZVoTkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQA7Iz+ baYajT0aj2IPpTXJTXUHxjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTc0NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfDRQDANBgkqhkiG9w0BAQsFAAOCAQEAOgJw672gKA81yOlZ b3I/RcwmumfdkNLpAFFrpY6iGuylMqfamABBuMFStQNxLxSxfwJbj/LGh3yE/m6r pz5eaT9a9n1eiVAY5r6XwewQ8zkojiojjJOpKkLildz6BGrIryNeoQcMGQTLW0Hf vMAJwWiKnfm/Khv0NiUFgN33vcILpGBKA0O1ZVDzeFo2hs6SrKQ57jjD4edeR8Ct qG6/idaUHh6Wa2iu8b2mWs0Z9QfjgP2MrN4N7CYpLrK5BD+007SThmwpc6Ao1GXX wbD+sB34aK+haF0VFos5zXyCe+ETi++am3+fw0j7sg5P4rMW6Gv9Kl9vgetZLrj6 JC6pNQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:23 2025 by rpki-client