This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149897.roa File: AS149897.roa (raw, json) Hash identifier: 6t3WUVXSIXIaHTghwHcRUkA8yFH+4B5kxQbLnACIR1c= Subject key identifier: 07:9E:47:63:DB:5F:EE:B9:E7:90:69:B5:79:FF:A5:77:9F:67:F6:DA Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 385398CE9D277CC3974302D350E53F268519EE3D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149897.roa Signing time: Wed 04 Jun 2025 08:00:00 +0000 ROA not before: Wed 04 Jun 2025 07:55:00 +0000 ROA not after: Wed 03 Jun 2026 08:00:00 +0000 asID: 149897 IP address blocks: 2001:df1:2e40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:53:98:ce:9d:27:7c:c3:97:43:02:d3:50:e5:3f:26:85:19:ee:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 4 07:55:00 2025 GMT Not After : Jun 3 08:00:00 2026 GMT Subject: CN=079E4763DB5FEEB9E79069B579FFA5779F67F6DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7d:c8:a6:11:99:1a:38:22:7a:7e:cd:be:21: 19:01:f5:2e:ae:b2:ad:d6:90:91:85:3f:77:38:3b: 16:37:1e:95:3e:83:db:42:9e:f3:30:05:a6:6f:e0: fe:4b:ca:80:76:f8:f8:d5:de:e5:26:40:77:ee:1c: 3d:da:9d:7b:65:5e:c4:2e:72:a6:91:1a:9d:1e:8d: d7:0a:e8:e9:77:8f:e2:e7:45:64:1b:d2:0c:16:85: 63:61:60:e6:60:ba:50:57:ec:f5:30:7a:54:f5:69: ac:5c:c4:92:5a:6c:a5:22:90:0c:7d:0b:00:e5:89: 31:c8:4a:d8:69:67:0e:af:05:01:bd:02:bb:3d:c4: f4:60:91:8a:ae:96:7a:dc:17:0a:0b:d4:ca:b1:33: c5:50:6f:b5:fb:2a:f5:a5:c8:3c:9e:bf:1d:91:70: a9:d9:b1:6e:e9:33:c4:fd:7c:51:a4:14:8b:94:05: ff:5d:a0:d7:b7:bd:76:e4:70:fc:6c:4b:e7:2d:0b: e6:26:d7:b9:2e:61:5a:c1:44:c3:ba:1b:75:43:b5: 2e:8c:d6:8c:6b:03:05:8f:5b:fe:a0:1c:37:57:5d: e0:e6:01:99:0e:06:13:f4:25:56:ae:30:04:aa:92: 6f:e0:a9:6b:c8:47:99:1a:5e:07:ad:cd:e0:e9:50: 21:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:9E:47:63:DB:5F:EE:B9:E7:90:69:B5:79:FF:A5:77:9F:67:F6:DA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149897.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:2e40::/48 Signature Algorithm: sha256WithRSAEncryption 4e:ae:21:8e:c5:9a:35:e6:f7:94:60:9b:e7:3c:bf:90:51:20: b1:f0:6b:43:5f:9c:df:2b:de:ae:4e:2a:cb:c1:09:d2:e8:51: 8d:47:76:67:8f:13:cb:2f:fb:37:f4:4b:54:a2:2a:af:d0:9c: 76:41:69:e2:11:ba:c8:7e:8a:cb:db:0f:71:80:93:a0:04:d3: f4:96:87:7c:a7:91:71:08:73:c5:fc:fd:7f:3c:b2:bf:c9:cf: fa:9b:7b:f8:8f:76:5a:69:15:44:43:bd:57:88:2a:d4:c5:3f: de:2f:30:fb:27:03:6a:10:1e:a1:1b:e4:c3:9d:c2:fa:dd:a2: 24:28:bc:c4:39:80:2d:9d:31:a5:10:93:9f:1e:32:f7:c0:27: df:b5:6e:3a:d4:e4:7c:07:f8:8c:c5:9a:a2:14:3f:47:8a:60: d2:5a:ef:a2:d2:ba:5c:cb:c8:fa:06:08:46:c5:26:8d:fd:71: 92:38:8e:79:d1:6f:12:83:d1:46:93:d8:5f:fc:b5:9e:ce:a5: 7b:d4:a3:f1:26:00:8f:39:0a:40:67:49:4b:6a:58:ef:eb:fe: f4:e8:e4:d3:7f:84:fe:50:ae:19:dc:ca:99:b7:80:4d:05:ce: 2b:00:75:9b:48:96:d0:a8:b3:6d:9d:a5:bd:e5:51:d9:79:2d: d4:67:01:d4 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUOFOYzp0nfMOXQwLTUOU/JoUZ7j0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwNDA3NTUwMFoX DTI2MDYwMzA4MDAwMFowMzExMC8GA1UEAxMoMDc5RTQ3NjNEQjVGRUVCOUU3OTA2 OUI1NzlGRkE1Nzc5RjY3RjZEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKh9yKYRmRo4Inp+zb4hGQH1Lq6yrdaQkYU/dzg7FjcelT6D20Ke8zAFpm/g /kvKgHb4+NXe5SZAd+4cPdqde2VexC5yppEanR6N1wro6XeP4udFZBvSDBaFY2Fg 5mC6UFfs9TB6VPVprFzEklpspSKQDH0LAOWJMchK2GlnDq8FAb0Cuz3E9GCRiq6W etwXCgvUyrEzxVBvtfsq9aXIPJ6/HZFwqdmxbukzxP18UaQUi5QF/12g17e9duRw /GxL5y0L5ibXuS5hWsFEw7obdUO1LozWjGsDBY9b/qAcN1dd4OYBmQ4GE/QlVq4w BKqSb+Cpa8hHmRpeB63N4OlQIbkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQHnkdj 21/uueeQabV5/6V3n2f22jAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTg5Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfEuQDANBgkqhkiG9w0BAQsFAAOCAQEATq4hjsWaNeb3lGCb 5zy/kFEgsfBrQ1+c3yverk4qy8EJ0uhRjUd2Z48Tyy/7N/RLVKIqr9CcdkFp4hG6 yH6Ky9sPcYCToATT9JaHfKeRcQhzxfz9fzyyv8nP+pt7+I92WmkVREO9V4gq1MU/ 3i8w+ycDahAeoRvkw53C+t2iJCi8xDmALZ0xpRCTnx4y98An37VuOtTkfAf4jMWa ohQ/R4pg0lrvotK6XMvI+gYIRsUmjf1xkjiOedFvEoPRRpPYX/y1ns6le9Sj8SYA jzkKQGdJS2pY7+v+9Ojk03+E/lCuGdzKmbeATQXOKwB1m0iW0KizbZ2lveVR2Xkt 1GcB1A== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:34 2025 by rpki-client