This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149925.roa File: AS149925.roa (raw, json) Hash identifier: papGlCndr5p376BSMWzDYtU0vN0Y075dZDI/AAaFFG8= Subject key identifier: 68:2E:1F:28:46:24:2C:BB:80:28:05:49:76:C0:CF:5E:D0:CA:C2:6E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0A8E07018834463A971D36CA97D8D222AD92AB95 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149925.roa Signing time: Fri 07 Nov 2025 02:29:37 +0000 ROA not before: Fri 07 Nov 2025 02:24:37 +0000 ROA not after: Fri 06 Nov 2026 02:29:37 +0000 asID: 149925 IP address blocks: 103.115.20.0/24 maxlen: 24 202.133.66.0/23 maxlen: 24 2001:df2:7a40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8e:07:01:88:34:46:3a:97:1d:36:ca:97:d8:d2:22:ad:92:ab:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 02:24:37 2025 GMT Not After : Nov 6 02:29:37 2026 GMT Subject: CN=682E1F2846242CBB8028054976C0CF5ED0CAC26E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d8:b7:d0:01:79:80:56:e4:a2:fd:59:dd:51: d6:cd:4d:65:55:f5:21:da:b0:7b:9f:e5:f6:b9:f3: 35:35:72:06:93:ed:9e:bd:b2:39:7d:0c:07:73:55: 3d:b3:4c:da:ce:89:11:a4:8c:37:e3:3b:db:ed:c6: 77:5f:13:da:a1:2f:04:45:74:94:de:c0:8d:b5:83: 2b:d1:ff:9f:cd:0f:b2:93:e8:ed:29:08:bf:3c:4a: 89:ee:7d:c5:d9:39:8b:c0:15:f2:34:ea:55:b9:87: 38:f3:21:e3:d8:82:bb:c1:58:46:29:2c:32:88:d7: f2:3b:75:dd:e4:27:e2:8b:c8:ed:bb:7c:cf:0f:9a: 98:26:a0:0f:36:b1:de:8c:1d:19:96:65:37:08:86: b8:fa:5f:52:4e:17:c5:ef:17:9c:05:18:bb:bb:5a: 72:10:e0:7a:84:cb:ee:b0:85:8e:c9:ba:d2:ab:4f: 54:0c:43:3d:26:f5:1e:b2:c6:16:cb:5d:fe:be:fb: a2:94:3b:a2:26:b4:2d:a5:eb:cd:2d:ff:ea:75:1d: 6e:71:32:68:b5:95:4e:8a:14:ef:47:fd:71:9c:1e: 9e:2d:0d:bc:70:9b:e0:8c:2d:1f:b7:19:1e:30:90: 86:14:44:c0:a3:09:62:30:39:87:3d:0f:d7:08:46: 76:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2E:1F:28:46:24:2C:BB:80:28:05:49:76:C0:CF:5E:D0:CA:C2:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149925.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.115.20.0/24 202.133.66.0/23 IPv6: 2001:df2:7a40::/48 Signature Algorithm: sha256WithRSAEncryption 70:fa:6f:e3:4b:04:2c:7c:b6:38:61:07:7a:f0:a4:ab:52:dc: a5:75:8d:16:eb:bf:dd:a8:77:ce:29:5b:bd:86:7f:4d:3e:da: d9:4b:88:15:7c:d6:14:b6:40:48:fc:4b:05:46:db:f2:e5:d2: 5c:59:23:b8:d0:68:38:6a:56:37:23:f2:a1:f6:87:d7:50:6d: 3f:5e:4a:51:c6:a3:87:42:b3:9a:70:b5:85:4e:54:cb:79:51: 62:43:bc:aa:e8:d5:be:74:82:f2:af:97:2a:b6:d2:05:27:31: 7f:ff:eb:60:77:a4:3d:2f:fe:d4:83:18:58:7e:1d:6e:7d:82: 4c:e3:a1:b2:e2:9b:e9:a0:aa:8a:e1:1d:b8:00:f0:30:32:67: a0:7d:7a:59:0a:43:b8:7f:32:54:bc:3f:c4:18:9b:b9:c7:15: 36:30:f6:bb:a4:e5:24:77:83:54:85:01:ce:e6:da:62:2a:d1: 3f:94:33:c5:5e:3e:0a:96:20:7f:43:4f:d2:bf:75:2d:cf:66: d5:2f:a4:fe:07:76:0a:30:09:58:9c:56:c5:1e:cf:3d:fe:8b: 1a:66:93:8f:a9:68:d1:31:a2:d7:d7:4a:b6:e1:fc:82:ec:ed: 59:75:63:c3:a4:64:d3:d7:82:cf:7c:2c:d9:f2:8d:26:9f:e9: 3c:04:98:6e -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUCo4HAYg0RjqXHTbKl9jSIq2Sq5UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNzAyMjQzN1oX DTI2MTEwNjAyMjkzN1owMzExMC8GA1UEAxMoNjgyRTFGMjg0NjI0MkNCQjgwMjgw NTQ5NzZDMENGNUVEMENBQzI2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPYt9ABeYBW5KL9Wd1R1s1NZVX1Idqwe5/l9rnzNTVyBpPtnr2yOX0MB3NV PbNM2s6JEaSMN+M72+3Gd18T2qEvBEV0lN7AjbWDK9H/n80PspPo7SkIvzxKie59 xdk5i8AV8jTqVbmHOPMh49iCu8FYRiksMojX8jt13eQn4ovI7bt8zw+amCagDzax 3owdGZZlNwiGuPpfUk4Xxe8XnAUYu7tachDgeoTL7rCFjsm60qtPVAxDPSb1HrLG Fstd/r77opQ7oia0LaXrzS3/6nUdbnEyaLWVTooU70f9cZweni0NvHCb4IwtH7cZ HjCQhhREwKMJYjA5hz0P1whGdl8CAwEAAaOCAecwggHjMB0GA1UdDgQWBBRoLh8o RiQsu4AoBUl2wM9e0MrCbjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTkyNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUw EgQCAAEwDAMEAGdzFAMEAcqFQjAPBAIAAjAJAwcAIAEN8npAMA0GCSqGSIb3DQEB CwUAA4IBAQBw+m/jSwQsfLY4YQd68KSrUtyldY0W67/dqHfOKVu9hn9NPtrZS4gV fNYUtkBI/EsFRtvy5dJcWSO40Gg4alY3I/Kh9ofXUG0/XkpRxqOHQrOacLWFTlTL eVFiQ7yq6NW+dILyr5cqttIFJzF//+tgd6Q9L/7UgxhYfh1ufYJM46Gy4pvpoKqK 4R24APAwMmegfXpZCkO4fzJUvD/EGJu5xxU2MPa7pOUkd4NUhQHO5tpiKtE/lDPF Xj4KliB/Q0/Sv3Utz2bVL6T+B3YKMAlYnFbFHs89/osaZpOPqWjRMaLX10q24fyC 7O1ZdWPDpGTT14LPfCzZ8o0mn+k8BJhu -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:25 2025 by rpki-client