This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149947.roa File: AS149947.roa (raw, json) Hash identifier: 20XIWa9A31ViXwFZWFg0GIA9aIyZTqfB6Rn5rGxWhmI= Subject key identifier: D8:50:9A:3C:46:68:DC:E5:C6:F1:21:12:B4:C0:D6:9A:C7:31:BD:A3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5EEBD7F8A5B36ABC9BDEEF2993AE068456B82383 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149947.roa Signing time: Wed 12 Nov 2025 03:38:34 +0000 ROA not before: Wed 12 Nov 2025 03:33:34 +0000 ROA not after: Wed 11 Nov 2026 03:38:34 +0000 asID: 149947 IP address blocks: 103.88.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:eb:d7:f8:a5:b3:6a:bc:9b:de:ef:29:93:ae:06:84:56:b8:23:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 12 03:33:34 2025 GMT Not After : Nov 11 03:38:34 2026 GMT Subject: CN=D8509A3C4668DCE5C6F12112B4C0D69AC731BDA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f1:bc:5a:20:60:01:b9:51:d0:7c:ff:f8:91: e7:cb:5e:47:ec:fa:d2:a6:7d:3d:83:2f:c2:aa:22: cc:bc:8b:e8:73:ea:a5:0d:cf:c4:c6:79:8c:9d:83: 7b:96:fc:bf:43:6d:11:76:f2:07:a8:22:42:83:d1: df:2a:e2:11:75:8d:bf:20:36:85:08:de:3c:a6:4f: c0:67:58:b3:2d:6c:0d:41:12:ad:72:3d:06:cb:93: 56:64:f9:ca:85:6b:c5:83:b7:e9:c1:df:da:59:79: 78:c7:29:c1:d7:19:d4:36:b1:cf:66:35:d4:28:71: 22:63:6d:f7:0a:8a:65:4d:24:31:5e:43:64:ea:dd: 39:d8:81:64:66:f8:1f:9e:21:83:ee:3e:87:7a:a8: c9:fd:ed:22:40:9e:2f:88:19:22:64:cd:15:4d:0d: 5e:31:64:a6:ee:ed:1e:07:c6:26:8c:f0:95:90:fc: 84:5a:68:72:da:9f:68:2c:27:65:b4:45:cd:cd:cc: 27:0a:f9:6e:c9:01:51:05:72:66:4f:e5:0b:41:ec: 06:55:3f:12:a5:52:b9:f0:db:aa:7b:65:96:c3:57: e6:7b:d0:0a:30:97:3e:d0:5c:77:d1:ad:86:4b:52: 99:d1:60:dd:d1:43:51:1d:7f:4d:c0:dd:de:63:25: 2b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:50:9A:3C:46:68:DC:E5:C6:F1:21:12:B4:C0:D6:9A:C7:31:BD:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149947.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.153.0/24 Signature Algorithm: sha256WithRSAEncryption 82:ff:a2:77:cf:bd:ee:00:cf:18:31:36:f9:12:07:a0:c7:79: de:50:b4:13:97:a0:15:ca:29:51:f7:f7:ab:0a:e3:57:96:62: bb:8a:d2:bf:a5:ad:77:1b:02:41:e1:25:96:e4:ec:17:d9:26: 1b:29:44:45:8b:19:04:e9:22:67:a1:b4:43:27:2c:b1:bb:5c: 71:2d:02:3b:be:c8:0a:07:b3:ef:56:ae:16:69:6f:25:f4:08: 0c:c8:1f:95:dc:99:bf:50:db:55:8b:b3:5d:07:e6:79:41:66: 80:ce:9d:f0:11:93:21:f6:69:81:24:6a:9f:71:44:3c:61:52: ab:15:20:36:0f:3b:f3:2e:85:77:82:74:95:58:c0:45:d5:e6: 50:fe:5e:49:9a:74:0a:12:bb:41:45:ec:e5:5b:c9:70:42:42: a5:1a:23:74:ba:0e:a8:7a:89:b0:52:2f:9f:81:0d:e0:62:14: a7:65:c4:a3:37:0b:2b:49:51:7b:43:8f:06:05:cc:4e:52:3b: 85:9b:2c:e7:d2:73:96:5b:7d:f2:9c:e5:be:06:53:14:90:4d: e6:07:ef:ce:59:06:55:2b:82:c2:d1:93:77:86:af:e5:41:31: 9b:a8:b6:f5:8c:7a:21:5e:f5:55:2f:e4:5b:68:ed:0e:82:9e: 85:55:d2:69 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUXuvX+KWzaryb3u8pk64GhFa4I4MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMjAzMzMzNFoX DTI2MTExMTAzMzgzNFowMzExMC8GA1UEAxMoRDg1MDlBM0M0NjY4RENFNUM2RjEy MTEyQjRDMEQ2OUFDNzMxQkRBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbxvFogYAG5UdB8//iR58teR+z60qZ9PYMvwqoizLyL6HPqpQ3PxMZ5jJ2D e5b8v0NtEXbyB6giQoPR3yriEXWNvyA2hQjePKZPwGdYsy1sDUESrXI9BsuTVmT5 yoVrxYO36cHf2ll5eMcpwdcZ1Daxz2Y11ChxImNt9wqKZU0kMV5DZOrdOdiBZGb4 H54hg+4+h3qoyf3tIkCeL4gZImTNFU0NXjFkpu7tHgfGJozwlZD8hFpoctqfaCwn ZbRFzc3MJwr5bskBUQVyZk/lC0HsBlU/EqVSufDbqntllsNX5nvQCjCXPtBcd9Gt hktSmdFg3dFDUR1/TcDd3mMlK8UCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTYUJo8 Rmjc5cbxIRK0wNaaxzG9ozAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk0Ny5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGdYmTANBgkqhkiG9w0BAQsFAAOCAQEAgv+id8+97gDPGDE2+RIH oMd53lC0E5egFcopUff3qwrjV5Ziu4rSv6WtdxsCQeElluTsF9kmGylERYsZBOki Z6G0QycssbtccS0CO77ICgez71auFmlvJfQIDMgfldyZv1DbVYuzXQfmeUFmgM6d 8BGTIfZpgSRqn3FEPGFSqxUgNg878y6Fd4J0lVjARdXmUP5eSZp0ChK7QUXs5VvJ cEJCpRojdLoOqHqJsFIvn4EN4GIUp2XEozcLK0lRe0OPBgXMTlI7hZss59Jzllt9 8pzlvgZTFJBN5gfvzlkGVSuCwtGTd4av5UExm6i29Yx6IV71VS/kW2jtDoKehVXS aQ== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:40 2025 by rpki-client