This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149974.roa File: AS149974.roa (raw, json) Hash identifier: CpxkmS+6OSeHJ6WeQJPNqgXQrzCZWZjFvmJWfIeaECg= Subject key identifier: 83:33:48:9D:5A:B4:26:A6:88:5D:09:1A:66:18:FB:82:93:F1:18:D8 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0F9393527442FC6F02E1B7A7D4A7227332C028DB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149974.roa Signing time: Wed 22 Oct 2025 10:00:00 +0000 ROA not before: Wed 22 Oct 2025 09:55:00 +0000 ROA not after: Wed 21 Oct 2026 10:00:00 +0000 asID: 149974 IP address blocks: 103.18.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:93:93:52:74:42:fc:6f:02:e1:b7:a7:d4:a7:22:73:32:c0:28:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 22 09:55:00 2025 GMT Not After : Oct 21 10:00:00 2026 GMT Subject: CN=8333489D5AB426A6885D091A6618FB8293F118D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:27:a9:84:2c:1b:48:6d:53:96:d0:c6:41:8a: f0:93:a6:a3:a1:ae:1e:51:35:53:d4:be:a4:d7:97: 09:aa:38:5e:fb:a8:9a:a8:08:42:da:ad:56:5c:52: ee:93:ac:39:7b:be:fd:db:ed:0d:55:cc:48:98:e2: b0:9a:96:9e:02:b7:e3:73:ea:f4:68:ec:be:4e:1d: e7:a0:aa:82:d0:9b:4e:08:bf:e1:d0:75:64:49:0d: 79:49:93:03:5e:e2:a4:55:66:06:11:d4:97:6d:d1: 70:4a:c0:d4:8a:0b:a1:93:d3:79:4a:39:69:30:31: c5:ff:dd:50:3c:c1:8e:96:79:b8:a4:48:1e:33:d9: 13:b5:bc:c0:45:26:e9:7a:85:a5:38:db:4c:33:db: 46:c4:d1:9e:a6:7c:c4:64:5e:e6:e9:68:54:3e:a4: 1c:12:df:bb:4e:98:fc:6d:ca:aa:66:79:8e:56:fb: 22:e4:2b:c6:dc:ff:75:c4:c8:54:aa:8c:6b:80:2a: f9:21:7c:49:aa:2e:1d:78:c3:d6:c2:ec:71:0c:12: 82:98:05:2d:21:e5:a4:c8:f0:b6:6b:77:f0:fd:11: 86:9d:de:a9:c8:57:31:a1:c5:e3:70:4e:9e:0a:e6: 82:cd:93:fd:62:0a:e7:25:a7:69:ed:98:54:05:7b: b3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:33:48:9D:5A:B4:26:A6:88:5D:09:1A:66:18:FB:82:93:F1:18:D8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149974.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.188.0/24 Signature Algorithm: sha256WithRSAEncryption 44:6c:72:04:e1:61:6d:45:51:17:df:31:8b:95:8f:4f:29:ce: d4:f6:e2:00:69:5d:ec:c5:f0:92:11:6d:79:29:97:c8:a3:e0: 07:6f:a2:d2:f0:59:28:19:3b:c5:41:76:bd:08:3d:ec:d4:27: b2:c2:e0:1d:98:ae:75:2f:ed:20:c8:3e:73:21:55:9c:26:ee: ad:ce:9a:9a:db:b1:02:e3:2d:70:28:2d:39:93:02:61:2f:c8: 85:1b:fd:66:ff:6e:6d:77:db:ee:95:63:8c:a2:f1:44:f5:7e: c4:08:af:9d:5b:d1:3b:28:44:30:01:2a:9a:93:cd:8d:4e:57: e5:69:2b:25:0e:92:58:d8:7f:6f:b3:74:c2:86:41:70:b8:43: b1:20:21:98:d7:86:1c:3f:de:c5:5f:d3:a6:2f:cd:29:3e:2d: 7e:e8:d9:56:3a:a4:7f:a4:1a:27:1a:9f:6d:82:69:d0:7b:86: 40:69:bb:b5:d5:be:b2:93:84:7a:b2:f2:f1:a8:21:b7:1d:94: 80:1f:6b:90:04:e1:db:e5:13:c3:c8:1d:3c:e0:0d:b3:34:02: 46:0a:1c:a6:a4:0f:09:ce:8f:af:af:01:8c:1b:1c:1f:48:83: c5:6b:84:3f:c5:71:a7:b9:9a:a6:77:f7:92:2a:35:b0:30:fc: bc:30:1f:f1 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUD5OTUnRC/G8C4ben1KciczLAKNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTAyMjA5NTUwMFoX DTI2MTAyMTEwMDAwMFowMzExMC8GA1UEAxMoODMzMzQ4OUQ1QUI0MjZBNjg4NUQw OTFBNjYxOEZCODI5M0YxMThEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYnqYQsG0htU5bQxkGK8JOmo6GuHlE1U9S+pNeXCao4XvuomqgIQtqtVlxS 7pOsOXu+/dvtDVXMSJjisJqWngK343Pq9Gjsvk4d56CqgtCbTgi/4dB1ZEkNeUmT A17ipFVmBhHUl23RcErA1IoLoZPTeUo5aTAxxf/dUDzBjpZ5uKRIHjPZE7W8wEUm 6XqFpTjbTDPbRsTRnqZ8xGRe5uloVD6kHBLfu06Y/G3KqmZ5jlb7IuQrxtz/dcTI VKqMa4Aq+SF8SaouHXjD1sLscQwSgpgFLSHlpMjwtmt38P0Rhp3eqchXMaHF43BO ngrmgs2T/WIK5yWnae2YVAV7s0MCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSDM0id WrQmpohdCRpmGPuCk/EY2DAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTk3NC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGcSvDANBgkqhkiG9w0BAQsFAAOCAQEARGxyBOFhbUVRF98xi5WP TynO1PbiAGld7MXwkhFteSmXyKPgB2+i0vBZKBk7xUF2vQg97NQnssLgHZiudS/t IMg+cyFVnCburc6amtuxAuMtcCgtOZMCYS/IhRv9Zv9ubXfb7pVjjKLxRPV+xAiv nVvROyhEMAEqmpPNjU5X5WkrJQ6SWNh/b7N0woZBcLhDsSAhmNeGHD/exV/Tpi/N KT4tfujZVjqkf6QaJxqfbYJp0HuGQGm7tdW+spOEerLy8aghtx2UgB9rkATh2+UT w8gdPOANszQCRgocpqQPCc6Pr68BjBscH0iDxWuEP8Vxp7mapnf3kio1sDD8vDAf 8Q== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:36 2025 by rpki-client