This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150253.roa File: AS150253.roa (raw, json) Hash identifier: FdJIam68gBl+cJauFVnserujRYbDzPcKU+y7GdoYe1s= Subject key identifier: 3A:89:6A:6A:EA:32:36:83:07:CB:44:6C:1B:20:22:7C:45:02:99:58 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 47F6FC536415FA6D0A9A3B54C81DAEF66E190540 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150253.roa Signing time: Fri 16 Jan 2026 15:00:00 +0000 ROA not before: Fri 16 Jan 2026 14:55:00 +0000 ROA not after: Fri 15 Jan 2027 15:00:00 +0000 asID: 150253 IP address blocks: 103.176.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:f6:fc:53:64:15:fa:6d:0a:9a:3b:54:c8:1d:ae:f6:6e:19:05:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 16 14:55:00 2026 GMT Not After : Jan 15 15:00:00 2027 GMT Subject: CN=3A896A6AEA32368307CB446C1B20227C45029958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:40:ac:8e:29:6b:12:04:ae:92:f1:f8:0f:5e: cb:f8:c2:6a:ef:e6:7f:54:17:b8:62:5e:5f:4f:ce: ab:f4:5e:13:f9:62:6f:41:45:90:79:d7:f7:eb:29: 40:9b:b9:cd:7c:ce:e8:35:4b:42:8c:ec:27:93:9f: 61:77:72:1c:7d:60:fe:10:a5:64:93:71:e8:02:a2: 44:b0:5b:2c:1f:0c:88:34:f8:0c:dd:6c:f0:dc:97: 44:56:5b:1e:1f:dc:4f:19:cc:5c:e0:f6:f2:e0:30: 6e:69:26:70:e9:9c:d6:6c:ab:fb:e9:10:cf:94:6e: f5:ad:35:b4:d2:ef:86:48:20:5e:d7:24:f9:5b:55: 82:f9:ce:80:e4:b2:65:f8:62:4f:a9:49:a9:2d:f1: 5c:5b:86:fc:fa:b9:d7:5b:f4:ce:70:40:ab:eb:7d: 5f:a0:4b:63:dc:99:b2:09:fa:02:4e:bb:d1:85:7b: 30:94:76:eb:22:32:0d:c5:3a:5e:db:09:8c:c6:24: 56:6d:04:82:92:8d:0c:d9:6e:99:0c:99:e2:0a:b0: c9:f7:64:57:e4:d4:b8:11:83:6f:e6:5c:c1:01:2e: 46:7d:3c:80:56:13:71:58:c6:05:23:cd:fa:96:a5: 0e:87:3b:19:81:6b:49:e2:e9:2a:36:02:62:a4:6f: 58:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:89:6A:6A:EA:32:36:83:07:CB:44:6C:1B:20:22:7C:45:02:99:58 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150253.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.106.0/24 Signature Algorithm: sha256WithRSAEncryption 78:5d:b2:d6:bb:71:ff:33:ff:d9:4b:d6:74:25:97:51:30:f8: b2:9c:be:8c:0c:67:c5:e0:4c:61:19:0a:8e:4a:36:d4:8e:49: 79:f2:ec:a7:80:23:f9:d9:91:f0:7a:d0:44:31:83:d9:d0:c0: 66:4e:27:89:01:1d:90:da:04:1b:a6:9a:43:25:54:28:3d:7e: b1:12:91:bd:a3:77:62:8b:91:dc:a7:10:fd:f2:53:45:aa:03: 64:51:dd:54:5c:1b:e6:20:bb:ef:1b:a0:c7:ee:ac:5a:04:8c: 66:41:2a:4c:a5:40:72:25:08:ea:8f:d1:6e:c7:e9:9e:1c:67: 70:a4:bf:02:96:db:15:bc:60:e0:c6:70:56:83:8e:88:d0:84: 0b:93:70:47:9c:6f:11:75:13:7c:89:ca:3f:90:04:e9:70:f8: 53:71:ae:f5:01:f0:95:c0:c8:30:16:e8:78:62:e1:e0:25:1f: de:6d:19:6d:9b:55:01:ce:4c:21:11:9e:ae:59:86:fd:59:8d: 36:29:a2:57:98:a1:3c:e6:fe:b9:e1:6e:51:d7:a4:d9:a4:07: 5f:94:be:63:cc:ac:e2:eb:de:a5:d5:65:fe:89:d7:c3:4e:ea: 72:7c:06:e9:17:6e:e1:cc:92:e4:af:60:d1:9c:43:2f:01:f7: f7:30:12:a2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUR/b8U2QV+m0KmjtUyB2u9m4ZBUAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExNjE0NTUwMFoX DTI3MDExNTE1MDAwMFowMzExMC8GA1UEAxMoM0E4OTZBNkFFQTMyMzY4MzA3Q0I0 NDZDMUIyMDIyN0M0NTAyOTk1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhArI4paxIErpLx+A9ey/jCau/mf1QXuGJeX0/Oq/ReE/lib0FFkHnX9+sp QJu5zXzO6DVLQozsJ5OfYXdyHH1g/hClZJNx6AKiRLBbLB8MiDT4DN1s8NyXRFZb Hh/cTxnMXOD28uAwbmkmcOmc1myr++kQz5Ru9a01tNLvhkggXtck+VtVgvnOgOSy ZfhiT6lJqS3xXFuG/Pq511v0znBAq+t9X6BLY9yZsgn6Ak670YV7MJR26yIyDcU6 XtsJjMYkVm0EgpKNDNlumQyZ4gqwyfdkV+TUuBGDb+ZcwQEuRn08gFYTcVjGBSPN +palDoc7GYFrSeLpKjYCYqRvWK0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQ6iWpq 6jI2gwfLRGwbICJ8RQKZWDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGewajANBgkqhkiG9w0BAQsFAAOCAQEAeF2y1rtx/zP/2UvWdCWX UTD4spy+jAxnxeBMYRkKjko21I5JefLsp4Aj+dmR8HrQRDGD2dDAZk4niQEdkNoE G6aaQyVUKD1+sRKRvaN3YouR3KcQ/fJTRaoDZFHdVFwb5iC77xugx+6sWgSMZkEq TKVAciUI6o/RbsfpnhxncKS/ApbbFbxg4MZwVoOOiNCEC5NwR5xvEXUTfInKP5AE 6XD4U3Gu9QHwlcDIMBboeGLh4CUf3m0ZbZtVAc5MIRGerlmG/VmNNimiV5ihPOb+ ueFuUdek2aQHX5S+Y8ys4uvepdVl/onXw07qcnwG6Rdu4cyS5K9g0ZxDLwH39zAS og== -----END CERTIFICATE-----Generated at Mon Feb 2 08:11:03 2026 by rpki-client