This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa File: AS150259.roa (raw, json) Hash identifier: 2N6VXdD8XOYwej6etu/nYpGbnLXPRFfamWTHabVTuys= Subject key identifier: A5:91:6C:9C:B1:5F:0B:8E:FC:43:56:7A:F1:86:7C:61:45:4D:10:85 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 56572F71130B455673BDD6C049E45D0126B79887 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa Signing time: Wed 12 Nov 2025 08:00:00 +0000 ROA not before: Wed 12 Nov 2025 07:55:00 +0000 ROA not after: Wed 11 Nov 2026 08:00:00 +0000 asID: 150259 IP address blocks: 103.127.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:57:2f:71:13:0b:45:56:73:bd:d6:c0:49:e4:5d:01:26:b7:98:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 12 07:55:00 2025 GMT Not After : Nov 11 08:00:00 2026 GMT Subject: CN=A5916C9CB15F0B8EFC43567AF1867C61454D1085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e6:07:68:b1:29:ab:08:66:b4:30:ce:96:da: e6:09:f1:8d:d5:20:57:5c:26:b6:8d:72:eb:f0:01: 02:36:69:80:24:03:8f:89:25:35:c6:3b:8d:9b:fe: 1c:a3:8f:5d:e9:57:27:3c:3a:21:f0:11:21:17:71: 79:21:db:1b:87:ba:f4:28:a5:82:b7:00:21:79:0a: 81:c1:6b:99:ad:1c:ab:99:0c:b0:28:d3:ea:3e:6c: 03:c2:3e:75:8b:50:c5:8a:48:8c:9d:c6:bd:e9:e5: 92:3f:e8:72:55:79:9a:ac:d9:44:8f:4d:b3:03:67: 2d:7c:eb:7e:52:b9:8f:52:c5:98:3a:da:49:11:fd: 82:02:cb:73:4a:11:14:51:a6:23:67:a2:60:29:8d: f7:fd:79:02:b3:92:fa:51:38:02:2f:48:1c:b7:58: 5f:7d:6f:ec:81:09:92:2d:60:67:ce:54:94:02:3b: c6:96:b4:7c:b5:17:15:63:bb:a5:d0:93:05:8b:a2: 87:71:38:c6:8a:99:13:62:89:6b:d5:50:b5:ca:1c: 04:ee:30:bd:9d:f9:a1:b2:b2:1e:a9:d2:3d:e6:35: 77:9f:92:dd:0c:f2:d1:6f:82:8c:cd:f5:a5:4b:b9: 93:37:f5:18:9a:6d:77:9b:87:0b:e1:bd:42:22:54: 40:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:91:6C:9C:B1:5F:0B:8E:FC:43:56:7A:F1:86:7C:61:45:4D:10:85 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150259.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.220.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:84:cf:7b:eb:7f:44:93:42:b4:21:1f:86:c2:c3:31:5c:47: dc:e9:b7:3c:04:0d:d8:39:ff:79:5d:3d:bf:42:88:ff:ce:9a: f2:05:00:a0:90:88:ed:33:0c:4b:1a:3d:df:2f:11:84:e4:7b: f9:23:29:79:f9:a6:6b:a9:56:4b:05:fc:a0:93:55:c0:f0:52: 8c:69:4d:ca:7e:6f:32:b1:e4:62:63:8b:d9:af:04:5e:4e:9c: 25:f9:ab:93:58:08:fe:47:e8:b6:a6:a3:f5:79:40:9b:dd:94: 36:b9:fb:15:84:be:e2:70:25:f2:9a:c1:41:a2:ec:3a:dc:33: 68:90:71:ab:e7:9a:43:0e:30:55:e3:3c:5f:1f:0c:e7:6c:eb: ab:b6:94:91:65:cb:02:f8:c3:29:ac:35:d4:47:50:20:54:70: dd:c1:8f:0a:0f:41:a8:b2:e7:50:6f:1c:98:57:19:39:a1:b2: ed:5f:dc:58:a5:d9:ab:b4:56:0a:46:b4:47:4a:c9:bf:09:cd: 4e:b4:22:97:8c:da:65:a6:90:d9:05:8c:ac:cb:5c:1a:47:34: 98:a9:e2:b1:54:e8:25:75:24:0a:ed:54:de:7f:6e:fc:14:29: 9c:39:06:3f:6f:f8:52:40:9a:a2:dd:90:64:ab:45:20:92:80: 00:67:af:9e -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUVlcvcRMLRVZzvdbASeRdASa3mIcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMjA3NTUwMFoX DTI2MTExMTA4MDAwMFowMzExMC8GA1UEAxMoQTU5MTZDOUNCMTVGMEI4RUZDNDM1 NjdBRjE4NjdDNjE0NTREMTA4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKbmB2ixKasIZrQwzpba5gnxjdUgV1wmto1y6/ABAjZpgCQDj4klNcY7jZv+ HKOPXelXJzw6IfARIRdxeSHbG4e69CilgrcAIXkKgcFrma0cq5kMsCjT6j5sA8I+ dYtQxYpIjJ3Gvenlkj/oclV5mqzZRI9NswNnLXzrflK5j1LFmDraSRH9ggLLc0oR FFGmI2eiYCmN9/15ArOS+lE4Ai9IHLdYX31v7IEJki1gZ85UlAI7xpa0fLUXFWO7 pdCTBYuih3E4xoqZE2KJa9VQtcocBO4wvZ35obKyHqnSPeY1d5+S3Qzy0W+CjM31 pUu5kzf1GJptd5uHC+G9QiJUQG8CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSlkWyc sV8LjvxDVnrxhnxhRU0QhTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI1OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd/3DANBgkqhkiG9w0BAQsFAAOCAQEACoTPe+t/RJNCtCEfhsLD MVxH3Om3PAQN2Dn/eV09v0KI/86a8gUAoJCI7TMMSxo93y8RhOR7+SMpefmma6lW SwX8oJNVwPBSjGlNyn5vMrHkYmOL2a8EXk6cJfmrk1gI/kfotqaj9XlAm92UNrn7 FYS+4nAl8prBQaLsOtwzaJBxq+eaQw4wVeM8Xx8M52zrq7aUkWXLAvjDKaw11EdQ IFRw3cGPCg9BqLLnUG8cmFcZOaGy7V/cWKXZq7RWCka0R0rJvwnNTrQil4zaZaaQ 2QWMrMtcGkc0mKnisVToJXUkCu1U3n9u/BQpnDkGP2/4UkCaot2QZKtFIJKAAGev ng== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:02 2025 by rpki-client