This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa File: AS150263.roa (raw, json) Hash identifier: QQqfaLBP4no4KoVXdylmyOUVEthkETfYEiMFc++9B5U= Subject key identifier: 61:21:0E:B6:66:7B:8D:EF:59:82:DD:2E:79:66:8E:AC:39:8A:B7:5B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B34B8A775B19633966FB9DBCF1997E92A756EEF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa Signing time: Fri 14 Nov 2025 07:00:00 +0000 ROA not before: Fri 14 Nov 2025 06:55:00 +0000 ROA not after: Fri 13 Nov 2026 07:00:00 +0000 asID: 150263 IP address blocks: 2001:df1:d940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:34:b8:a7:75:b1:96:33:96:6f:b9:db:cf:19:97:e9:2a:75:6e:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 06:55:00 2025 GMT Not After : Nov 13 07:00:00 2026 GMT Subject: CN=61210EB6667B8DEF5982DD2E79668EAC398AB75B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:38:61:18:f2:4e:0d:66:78:13:7d:32:ad:e3: 69:47:6b:fe:d5:dc:00:c4:3b:a5:a1:9d:07:40:a9: 60:26:46:0e:df:10:bf:b2:1f:17:c1:b3:37:7c:17: 0d:db:3b:5b:0d:36:fc:9a:e2:b1:52:3a:f0:18:8a: e9:f9:af:99:53:53:7c:34:b1:50:0c:cf:52:3c:9c: 66:7e:91:dd:d2:f3:58:e9:10:db:c4:9f:61:1b:56: 5b:c8:e4:a5:c2:a1:68:f2:14:94:91:94:a3:c2:5c: 37:5e:7b:74:28:74:67:47:00:06:c8:9d:01:81:e4: 03:f2:64:cf:04:ed:2b:ad:ff:2e:1a:46:9f:1e:76: 36:e6:b8:ea:d1:50:52:2e:03:06:f5:2e:69:ba:bc: 1b:cf:c3:31:29:58:cf:20:2f:d8:51:8a:38:82:a5: b0:eb:a8:4f:4a:f5:e0:b5:b4:d0:61:a8:d0:05:91: 3f:ec:4d:14:a2:12:d1:08:b4:08:7e:9c:a2:5b:bf: 89:09:c1:1c:d0:d7:af:3f:11:75:fa:a6:07:9c:0b: 46:bd:26:a5:66:27:6c:51:ee:62:86:01:de:79:a2: 96:9e:c5:c0:bb:8f:86:a7:2a:01:ea:cf:17:6c:8e: 01:88:6d:b0:72:de:e1:0a:84:88:85:cb:da:a0:aa: 5c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:21:0E:B6:66:7B:8D:EF:59:82:DD:2E:79:66:8E:AC:39:8A:B7:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150263.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:d940::/48 Signature Algorithm: sha256WithRSAEncryption 1a:8e:06:88:27:6c:7f:5c:f5:80:c7:3f:25:e0:72:ad:e0:38: 6c:5e:51:9a:0a:1e:f7:fd:ae:32:1b:06:67:eb:03:9f:1d:b7: 35:20:fe:29:60:a9:d8:68:9b:ea:5c:fd:b2:77:0c:30:bd:eb: 84:a9:b5:ec:72:14:3c:47:f8:5b:2e:be:8b:b8:ef:c6:c8:2d: 48:0e:aa:e9:4a:3a:ed:b7:5b:aa:22:26:2c:60:14:e6:7a:5d: 5a:c2:31:d3:fc:3e:19:5c:56:8d:fa:fd:bf:49:3d:ed:a1:fd: c3:56:62:06:00:41:28:14:27:3c:a4:69:8e:be:a4:1d:24:32: ca:a9:65:ef:d2:53:50:6c:4a:63:1d:d3:14:37:f8:de:17:56: 63:3a:1f:27:2b:85:b6:95:84:37:e4:66:ff:e1:c0:b8:7a:a5: fb:cb:44:f5:02:84:e3:6f:dc:fb:bd:0c:0a:46:db:29:cb:cc: 3b:a7:54:c3:98:e1:d9:ef:ba:63:4d:47:27:5e:a8:27:3b:9b: ef:03:c3:72:87:18:de:20:17:df:b5:d7:a3:cc:c9:f0:01:85: 4d:ce:a2:bc:16:1a:96:c1:bc:34:ab:18:e0:2c:b3:36:2f:8f: 55:96:b6:16:7d:5a:50:f3:e7:68:53:f7:02:4c:a0:bf:dc:02: 9b:b5:81:e0 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUSzS4p3WxljOWb7nbzxmX6Sp1bu8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExNDA2NTUwMFoX DTI2MTExMzA3MDAwMFowMzExMC8GA1UEAxMoNjEyMTBFQjY2NjdCOERFRjU5ODJE RDJFNzk2NjhFQUMzOThBQjc1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALc4YRjyTg1meBN9Mq3jaUdr/tXcAMQ7paGdB0CpYCZGDt8Qv7IfF8GzN3wX Dds7Ww02/JrisVI68BiK6fmvmVNTfDSxUAzPUjycZn6R3dLzWOkQ28SfYRtWW8jk pcKhaPIUlJGUo8JcN157dCh0Z0cABsidAYHkA/JkzwTtK63/LhpGnx52Nua46tFQ Ui4DBvUuabq8G8/DMSlYzyAv2FGKOIKlsOuoT0r14LW00GGo0AWRP+xNFKIS0Qi0 CH6colu/iQnBHNDXrz8RdfqmB5wLRr0mpWYnbFHuYoYB3nmilp7FwLuPhqcqAerP F2yOAYhtsHLe4QqEiIXL2qCqXJkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRhIQ62 ZnuN71mC3S55Zo6sOYq3WzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI2My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfHZQDANBgkqhkiG9w0BAQsFAAOCAQEAGo4GiCdsf1z1gMc/ JeByreA4bF5Rmgoe9/2uMhsGZ+sDnx23NSD+KWCp2Gib6lz9sncMML3rhKm17HIU PEf4Wy6+i7jvxsgtSA6q6Uo67bdbqiImLGAU5npdWsIx0/w+GVxWjfr9v0k97aH9 w1ZiBgBBKBQnPKRpjr6kHSQyyqll79JTUGxKYx3TFDf43hdWYzofJyuFtpWEN+Rm /+HAuHql+8tE9QKE42/c+70MCkbbKcvMO6dUw5jh2e+6Y01HJ16oJzub7wPDcocY 3iAX37XXo8zJ8AGFTc6ivBYalsG8NKsY4CyzNi+PVZa2Fn1aUPPnaFP3Akygv9wC m7WB4A== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:36 2025 by rpki-client