This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150268.roa File: AS150268.roa (raw, json) Hash identifier: NbHRYh/TkXG9GY9JQsakGijadGXTo7Jc4WfggOeAMHc= Subject key identifier: 86:87:B4:6C:06:9A:7D:CD:17:07:6B:CE:21:4C:26:A3:60:E2:AD:4A Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7638A6C38202819BAF6DD477675F5B1437084825 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150268.roa Signing time: Thu 29 Jan 2026 03:00:00 +0000 ROA not before: Thu 29 Jan 2026 02:55:00 +0000 ROA not after: Thu 28 Jan 2027 03:00:00 +0000 asID: 150268 IP address blocks: 2001:df1:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:38:a6:c3:82:02:81:9b:af:6d:d4:77:67:5f:5b:14:37:08:48:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 29 02:55:00 2026 GMT Not After : Jan 28 03:00:00 2027 GMT Subject: CN=8687B46C069A7DCD17076BCE214C26A360E2AD4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5f:77:6b:e4:42:8f:76:f7:32:3a:9a:ee:5d: ea:e9:ac:55:25:cd:f2:f2:31:3b:cb:a4:d0:43:4e: ac:af:a6:26:68:d5:b1:df:18:45:0b:05:b6:9b:85: f4:ea:89:fa:8d:0e:2e:93:ba:14:ee:a3:5e:29:7c: 0e:7b:3c:76:3a:53:de:27:97:9a:66:c7:12:a3:74: eb:00:94:12:a9:65:8b:0b:af:59:df:93:fe:61:5a: f8:d0:32:13:67:51:1f:e8:59:36:4f:06:f0:47:7c: e2:82:d4:e9:fb:94:1d:ca:59:e4:29:f3:87:8c:20: cf:e5:2f:a7:a8:9f:da:ce:44:61:49:91:d4:b9:9c: de:7b:14:13:8f:65:6e:e6:6f:f6:d0:5c:dc:41:d2: f5:4e:cf:fc:89:6a:b0:d9:b7:8f:48:c1:56:88:b9: 23:55:30:9d:e1:2e:ff:be:0a:db:e7:64:af:e3:f0: 1d:ee:e5:4b:40:4d:de:e6:59:38:05:e9:46:b3:50: cb:48:fd:bb:d4:9a:f1:95:01:24:7d:11:5d:61:34: a9:17:7d:24:ed:2c:04:0a:02:cb:33:e9:29:6e:48: 7a:67:3a:4b:f8:ca:c4:5c:49:76:b4:72:bd:f8:03: 2a:1b:c2:6e:a8:53:75:9a:c4:71:9d:22:7c:8b:37: 75:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:87:B4:6C:06:9A:7D:CD:17:07:6B:CE:21:4C:26:A3:60:E2:AD:4A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150268.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:7140::/48 Signature Algorithm: sha256WithRSAEncryption 2e:92:f0:03:91:e0:c2:57:2a:d9:27:75:99:76:7e:4b:a1:5a: ce:7a:28:5d:df:03:ac:1b:49:78:c0:08:18:47:a2:a1:db:1e: ab:17:39:40:cc:fc:8f:79:99:76:2a:27:f6:0c:d9:97:c6:6c: 14:9c:57:3c:cc:62:52:b0:b0:b7:3f:fb:83:f0:63:58:a1:4a: 0b:16:00:c6:88:44:fb:cf:74:2f:97:64:65:7e:e9:d0:e2:81: 6c:af:62:fd:94:5a:c5:60:9e:0f:c7:83:31:a4:cc:27:79:03: e0:9f:da:57:d6:1c:dc:51:a2:f5:a6:e7:df:fe:2e:69:96:33: 65:17:0d:d1:5b:cf:8f:14:9b:ef:27:5c:2d:9b:b5:40:46:01: c4:c1:47:8a:5e:78:28:12:79:60:fd:20:ca:e8:e9:2e:db:d0: c6:10:e7:6a:0e:e7:ec:2b:f9:a7:05:31:29:35:14:5c:9c:12: d4:e0:48:90:65:94:54:a5:a2:ac:21:4d:18:e3:42:32:ba:23: 3f:28:5b:91:27:82:2d:55:c3:04:98:c7:6a:fe:73:bc:8a:61: b9:57:0d:65:c7:d4:60:24:6d:de:cf:ba:f4:e0:d0:4f:77:9e: c5:06:8d:12:0f:d0:99:07:f1:e0:1e:c1:2d:17:0e:16:75:7b: 10:92:43:95 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUdjimw4ICgZuvbdR3Z19bFDcISCUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEyOTAyNTUwMFoX DTI3MDEyODAzMDAwMFowMzExMC8GA1UEAxMoODY4N0I0NkMwNjlBN0RDRDE3MDc2 QkNFMjE0QzI2QTM2MEUyQUQ0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtfd2vkQo929zI6mu5d6umsVSXN8vIxO8uk0ENOrK+mJmjVsd8YRQsFtpuF 9OqJ+o0OLpO6FO6jXil8Dns8djpT3ieXmmbHEqN06wCUEqlliwuvWd+T/mFa+NAy E2dRH+hZNk8G8Ed84oLU6fuUHcpZ5Cnzh4wgz+Uvp6if2s5EYUmR1Lmc3nsUE49l buZv9tBc3EHS9U7P/IlqsNm3j0jBVoi5I1UwneEu/74K2+dkr+PwHe7lS0BN3uZZ OAXpRrNQy0j9u9Sa8ZUBJH0RXWE0qRd9JO0sBAoCyzPpKW5Iemc6S/jKxFxJdrRy vfgDKhvCbqhTdZrEcZ0ifIs3dZECAwEAAaOCAdMwggHPMB0GA1UdDgQWBBSGh7Rs Bpp9zRcHa84hTCajYOKtSjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfFxQDANBgkqhkiG9w0BAQsFAAOCAQEALpLwA5Hgwlcq2Sd1 mXZ+S6FaznooXd8DrBtJeMAIGEeiodseqxc5QMz8j3mZdion9gzZl8ZsFJxXPMxi UrCwtz/7g/BjWKFKCxYAxohE+890L5dkZX7p0OKBbK9i/ZRaxWCeD8eDMaTMJ3kD 4J/aV9Yc3FGi9abn3/4uaZYzZRcN0VvPjxSb7ydcLZu1QEYBxMFHil54KBJ5YP0g yujpLtvQxhDnag7n7Cv5pwUxKTUUXJwS1OBIkGWUVKWirCFNGONCMrojPyhbkSeC LVXDBJjHav5zvIphuVcNZcfUYCRt3s+69ODQT3eexQaNEg/QmQfx4B7BLRcOFnV7 EJJDlQ== -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:33 2026 by rpki-client