This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150279.roa File: AS150279.roa (raw, json) Hash identifier: T+BAxPJRdnbNnDWXFK/JZ36IEq61vGuGYgLb97/OE2I= Subject key identifier: C0:84:43:1A:D2:80:9C:8F:5F:8A:2F:C7:82:34:21:59:47:16:36:9B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 17A3C5A54B090B8AF5A0349D2B7885558AE44BBF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150279.roa Signing time: Mon 24 Nov 2025 08:00:00 +0000 ROA not before: Mon 24 Nov 2025 07:55:00 +0000 ROA not after: Mon 23 Nov 2026 08:00:00 +0000 asID: 150279 IP address blocks: 2001:df1:fcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:a3:c5:a5:4b:09:0b:8a:f5:a0:34:9d:2b:78:85:55:8a:e4:4b:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 24 07:55:00 2025 GMT Not After : Nov 23 08:00:00 2026 GMT Subject: CN=C084431AD2809C8F5F8A2FC7823421594716369B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:27:00:8e:56:eb:02:94:d4:14:af:b8:9b: 8e:66:e3:05:1a:ca:38:bb:d9:f8:1e:d2:1c:71:97: 2f:8a:ad:52:45:80:9e:8b:b8:5d:85:82:e6:cc:e7: 52:ba:97:ea:9e:b1:4a:8c:c8:a7:92:ce:ae:0a:f9: 3a:72:94:66:f2:02:fc:be:d1:66:90:35:80:10:ec: 2b:45:4a:c7:5e:99:65:ca:8c:9c:36:4e:b7:9f:7b: d1:f1:a1:0d:5e:c7:bd:45:ea:8d:69:40:0a:d1:73: 53:3f:0d:b6:2c:f3:f5:f0:5a:9a:05:94:ee:b4:11: ce:e5:3b:0d:de:08:f6:3c:5c:90:42:3e:22:e8:6e: 0f:8d:73:ab:74:15:b7:92:c5:11:a2:63:ae:9f:3c: 8a:63:7b:49:1c:38:8f:a3:40:81:ad:1f:b2:73:b7: 23:ac:1a:49:59:d1:ef:af:c5:8d:3d:9b:5e:91:3a: 34:c9:8c:68:6d:bf:92:10:27:a3:59:e3:13:ea:07: 98:5a:24:80:ff:83:5b:bd:04:d8:e1:eb:12:14:f8: 49:2a:a7:c8:f8:f5:ca:a6:75:a0:84:a0:30:51:7e: 6c:6d:17:3e:da:1e:c6:bb:16:cc:c3:91:f4:4f:0d: ea:4d:47:c2:8f:a9:5d:59:ce:fe:51:2e:8b:bb:8b: 43:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:84:43:1A:D2:80:9C:8F:5F:8A:2F:C7:82:34:21:59:47:16:36:9B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150279.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:fcc0::/48 Signature Algorithm: sha256WithRSAEncryption 50:60:9a:c6:b4:d6:f1:6c:46:8c:46:73:a3:50:07:4a:47:d6: 90:54:8f:60:97:27:46:18:a2:0e:87:96:d1:e6:83:11:52:c2: 00:ab:a8:f1:0c:eb:80:db:ee:77:d8:79:1f:ca:09:84:a8:00: 91:67:74:19:77:6a:13:b5:c3:17:97:f0:26:6d:c1:3e:b6:a3: 1a:16:d8:69:b3:1f:b6:71:f6:b0:3e:0a:3b:d6:aa:b4:23:02: 45:58:49:14:3b:cb:b7:a6:d4:e0:86:65:73:52:8c:3d:21:ea: 0d:0b:62:3c:15:cb:58:ab:28:32:21:38:3e:5c:c4:29:1c:a5: 04:10:ec:9b:6a:86:bb:69:92:32:ca:b7:ea:92:97:8a:64:48: 91:3d:fc:65:75:5d:0d:21:3b:f8:05:e8:b5:58:c6:a2:bc:76: 89:5a:65:ae:3b:79:02:11:55:f4:04:9f:ba:65:aa:35:af:64: 01:74:1b:43:8a:02:52:57:89:6f:90:f4:4f:b4:b6:4a:7e:8b: 46:8d:de:4c:b3:ec:ec:48:c4:77:2f:85:60:a1:91:2b:a6:f0: 33:1a:39:fb:e6:c4:9a:1a:4a:86:a9:2c:10:3f:36:c4:97:ce: 5b:66:27:74:ac:35:1f:5c:cb:10:53:14:c9:e2:79:4b:03:bb: 80:c4:fe:22 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUF6PFpUsJC4r1oDSdK3iFVYrkS78wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNDA3NTUwMFoX DTI2MTEyMzA4MDAwMFowMzExMC8GA1UEAxMoQzA4NDQzMUFEMjgwOUM4RjVGOEEy RkM3ODIzNDIxNTk0NzE2MzY5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVhJwCOVusClNQUr7ibjmbjBRrKOLvZ+B7SHHGXL4qtUkWAnou4XYWC5szn UrqX6p6xSozIp5LOrgr5OnKUZvIC/L7RZpA1gBDsK0VKx16ZZcqMnDZOt5970fGh DV7HvUXqjWlACtFzUz8Ntizz9fBamgWU7rQRzuU7Dd4I9jxckEI+IuhuD41zq3QV t5LFEaJjrp88imN7SRw4j6NAga0fsnO3I6waSVnR76/FjT2bXpE6NMmMaG2/khAn o1njE+oHmFokgP+DW70E2OHrEhT4SSqnyPj1yqZ1oISgMFF+bG0XPtoexrsWzMOR 9E8N6k1Hwo+pXVnO/lEui7uLQwUCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTAhEMa 0oCcj1+KL8eCNCFZRxY2mzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDI3OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfH8wDANBgkqhkiG9w0BAQsFAAOCAQEAUGCaxrTW8WxGjEZz o1AHSkfWkFSPYJcnRhiiDoeW0eaDEVLCAKuo8QzrgNvud9h5H8oJhKgAkWd0GXdq E7XDF5fwJm3BPrajGhbYabMftnH2sD4KO9aqtCMCRVhJFDvLt6bU4IZlc1KMPSHq DQtiPBXLWKsoMiE4PlzEKRylBBDsm2qGu2mSMsq36pKXimRIkT38ZXVdDSE7+AXo tVjGorx2iVplrjt5AhFV9ASfumWqNa9kAXQbQ4oCUleJb5D0T7S2Sn6LRo3eTLPs 7EjEdy+FYKGRK6bwMxo5++bEmhpKhqksED82xJfOW2YndKw1H1zLEFMUyeJ5SwO7 gMT+Ig== -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:11 2025 by rpki-client