This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150517.roa File: AS150517.roa (raw, json) Hash identifier: QdNkQeauSH0wcAED26mySsErhlg8ChipbbWUoWjDTMU= Subject key identifier: CA:39:9E:E5:84:0C:2C:E2:E8:22:B5:F9:4F:A0:B3:EF:07:60:5F:6E Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1379A395DA10C94496E42ABAD71CB2379933FE8E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150517.roa Signing time: Thu 20 Nov 2025 04:00:00 +0000 ROA not before: Thu 20 Nov 2025 03:55:00 +0000 ROA not after: Thu 19 Nov 2026 04:00:00 +0000 asID: 150517 IP address blocks: 103.68.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:79:a3:95:da:10:c9:44:96:e4:2a:ba:d7:1c:b2:37:99:33:fe:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 20 03:55:00 2025 GMT Not After : Nov 19 04:00:00 2026 GMT Subject: CN=CA399EE5840C2CE2E822B5F94FA0B3EF07605F6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:45:cd:06:70:de:2d:57:1b:9a:42:f3:b6:a5: 1f:4d:7e:14:a7:ba:dd:e3:22:b4:a1:2e:36:dd:8d: 0b:98:87:3c:ea:bd:c6:fd:4f:07:93:4f:4e:20:34: 32:a3:e6:e9:f9:f3:25:c1:59:b6:7c:86:95:99:20: f0:a4:bb:18:81:7d:c7:7c:57:b0:00:ad:45:ca:38: 1e:2d:ff:41:19:54:68:f5:99:e3:40:f2:ad:5c:fc: aa:33:27:e1:b9:4f:14:93:c8:e8:ef:2d:e9:f9:ab: 6d:c5:5a:03:36:e5:e3:fb:1e:4b:6c:40:ab:de:8e: 7d:9d:f7:c3:6c:5f:e4:48:f1:2b:dc:b8:a4:ee:f4: 2e:23:49:aa:a3:13:05:24:3e:d8:c6:84:f3:3c:43: 46:f6:dd:c7:e7:f3:82:da:14:5a:6d:5d:9c:f9:79: 42:8c:95:8f:cf:29:0d:cc:9e:31:11:a9:5b:1b:69: 44:6e:ff:4f:a2:50:1f:77:ea:76:23:e4:bb:40:3e: 61:cb:84:13:88:4d:b6:bc:22:17:07:3a:f1:ac:f9: 37:25:30:b2:5c:ce:31:7f:a5:d4:65:4f:a6:29:a1: 3c:c4:8b:d3:36:4d:47:5d:9d:36:53:45:ee:53:9b: 3c:d3:d9:01:e6:c1:20:05:3b:38:0e:90:12:4a:b6: b0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:39:9E:E5:84:0C:2C:E2:E8:22:B5:F9:4F:A0:B3:EF:07:60:5F:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.214.0/23 Signature Algorithm: sha256WithRSAEncryption 86:ba:bd:fc:b6:65:9c:b3:3b:44:59:9f:d8:15:e1:d1:c3:e7: 66:82:9f:b7:9e:ba:e5:a8:76:b4:f6:0a:ff:f5:de:18:7d:4e: a1:8e:60:11:62:15:35:3d:65:bb:49:2c:91:ff:1e:19:a5:27: 6d:28:e3:83:1b:48:11:f4:71:50:e0:4e:58:4e:2b:70:d8:fe: ab:76:40:3c:4c:c1:c3:e5:44:63:c4:d8:a1:56:3a:64:e8:3b: ef:90:56:45:46:22:83:70:96:8a:e2:28:b7:b0:4c:8b:6c:1b: 8f:60:cc:25:59:c4:83:58:f6:81:f0:c1:92:ce:82:00:d5:5d: 4b:1f:20:dd:56:18:37:32:2f:b9:2a:98:82:78:dd:70:73:3e: 87:d5:5f:2e:7c:3f:34:30:57:ff:5f:36:c2:d4:9c:9e:2b:ff: 13:5d:4e:03:9d:6f:ab:6a:7a:7c:cb:d5:f7:71:99:b4:f4:e9: 1a:60:7d:4c:da:b5:94:3a:9c:a2:ce:98:df:b1:f1:95:56:a8: 88:62:18:30:89:a9:c9:09:32:fc:6e:2c:bd:50:ea:13:11:0c: 12:e3:ea:38:e3:8c:81:4f:be:3a:e8:45:8d:3b:58:76:d6:4c: fe:ae:ab:e9:79:5d:df:32:67:5d:5c:1a:6f:08:6a:b1:c5:3e: 3b:69:f0:d0 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUE3mjldoQyUSW5Cq61xyyN5kz/o4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyMDAzNTUwMFoX DTI2MTExOTA0MDAwMFowMzExMC8GA1UEAxMoQ0EzOTlFRTU4NDBDMkNFMkU4MjJC NUY5NEZBMEIzRUYwNzYwNUY2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9FzQZw3i1XG5pC87alH01+FKe63eMitKEuNt2NC5iHPOq9xv1PB5NPTiA0 MqPm6fnzJcFZtnyGlZkg8KS7GIF9x3xXsACtRco4Hi3/QRlUaPWZ40DyrVz8qjMn 4blPFJPI6O8t6fmrbcVaAzbl4/seS2xAq96OfZ33w2xf5EjxK9y4pO70LiNJqqMT BSQ+2MaE8zxDRvbdx+fzgtoUWm1dnPl5QoyVj88pDcyeMRGpWxtpRG7/T6JQH3fq diPku0A+YcuEE4hNtrwiFwc68az5NyUwslzOMX+l1GVPpimhPMSL0zZNR12dNlNF 7lObPNPZAebBIAU7OA6QEkq2sPUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTKOZ7l hAws4ugitflPoLPvB2BfbjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDUxNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdE1jANBgkqhkiG9w0BAQsFAAOCAQEAhrq9/LZlnLM7RFmf2BXh 0cPnZoKft5665ah2tPYK//XeGH1OoY5gEWIVNT1lu0kskf8eGaUnbSjjgxtIEfRx UOBOWE4rcNj+q3ZAPEzBw+VEY8TYoVY6ZOg775BWRUYig3CWiuIot7BMi2wbj2DM JVnEg1j2gfDBks6CANVdSx8g3VYYNzIvuSqYgnjdcHM+h9VfLnw/NDBX/182wtSc niv/E11OA51vq2p6fMvV93GZtPTpGmB9TNq1lDqcos6Y37HxlVaoiGIYMImpyQky /G4svVDqExEMEuPqOOOMgU++OuhFjTtYdtZM/q6r6Xld3zJnXVwabwhqscU+O2nw 0A== -----END CERTIFICATE-----Generated at Wed Dec 3 13:14:53 2025 by rpki-client