This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150553.roa File: AS150553.roa (raw, json) Hash identifier: 8RGH7b2GhQQbwus9Ecrl+rtsA5DUhV5/8RDnGl1YuB0= Subject key identifier: E2:77:EF:28:18:F0:17:A3:68:06:F1:7C:E8:97:A3:FA:48:89:57:27 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3F8C898FFF3359B5EAC4F66FA3EC059E15E76E43 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150553.roa Signing time: Thu 27 Nov 2025 03:00:00 +0000 ROA not before: Thu 27 Nov 2025 02:55:00 +0000 ROA not after: Thu 26 Nov 2026 03:00:00 +0000 asID: 150553 IP address blocks: 103.81.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:8c:89:8f:ff:33:59:b5:ea:c4:f6:6f:a3:ec:05:9e:15:e7:6e:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 27 02:55:00 2025 GMT Not After : Nov 26 03:00:00 2026 GMT Subject: CN=E277EF2818F017A36806F17CE897A3FA48895727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:04:ff:75:c4:b3:c9:35:fc:05:60:f6:f7: d6:10:23:cb:de:25:f3:98:7c:14:cc:77:9f:4f:a0: 1c:55:6f:da:fc:81:f0:5e:b2:e6:b6:b1:dc:37:e8: f6:8d:d7:10:a4:9a:6a:4f:33:11:a5:b9:a9:86:1b: 57:75:27:33:34:2e:7c:03:f4:fa:36:00:67:1e:78: 20:e6:84:9c:83:71:e3:c1:dd:b3:e9:50:4a:ef:da: d6:b8:d0:ce:9c:fe:6f:10:0c:2d:b2:1b:3c:96:ca: 47:02:8f:d0:37:c8:34:2a:70:ab:96:77:82:6a:4b: ea:ff:3b:7c:4b:99:49:94:f3:3d:27:b4:dc:cf:c6: 3c:c1:a3:1f:e3:db:1a:e7:48:9c:e7:34:c9:54:e0: a6:66:3b:7d:35:fb:41:44:25:d0:c9:d2:d7:3b:22: 71:03:a2:3b:6f:07:80:ab:e5:da:53:e6:44:db:67: a6:ee:84:39:92:9a:87:35:3c:89:35:0a:c5:ad:e5: 95:fe:b9:0e:8c:3c:e2:6c:49:3d:56:ee:cd:f2:c4: 7a:e8:37:ef:50:51:98:6f:8b:23:f8:c5:7f:ec:be: 4b:cb:a5:22:a3:a4:c3:c6:78:c6:85:00:2e:04:bd: 7a:cc:ff:d5:09:99:2a:d0:75:6e:66:8e:5b:22:d1: 7d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:77:EF:28:18:F0:17:A3:68:06:F1:7C:E8:97:A3:FA:48:89:57:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150553.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.254.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:d9:a8:e8:38:d6:52:ae:49:23:bf:9f:99:ec:57:b0:d6:7b: f0:49:da:7e:d9:b0:b8:3a:4b:70:34:c1:b4:b4:3c:9e:fd:ec: 93:63:c7:5a:a7:36:40:94:f5:09:15:e6:43:3f:ae:3a:1d:dd: fe:3b:6a:81:df:74:d5:7d:0d:e3:fc:e9:0f:d2:cf:c1:dc:9d: 06:ba:f6:81:d8:40:10:0f:00:3e:6d:ee:a2:24:5f:24:a9:8c: 1e:1e:cb:36:fe:74:08:72:43:7d:0c:68:df:bc:35:fa:90:a3: 37:51:b5:d9:a4:eb:35:36:1e:f2:2f:65:dc:5c:61:6d:50:62: fb:c6:1c:3a:24:2c:33:97:13:a3:f7:76:c3:e9:40:04:91:de: 53:b6:6f:1d:2a:13:57:f2:fd:d8:1f:71:60:fa:50:d8:5d:7e: 75:a7:c9:9b:47:55:4b:cb:fb:d4:85:c5:09:59:af:fc:ba:89: b7:c6:01:f1:a0:2c:a7:a8:5d:19:db:8b:0b:b1:ea:26:a5:c8: 9e:62:95:7b:b6:da:fa:cd:02:a4:41:07:32:87:f4:50:ea:e6: e9:13:17:7e:57:e1:43:ee:04:1d:1f:ac:a4:a6:46:90:43:5b: 08:8c:14:d0:bc:a4:5b:6e:1c:f2:b6:64:4d:c9:ca:f9:e8:d0: 78:5c:a2:f2 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUP4yJj/8zWbXqxPZvo+wFnhXnbkMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEyNzAyNTUwMFoX DTI2MTEyNjAzMDAwMFowMzExMC8GA1UEAxMoRTI3N0VGMjgxOEYwMTdBMzY4MDZG MTdDRTg5N0EzRkE0ODg5NTcyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMlNBP91xLPJNfwFYPb31hAjy94l85h8FMx3n0+gHFVv2vyB8F6y5rax3Dfo 9o3XEKSaak8zEaW5qYYbV3UnMzQufAP0+jYAZx54IOaEnINx48Hds+lQSu/a1rjQ zpz+bxAMLbIbPJbKRwKP0DfINCpwq5Z3gmpL6v87fEuZSZTzPSe03M/GPMGjH+Pb GudInOc0yVTgpmY7fTX7QUQl0MnS1zsicQOiO28HgKvl2lPmRNtnpu6EOZKahzU8 iTUKxa3llf65Dow84mxJPVbuzfLEeug371BRmG+LI/jFf+y+S8ulIqOkw8Z4xoUA LgS9esz/1QmZKtB1bmaOWyLRfSMCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTid+8o GPAXo2gG8Xzol6P6SIlXJzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDU1My5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWdR/jANBgkqhkiG9w0BAQsFAAOCAQEADNmo6DjWUq5JI7+fmexX sNZ78EnaftmwuDpLcDTBtLQ8nv3sk2PHWqc2QJT1CRXmQz+uOh3d/jtqgd901X0N 4/zpD9LPwdydBrr2gdhAEA8APm3uoiRfJKmMHh7LNv50CHJDfQxo37w1+pCjN1G1 2aTrNTYe8i9l3FxhbVBi+8YcOiQsM5cTo/d2w+lABJHeU7ZvHSoTV/L92B9xYPpQ 2F1+dafJm0dVS8v71IXFCVmv/LqJt8YB8aAsp6hdGduLC7HqJqXInmKVe7ba+s0C pEEHMof0UOrm6RMXflfhQ+4EHR+spKZGkENbCIwU0LykW24c8rZkTcnK+ejQeFyi 8g== -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:29 2025 by rpki-client