This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa File: AS150990.roa (raw, json) Hash identifier: 8acehl/x+kZoQW/zHJiBZrEzwJEXqiBRaR0IGfJwCss= Subject key identifier: 83:48:3C:44:B8:17:F4:82:D6:D7:90:A4:7E:1C:1F:8B:60:4F:BB:11 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14FC01832F470AB387A85BA2B6F5CE81800D1C7C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa Signing time: Wed 14 Jan 2026 05:00:00 +0000 ROA not before: Wed 14 Jan 2026 04:55:00 +0000 ROA not after: Wed 13 Jan 2027 05:00:00 +0000 asID: 150990 IP address blocks: 103.196.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fc:01:83:2f:47:0a:b3:87:a8:5b:a2:b6:f5:ce:81:80:0d:1c:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 14 04:55:00 2026 GMT Not After : Jan 13 05:00:00 2027 GMT Subject: CN=83483C44B817F482D6D790A47E1C1F8B604FBB11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:e0:f2:0d:50:80:98:a6:09:0e:a0:92:4f: 86:86:e4:b5:5e:77:a3:f6:1a:27:91:82:47:43:0a: d0:fa:38:ae:fb:a4:99:d4:47:44:83:3b:78:ca:01: ee:ff:94:4c:dc:eb:66:78:03:c3:4e:e5:b4:7d:40: d2:75:34:dd:52:94:8b:41:4c:00:64:14:ce:f3:2d: 5a:c7:bb:71:ec:da:bf:29:0e:d2:f3:ed:8d:ec:27: 81:5c:a0:3c:8b:32:a7:c5:7e:b1:b8:5f:c5:6c:e7: f7:a3:ec:11:19:7d:47:07:82:b9:d0:40:24:27:21: 11:1d:59:5c:80:96:65:f9:e4:54:75:bf:5f:f4:cb: 4f:e1:63:52:67:50:05:b1:47:e1:46:3c:ba:04:88: 3e:3f:da:e0:d4:d6:0b:98:41:ae:28:c0:d9:b2:39: 23:f2:e8:5d:b0:69:a8:45:79:e2:41:c2:6d:6f:b1: 04:d5:7e:f9:37:5a:d0:46:0b:08:e9:df:39:38:4a: 76:13:61:cb:9b:6a:d6:df:a4:b1:29:1e:79:db:86: 25:9b:4b:bf:13:2a:80:cc:03:43:96:74:4c:6f:90: de:ad:35:48:e0:47:0e:4e:a1:f7:50:75:ab:70:bb: 0f:fe:e9:90:c1:fa:0a:3c:d0:98:0f:fe:5f:da:a8: fc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:48:3C:44:B8:17:F4:82:D6:D7:90:A4:7E:1C:1F:8B:60:4F:BB:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150990.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.178.0/23 Signature Algorithm: sha256WithRSAEncryption 60:19:f2:32:1d:bf:57:60:08:c7:ca:da:a2:b9:6f:a9:71:c7: 9a:fb:fe:1d:d8:28:7c:19:e3:0e:4b:a7:08:89:73:f2:cf:0b: 28:a0:61:45:e8:2d:fa:85:8f:01:3f:82:ff:56:08:f2:de:cc: 92:35:f3:36:00:54:72:92:32:63:bd:3e:a4:cd:c6:11:73:8f: 17:02:47:cb:c0:1a:1c:d9:4a:b0:63:20:82:15:d4:c7:d4:d3: 26:0b:cb:81:45:16:f6:08:00:f0:27:54:7e:ed:cc:f0:d3:2c: 29:1e:fe:04:03:9f:18:15:74:3b:85:83:b6:cf:49:f2:f1:5e: ea:79:ca:b9:87:d8:a0:fd:a1:fe:50:16:f7:66:d2:cc:a5:6a: f0:4a:f2:9f:68:1b:cf:f6:c1:a6:2f:6c:32:e1:9c:56:af:5b: f5:af:1f:f5:3d:85:e7:3f:0b:f7:89:df:6c:e3:14:e2:fe:f6: c5:84:32:b6:bf:ba:e5:5e:cd:56:0b:a5:55:04:c9:6b:dd:39: 8e:44:fe:79:54:26:fb:a4:1e:6a:2d:55:4d:7e:d4:32:ba:9c: 92:18:f8:21:dc:3f:f0:08:fc:96:eb:26:1c:66:87:a8:c7:58: f9:a1:1f:ec:8e:24:27:85:df:2c:fd:92:a8:0d:d1:c4:74:76: d5:97:84:ff -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUFPwBgy9HCrOHqFuitvXOgYANHHwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExNDA0NTUwMFoX DTI3MDExMzA1MDAwMFowMzExMC8GA1UEAxMoODM0ODNDNDRCODE3RjQ4MkQ2RDc5 MEE0N0UxQzFGOEI2MDRGQkIxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBE4PINUICYpgkOoJJPhobktV53o/YaJ5GCR0MK0Po4rvukmdRHRIM7eMoB 7v+UTNzrZngDw07ltH1A0nU03VKUi0FMAGQUzvMtWse7cezavykO0vPtjewngVyg PIsyp8V+sbhfxWzn96PsERl9RweCudBAJCchER1ZXICWZfnkVHW/X/TLT+FjUmdQ BbFH4UY8ugSIPj/a4NTWC5hBrijA2bI5I/LoXbBpqEV54kHCbW+xBNV++Tda0EYL COnfOThKdhNhy5tq1t+ksSkeeduGJZtLvxMqgMwDQ5Z0TG+Q3q01SOBHDk6h91B1 q3C7D/7pkMH6CjzQmA/+X9qo/AkCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBSDSDxE uBf0gtbXkKR+HB+LYE+7ETAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfEsjANBgkqhkiG9w0BAQsFAAOCAQEAYBnyMh2/V2AIx8raorlv qXHHmvv+HdgofBnjDkunCIlz8s8LKKBhRegt+oWPAT+C/1YI8t7MkjXzNgBUcpIy Y70+pM3GEXOPFwJHy8AaHNlKsGMgghXUx9TTJgvLgUUW9ggA8CdUfu3M8NMsKR7+ BAOfGBV0O4WDts9J8vFe6nnKuYfYoP2h/lAW92bSzKVq8Eryn2gbz/bBpi9sMuGc Vq9b9a8f9T2F5z8L94nfbOMU4v72xYQytr+65V7NVgulVQTJa905jkT+eVQm+6Qe ai1VTX7UMrqckhj4Idw/8Aj8lusmHGaHqMdY+aEf7I4kJ4XfLP2SqA3RxHR21ZeE /w== -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:29 2026 by rpki-client