This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa File: AS150996.roa (raw, json) Hash identifier: 0VaF0lG9VkXKjMty1nmGsm5c26kq+J4b1LRsvfPNkzE= Subject key identifier: 56:43:7E:E1:43:F2:CE:2B:87:BE:29:C1:34:5C:86:94:72:25:AB:AB Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07DD4C340809BDD21A4C3644595DE8F8563063F5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa Signing time: Wed 14 Jan 2026 07:00:00 +0000 ROA not before: Wed 14 Jan 2026 06:55:00 +0000 ROA not after: Wed 13 Jan 2027 07:00:00 +0000 asID: 150996 IP address blocks: 103.210.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:dd:4c:34:08:09:bd:d2:1a:4c:36:44:59:5d:e8:f8:56:30:63:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 14 06:55:00 2026 GMT Not After : Jan 13 07:00:00 2027 GMT Subject: CN=56437EE143F2CE2B87BE29C1345C86947225ABAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f1:43:aa:18:a0:7d:bb:9e:2d:05:64:91:ba: 58:da:b8:f3:be:a4:80:21:d6:5d:47:e0:4c:75:1b: bf:9e:46:4a:e7:16:84:6e:1e:cc:76:bf:6e:53:71: 85:21:d3:36:52:ba:87:d9:11:ba:5b:14:42:69:e6: db:32:e9:1f:61:30:44:2d:4a:98:27:65:e4:15:58: 84:2d:75:21:80:51:7e:4e:89:54:bf:b8:3f:99:4c: a6:5f:7c:fd:36:d7:38:86:4b:45:b1:b1:5c:f4:d2: 61:64:b5:74:f8:bf:cd:ec:9e:6c:59:fe:8c:0d:cf: ca:45:1b:23:39:4d:89:66:ae:6e:80:8c:b7:9d:a1: b3:e0:96:66:92:69:df:3f:6b:9b:dd:66:85:d3:20: 1a:6f:0e:24:06:92:34:3b:5d:52:8a:ea:bd:c7:32: 4b:9c:09:07:f1:31:e6:8e:a7:66:48:88:1c:9d:9e: 00:a0:a2:8e:f7:40:e0:d9:c6:35:f3:93:4d:9b:c8: 20:1b:68:a0:3b:55:38:d0:da:7f:12:4e:4e:15:85: 7c:e8:7d:b0:fc:a3:a7:83:7e:4f:fb:a5:bd:07:61: 46:71:39:35:13:0c:11:86:81:09:fc:c8:fb:a0:29: 06:f8:5b:46:ae:b4:cc:5e:0d:cd:ad:4c:40:88:ce: 5a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:43:7E:E1:43:F2:CE:2B:87:BE:29:C1:34:5C:86:94:72:25:AB:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150996.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.70.0/23 Signature Algorithm: sha256WithRSAEncryption 95:18:66:7c:25:48:0a:0d:67:16:02:a9:df:7b:90:07:a2:a0: 23:36:cb:87:df:98:2f:db:03:91:83:9d:42:d0:23:c6:d6:be: ec:44:96:6b:cd:5f:c5:d5:31:03:a4:c8:99:ee:88:cf:5b:a0: 5e:bb:70:32:be:9b:5e:a5:08:47:ac:4f:f5:58:19:3e:b7:c4: e4:5d:f6:32:36:69:1e:f7:b6:93:14:e9:da:4c:11:89:54:fa: 60:61:19:33:6f:41:c5:24:4c:01:91:cd:c0:a2:0e:0f:5a:5c: 88:1c:92:a6:ab:90:31:95:8e:32:cf:fd:a4:a1:9e:35:81:d0: ba:2b:0b:61:81:be:4f:fb:bd:3a:db:77:fe:88:48:7c:63:c1: fc:3f:d7:be:ef:f9:3f:fb:7d:e2:84:28:9e:00:11:6d:d0:ac: 08:15:cd:bf:d3:e3:28:89:ba:79:81:93:14:12:3c:1d:61:fb: 97:32:b5:15:d0:bb:22:ca:4a:58:2f:5c:db:37:4b:50:5a:10: af:20:e3:a2:87:1a:f5:21:64:bc:48:3c:86:4d:54:f3:0a:02: 95:3d:75:ac:4f:64:a6:d6:ed:01:1a:41:18:53:19:7a:66:27: 04:1e:3e:7d:51:8d:68:ba:88:65:a7:a6:e5:6b:32:02:bd:80: 6b:d5:11:bd -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUB91MNAgJvdIaTDZEWV3o+FYwY/UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExNDA2NTUwMFoX DTI3MDExMzA3MDAwMFowMzExMC8GA1UEAxMoNTY0MzdFRTE0M0YyQ0UyQjg3QkUy OUMxMzQ1Qzg2OTQ3MjI1QUJBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3xQ6oYoH27ni0FZJG6WNq4876kgCHWXUfgTHUbv55GSucWhG4ezHa/blNx hSHTNlK6h9kRulsUQmnm2zLpH2EwRC1KmCdl5BVYhC11IYBRfk6JVL+4P5lMpl98 /TbXOIZLRbGxXPTSYWS1dPi/zeyebFn+jA3PykUbIzlNiWauboCMt52hs+CWZpJp 3z9rm91mhdMgGm8OJAaSNDtdUorqvccyS5wJB/Ex5o6nZkiIHJ2eAKCijvdA4NnG NfOTTZvIIBtooDtVONDafxJOThWFfOh9sPyjp4N+T/ulvQdhRnE5NRMMEYaBCfzI +6ApBvhbRq60zF4Nza1MQIjOWl0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRWQ37h Q/LOK4e+KcE0XIaUciWrqzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDk5Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfSRjANBgkqhkiG9w0BAQsFAAOCAQEAlRhmfCVICg1nFgKp33uQ B6KgIzbLh9+YL9sDkYOdQtAjxta+7ESWa81fxdUxA6TIme6Iz1ugXrtwMr6bXqUI R6xP9VgZPrfE5F32MjZpHve2kxTp2kwRiVT6YGEZM29BxSRMAZHNwKIOD1pciByS pquQMZWOMs/9pKGeNYHQuisLYYG+T/u9Ott3/ohIfGPB/D/Xvu/5P/t94oQongAR bdCsCBXNv9PjKIm6eYGTFBI8HWH7lzK1FdC7IspKWC9c2zdLUFoQryDjooca9SFk vEg8hk1U8woClT11rE9kptbtARpBGFMZemYnBB4+fVGNaLqIZaem5WsyAr2Aa9UR vQ== -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:33 2026 by rpki-client