This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa File: AS149675.roa (raw, json) Hash identifier: 6Qw6JF6fyCTNZ2kYlKCez9Y91mFWE42yFgHx7z1CACM= Subject key identifier: 09:7B:0A:84:69:30:95:F2:E8:68:63:EE:A5:3F:53:DB:82:AB:2E:73 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B6017B7787CE1445D2FA96551C8E1C7062E311A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa Signing time: Mon 05 Jan 2026 04:02:36 +0000 ROA not before: Mon 05 Jan 2026 03:57:36 +0000 ROA not after: Mon 04 Jan 2027 04:02:36 +0000 asID: 149675 IP address blocks: 2001:df2:5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:60:17:b7:78:7c:e1:44:5d:2f:a9:65:51:c8:e1:c7:06:2e:31:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 5 03:57:36 2026 GMT Not After : Jan 4 04:02:36 2027 GMT Subject: CN=097B0A84693095F2E86863EEA53F53DB82AB2E73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:66:fa:85:f6:d1:24:53:bb:8b:49:66:c0:40: 14:9d:27:27:a1:3a:66:e9:6d:0f:74:67:61:48:40: 74:dc:c6:dc:25:0b:34:47:b9:2b:31:55:57:99:96: b5:5d:fa:f8:05:44:65:04:0c:4c:ef:b8:27:e9:09: af:10:4d:d3:9e:0f:d5:b4:04:9d:30:21:81:db:97: 89:49:53:9b:81:d6:01:d7:55:5a:dd:54:9e:92:73: cd:5d:d5:99:e8:84:71:55:45:1b:fe:2b:55:84:79: f3:de:c9:99:f1:ec:37:84:c6:41:a0:c0:0a:0e:d5: cc:ea:ac:e5:aa:78:f1:a9:5b:06:59:2e:f2:3b:95: e7:f9:5c:8b:6b:b1:4c:09:29:f8:8f:ac:f7:a5:ad: 52:f4:5e:22:21:33:85:75:1c:93:ba:11:99:27:5f: a2:01:28:d2:a9:1b:63:3b:4f:c2:16:1e:de:36:ef: 76:32:a4:f1:45:ff:e2:61:ef:02:9e:d6:c5:96:00: 9d:00:35:9b:5d:4f:23:b1:81:27:5c:1b:1b:5f:dc: a6:67:5c:18:82:82:68:1d:ea:88:e4:08:92:35:00: 95:af:ec:60:5b:3e:53:61:e1:ce:12:a9:6d:f9:2a: b0:b9:5b:89:8c:2f:90:03:2f:93:a9:22:e3:e9:00: 00:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:7B:0A:84:69:30:95:F2:E8:68:63:EE:A5:3F:53:DB:82:AB:2E:73 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149675.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:5c0::/48 Signature Algorithm: sha256WithRSAEncryption 7d:09:de:b6:3a:a1:0d:b6:45:20:6b:02:5a:8e:cf:44:52:41: 53:af:41:a3:86:da:7c:16:26:73:1e:1d:fb:7b:5b:55:45:b0: d8:28:4f:b8:19:70:7f:34:88:78:1d:0f:8b:ac:26:98:5e:55: 4c:1d:0f:af:47:27:b7:70:b4:34:ff:ac:39:5c:4e:f1:61:c5: d9:13:c7:0d:2c:1d:cc:9d:eb:8a:8a:b9:e5:3f:b1:37:e8:2c: fa:48:af:77:2c:2a:d4:32:da:78:89:47:2f:93:9d:14:fe:7b: 93:72:ca:4c:f6:3e:fe:52:b3:9c:db:4d:9d:12:0e:ba:da:3e: 23:da:61:61:90:26:a5:ce:11:ce:a2:da:5d:b5:b8:8d:23:5a: 57:28:b0:44:2a:da:34:bc:22:32:35:f7:17:5a:9f:ea:f0:79: a7:cc:01:b5:cc:79:08:1e:0b:ed:76:2e:f8:61:af:4a:9d:5f: 99:68:36:71:6f:1c:7e:19:40:16:b6:db:a8:2d:e2:3d:a6:38: fd:dc:48:ef:ac:a2:0b:37:6b:da:69:c5:3f:34:a7:57:26:9d: 3a:5e:29:e6:98:de:ba:23:75:bf:7b:ce:a0:a3:96:09:69:41: c9:35:66:36:4d:50:1d:3f:cc:e0:87:23:d1:dd:a2:49:fd:a5: 99:59:aa:77 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUe2AXt3h84URdL6llUcjhxwYuMRowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDEwNTAzNTczNloX DTI3MDEwNDA0MDIzNlowMzExMC8GA1UEAxMoMDk3QjBBODQ2OTMwOTVGMkU4Njg2 M0VFQTUzRjUzREI4MkFCMkU3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhm+oX20SRTu4tJZsBAFJ0nJ6E6ZultD3RnYUhAdNzG3CULNEe5KzFVV5mW tV36+AVEZQQMTO+4J+kJrxBN054P1bQEnTAhgduXiUlTm4HWAddVWt1UnpJzzV3V meiEcVVFG/4rVYR5897JmfHsN4TGQaDACg7VzOqs5ap48albBlku8juV5/lci2ux TAkp+I+s96WtUvReIiEzhXUck7oRmSdfogEo0qkbYztPwhYe3jbvdjKk8UX/4mHv Ap7WxZYAnQA1m11PI7GBJ1wbG1/cpmdcGIKCaB3qiOQIkjUAla/sYFs+U2HhzhKp bfkqsLlbiYwvkAMvk6ki4+kAADkCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBQJewqE aTCV8uhoY+6lP1PbgqsuczAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTY3NS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfIFwDANBgkqhkiG9w0BAQsFAAOCAQEAfQnetjqhDbZFIGsC Wo7PRFJBU69Bo4bafBYmcx4d+3tbVUWw2ChPuBlwfzSIeB0Pi6wmmF5VTB0Pr0cn t3C0NP+sOVxO8WHF2RPHDSwdzJ3rioq55T+xN+gs+kivdywq1DLaeIlHL5OdFP57 k3LKTPY+/lKznNtNnRIOuto+I9phYZAmpc4RzqLaXbW4jSNaVyiwRCraNLwiMjX3 F1qf6vB5p8wBtcx5CB4L7XYu+GGvSp1fmWg2cW8cfhlAFrbbqC3iPaY4/dxI76yi Czdr2mnFPzSnVyadOl4p5pjeuiN1v3vOoKOWCWlByTVmNk1QHT/M4Icj0d2iSf2l mVmqdw== -----END CERTIFICATE-----Generated at Sun Jan 25 18:25:06 2026 by rpki-client