This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149749.roa File: AS149749.roa (raw, json) Hash identifier: bGqL0NLUazC6sUwolkwZcN+bLxGp3tqgkgu/DZ6MBNM= Subject key identifier: CD:66:F1:E2:FD:F7:AE:8D:00:1C:0B:AF:A0:9D:6F:CF:2E:E8:44:A7 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B673E9C9C4986793EDC4A568C29E56375DDCC62 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149749.roa Signing time: Mon 22 Dec 2025 04:00:00 +0000 ROA not before: Mon 22 Dec 2025 03:55:00 +0000 ROA not after: Mon 21 Dec 2026 04:00:00 +0000 asID: 149749 IP address blocks: 2001:df0:d540::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:67:3e:9c:9c:49:86:79:3e:dc:4a:56:8c:29:e5:63:75:dd:cc:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 22 03:55:00 2025 GMT Not After : Dec 21 04:00:00 2026 GMT Subject: CN=CD66F1E2FDF7AE8D001C0BAFA09D6FCF2EE844A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2a:ca:10:6b:d8:90:d6:5f:ae:c7:1e:5e:1b: 86:6d:ed:de:1a:a1:02:f1:de:c1:5c:29:77:a5:70: 90:57:7a:78:77:fb:f9:20:22:1c:a5:60:bf:57:83: ad:7f:91:cc:15:62:db:62:f3:24:4e:97:3c:b3:fc: ea:dc:da:62:b0:aa:90:92:27:54:f2:45:c3:26:a0: bd:a3:3b:c5:ef:f8:7f:5c:b0:dc:0e:63:ec:01:9f: d3:2d:8a:9c:3f:e0:4d:d3:bb:ad:f5:f3:fa:4e:2c: ae:02:e5:58:01:eb:6a:cd:4c:57:e4:e2:fd:ec:0e: 8d:a1:2f:79:90:dd:ef:94:6b:40:66:27:68:3a:79: 47:3f:5e:f9:6f:46:e6:f8:e5:20:16:2e:eb:65:50: b7:65:07:8c:25:e6:fe:4a:06:af:19:7d:25:e2:39: 3f:39:b2:a5:f6:39:09:48:95:5c:e6:a8:0f:0f:e2: 4d:46:c8:e7:b0:22:d7:b1:0e:92:a1:9e:ad:b5:8d: 95:00:95:46:3b:04:77:bf:a6:33:f8:66:07:c7:3f: 42:4e:b8:f1:8e:94:21:4f:1e:69:84:e7:c8:76:ee: 13:e4:10:3f:42:48:1e:6f:c8:3b:9a:8f:b0:a7:86: 6b:f1:46:88:46:4e:eb:e6:4c:6c:e8:55:28:ed:21: bb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:66:F1:E2:FD:F7:AE:8D:00:1C:0B:AF:A0:9D:6F:CF:2E:E8:44:A7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS149749.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:d540::/48 Signature Algorithm: sha256WithRSAEncryption 50:c8:bc:43:82:07:c5:28:c6:c1:30:ec:77:22:d5:51:97:9f: d9:2d:54:d8:ac:b0:38:62:5c:b1:c2:60:5f:85:31:9d:47:a0: 8a:d5:be:22:8a:30:18:97:23:27:45:e7:c6:04:06:54:37:24: c0:06:54:14:bc:9e:1c:02:93:1f:86:f1:f4:98:a3:43:b6:89: 64:61:d8:d3:91:58:2f:74:fb:cb:a1:24:c2:16:06:e6:f6:e5: aa:2f:1f:25:af:15:16:70:3e:07:45:8b:db:63:c2:68:1e:43: af:91:79:5f:8a:22:e7:78:8d:83:4a:70:53:68:56:da:e8:48: e7:58:cc:74:3b:19:6c:2b:24:d7:ad:d0:08:be:7b:80:a9:10: 6c:37:ad:e2:87:c9:35:51:f6:87:73:dd:e5:1d:be:cd:5f:a1: a2:63:fc:fc:9b:48:26:93:5a:d2:11:1a:a8:38:b9:c1:ea:38: b0:2e:6e:61:24:fa:32:ae:ce:a0:d6:bf:bd:c6:09:aa:3d:50: ff:95:6d:55:92:cb:0e:e3:4b:fa:cf:00:24:e2:db:f1:6a:75: 20:31:cf:2c:98:44:bd:25:b3:1c:5f:7e:af:67:45:d6:6e:7b: 51:39:7b:81:9a:60:3e:15:51:59:0c:d0:1b:53:fc:5f:94:7d: 15:45:2b:6a -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUS2c+nJxJhnk+3EpWjCnlY3XdzGIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIyMjAzNTUwMFoX DTI2MTIyMTA0MDAwMFowMzExMC8GA1UEAxMoQ0Q2NkYxRTJGREY3QUU4RDAwMUMw QkFGQTA5RDZGQ0YyRUU4NDRBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAqyhBr2JDWX67HHl4bhm3t3hqhAvHewVwpd6VwkFd6eHf7+SAiHKVgv1eD rX+RzBVi22LzJE6XPLP86tzaYrCqkJInVPJFwyagvaM7xe/4f1yw3A5j7AGf0y2K nD/gTdO7rfXz+k4srgLlWAHras1MV+Ti/ewOjaEveZDd75RrQGYnaDp5Rz9e+W9G 5vjlIBYu62VQt2UHjCXm/koGrxl9JeI5PzmypfY5CUiVXOaoDw/iTUbI57Ai17EO kqGerbWNlQCVRjsEd7+mM/hmB8c/Qk648Y6UIU8eaYTnyHbuE+QQP0JIHm/IO5qP sKeGa/FGiEZO6+ZMbOhVKO0hu0UCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTNZvHi /feujQAcC6+gnW/PLuhEpzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0OTc0OS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfDVQDANBgkqhkiG9w0BAQsFAAOCAQEAUMi8Q4IHxSjGwTDs dyLVUZef2S1U2KywOGJcscJgX4UxnUegitW+IoowGJcjJ0XnxgQGVDckwAZUFLye HAKTH4bx9JijQ7aJZGHY05FYL3T7y6EkwhYG5vblqi8fJa8VFnA+B0WL22PCaB5D r5F5X4oi53iNg0pwU2hW2uhI51jMdDsZbCsk163QCL57gKkQbDet4ofJNVH2h3Pd 5R2+zV+homP8/JtIJpNa0hEaqDi5weo4sC5uYST6Mq7OoNa/vcYJqj1Q/5VtVZLL DuNL+s8AJOLb8Wp1IDHPLJhEvSWzHF9+r2dF1m57UTl7gZpgPhVRWQzQG1P8X5R9 FUUrag== -----END CERTIFICATE-----Generated at Sun Jan 25 21:36:55 2026 by rpki-client