This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150228.roa File: AS150228.roa (raw, json) Hash identifier: i2uMhFioTpOI8icOVPpk0uGGtie0ryKZe+odTn+2LEo= Subject key identifier: 50:EB:6D:97:BA:BC:E2:0B:D1:A2:E5:D2:22:DD:38:A6:14:EB:0C:62 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6B3167C3003CD7667D2C2FF95FCC3AE754FCA016 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150228.roa Signing time: Sun 11 Jan 2026 08:00:00 +0000 ROA not before: Sun 11 Jan 2026 07:55:00 +0000 ROA not after: Sun 10 Jan 2027 08:00:00 +0000 asID: 150228 IP address blocks: 202.47.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:31:67:c3:00:3c:d7:66:7d:2c:2f:f9:5f:cc:3a:e7:54:fc:a0:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 11 07:55:00 2026 GMT Not After : Jan 10 08:00:00 2027 GMT Subject: CN=50EB6D97BABCE20BD1A2E5D222DD38A614EB0C62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a6:14:f6:f2:03:5c:00:b4:4b:b1:0f:5e:08: ba:a9:93:c7:a7:dd:bb:57:69:6c:59:8f:d2:3b:1c: a8:bb:f7:ef:e2:6f:7f:df:76:78:0a:f3:c3:04:91: 4e:9d:06:fb:59:5c:6c:ec:34:10:9b:ef:c3:5e:37: 4d:c8:61:7f:1f:ff:ce:ac:5c:8f:df:dd:7a:15:6f: 14:4d:f0:b9:da:7d:40:bf:31:71:9d:a7:ac:ea:f3: 3a:77:77:7e:44:58:6f:63:8c:b5:1c:4a:5e:29:06: e0:f0:16:90:0b:b3:11:52:a0:70:e7:4e:02:91:1c: 27:fc:d4:83:ef:3e:ea:c7:7b:32:a1:9c:30:f4:51: ba:d9:ee:62:d0:4e:a8:e6:2f:7a:63:ea:23:3c:f6: e3:cb:aa:96:6a:01:57:b4:97:75:6d:3b:08:ba:cd: 62:41:26:6e:e0:01:e2:fe:1f:1a:25:e2:b4:85:35: 30:d8:d7:95:2c:2d:67:07:a1:ba:bb:29:67:1c:17: cd:83:71:33:57:e3:21:15:27:3b:02:26:17:30:de: e8:21:64:d9:64:51:26:ac:de:c2:5f:87:17:7c:66: af:ce:15:c6:7a:ca:50:3a:bb:c2:43:b1:6b:0a:35: d1:7c:53:40:1a:bc:63:41:bd:d7:82:48:f7:7f:bb: ce:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:EB:6D:97:BA:BC:E2:0B:D1:A2:E5:D2:22:DD:38:A6:14:EB:0C:62 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150228.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.66.0/24 Signature Algorithm: sha256WithRSAEncryption 90:17:f7:b1:5a:91:13:74:67:66:78:23:a7:60:f7:4a:42:c3: 9a:bc:a7:90:fd:41:f9:a0:91:54:e3:a7:df:91:2d:07:b8:8f: b3:f9:0f:19:ea:a3:79:2f:75:83:3c:b0:1f:a5:e5:83:8a:0d: 7e:0e:be:71:6c:37:e9:14:b2:1b:3f:db:ba:46:0a:80:f4:32: 68:9c:13:f0:da:7f:8c:96:9c:15:55:88:16:f5:39:22:eb:33: c9:f2:88:b5:eb:7c:a6:9d:88:3f:37:4f:32:0a:b4:a4:34:e0: 7c:2e:cc:c9:28:49:f0:15:64:12:62:40:af:50:72:af:dd:04: b0:a2:13:aa:db:7c:df:8c:e9:3d:9a:d8:a6:41:93:ab:7a:98: 6e:4a:09:04:97:af:bb:ae:45:5c:9b:53:e9:2a:03:4e:4c:0a: 2d:75:58:b1:46:7f:8b:71:6b:09:89:de:80:01:85:21:ce:28: 84:fe:4e:74:9f:15:f0:5e:53:af:dc:1e:c5:9d:d1:e9:62:eb: f7:c6:ce:ab:b0:7a:fb:1e:c7:66:df:df:16:0d:16:f1:d6:fc: e9:ce:46:72:4e:00:b2:36:8b:77:9b:d1:54:db:a1:07:44:49: 32:7d:e1:7e:5a:21:04:36:a0:20:cb:8a:21:ab:13:dc:62:1f: 18:2b:b9:49 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUazFnwwA812Z9LC/5X8w651T8oBYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExMTA3NTUwMFoX DTI3MDExMDA4MDAwMFowMzExMC8GA1UEAxMoNTBFQjZEOTdCQUJDRTIwQkQxQTJF NUQyMjJERDM4QTYxNEVCMEM2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmmFPbyA1wAtEuxD14IuqmTx6fdu1dpbFmP0jscqLv37+Jvf992eArzwwSR Tp0G+1lcbOw0EJvvw143Tchhfx//zqxcj9/dehVvFE3wudp9QL8xcZ2nrOrzOnd3 fkRYb2OMtRxKXikG4PAWkAuzEVKgcOdOApEcJ/zUg+8+6sd7MqGcMPRRutnuYtBO qOYvemPqIzz248uqlmoBV7SXdW07CLrNYkEmbuAB4v4fGiXitIU1MNjXlSwtZweh urspZxwXzYNxM1fjIRUnOwImFzDe6CFk2WRRJqzewl+HF3xmr84VxnrKUDq7wkOx awo10XxTQBq8Y0G914JI93+7zqcCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBRQ622X urziC9Gi5dIi3TimFOsMYjAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDIyOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAMovQjANBgkqhkiG9w0BAQsFAAOCAQEAkBf3sVqRE3RnZngjp2D3 SkLDmrynkP1B+aCRVOOn35EtB7iPs/kPGeqjeS91gzywH6Xlg4oNfg6+cWw36RSy Gz/bukYKgPQyaJwT8Np/jJacFVWIFvU5IuszyfKItet8pp2IPzdPMgq0pDTgfC7M yShJ8BVkEmJAr1Byr90EsKITqtt834zpPZrYpkGTq3qYbkoJBJevu65FXJtT6SoD TkwKLXVYsUZ/i3FrCYnegAGFIc4ohP5OdJ8V8F5Tr9wexZ3R6WLr98bOq7B6+x7H Zt/fFg0W8db86c5Gck4AsjaLd5vRVNuhB0RJMn3hflohBDagIMuKIasT3GIfGCu5 SQ== -----END CERTIFICATE-----Generated at Sun Jan 25 18:25:09 2026 by rpki-client