This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150468.roa File: AS150468.roa (raw, json) Hash identifier: 1MWZt0ET5HO11qYVgp6RCKHXMoacixlHc+ApMcPQoMU= Subject key identifier: D7:D1:D8:4B:D9:2A:90:30:4B:B0:97:92:3D:C6:5A:D2:A1:7F:26:90 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D8E850FD3687BBA674E1B7BD6187BE8A41A0E96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150468.roa Signing time: Mon 12 Jan 2026 04:00:00 +0000 ROA not before: Mon 12 Jan 2026 03:55:00 +0000 ROA not after: Mon 11 Jan 2027 04:00:00 +0000 asID: 150468 IP address blocks: 2001:df2:1240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:8e:85:0f:d3:68:7b:ba:67:4e:1b:7b:d6:18:7b:e8:a4:1a:0e:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 12 03:55:00 2026 GMT Not After : Jan 11 04:00:00 2027 GMT Subject: CN=D7D1D84BD92A90304BB097923DC65AD2A17F2690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7a:f2:6b:9b:02:61:6a:f4:9c:56:3a:9f:66: 99:05:e7:c5:48:34:e5:90:79:9f:d3:5b:97:6a:6e: 87:50:92:4a:cb:ab:20:ca:ef:e8:e4:b7:a7:20:a3: 1e:93:4f:7e:cf:35:69:97:cf:b7:43:ed:71:3b:db: 1f:54:a1:53:61:1e:a3:37:b4:a7:50:b5:9c:2a:84: a1:f9:41:2e:8c:c4:95:0c:31:b1:34:61:09:be:db: 51:e2:5e:ab:4b:e5:45:bc:0b:74:0b:f9:2f:dd:b1: cc:bd:d4:40:55:0f:1e:6f:00:b1:94:10:4c:94:5f: 9b:3a:f1:79:e3:40:c7:10:e0:59:6b:fc:ba:73:22: bb:83:81:0d:11:30:f0:59:25:87:67:0f:c2:da:0a: c6:e3:76:4f:0f:ec:41:b5:cf:5f:fc:fd:f2:d5:af: aa:82:f7:26:0a:06:41:33:65:e1:b7:65:81:11:00: e8:89:11:be:5d:61:43:4e:86:77:3a:97:d2:89:cd: 43:d1:e2:d5:e2:98:06:c9:9f:ad:84:d3:5d:d1:29: a5:81:35:b2:00:49:2a:03:c8:9b:2c:28:43:b5:07: 2d:03:c5:a3:9a:3a:32:0e:33:f2:8b:7f:38:ef:18: ae:a1:5a:0f:84:dc:dc:02:7b:7b:6a:ff:9c:8b:b9: 17:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D1:D8:4B:D9:2A:90:30:4B:B0:97:92:3D:C6:5A:D2:A1:7F:26:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS150468.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:1240::/48 Signature Algorithm: sha256WithRSAEncryption 41:41:35:a2:c6:15:d5:27:bf:57:72:b4:3f:f7:31:4e:32:5b: a8:ff:ac:af:7c:e0:ea:5a:0c:21:db:56:60:b7:8b:39:a8:3f: 18:98:20:ce:5c:c6:1f:aa:91:2e:13:30:dc:b9:e2:f6:fe:4f: f8:2c:c1:de:88:6d:c1:9b:23:28:0a:b6:0c:90:88:73:71:7e: cf:15:56:b4:26:13:88:d4:00:8c:b1:61:84:15:ac:10:55:40: 53:ff:52:a7:c1:67:57:2b:77:9b:98:24:29:aa:2f:3b:a7:62: d8:6d:77:49:8c:c1:6d:d1:ff:fb:dc:59:33:b1:59:3e:44:28: 8c:8e:8d:26:a4:38:cc:a6:7e:ee:82:b6:5d:3e:c7:5e:4f:ba: e7:5c:a9:9f:93:4a:2d:44:45:3c:53:99:69:95:d5:3f:23:a7: fb:41:d4:eb:2f:80:fc:55:f9:78:fd:f9:ee:6a:07:5a:35:92: 8d:58:66:f0:1d:a0:28:ea:10:8d:45:a6:41:22:8d:ad:47:00: d8:a7:6b:c4:75:20:5a:36:f9:dc:ad:5c:cd:cb:f6:60:2a:db: fe:7d:ba:90:c9:2a:a3:31:b6:d9:f9:ce:be:92:a8:76:3d:57: ee:8b:d7:a9:b4:d3:fc:ae:c6:1b:76:cb:65:08:22:d8:26:62: 5f:4f:d9:d2 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUPY6FD9Noe7pnTht71hh76KQaDpYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExMjAzNTUwMFoX DTI3MDExMTA0MDAwMFowMzExMC8GA1UEAxMoRDdEMUQ4NEJEOTJBOTAzMDRCQjA5 NzkyM0RDNjVBRDJBMTdGMjY5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAON68mubAmFq9JxWOp9mmQXnxUg05ZB5n9Nbl2puh1CSSsurIMrv6OS3pyCj HpNPfs81aZfPt0PtcTvbH1ShU2Eeoze0p1C1nCqEoflBLozElQwxsTRhCb7bUeJe q0vlRbwLdAv5L92xzL3UQFUPHm8AsZQQTJRfmzrxeeNAxxDgWWv8unMiu4OBDREw 8Fklh2cPwtoKxuN2Tw/sQbXPX/z98tWvqoL3JgoGQTNl4bdlgREA6IkRvl1hQ06G dzqX0onNQ9Hi1eKYBsmfrYTTXdEppYE1sgBJKgPImywoQ7UHLQPFo5o6Mg4z8ot/ OO8YrqFaD4Tc3AJ7e2r/nIu5F8UCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBTX0dhL 2SqQMEuwl5I9xlrSoX8mkDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE1MDQ2OC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfISQDANBgkqhkiG9w0BAQsFAAOCAQEAQUE1osYV1Se/V3K0 P/cxTjJbqP+sr3zg6loMIdtWYLeLOag/GJggzlzGH6qRLhMw3Lni9v5P+CzB3oht wZsjKAq2DJCIc3F+zxVWtCYTiNQAjLFhhBWsEFVAU/9Sp8FnVyt3m5gkKaovO6di 2G13SYzBbdH/+9xZM7FZPkQojI6NJqQ4zKZ+7oK2XT7HXk+651ypn5NKLURFPFOZ aZXVPyOn+0HU6y+A/FX5eP357moHWjWSjVhm8B2gKOoQjUWmQSKNrUcA2KdrxHUg Wjb53K1czcv2YCrb/n26kMkqozG22fnOvpKodj1X7ovXqbTT/K7GG3bLZQgi2CZi X0/Z0g== -----END CERTIFICATE-----Generated at Sun Jan 25 21:37:44 2026 by rpki-client