This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59150.roa File: AS59150.roa (raw, json) Hash identifier: X3FoIbHcyqeUyd16zKUFTE//lme6kdOkhayQy7fnVWM= Subject key identifier: BC:07:98:D4:FE:1A:8C:CA:E5:5C:B7:AB:CE:2B:3D:35:C4:2D:47:05 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6D4AC640C947516CD15A831BFBC748A12F7D2740 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59150.roa Signing time: Tue 11 Nov 2025 06:00:10 +0000 ROA not before: Tue 11 Nov 2025 05:55:10 +0000 ROA not after: Tue 10 Nov 2026 06:00:10 +0000 asID: 59150 IP address blocks: 103.81.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:4a:c6:40:c9:47:51:6c:d1:5a:83:1b:fb:c7:48:a1:2f:7d:27:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:10 2025 GMT Not After : Nov 10 06:00:10 2026 GMT Subject: CN=BC0798D4FE1A8CCAE55CB7ABCE2B3D35C42D4705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:14:f3:2a:4a:33:b9:04:91:7e:af:c5:42:af: 45:3c:66:45:76:24:6f:e9:97:8d:ca:82:b4:2b:65: dd:a3:e6:d9:6f:8e:33:04:37:bf:f0:cc:b0:84:4b: ab:15:d9:cd:2b:3d:cb:52:3f:f2:82:be:a2:12:7a: 0d:c0:c5:55:5a:6e:51:c0:54:1a:ec:0d:19:f4:5f: e2:4a:51:69:36:df:cf:65:05:f8:a5:42:76:c2:7f: c1:10:dd:ef:3b:72:09:bb:52:1e:df:80:f2:08:55: 37:62:48:d4:dc:de:20:80:d1:7c:d3:a8:9c:9d:25: 0b:7e:53:00:8b:b2:86:7b:f7:6f:b8:19:2b:d3:58: ad:01:39:ed:17:a9:26:1f:9e:ee:f9:52:91:42:d5: 3a:a2:3d:85:78:19:45:d6:cf:2e:6a:a3:1a:8f:d7: 83:f0:78:20:67:e6:81:e4:01:10:8b:83:64:69:c7: 2a:11:60:37:e5:17:ab:ae:2b:bf:4b:15:07:9e:c7: 83:78:1d:f4:f9:87:6a:4a:9e:45:91:02:7d:68:27: 68:41:c9:28:8f:7b:88:44:7e:a3:6a:19:20:97:a7: dd:12:47:c1:f6:d0:72:a3:a7:a2:7a:11:9d:f6:72: 73:be:c2:2d:86:69:bb:88:9b:27:19:7b:ad:26:ec: 00:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:07:98:D4:FE:1A:8C:CA:E5:5C:B7:AB:CE:2B:3D:35:C4:2D:47:05 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS59150.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.194.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:f5:91:a7:ff:00:7d:00:bb:af:00:f6:21:f3:f5:d2:88:f8: 8d:99:43:f8:dc:5c:03:96:34:e3:ea:8d:eb:a0:fb:7b:2c:07: c1:92:03:6d:57:43:2d:ed:39:dc:0d:c1:2c:47:e1:0f:72:f8: f4:0e:47:93:3e:dc:d2:ef:6c:c4:d8:78:57:e6:1c:6b:e8:9e: 47:fd:fb:c8:b6:4b:12:a6:52:3e:31:b9:54:37:62:57:b4:fa: 51:61:ea:ee:f8:fd:24:3e:ec:fd:8e:41:90:cb:05:bb:dd:53: e7:ed:6f:10:f5:77:13:75:3c:d0:49:2d:57:c2:d6:b5:d2:47: ab:91:f8:af:b4:48:9e:23:eb:00:d8:39:4e:43:91:f4:e5:5b: 4b:bd:07:22:44:8a:7d:15:63:62:37:0e:29:98:a8:c7:86:26: 22:04:f0:27:41:e4:d4:d4:38:c1:42:78:26:06:d9:d9:8e:3a: c8:e2:a3:26:36:bb:c9:e1:c8:12:b1:bd:dc:af:6c:2e:d3:2a: 96:80:7e:71:23:cf:88:84:b2:cd:9a:9b:12:06:12:09:d1:05: 9f:5b:6a:95:98:71:70:f2:7a:16:3c:cb:10:5d:db:7d:4d:36: b4:84:57:a3:3c:8d:94:8f:e0:bc:f6:14:18:e4:5e:df:a0:4f: 14:16:d5:00 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUbUrGQMlHUWzRWoMb+8dIoS99J0AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUxMFoX DTI2MTExMDA2MDAxMFowMzExMC8GA1UEAxMoQkMwNzk4RDRGRTFBOENDQUU1NUNC N0FCQ0UyQjNEMzVDNDJENDcwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYU8ypKM7kEkX6vxUKvRTxmRXYkb+mXjcqCtCtl3aPm2W+OMwQ3v/DMsIRL qxXZzSs9y1I/8oK+ohJ6DcDFVVpuUcBUGuwNGfRf4kpRaTbfz2UF+KVCdsJ/wRDd 7ztyCbtSHt+A8ghVN2JI1NzeIIDRfNOonJ0lC35TAIuyhnv3b7gZK9NYrQE57Rep Jh+e7vlSkULVOqI9hXgZRdbPLmqjGo/Xg/B4IGfmgeQBEIuDZGnHKhFgN+UXq64r v0sVB57Hg3gd9PmHakqeRZECfWgnaEHJKI97iER+o2oZIJen3RJHwfbQcqOnonoR nfZyc77CLYZpu4ibJxl7rSbsAA8CAwEAAaOCAc8wggHLMB0GA1UdDgQWBBS8B5jU /hqMyuVct6vOKz01xC1HBTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU5MTUwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ1HCMA0GCSqGSIb3DQEBCwUAA4IBAQAM9ZGn/wB9ALuvAPYh8/XS iPiNmUP43FwDljTj6o3roPt7LAfBkgNtV0Mt7TncDcEsR+EPcvj0DkeTPtzS72zE 2HhX5hxr6J5H/fvItksSplI+MblUN2JXtPpRYeru+P0kPuz9jkGQywW73VPn7W8Q 9XcTdTzQSS1Xwta10kerkfivtEieI+sA2DlOQ5H05VtLvQciRIp9FWNiNw4pmKjH hiYiBPAnQeTU1DjBQngmBtnZjjrI4qMmNrvJ4cgSsb3cr2wu0yqWgH5xI8+IhLLN mpsSBhIJ0QWfW2qVmHFw8noWPMsQXdt9TTa0hFejPI2Uj+C89hQY5F7foE8UFtUA -----END CERTIFICATE-----Generated at Sat Dec 6 22:51:50 2025 by rpki-client