This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa File: AS58389.roa (raw, json) Hash identifier: pA2vwmmgkfIbeDR5bPuDWwDmeHDdB2pMa2Zv4fVesro= Subject key identifier: D7:33:2B:D3:72:E1:A4:46:55:BF:46:DD:EB:33:24:61:DF:AE:B9:5D Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1FB7E40764CF7F0858FD29483C6C13BF466B6898 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa Signing time: Mon 19 Jan 2026 03:06:00 +0000 ROA not before: Mon 19 Jan 2026 03:01:00 +0000 ROA not after: Mon 18 Jan 2027 03:06:00 +0000 asID: 58389 IP address blocks: 43.240.229.0/24 maxlen: 24 103.11.28.0/24 maxlen: 24 103.11.29.0/24 maxlen: 24 103.11.30.0/24 maxlen: 24 103.11.31.0/24 maxlen: 24 103.143.222.0/23 maxlen: 24 114.198.240.0/21 maxlen: 24 114.198.243.0/24 maxlen: 24 116.68.164.0/24 maxlen: 24 116.68.165.0/24 maxlen: 24 116.68.167.0/24 maxlen: 24 116.68.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 07:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b7:e4:07:64:cf:7f:08:58:fd:29:48:3c:6c:13:bf:46:6b:68:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 19 03:01:00 2026 GMT Not After : Jan 18 03:06:00 2027 GMT Subject: CN=D7332BD372E1A44655BF46DDEB332461DFAEB95D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e1:5d:f3:89:03:6f:37:71:d7:54:3a:90:b3: c4:be:1f:6a:14:04:c2:59:21:be:56:1e:de:2f:99: cd:65:78:b8:94:d6:3e:8e:ec:f3:11:22:aa:05:2f: 69:50:c1:f5:11:89:52:1b:34:e8:97:05:a1:ca:02: 2d:06:7a:f2:d2:c0:bd:8c:01:29:9a:f6:d2:77:20: d5:20:d0:d0:f5:24:ad:4b:a8:6e:2b:5d:19:b8:81: ff:b3:78:dc:c6:ba:80:07:a7:28:82:ff:1e:38:34: 96:d9:41:e0:da:31:7e:e1:74:b7:5d:cb:79:ea:84: 5c:d3:d3:80:21:ec:3b:de:83:80:d3:c5:47:9e:34: 39:06:bc:2a:23:cf:49:d2:0a:23:d4:2b:9f:32:b0: c7:e1:98:3d:89:42:c7:86:d2:8a:7e:11:d5:14:7a: a5:4d:d8:ef:7a:a0:2d:b7:cf:3b:a7:58:31:52:90: 1a:be:a9:73:b8:df:ad:16:1b:52:5f:bb:1f:f9:24: c8:63:5f:cc:98:21:b7:86:aa:b7:0a:cc:e7:b1:49: 7d:fd:91:79:78:a6:af:e8:67:95:1d:e2:9e:c3:67: 50:06:9f:bb:2c:41:c9:66:85:e7:16:ba:c9:30:47: 49:4a:f4:dc:14:c7:1d:ec:2a:68:6e:18:7e:7d:b7: b8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:33:2B:D3:72:E1:A4:46:55:BF:46:DD:EB:33:24:61:DF:AE:B9:5D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.229.0/24 103.11.28.0/22 103.143.222.0/23 114.198.240.0/21 116.68.164.0/23 116.68.167.0/24 116.68.173.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:46:36:6f:a7:c7:aa:c2:41:f3:e6:28:be:01:13:ef:fd:1d: 15:ed:bb:e7:aa:99:98:a4:28:74:0b:30:85:3b:b5:8b:db:53: 0b:ec:15:05:58:db:50:19:f8:10:dc:78:e7:16:fe:0a:22:bf: 3b:5d:b8:46:e0:77:ee:a2:b3:27:6e:bd:c0:08:66:76:c3:ea: 70:6f:20:17:a3:3d:fc:3e:64:05:22:4a:b7:93:39:19:f5:83: f6:b3:e2:23:6e:9b:a7:0d:12:1a:49:9f:13:d7:37:ff:64:2e: ba:bb:6f:27:35:99:57:44:55:52:a1:21:38:b8:08:53:e4:a5: be:78:a4:46:c8:a6:4f:18:9f:6c:25:95:66:e0:c2:15:c3:7e: ff:55:7b:61:9e:92:b5:55:dc:2d:a1:3c:cd:d9:66:7a:3a:8c: e5:09:7e:93:7f:88:4c:35:50:34:33:51:52:4f:35:88:1d:98: fd:30:cc:bd:5a:8a:88:1a:80:02:88:8c:c4:0a:ac:17:f1:d6: 83:38:07:63:01:66:ae:bf:15:9a:cc:00:37:e2:80:4a:48:5a: fb:f2:8d:c6:58:88:a0:d1:c5:8c:4a:c2:a6:81:10:5c:4a:66: bc:93:64:41:18:b3:42:a7:3c:9d:b5:6e:af:31:a2:89:2a:86: ed:54:5d:db -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUH7fkB2TPfwhY/SlIPGwTv0ZraJgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI2MDExOTAzMDEwMFoX DTI3MDExODAzMDYwMFowMzExMC8GA1UEAxMoRDczMzJCRDM3MkUxQTQ0NjU1QkY0 NkRERUIzMzI0NjFERkFFQjk1RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvhXfOJA283cddUOpCzxL4fahQEwlkhvlYe3i+ZzWV4uJTWPo7s8xEiqgUv aVDB9RGJUhs06JcFocoCLQZ68tLAvYwBKZr20ncg1SDQ0PUkrUuobitdGbiB/7N4 3Ma6gAenKIL/Hjg0ltlB4NoxfuF0t13LeeqEXNPTgCHsO96DgNPFR540OQa8KiPP SdIKI9QrnzKwx+GYPYlCx4bSin4R1RR6pU3Y73qgLbfPO6dYMVKQGr6pc7jfrRYb Ul+7H/kkyGNfzJght4aqtwrM57FJff2ReXimr+hnlR3insNnUAafuyxByWaF5xa6 yTBHSUr03BTHHewqaG4Yfn23uOUCAwEAAaOCAfMwggHvMB0GA1UdDgQWBBTXMyvT cuGkRlW/Rt3rMyRh3665XTAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4Mzg5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQAK/DlAwQCZwscAwQBZ4/eAwQDcsbwAwQBdESkAwQAdESnAwQAdESt MA0GCSqGSIb3DQEBCwUAA4IBAQAbRjZvp8eqwkHz5ii+ARPv/R0V7bvnqpmYpCh0 CzCFO7WL21ML7BUFWNtQGfgQ3HjnFv4KIr87XbhG4HfuorMnbr3ACGZ2w+pwbyAX oz38PmQFIkq3kzkZ9YP2s+IjbpunDRIaSZ8T1zf/ZC66u28nNZlXRFVSoSE4uAhT 5KW+eKRGyKZPGJ9sJZVm4MIVw37/VXthnpK1VdwtoTzN2WZ6OozlCX6Tf4hMNVA0 M1FSTzWIHZj9MMy9WoqIGoACiIzECqwX8daDOAdjAWauvxWazAA34oBKSFr78o3G WIig0cWMSsKmgRBcSma8k2RBGLNCpzydtW6vMaKJKobtVF3b -----END CERTIFICATE-----Generated at Tue Jan 20 23:30:44 2026 by rpki-client