This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa File: AS58822.roa (raw, json) Hash identifier: HwQrqF9LDpcQhFyJj2wupTzedN5os2T96hbEDdl/cxY= Subject key identifier: 0C:BD:26:DE:A2:4C:5D:4D:FC:28:A5:B0:52:C8:B7:BC:07:FD:7B:F3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7E4B837C8BFC6D81B166C8B6544E05CD30F13C00 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa Signing time: Tue 11 Nov 2025 06:00:05 +0000 ROA not before: Tue 11 Nov 2025 05:55:05 +0000 ROA not after: Tue 10 Nov 2026 06:00:05 +0000 asID: 58822 IP address blocks: 103.242.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:4b:83:7c:8b:fc:6d:81:b1:66:c8:b6:54:4e:05:cd:30:f1:3c:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 11 05:55:05 2025 GMT Not After : Nov 10 06:00:05 2026 GMT Subject: CN=0CBD26DEA24C5D4DFC28A5B052C8B7BC07FD7BF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:62:91:f1:11:e0:b6:f9:d8:7f:4a:90:b0:26: 2f:23:a8:b7:15:82:61:ee:01:e6:c6:7b:a8:e1:ce: b1:2e:b0:a3:63:49:32:56:24:88:6e:56:ab:a4:0b: f9:bd:cc:1f:3a:39:74:f8:2a:42:04:f7:c4:10:b5: 5b:3a:5b:5f:23:e2:93:f7:c4:54:8a:b2:1a:30:e4: 56:2e:33:dd:f6:d5:56:e9:bf:60:37:9d:9a:ed:77: 0d:67:ea:b9:75:c9:b9:ec:98:6a:58:d0:34:16:bc: aa:3d:8f:56:72:c0:84:3c:1a:98:4f:45:3f:e1:c0: bf:07:3d:69:15:65:a7:13:31:18:62:a8:44:cd:32: 4a:e1:be:23:f2:f1:2e:b4:16:1b:73:e9:51:8c:b2: 1f:2a:3c:ad:76:14:6b:2d:64:9a:88:ef:09:f0:31: e2:56:63:c7:5d:c5:0e:78:27:94:73:0e:c6:25:c4: 60:d4:f0:1e:66:fb:07:46:4e:b2:96:9a:bb:44:51: 55:5d:13:1a:00:cb:46:5f:98:8b:25:f9:f8:00:93: 5f:e2:2d:ea:c2:64:a9:c1:8c:bf:6f:32:f2:b6:20: 31:8a:95:14:ee:70:90:d5:f5:77:18:28:fc:ed:8b: d5:82:14:3b:99:70:41:30:d0:b5:bf:c9:2a:da:2a: 15:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BD:26:DE:A2:4C:5D:4D:FC:28:A5:B0:52:C8:B7:BC:07:FD:7B:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58822.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.124.0/23 Signature Algorithm: sha256WithRSAEncryption 62:df:5e:7e:42:a7:4c:3c:01:f7:6b:25:14:7c:1c:bf:d6:f5: ef:2a:b0:6a:6d:81:5a:8c:ad:3a:7d:bd:8c:bc:49:4f:f3:9e: f9:c9:b4:dc:b1:48:b1:99:3f:82:4f:de:66:20:bf:9c:c4:ad: 36:15:ad:81:32:14:a7:f5:b9:be:a8:8f:0a:b7:aa:5b:63:4c: 94:ea:6b:16:72:44:7d:e3:cf:ce:13:1c:af:89:8c:b9:43:f8: 4a:e2:53:66:b7:88:2b:cc:a6:10:89:66:01:35:e7:f2:d4:4c: ec:5a:db:1f:d0:07:b9:20:2d:ab:2d:5a:7e:c7:5e:71:b2:1c: 0b:5e:27:33:60:24:c8:75:d8:af:f2:f9:05:58:71:19:73:5f: 74:43:39:6d:58:2c:eb:1e:68:69:d2:30:8a:37:45:20:4e:9e: 29:b4:df:ca:20:68:e9:f6:e7:43:d6:e2:2e:a3:f4:fe:22:9e: e2:4f:19:1e:78:96:6c:5d:4f:f5:d0:85:33:c7:b0:31:46:af: 95:95:c5:18:39:49:76:d3:77:ca:75:6e:d4:a8:4d:63:58:2f: 8a:ae:4e:6e:1e:9f:50:26:66:f8:34:da:9f:ac:8b:79:a2:e0: db:42:2e:0b:32:b5:83:57:80:26:37:0b:cd:a7:01:2d:b6:68: 0d:2c:c8:d7 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUfkuDfIv8bYGxZsi2VE4FzTDxPAAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMTA1NTUwNVoX DTI2MTExMDA2MDAwNVowMzExMC8GA1UEAxMoMENCRDI2REVBMjRDNUQ0REZDMjhB NUIwNTJDOEI3QkMwN0ZEN0JGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhikfER4Lb52H9KkLAmLyOotxWCYe4B5sZ7qOHOsS6wo2NJMlYkiG5Wq6QL +b3MHzo5dPgqQgT3xBC1WzpbXyPik/fEVIqyGjDkVi4z3fbVVum/YDedmu13DWfq uXXJueyYaljQNBa8qj2PVnLAhDwamE9FP+HAvwc9aRVlpxMxGGKoRM0ySuG+I/Lx LrQWG3PpUYyyHyo8rXYUay1kmojvCfAx4lZjx13FDngnlHMOxiXEYNTwHmb7B0ZO spaau0RRVV0TGgDLRl+YiyX5+ACTX+It6sJkqcGMv28y8rYgMYqVFO5wkNX1dxgo /O2L1YIUO5lwQTDQtb/JKtoqFWkCAwEAAaOCAc8wggHLMB0GA1UdDgQWBBQMvSbe okxdTfwopbBSyLe8B/178zAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4ODIyLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ/J8MA0GCSqGSIb3DQEBCwUAA4IBAQBi315+QqdMPAH3ayUUfBy/ 1vXvKrBqbYFajK06fb2MvElP8575ybTcsUixmT+CT95mIL+cxK02Fa2BMhSn9bm+ qI8Kt6pbY0yU6msWckR948/OExyviYy5Q/hK4lNmt4grzKYQiWYBNefy1EzsWtsf 0Ae5IC2rLVp+x15xshwLXiczYCTIddiv8vkFWHEZc190QzltWCzrHmhp0jCKN0Ug Tp4ptN/KIGjp9udD1uIuo/T+Ip7iTxkeeJZsXU/10IUzx7AxRq+VlcUYOUl203fK dW7UqE1jWC+Krk5uHp9QJmb4NNqfrIt5ouDbQi4LMrWDV4AmNwvNpwEttmgNLMjX -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:05 2025 by rpki-client