This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa File: AS58389.roa (raw, json) Hash identifier: rTLmyqhIsKXsW5LAHzsFlS0Q459GNR6E8lbEbOnT678= Subject key identifier: F1:51:59:EF:64:25:CC:DB:74:6E:9E:C4:D9:CE:E8:9C:B0:2B:1C:2F Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 490F2E8BCB12BC1C205A9AEB378D3BEB05A31EDA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa Signing time: Tue 16 Dec 2025 07:11:05 +0000 ROA not before: Tue 16 Dec 2025 07:06:05 +0000 ROA not after: Tue 15 Dec 2026 07:11:05 +0000 asID: 58389 IP address blocks: 114.198.240.0/21 maxlen: 24 114.198.243.0/24 maxlen: 24 116.68.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 07:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:0f:2e:8b:cb:12:bc:1c:20:5a:9a:eb:37:8d:3b:eb:05:a3:1e:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 16 07:06:05 2025 GMT Not After : Dec 15 07:11:05 2026 GMT Subject: CN=F15159EF6425CCDB746E9EC4D9CEE89CB02B1C2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:74:e0:4e:0b:81:09:3a:0d:1c:ea:30:a7:3e: b1:15:38:0c:6e:9c:cc:5e:08:50:d8:cc:b2:f3:84: ef:06:71:30:33:a8:fc:30:b7:f1:39:6b:9f:02:c9: 9a:09:77:e0:90:11:25:87:66:c2:5f:5e:3e:aa:96: 8d:b4:d1:a8:b2:e3:73:89:ad:94:f2:aa:4c:ff:ae: 92:ae:53:db:d1:96:64:a6:ff:94:87:78:d8:7f:b9: a7:73:dd:6c:f6:8a:dc:0e:29:f8:11:18:5a:ce:2c: 34:50:09:04:a9:04:b5:48:c0:01:1b:a7:04:6b:2a: 99:96:52:5b:fd:f4:96:48:b8:14:6c:61:b4:42:72: a6:72:4e:e5:cb:82:9f:50:be:a7:cc:53:d7:f1:9a: d5:ba:2a:6f:55:09:3c:09:25:b7:5e:89:b7:57:e6: c5:89:ad:98:5f:c2:05:1c:10:04:c0:d0:7c:e4:f7: 2b:cb:0c:f5:11:6d:a1:da:b8:d1:53:b9:92:f4:8d: 85:67:f7:d6:e3:75:95:a8:08:93:fc:24:b8:4b:d8: 5a:ed:ea:70:b4:69:eb:cd:59:b1:d2:be:ed:4a:09: 47:be:c3:78:51:dc:c4:09:e0:a4:f7:bf:a7:3e:3a: e9:a6:7d:f7:b4:8f:e7:f9:a2:97:1f:25:ea:1f:85: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:51:59:EF:64:25:CC:DB:74:6E:9E:C4:D9:CE:E8:9C:B0:2B:1C:2F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS58389.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.198.240.0/21 116.68.167.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:fc:c7:0a:40:eb:90:09:ac:3b:0b:68:2c:9b:50:05:20:e4: 16:54:24:d4:d3:82:10:88:e7:8b:0e:49:4f:f8:43:5a:28:03: cc:37:a1:dd:8c:12:21:b6:24:6e:e9:b9:c9:39:e2:b7:73:b9: 3c:1e:9b:21:8c:2a:77:7c:cb:03:67:79:33:c1:2c:95:df:ec: 2e:98:74:e2:8d:ac:f6:85:8d:96:e1:36:37:54:8d:a2:02:47: 83:fd:f7:6e:d1:49:41:ae:58:5c:8b:3d:12:7a:5b:77:c3:97: b7:88:19:d1:cd:c2:f1:8e:93:47:30:35:2d:c3:e5:5b:a3:29: 12:d0:c7:af:18:19:98:3f:cc:95:e7:76:a7:e6:09:63:b2:92: 12:c0:3c:8c:0f:1c:fd:13:df:c4:e6:bc:7f:62:99:84:d5:df: 93:8f:80:e7:f5:6d:6f:f0:6c:4a:ce:2f:c0:a9:68:ba:ad:2e: 7f:8e:49:87:c8:d3:0e:3a:b9:ea:44:3b:44:b0:bc:79:0e:7d: d4:8f:47:d8:28:7d:d5:5b:da:c5:44:3f:28:f6:64:bf:58:41: 5a:76:2b:be:2f:b1:e6:5e:7c:67:e3:97:b8:4d:ff:0d:9e:fe: fa:57:00:8d:27:84:f3:d8:71:47:d8:c4:28:44:26:ba:10:39: 63:cf:7d:9c -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUSQ8ui8sSvBwgWprrN4076wWjHtowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTIxNjA3MDYwNVoX DTI2MTIxNTA3MTEwNVowMzExMC8GA1UEAxMoRjE1MTU5RUY2NDI1Q0NEQjc0NkU5 RUM0RDlDRUU4OUNCMDJCMUMyRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJ04E4LgQk6DRzqMKc+sRU4DG6czF4IUNjMsvOE7wZxMDOo/DC38TlrnwLJ mgl34JARJYdmwl9ePqqWjbTRqLLjc4mtlPKqTP+ukq5T29GWZKb/lId42H+5p3Pd bPaK3A4p+BEYWs4sNFAJBKkEtUjAARunBGsqmZZSW/30lki4FGxhtEJypnJO5cuC n1C+p8xT1/Ga1boqb1UJPAklt16Jt1fmxYmtmF/CBRwQBMDQfOT3K8sM9RFtodq4 0VO5kvSNhWf31uN1lagIk/wkuEvYWu3qcLRp681ZsdK+7UoJR77DeFHcxAngpPe/ pz466aZ997SP5/milx8l6h+Flc8CAwEAAaOCAdUwggHRMB0GA1UdDgQWBBTxUVnv ZCXM23RunsTZzuicsCscLzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzU4Mzg5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDcsbwAwQAdESnMA0GCSqGSIb3DQEBCwUAA4IBAQCa/McKQOuQCaw7 C2gsm1AFIOQWVCTU04IQiOeLDklP+ENaKAPMN6HdjBIhtiRu6bnJOeK3c7k8Hpsh jCp3fMsDZ3kzwSyV3+wumHTijaz2hY2W4TY3VI2iAkeD/fdu0UlBrlhciz0Selt3 w5e3iBnRzcLxjpNHMDUtw+VboykS0MevGBmYP8yV53an5gljspISwDyMDxz9E9/E 5rx/YpmE1d+Tj4Dn9W1v8GxKzi/AqWi6rS5/jkmHyNMOOrnqRDtEsLx5Dn3Uj0fY KH3VW9rFRD8o9mS/WEFadiu+L7HmXnxn45e4Tf8Nnv76VwCNJ4Tz2HFH2MQoRCa6 EDljz32c -----END CERTIFICATE-----Generated at Fri Dec 19 01:27:32 2025 by rpki-client