Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa
File: AS18059.roa (raw, json)
Hash identifier: lZ7Z7Y0TccqVkhBgb84cHW/m7TGQ62o2O+clEIGbKWI=
Subject key identifier: F6:53:BC:7B:70:4B:A1:B9:97:5F:64:17:B5:75:B9:E6:AC:A9:3C:EB
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 3A1B32789DA8E111430DB7F358461CA72A201FE2
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa
Signing time: Mon 18 May 2026 08:00:03 +0000
ROA not before: Mon 18 May 2026 07:55:03 +0000
ROA not after: Mon 17 May 2027 08:00:03 +0000
asID: 18059
IP address blocks: 103.168.114.0/23 maxlen: 24
103.168.116.0/23 maxlen: 24
103.168.118.0/23 maxlen: 24
103.168.120.0/23 maxlen: 24
163.61.77.0/24 maxlen: 24
202.43.160.0/20 maxlen: 24
202.43.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 18 Jun 2026 03:08:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:1b:32:78:9d:a8:e1:11:43:0d:b7:f3:58:46:1c:a7:2a:20:1f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 18 07:55:03 2026 GMT
Not After : May 17 08:00:03 2027 GMT
Subject: CN=F653BC7B704BA1B9975F6417B575B9E6ACA93CEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0b:db:d8:9e:a1:3f:5e:94:d8:e7:f3:a0:c0:
b7:48:ab:bc:62:83:e1:e4:7c:81:81:85:fe:6b:cc:
7c:12:43:98:1a:d1:b3:51:48:e1:11:8f:92:23:ee:
97:47:d4:20:e7:01:3e:b9:3d:e7:41:6e:78:c2:24:
e2:10:22:9e:e9:94:c9:b6:e8:ba:9b:2a:d5:79:71:
be:bd:ec:31:83:31:be:7c:7a:8b:72:12:3c:26:1a:
97:4e:0d:14:09:8c:fc:00:38:67:f4:8b:a8:84:3a:
1d:c1:e9:79:c0:c3:c4:dc:f6:e3:e8:07:fd:7b:ec:
ad:8d:39:b3:0a:bc:c2:f2:79:38:13:ec:10:99:98:
43:53:5a:6e:3d:91:f2:5b:34:85:ef:d2:63:08:ca:
5a:cd:6e:f9:a8:0b:b7:ae:ae:20:2c:26:aa:e4:b1:
e2:45:ef:b4:37:1c:25:f2:80:5e:c4:d7:27:b6:9c:
cd:f9:fd:9e:dd:0e:a2:1e:17:a9:c6:b5:4c:80:57:
16:b5:48:f8:23:d6:2b:bf:12:e1:4b:89:8b:7d:97:
00:30:79:b2:17:cd:95:df:21:d3:b5:5f:99:ea:b0:
30:30:4c:a6:10:f7:de:a4:01:f2:07:3d:2e:cb:46:
1f:5d:3e:aa:6f:29:e1:24:ec:7b:e5:f6:ea:f8:bb:
1d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:53:BC:7B:70:4B:A1:B9:97:5F:64:17:B5:75:B9:E6:AC:A9:3C:EB
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.168.114.0-103.168.121.255
163.61.77.0/24
202.43.160.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:70:c7:dd:34:5f:dc:9c:68:ff:6f:13:c1:2d:58:93:54:50:
50:79:70:ee:7c:3d:15:fd:34:49:00:bb:31:e8:94:d9:a9:66:
91:f7:a5:40:fb:1d:73:ce:a6:fd:f9:e2:d3:c6:bd:03:33:ef:
3a:6d:33:3e:7b:10:7e:a1:d3:2c:28:4d:5c:87:4c:c2:9e:27:
dc:7e:4b:47:72:5f:03:e1:52:73:05:af:12:30:60:93:27:43:
e3:34:50:75:c0:8c:1b:12:51:f2:80:5b:aa:75:40:8c:3d:c1:
10:57:fe:f8:85:70:3d:f9:23:df:dd:21:48:77:86:70:0b:fe:
30:bb:e3:5c:8c:43:a0:ea:53:36:05:83:d8:02:e0:b0:46:c6:
b7:1e:92:a1:fa:3a:c5:ab:40:2b:2f:b7:b3:13:8c:47:b2:69:
61:e2:51:17:87:56:5f:89:cd:ec:db:2d:20:94:dd:83:2d:35:
d5:46:4c:fa:9b:a1:32:61:df:e6:bd:35:bc:a0:b2:35:ce:d4:
ff:5f:f9:61:4d:0a:fb:87:61:4a:48:e7:60:4a:99:57:a4:9f:
25:6a:46:3b:eb:1a:1b:83:5e:1e:c2:eb:31:84:1c:1f:73:02:
1f:9b:9b:d5:89:b3:2b:67:31:16:63:34:3f:cf:de:28:18:b5:
86:8c:5e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 08:47:35 2026 by rpki-client