This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17884.roa File: AS17884.roa (raw, json) Hash identifier: zZcCWhuQKRDkP9W+cNkCXQMkjTJ7PInkk0A3F6MgqUY= Subject key identifier: 78:AC:08:1F:EC:FF:F4:5C:F4:9B:33:07:DE:F7:6C:40:1B:84:48:A3 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7079238928DC2D1178E1DD749D2F7F75E60C0BA7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17884.roa Signing time: Wed 12 Nov 2025 09:17:33 +0000 ROA not before: Wed 12 Nov 2025 09:12:33 +0000 ROA not after: Wed 11 Nov 2026 09:17:33 +0000 asID: 17884 IP address blocks: 103.158.56.0/23 maxlen: 24 202.145.0.0/22 maxlen: 24 2402:7980::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:79:23:89:28:dc:2d:11:78:e1:dd:74:9d:2f:7f:75:e6:0c:0b:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 12 09:12:33 2025 GMT Not After : Nov 11 09:17:33 2026 GMT Subject: CN=78AC081FECFFF45CF49B3307DEF76C401B8448A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b8:d4:2e:ca:33:2f:fb:e5:25:94:ed:1d:9d: b1:b8:9f:e2:37:25:db:78:25:a9:22:e7:de:31:36: e8:2d:6b:bf:94:50:00:de:3e:cd:32:38:28:9d:c5: 1e:69:5c:6f:f6:b9:72:cd:52:53:af:3b:80:db:e3: 22:d5:b7:b9:78:db:41:27:af:1f:14:43:af:96:39: 36:22:ed:0d:41:fd:7a:13:e2:7d:e4:de:0a:7a:14: aa:44:15:c5:e2:03:ce:50:d7:8e:a2:5f:dd:a6:35: 4a:32:3c:46:be:c8:4e:eb:0d:18:2a:8e:7d:ef:2f: 69:9b:24:b3:9d:44:80:b7:42:cd:65:55:05:c9:90: 19:d9:22:5f:2e:9d:9c:38:d1:47:80:3d:12:ad:fc: 95:3c:8d:56:43:68:04:1c:21:53:18:ad:f3:45:c0: ec:16:04:3a:fb:24:9f:1f:98:d6:22:2f:75:9d:cb: b8:77:8b:eb:51:60:65:e0:78:7e:5a:80:58:ce:ef: bd:ef:c2:f4:b3:e6:69:28:a5:bb:fe:2f:ce:c9:93: 60:eb:2a:43:09:02:24:c3:9e:b3:a0:2b:92:b3:90: 74:54:95:17:ba:a4:10:e5:da:84:5d:6e:ec:d3:bb: 32:81:fa:10:29:88:73:6c:01:dc:67:17:92:c7:53: 9c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AC:08:1F:EC:FF:F4:5C:F4:9B:33:07:DE:F7:6C:40:1B:84:48:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS17884.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.56.0/23 202.145.0.0/22 IPv6: 2402:7980::/32 Signature Algorithm: sha256WithRSAEncryption 46:30:40:9d:c8:4d:d3:70:9d:38:08:1c:35:10:1f:08:9b:97: 52:f8:9a:ba:33:da:28:82:1f:57:2d:93:2f:ac:e3:29:79:42: e8:f7:6b:8c:47:f0:d6:e6:b9:16:eb:8a:fa:d7:96:c5:34:40: a5:c1:6a:4a:f0:a9:e4:35:59:ba:02:11:65:8f:b5:8d:69:ea: 31:bf:8f:fb:bb:01:4f:8f:67:f5:59:21:97:ad:d1:c5:ff:fc: 44:ec:e5:fe:e8:7b:43:8c:d9:12:f4:64:08:5a:f9:0d:39:4c: 93:a3:e2:c9:a4:ec:61:3b:63:70:5d:1c:54:6b:a2:66:12:a7: a6:97:b0:bc:99:2e:c1:a1:fb:d7:dd:ae:e8:b0:43:cb:82:40: 8b:a6:be:85:39:17:2d:c7:45:99:a0:80:3f:2f:22:85:63:d8: 92:11:ca:79:18:4e:6c:62:35:c6:14:06:0b:8e:90:ff:d5:6b: 7c:91:41:e2:80:66:58:f9:eb:63:9a:31:c6:4c:19:d6:d2:a7: 2c:45:20:95:c3:a6:cf:ac:b9:86:b4:94:11:0b:61:5c:9c:65: 14:d8:0e:6f:15:71:ae:52:8e:22:a1:b1:11:f8:75:e3:85:59: f9:31:d7:e5:92:08:a9:10:94:8e:d8:09:04:40:16:0e:6a:2b: 0c:ee:89:94 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUcHkjiSjcLRF44d10nS9/deYMC6cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTExMjA5MTIzM1oX DTI2MTExMTA5MTczM1owMzExMC8GA1UEAxMoNzhBQzA4MUZFQ0ZGRjQ1Q0Y0OUIz MzA3REVGNzZDNDAxQjg0NDhBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL241C7KMy/75SWU7R2dsbif4jcl23glqSLn3jE26C1rv5RQAN4+zTI4KJ3F Hmlcb/a5cs1SU687gNvjItW3uXjbQSevHxRDr5Y5NiLtDUH9ehPifeTeCnoUqkQV xeIDzlDXjqJf3aY1SjI8Rr7ITusNGCqOfe8vaZsks51EgLdCzWVVBcmQGdkiXy6d nDjRR4A9Eq38lTyNVkNoBBwhUxit80XA7BYEOvsknx+Y1iIvdZ3LuHeL61FgZeB4 flqAWM7vve/C9LPmaSilu/4vzsmTYOsqQwkCJMOes6ArkrOQdFSVF7qkEOXahF1u 7NO7MoH6ECmIc2wB3GcXksdTnCcCAwEAAaOCAeQwggHgMB0GA1UdDgQWBBR4rAgf 7P/0XPSbMwfe92xAG4RIozAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFMGCCsGAQUFBwELBEcwRTBDBggrBgEFBQcwC4Y3cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE3ODg0LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ544AwQCypEAMA0EAgACMAcDBQAkAnmAMA0GCSqGSIb3DQEBCwUA A4IBAQBGMECdyE3TcJ04CBw1EB8Im5dS+Jq6M9oogh9XLZMvrOMpeULo92uMR/DW 5rkW64r615bFNEClwWpK8KnkNVm6AhFlj7WNaeoxv4/7uwFPj2f1WSGXrdHF//xE 7OX+6HtDjNkS9GQIWvkNOUyTo+LJpOxhO2NwXRxUa6JmEqeml7C8mS7BofvX3a7o sEPLgkCLpr6FORctx0WZoIA/LyKFY9iSEcp5GE5sYjXGFAYLjpD/1Wt8kUHigGZY +etjmjHGTBnW0qcsRSCVw6bPrLmGtJQRC2FcnGUU2A5vFXGuUo4iobER+HXjhVn5 MdflkgipEJSO2AkEQBYOaisM7omU -----END CERTIFICATE-----Generated at Sat Dec 6 21:53:05 2025 by rpki-client