Route Origin Authorization
$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa
File: AS18059.roa (raw, json)
Hash identifier: XKVX26vZFousHQzTgO8TV1OF99awTGKFtAZM4DSIZUw=
Subject key identifier: 0F:ED:E8:A5:94:12:20:0B:00:DC:F0:20:57:18:D2:77:FC:8F:73:6C
Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Certificate serial: 7D88BA2B19216377FCADC176F7EF055D20CF6731
Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa
Signing time: Mon 11 May 2026 06:33:26 +0000
ROA not before: Mon 11 May 2026 06:28:26 +0000
ROA not after: Mon 10 May 2027 06:33:26 +0000
asID: 18059
IP address blocks: 103.168.114.0/23 maxlen: 24
103.168.116.0/23 maxlen: 24
103.168.118.0/23 maxlen: 24
103.168.120.0/23 maxlen: 24
163.61.77.0/24 maxlen: 24
202.43.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 09:32:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:88:ba:2b:19:21:63:77:fc:ad:c1:76:f7:ef:05:5d:20:cf:67:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E
Validity
Not Before: May 11 06:28:26 2026 GMT
Not After : May 10 06:33:26 2027 GMT
Subject: CN=0FEDE8A59412200B00DCF0205718D277FC8F736C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ca:c8:34:95:89:04:10:da:53:44:9b:4c:b3:
9c:c8:94:ad:8e:2f:38:0a:74:86:2b:23:97:e9:7c:
a8:fc:1b:03:92:a1:5d:44:56:58:8c:92:e9:f0:02:
df:43:c5:1f:c6:f7:8c:66:2d:a3:de:a4:b6:04:c1:
71:4d:bb:3c:42:e0:58:fe:e1:bc:f0:43:59:05:0e:
01:9b:b6:f7:f5:5b:93:a2:b3:4f:f6:4a:a4:bf:d2:
0c:8f:41:d0:39:8a:b2:ce:ba:b8:35:d2:ac:c6:93:
fa:43:ab:38:32:de:b4:ad:37:07:28:54:de:26:7e:
01:d0:a7:08:10:6a:cf:fa:3d:43:4d:52:cb:8b:e6:
51:c9:74:a5:0a:af:77:a6:da:09:2a:13:f5:fd:3e:
83:57:be:a2:c1:50:40:db:3d:1f:07:b3:cc:37:29:
17:a7:18:18:24:83:79:61:9d:da:d2:e2:72:ef:c5:
aa:0e:cf:d6:ee:67:94:dc:2e:63:3b:a7:6a:27:85:
be:58:c8:a6:d6:b4:81:ab:e7:a3:63:76:6a:34:99:
d5:07:76:09:0b:10:f8:7a:c4:0e:97:68:87:0c:32:
76:fb:df:16:71:e5:d6:75:83:64:12:09:6e:eb:5d:
27:6d:60:fc:f2:79:fa:5a:31:94:be:9b:6b:79:83:
a1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:ED:E8:A5:94:12:20:0B:00:DC:F0:20:57:18:D2:77:FC:8F:73:6C
X509v3 Authority Key Identifier:
keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AS18059.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.168.114.0-103.168.121.255
163.61.77.0/24
202.43.160.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:a3:73:79:7f:2c:c4:1b:46:8b:08:09:56:12:6f:55:a1:7b:
4f:51:1b:1c:18:28:ff:c2:75:f8:78:c9:21:41:45:5e:86:03:
78:9b:20:16:63:6a:f1:57:8e:48:cd:5c:41:20:49:7c:b8:6d:
6e:c6:0b:2b:35:cb:d4:e3:aa:6b:3a:ad:1d:c2:15:ad:dc:6a:
ea:f9:e9:d0:31:3c:4d:6b:d8:d4:86:fa:54:43:13:32:29:5b:
26:42:da:b3:54:25:8c:95:9f:dd:4a:29:1f:8b:c2:50:8f:d7:
15:b4:e2:23:9d:73:9e:5d:15:8d:da:6e:f9:3f:95:02:89:9d:
8b:6c:37:ed:4e:59:6c:59:03:21:49:97:e7:cb:f6:94:60:9f:
6a:e9:da:f2:51:aa:f0:f4:84:99:85:d3:f6:2c:d6:53:69:a8:
91:bf:4c:64:f6:4d:4a:14:4b:9f:5e:ee:6d:c1:c3:e7:a7:50:
b3:5b:f4:9f:98:cc:4c:36:da:b9:d8:26:e9:0f:23:12:34:11:
4f:e5:87:b9:fa:2e:3c:27:b4:66:ba:7b:08:c7:4f:9f:80:66:
7d:7a:fa:60:4b:80:f3:1c:0f:0b:ff:e4:0a:9b:b2:47:92:38:
eb:cb:81:06:1d:91:ac:71:68:f4:fe:f2:a1:77:aa:27:2d:dc:
c3:0e:f1:f5
-----BEGIN CERTIFICATE-----
MIIE7DCCA9SgAwIBAgIUfYi6KxkhY3f8rcF29+8FXSDPZzEwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4
QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUxMTA2MjgyNloX
DTI3MDUxMDA2MzMyNlowMzExMC8GA1UEAxMoMEZFREU4QTU5NDEyMjAwQjAwRENG
MDIwNTcxOEQyNzdGQzhGNzM2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMPKyDSViQQQ2lNEm0yznMiUrY4vOAp0hisjl+l8qPwbA5KhXURWWIyS6fAC
30PFH8b3jGYto96ktgTBcU27PELgWP7hvPBDWQUOAZu29/Vbk6KzT/ZKpL/SDI9B
0DmKss66uDXSrMaT+kOrODLetK03ByhU3iZ+AdCnCBBqz/o9Q01Sy4vmUcl0pQqv
d6baCSoT9f0+g1e+osFQQNs9HwezzDcpF6cYGCSDeWGd2tLicu/Fqg7P1u5nlNwu
YzunaieFvljIpta0gavno2N2ajSZ1Qd2CQsQ+HrEDpdohwwydvvfFnHl1nWDZBIJ
butdJ21g/PJ5+loxlL6ba3mDoRUCAwEAAaOCAd8wggHbMB0GA1UdDgQWBBQP7eil
lBIgCwDc8CBXGNJ3/I9zbDAfBgNVHSMEGDAWgBRBmoXN+KQwUWlGhp0cSSA31rxu
njAOBgNVHQ8BAf8EBAMCB4AwZwYDVR0fBGAwXjBcoFqgWIZWcnN5bmM6Ly9ycGtp
LXJzeW5jLmlkbmljLm5ldC9yZXBvL0lETklDLzEvNDE5QTg1Q0RGOEE0MzA1MTY5
NDY4NjlEMUM0OTIwMzdENkJDNkU5RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsG
AQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VG
NTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvUVpxRnpmaWtNRkZwUm9hZEhFa2dO
OWE4YnA0LmNlcjBRBggrBgEFBQcBCwRFMEMwQQYIKwYBBQUHMAuGNXJzeW5jOi8v
cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby9JRE5JQy8xL0FTMTgwNTkucm9hMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwMwYIKwYBBQUHAQcBAf8EJDAiMCAEAgAB
MBowDAMEAWeocgMEAWeoeAMEAKM9TQMEAMoroDANBgkqhkiG9w0BAQsFAAOCAQEA
OqNzeX8sxBtGiwgJVhJvVaF7T1EbHBgo/8J1+HjJIUFFXoYDeJsgFmNq8VeOSM1c
QSBJfLhtbsYLKzXL1OOqazqtHcIVrdxq6vnp0DE8TWvY1Ib6VEMTMilbJkLas1Ql
jJWf3UopH4vCUI/XFbTiI51znl0Vjdpu+T+VAomdi2w37U5ZbFkDIUmX58v2lGCf
auna8lGq8PSEmYXT9izWU2mokb9MZPZNShRLn17ubcHD56dQs1v0n5jMTDbaudgm
6Q8jEjQRT+WHufouPCe0Zrp7CMdPn4BmfXr6YEuA8xwPC//kCpuyR5I468uBBh2R
rHFo9P7yoXeqJy3cww7x9Q==
-----END CERTIFICATE-----
Generated at Tue May 12 22:43:26 2026 by rpki-client