This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/3130332e3139312e3137312e302f32342d3234203d3e20313439393333.roa File: 3130332e3139312e3137312e302f32342d3234203d3e20313439393333.roa (raw, json) Hash identifier: XpfKRKn/aePFL2Um700oqFvEnzDkELByApcE+JeDEyc= Subject key identifier: 99:EB:BF:D1:3B:46:AA:0F:7D:9F:C8:FA:FB:E2:32:58:37:0E:2F:9D Certificate issuer: /CN=DE23EE57180D61B392DC88859FE654C7A8ACF1FF Certificate serial: 4F9C9A2604A5A9088CC56499C75CE95724136166 Authority key identifier: DE:23:EE:57:18:0D:61:B3:92:DC:88:85:9F:E6:54:C7:A8:AC:F1:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/3130332e3139312e3137312e302f32342d3234203d3e20313439393333.roa Signing time: Mon 12 Jan 2026 10:00:02 +0000 ROA not before: Mon 12 Jan 2026 09:55:02 +0000 ROA not after: Mon 11 Jan 2027 10:00:02 +0000 asID: 149933 IP address blocks: 103.191.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.crl rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 12:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:9c:9a:26:04:a5:a9:08:8c:c5:64:99:c7:5c:e9:57:24:13:61:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE23EE57180D61B392DC88859FE654C7A8ACF1FF Validity Not Before: Jan 12 09:55:02 2026 GMT Not After : Jan 11 10:00:02 2027 GMT Subject: CN=99EBBFD13B46AA0F7D9FC8FAFBE23258370E2F9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:77:a6:f9:87:e6:d3:40:d5:aa:06:6a:3a:da: 1a:ea:58:ce:2f:67:64:c0:08:4c:f3:cf:0e:06:4d: 64:23:ad:69:c6:df:13:90:6b:46:7e:22:49:57:f1: ca:1c:aa:b4:02:c9:0a:0c:ce:f4:b5:ac:66:5e:22: 97:32:b0:79:2d:77:f2:c9:1b:71:ae:89:35:b5:e3: 7a:11:10:08:9e:fb:1b:39:4b:38:6c:d7:82:dc:ff: b2:0b:37:3b:62:b4:a6:4c:04:c8:5d:38:67:60:14: 52:3c:27:da:fb:ca:f8:88:0c:e3:b2:41:1b:68:bc: 2b:bb:bf:04:e5:81:f7:11:dd:5c:4f:3a:45:72:9d: 2b:dc:58:b5:9e:87:dd:1c:39:21:f6:65:19:46:78: 97:0c:08:be:ba:51:c4:ab:03:36:94:44:f3:fa:bd: b2:ab:73:a0:ab:b6:48:78:82:04:e0:2d:31:11:d2: 93:21:72:52:e2:21:48:e9:65:30:80:15:dd:ed:de: d7:ff:37:5c:66:a5:72:e3:c9:a6:03:86:86:fd:b1: 9f:7d:29:7b:b8:86:5e:5e:7d:85:64:5a:c5:bb:8b: a8:36:44:00:44:9e:9e:94:e0:3c:9a:71:ba:3b:a5: 54:ca:66:cc:46:10:16:83:97:39:dd:11:98:e3:f9: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:EB:BF:D1:3B:46:AA:0F:7D:9F:C8:FA:FB:E2:32:58:37:0E:2F:9D X509v3 Authority Key Identifier: keyid:DE:23:EE:57:18:0D:61:B3:92:DC:88:85:9F:E6:54:C7:A8:AC:F1:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE23EE57180D61B392DC88859FE654C7A8ACF1FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/05c1e2f3-4fbd-44bb-83f0-bb5afe64575e/0/3130332e3139312e3137312e302f32342d3234203d3e20313439393333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.171.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:aa:ec:b4:f2:8b:e0:cc:5a:4b:4e:16:82:29:de:70:ec:cf: 80:57:9e:34:47:28:fb:d0:a9:ce:a5:f9:78:f7:61:aa:4a:5a: 1a:83:c7:ca:a1:54:1d:60:ef:c6:7a:25:be:89:18:8c:b4:4c: 13:e2:f5:60:78:43:95:e1:65:e8:c2:1e:bf:cd:5f:4f:88:71: 73:be:e6:a2:a2:22:7c:74:7e:a8:94:37:c1:e7:33:eb:83:7f: bc:a8:8c:1b:89:84:c1:ad:48:3c:fd:04:98:82:1f:db:c0:7e: 88:3a:b7:8a:40:65:ca:7c:dc:3a:87:94:b7:ef:1e:87:53:82: 92:68:d4:8c:25:cc:cf:95:69:3d:0d:9a:2b:e3:12:31:b4:06: 5b:3e:60:61:b9:10:07:8b:d9:2c:76:1e:21:91:f5:4f:65:a9: 4e:95:3a:9f:35:c0:13:92:9d:9a:56:c5:7d:48:b1:95:dc:10: e1:c0:68:b5:c8:1e:5a:cc:24:2e:7b:89:74:2d:4f:98:94:eb: 0c:b0:ee:2e:7f:5d:cd:5d:61:43:23:ad:74:09:90:0b:54:9d: c3:64:d5:c8:65:dd:a6:8e:b8:eb:cd:94:d3:3c:e5:cd:a6:89: f9:e2:21:60:0a:68:85:48:1f:71:f2:56:7d:20:37:d8:5a:c4: c5:21:b9:d6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUT5yaJgSlqQiMxWSZx1zpVyQTYWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREUyM0VFNTcxODBENjFCMzkyREM4ODg1OUZFNjU0QzdB OEFDRjFGRjAeFw0yNjAxMTIwOTU1MDJaFw0yNzAxMTExMDAwMDJaMDMxMTAvBgNV BAMTKDk5RUJCRkQxM0I0NkFBMEY3RDlGQzhGQUZCRTIzMjU4MzcwRTJGOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCld6b5h+bTQNWqBmo62hrqWM4v Z2TACEzzzw4GTWQjrWnG3xOQa0Z+IklX8cocqrQCyQoMzvS1rGZeIpcysHktd/LJ G3GuiTW143oREAie+xs5Szhs14Lc/7ILNztitKZMBMhdOGdgFFI8J9r7yviIDOOy QRtovCu7vwTlgfcR3VxPOkVynSvcWLWeh90cOSH2ZRlGeJcMCL66UcSrAzaURPP6 vbKrc6Crtkh4ggTgLTER0pMhclLiIUjpZTCAFd3t3tf/N1xmpXLjyaYDhob9sZ99 KXu4hl5efYVkWsW7i6g2RABEnp6U4Dyacbo7pVTKZsxGEBaDlzndEZjj+VqFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmeu/0TtGqg99n8j6++IyWDcOL50wHwYDVR0j BBgwFoAU3iPuVxgNYbOS3IiFn+ZUx6is8f8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NWMxZTJmMy00ZmJkLTQ0YmItODNmMC1iYjVhZmU2NDU3NWUvMC9ERTIzRUU1NzE4 MEQ2MUIzOTJEQzg4ODU5RkU2NTRDN0E4QUNGMUZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREUyM0VFNTcxODBENjFCMzkyREM4ODg1OUZFNjU0QzdBOEFD RjFGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1YzFlMmYzLTRmYmQtNDRiYi04 M2YwLWJiNWFmZTY0NTc1ZS8wLzMxMzAzMzJlMzEzOTMxMmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzOTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnv6swDQYJ KoZIhvcNAQELBQADggEBACuq7LTyi+DMWktOFoIp3nDsz4BXnjRHKPvQqc6l+Xj3 YapKWhqDx8qhVB1g78Z6Jb6JGIy0TBPi9WB4Q5XhZejCHr/NX0+IcXO+5qKiInx0 fqiUN8HnM+uDf7yojBuJhMGtSDz9BJiCH9vAfog6t4pAZcp83DqHlLfvHodTgpJo 1IwlzM+VaT0NmivjEjG0Bls+YGG5EAeL2Sx2HiGR9U9lqU6VOp81wBOSnZpWxX1I sZXcEOHAaLXIHlrMJC57iXQtT5iU6wyw7i5/Xc1dYUMjrXQJkAtUncNk1chl3aaO uOvNlNM85c2mifniIWAKaIVIH3HyVn0gN9haxMUhudY= -----END CERTIFICATE-----Generated at Wed Jan 21 16:18:18 2026 by rpki-client